System and method for authenticating an operating system

US 7,424,606 B2
Filed: 05/07/2003
Issued: 09/09/2008
Est. Priority Date: 10/26/1998
Status: Expired due to Fees

First Claim

Patent Images

1. In a computer system having a processor, an operating system (OS), and a software identity register that holds an identity of the operating system, the processor having a private key, a method comprising:

forming an OS certificate containing the identity from the software identity register, the identity having been set to a first value if a boot block of the OS was atomically executed, and the identity having been set to a second value if the boot block of the OS was not atomically executed; and

signing the OS certificate using the private key.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for authenticating an operating system includes, in accordance with one aspect, a method in a computer system having a processor, an operating system (OS), and a software identity register that holds an identity of the operating system, the processor having a private key. The method comprises forming an OS certificate containing the identity from the software identity register and signing the OS certificate using the private key. In accordance with another aspect, the signed identity is submitted to a recipient to prove an identity of the operating system to the recipient.

Citations

39 Claims

1. In a computer system having a processor, an operating system (OS), and a software identity register that holds an identity of the operating system, the processor having a private key, a method comprising:
- forming an OS certificate containing the identity from the software identity register, the identity having been set to a first value if a boot block of the OS was atomically executed, and the identity having been set to a second value if the boot block of the OS was not atomically executed; and
  
  signing the OS certificate using the private key.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. A method as recited in claim 1, wherein the OS certificate further contains the processor public key.
  - 3. A method as recited in claim 1, wherein the processor includes the software identity register.
  - 4. A method as recited in claim 1, wherein the processor comprises a central processing unit (CPU).
  - 5. A method as recited in claim 1, wherein the processor is part of a central processing unit (CPU).
  - 6. A method as recited in claim 1, further comprising submitting the signed OS certificate to a recipient to prove the identity of the operating system to the recipient.
  - 7. A method as recited in claim 6, wherein the recipient comprises a content provider.

8. A system comprising:
- a client having a processor and an operating system (OS), the processor having a private key, a manufacturer certificate supplied by a manufacturer of the processor, and a software identity register that holds an identity of the operating system if a boot block of the OS was atomically executed, and that otherwise holds a value indicating that atomic execution of the boot block failed, the client being configured to submit a request over a network;
  
  a computer system having a server to serve content to the client, the computer system being configured to receive the request over the network, generate a challenge nonce, and return the challenge nonce to the client; and
  
  the client being further configured to form an OS certificate containing both the identity from the software identity register and the challenge nonce, and to sign the OS certificate using the private key, the client returning the OS certificate and the processor manufacturer certificate to the computer system for evaluation to determine whether to reject or fulfill the request.
- View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
- - 9. A system as recited in claim 8, wherein the processor comprises a central processing unit (CPU).
  - 10. A system as recited in claim 8, wherein the processor is part of a central processing unit (CPU).
  - 11. The system as recited in claim 8, wherein the computer system is configured to determine whether to trust the identity in the OS certificate.
  - 12. The system as recited in claim 8, wherein the computer system is configured to determine whether the challenge nonce returned in the OS certificate is the challenge nonce generated by the computer system.
  - 13. The system as recited in claim 8, wherein the computer system is configured to verify the signature on the OS certificate using a public key of the processor.
  - 14. The system as recited in claim 13, wherein the public key of the processor is included in the manufacturer certificate.
  - 15. The system as recited in claim 8, wherein the computer system is configured to verify a manufacturer signature on the manufacturer certificate.
  - 16. The system as recited in claim 8, wherein the computer system is configured to determine whether to trust the manufacturer of the processor.
  - 17. The system as recited in claim 8, wherein the computer system is configured to download the content specified in the request in an event that the computer system elects to fulfill the request.
  - 18. The system as recited in claim 8, wherein the computer system comprises a content provider and wherein the client comprises a subscriber unit.

19. For execution on a computer system having a processor, an operating system (OS), and a software identity register that holds an identity of the operating system, the processor having a private key, a computer program stored on one or more computer-readable storage media of the computer system, the program comprising:
- forming an OS certificate containing the identity from the software identity register, the identity being a cryptographic digest of an initial boot block of the operating system and an identity of each of one or more operating system components that have been loaded in the computer system; and
  
  signing the OS certificate using the processor private key.
- View Dependent Claims (20, 21, 22, 23, 24)
- - 20. A program as recited in claim 19, wherein the processor comprises a central processing unit (CPU).
  - 21. A program as recited in claim 19, wherein the processor is separate from the central processing unit (CPU).
  - 22. A program as recited in claim 19, further comprising submitting the signed OS certificate to a recipient to prove the identity of the operating system to the recipient.
  - 23. A program as recited in claim 22, wherein the recipient comprises a content provider.
  - 24. A program as recited in claim 19, wherein the processor includes the software identity register.

25. In a client, a computer program stored on one or more computer-readable storage media resident at the client for establishing a chain of trust between the client and a computer, the program comprising:
- submitting a request from the client to the computer, the request specifying a particular content, the client including a processor and an operating system (OS) and the processor further including a private key, a manufacturer certificate supplied by a manufacturer of the processor, and a software identity register (SIR) that holds an identity of the operating system the identity being a digest of both an initial boot block of the operating system and an identity of each of one or more loaded operating system components indicated in a boot log of the client, wherein each time one of the one or more loaded operating system components is loaded a current SIR value is replaced with a new SIR value that is a hash of a concatenation of the current SIR value and the identity of the one operating system component being loaded, the new SIR value then becoming the current SIR value;
  
  receiving, from the computer, a challenge nonce generated at the computer;
  
  forming an OS certificate containing the identity from the software identity register and signing the OS certificate using the private key;
  
  passing the OS certificate and the processor manufacturer certificate from the client to the computer so that the OS certificate and the processor manufacturer certificate can be evaluated to determine whether the computer is to reject or fulfill the request.
- View Dependent Claims (26, 27, 28)
- - 26. A program as recited in claim 25, wherein the processor comprises a central processing unit (CPU).
  - 27. A program as recited in claim 25, wherein the processor is separate from the central processing unit (CPU).
  - 28. A program as recited in claim 25, wherein the client comprises a subscriber unit and the computer comprises a content provider.

29. In a computer system having a cryptographic mechanism, an operating system (OS), and a software identity register that holds an identity of the operating system, the cryptographic mechanism having a private key of a pair of private and public keys, a method comprising:
- obtaining the identity of the operating system, the identity having been set to a first value if a boot block of the OS was atomically executed, and the identity having been set to a second value if atomic execution of the boot block failed; and
  
  signing the identity using the private key of the cryptographic mechanism.
- View Dependent Claims (30, 31, 32, 33, 34, 35)
- - 30. A method as recited in claim 29, wherein:
    - obtaining the identity of the operating system comprises forming an OS certificate containing the identity from the software identity register and information describing the operating system; and
      
      signing the identity using the private key of the cryptographic mechanism comprises signing the OS certificate using the private key of the cryptographic mechanism.
  - 31. A method as recited in claim 29, wherein the cryptographic mechanism comprises at least part of a central processing unit (CPU).
  - 32. A method as recited in claim 29, wherein the cryptographic mechanism is separate from a central processing unit (CPU).
  - 33. A method as recited in claim 29, further comprising submitting the signed identity to a recipient to prove the identity of the operating system to the recipient.
  - 34. A method as recited in claim 33, wherein the recipient comprises a content provider.
  - 35. A method as recited in claim 29, wherein the cryptographic mechanism includes the software identity register.

36. A system comprising:
- a first processor, wherein the first processor comprises a central processing unit (CPU); and
  
  a second processor having a key pair including a private key and a public key, wherein the private key is to be used by the second processor to sign an identity of an operating system being executed by the first processor, the identity having been set to a first value if a boot block of the operating system was atomically executed, and the identity having been set to a second value if the boot block of the operating system was not atomically executed.
- View Dependent Claims (37, 38, 39)
- - 37. A system as recited in claim 36, wherein the first processor further includes a software identity register that holds the identity of the operating system.
  - 38. A system as recited in claim 36, further comprising a memory, coupled to the first and second processors, configured to store instructions that, when executed by the first processor, cause the first processor to submit the signed identity to a recipient to prove the identity of the operating system to the recipient.
  - 39. A system as recited in claim 36, wherein the recipient comprises a content provider.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
England, Paul, Lampson, Butler W., DeTreville, John D.
Primary Examiner(s)
Moise; Emmanuel L
Assistant Examiner(s)
GERGISO, TECHANE

Application Number

US10/430,999
Publication Number

US 20030196085A1
Time in Patent Office

1,952 Days
Field of Search

380/37, 713/156, 713/175, 726/10
US Class Current

713/156
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 21/575   Secure boot

G06F 2221/2113   Multi-level security, e.g. ...

G06F 9/4406   Loading of operating system

G06F 9/468   Specific access rights for ...

H04L 63/0435   wherein the sending and rec...

H04L 63/0442   wherein the sending and rec...

H04L 63/166   at the transport layer

System and method for authenticating an operating system

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

39 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for authenticating an operating system

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

39 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links