Secure computing environment to address theft and unauthorized access
First Claim
1. A machine-readable medium storing one or more sequences of instructions for securing a client, which when executed, cause:
- a BIOS agent storing policy data within a BIOS of the client, wherein the policy data describes one or more policies which the client should follow after the operating system has loaded, wherein the BIOS agent is one or more software modules that execute in a runtime portion of the BIOS of the client; and
upon an operating system agent detecting that a condition, specified by a particular policy of the one or more policies, has been met, the operating system agent performing one or more actions specified by the particular policy, wherein the operating system agent is one or more software modules that execute in the operating system of the client.
3 Assignments
0 Petitions
Accused Products
Abstract
Techniques for securing a client. A BIOS agent stores policy data within a BIOS of the client. The BIOS agent is one or more software modules that execute in the BIOS of the client. The policy data describes one or more policies which the client should follow. When an operating system agent detects that a condition, specified by a particular policy of the one or more policies, has been met, the operating system agent performs one or more actions specified by the particular policy, such as disabling the client, retrieving a file from the client, erasing a file from the client, or encrypting a file on the client. The operating system agent is one or more software modules that execute in the operating system of the client.
-
Citations
21 Claims
-
1. A machine-readable medium storing one or more sequences of instructions for securing a client, which when executed, cause:
-
a BIOS agent storing policy data within a BIOS of the client, wherein the policy data describes one or more policies which the client should follow after the operating system has loaded, wherein the BIOS agent is one or more software modules that execute in a runtime portion of the BIOS of the client; and upon an operating system agent detecting that a condition, specified by a particular policy of the one or more policies, has been met, the operating system agent performing one or more actions specified by the particular policy, wherein the operating system agent is one or more software modules that execute in the operating system of the client. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for securing a client, comprising:
-
a BIOS agent storing policy data within a BIOS of the client, wherein the policy data describes one or more policies which the client should follow after the operating system had loaded, wherein the BIOS agent is one or more software modules that execute in a runtime portion of the BIOS of the client; and upon an operating system agent detecting that a condition, specified by a particular policy of the one or more policies, has been met, the operating system agent performing one or more actions specified by the particular policy, wherein the operating system agent is one or more software modules that execute in the operating system of the client. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. An apparatus for securing resources stored thereon, comprising:
-
one or more processors; and a machine-readable medium storing one or more sequences of instructions, which when executed by the one or more processors, cause; a BIOS agent storing policy data within a BIOS of the apparatus, wherein the policy data describes one or more policies which the apparatus should follow after the operating system has loaded, wherein the BIOS agent is one or more software modules that execute in a runtime portion of the BIOS of the apparatus; and upon an operating system agent detecting that a condition, specified by a particular policy of the one or more policies, has been met, the operating system agent performing one or more actions specified by the particular policy, wherein the operating system agent is one or more software modules that execute in the operating system of the apparatus.
-
Specification