Secure BIOS tamper protection mechanism

US 9,183,394 B2
Filed: 11/13/2013
Issued: 11/10/2015
Est. Priority Date: 11/13/2013
Status: Active Grant

First Claim

Patent Images

1. An apparatus for protecting a basic input/output system (BIOS) in a computing system, the apparatus comprising:

a BIOS read only memory (ROM), comprising;

a plurality of BIOS content partitions, wherein each of said plurality of BIOS content partitions is stored as plaintext; and

a plurality of encrypted message digests, wherein each of said plurality of encrypted message digests comprises an encrypted version of a first message digest that is associated with a corresponding one of said plurality of BIOS content partitions;

a partition selector, configured to select one or more of said plurality of BIOS content partitions responsive to a BIOS check interrupt that interrupts normal operation of the computing system; and

a tamper detector, operatively coupled to said BIOS ROM and said partition selector, configured to generate said BIOS check interrupt at a combination of prescribed intervals and event occurrences, and configured to access said one or more of said plurality of BIOS content partitions and corresponding one or more of said plurality of encrypted message digests upon assertion of said BIOS check interrupt, and configured to direct a microprocessor to generate corresponding one or more of a plurality of second message digests corresponding to said one or more of said plurality of BIOS content partitions and corresponding one or more of a plurality of decrypted message digests corresponding to said one or more of said plurality of encrypted message digests using the same algorithms and key that were employed to generate said first message digest and said plurality of encrypted message digests, and configured to compare said one or more of said plurality of second message digests with said one or more of said plurality of decrypted message digests, and configured to preclude said operation of said microprocessor if said one or more of said plurality of second message digests and said one or more of said plurality of decrypted message digests are not pair wise equal, and configured to allow said operation of said microprocessor if said one or more of said plurality of second message digests and said one or more of said plurality of decrypted message digests are pair wise equal.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An apparatus including a ROM, a selector, and a detector. The ROM has partitions stored as plaintext, and encrypted digests, each comprising an encrypted version of a first digest associated with a corresponding one of the partitions. The selector selects one or more partitions responsive to an interrupt. The detector generates the interrupt at a combination of intervals and event occurrences, and accesses the one or more partitions and corresponding one or more encrypted digests upon assertion of the interrupt, and directs generation of one or more second digests corresponding to the one or more partitions and one or more decrypted digests corresponding to the one or more encrypted digests using the same algorithms and key used to generate the first digest and encrypted digests, and compares the second digests with the decrypted digests, and precludes the operation if the second digests and the decrypted digests are not pair wise equal.

Citations

21 Claims

1. An apparatus for protecting a basic input/output system (BIOS) in a computing system, the apparatus comprising:
- a BIOS read only memory (ROM), comprising;
  
  a plurality of BIOS content partitions, wherein each of said plurality of BIOS content partitions is stored as plaintext; and
  
  a plurality of encrypted message digests, wherein each of said plurality of encrypted message digests comprises an encrypted version of a first message digest that is associated with a corresponding one of said plurality of BIOS content partitions;
  
  a partition selector, configured to select one or more of said plurality of BIOS content partitions responsive to a BIOS check interrupt that interrupts normal operation of the computing system; and
  
  a tamper detector, operatively coupled to said BIOS ROM and said partition selector, configured to generate said BIOS check interrupt at a combination of prescribed intervals and event occurrences, and configured to access said one or more of said plurality of BIOS content partitions and corresponding one or more of said plurality of encrypted message digests upon assertion of said BIOS check interrupt, and configured to direct a microprocessor to generate corresponding one or more of a plurality of second message digests corresponding to said one or more of said plurality of BIOS content partitions and corresponding one or more of a plurality of decrypted message digests corresponding to said one or more of said plurality of encrypted message digests using the same algorithms and key that were employed to generate said first message digest and said plurality of encrypted message digests, and configured to compare said one or more of said plurality of second message digests with said one or more of said plurality of decrypted message digests, and configured to preclude said operation of said microprocessor if said one or more of said plurality of second message digests and said one or more of said plurality of decrypted message digests are not pair wise equal, and configured to allow said operation of said microprocessor if said one or more of said plurality of second message digests and said one or more of said plurality of decrypted message digests are pair wise equal.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The apparatus as recited in claim 1, wherein said microprocessor employs the Secure Hash Algorithm to generate said one or more of said plurality of second message digests.
  - 3. The apparatus as recited in claim 1, wherein said microprocessor employs the Advanced Encryption Standard algorithm to generate said one or more of said plurality of decrypted message digests.
  - 4. The apparatus as recited in claim 1, wherein said combination of prescribed intervals and event occurrences comprises a programmed sequence of prescribed intervals and event occurrences.
  - 5. The apparatus as recited in claim 1, wherein said microprocessor comprises a dedicated crypto/hash unit disposed within execution logic, and wherein said crypto/hash unit generates said one or more of said plurality of second message digests and said one or more of said plurality of decrypted message digests, and wherein said key is exclusively accessed by said crypto/hash unit.
  - 6. The apparatus as recited in claim 5, wherein said microprocessor further comprises a random number generator disposed within said execution logic, and wherein said random number generator generates a random number at completion of a current BIOS check, which is employed by said tamper detector to randomly designate a whether a following BIOS check interrupt will be asserted as a result of timeout of an interval of occurrence of an event.
  - 7. The apparatus as recited in claim 5, wherein said microprocessor further comprises a random number generator disposed within said execution logic, and wherein said random number generator generates a random number at completion of a current BIOS check, which is employed by said partition selector to randomly designate a number of said plurality of BIOS content partitions to be checked during a following BIOS check.

8. An apparatus for protecting a basic input/output system (BIOS) in a computing system, the apparatus comprising:
- a BIOS read only memory (ROM), comprising;
  
  a plurality of BIOS content partitions, wherein each of said plurality of BIOS content partitions is stored as plaintext; and
  
  a plurality of encrypted message digests, wherein each of said plurality of encrypted message digests comprises an encrypted version of a first message digest that is associated with a corresponding one of said plurality of BIOS content partitions; and
  
  a microprocessor, coupled to said BIOS ROM, said microprocessor comprising;
  
  a partition selector, configured to select one or more of said plurality of BIOS content partitions responsive to a BIOS check interrupt that interrupts normal operation of the computing system; and
  
  a tamper detector, operatively coupled to said BIOS ROM and said partition selector, configured to generate said BIOS check interrupt at a combination of prescribed intervals and event occurrences, and configured to access said one or more of said plurality of BIOS content partitions and corresponding one or more of said plurality of encrypted message digests upon assertion of said BIOS check interrupt, and configured to direct a microprocessor to generate corresponding one or more of a plurality of second message digests corresponding to said one or more of said plurality of BIOS content partitions and corresponding one or more of a plurality of decrypted message digests corresponding to said one or more of said plurality of encrypted message digests using the same algorithms and key that were employed to generate said first message digest and said plurality of encrypted message digests, and configured to compare said one or more of said plurality of second message digests with said one or more of said plurality of decrypted message digests, and configured to preclude said operation of said microprocessor if said one or more of said plurality of second message digests and said one or more of said plurality of decrypted message digests are not pair wise equal, and configured to allow said operation of said microprocessor if said one or more of said plurality of second message digests and said one or more of said plurality of decrypted message digests are pair wise equal.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The apparatus as recited in claim 8, wherein said microprocessor employs the Secure Hash Algorithm to generate said one or more of said plurality of second message digests.
  - 10. The apparatus as recited in claim 8, wherein said microprocessor employs the Advanced Encryption Standard algorithm to generate said one or more of said plurality of decrypted message digests.
  - 11. The apparatus as recited in claim 8, wherein said combination of prescribed intervals and event occurrences comprises a programmed sequence of prescribed intervals and event occurrences.
  - 12. The apparatus as recited in claim 8, said microprocessor further comprising:
    - a dedicated crypto/hash unit disposed within execution logic, and wherein said crypto/hash unit generates said one or more of said plurality of second message digests and said one or more of said plurality of decrypted message digests, and wherein said key is exclusively accessed by said crypto/hash unit.
  - 13. The apparatus as recited in claim 12, wherein said microprocessor further comprises:
    - a random number generator disposed within said execution logic, and wherein said random number generator generates a random number at completion of a current BIOS check, which is employed by said tamper detector to randomly designate a whether a following BIOS check interrupt will be asserted as a result of timeout of an interval of occurrence of an event.
  - 14. The apparatus as recited in claim 12, wherein said microprocessor further comprises:
    - a random number generator disposed within said execution logic, and wherein said random number generator generates a random number at completion of a current BIOS check, which is employed by said partition selector to randomly designate a number of said plurality of BIOS content partitions to be checked during a following BIOS check.

15. A method for protecting a basic input/output system (BIOS) in a computing system, the method comprising:
- storing a plurality of BIOS content partitions as plaintext in a BIOS ROM along with a plurality of encrypted message digests, wherein each of the plurality of encrypted message digests comprises an encrypted version of a first message digest that is associated with a corresponding one of the plurality of BIOS content partitions;
  
  selecting select one or more of the plurality of BIOS content partitions responsive to a BIOS check interrupt that interrupts normal operation of the computing system;
  
  generating the BIOS check interrupt at a combination of prescribed intervals and event occurrences;
  
  upon assertion of the BIOS check interrupt, accessing one or more of the plurality of BIOS content partitions and corresponding one or more of the plurality of encrypted message digests, and generating a corresponding one or more of a plurality of second message digests corresponding to the one or more of the plurality of BIOS content partitions and corresponding one or more of a plurality of decrypted message digests corresponding to the one or more of the plurality of encrypted message digests using the same algorithms and key that were employed to generate the first message digest and the plurality of encrypted message digests;
  
  comparing the one or more of the plurality of second message digests with the one or more of the plurality of decrypted message digests;
  
  precluding operation of the microprocessor if the one or more of the plurality of second message digests and the one or more of the plurality of decrypted message digests are not pair wise equal; and
  
  allowing operation of the microprocessor if the one or more of the plurality of second message digests and the one or more of the plurality of decrypted message digest are pair wise equal.
- View Dependent Claims (16, 17, 18, 19, 20, 21)
- - 16. The method as recited in claim 15, wherein said accessing comprises:
    - employing the Secure Hash Algorithm to generate the one or more of the plurality of second message digests.
  - 17. The apparatus as recited in claim 15, wherein said accessing further comprises:
    - employing the Advanced Encryption Standard algorithm to generate the one or more of the plurality of decrypted message digests.
  - 18. The method as recited in claim 15, wherein the combination of prescribed intervals and event occurrences comprises a programmed sequence of prescribed intervals and event occurrences.
  - 19. The method as recited in claim 15, wherein the microprocessor comprises a dedicated crypto/hash unit disposed within execution logic, and wherein the crypto/hash unit generates the one or more of the plurality of second message digests and the one or more of the plurality of decrypted message digests, and wherein the key is exclusively accessed by the crypto/hash unit.
  - 20. The method as recited in claim 19, wherein the microprocessor further comprises a random number generator disposed within the execution logic, and wherein the random number generator generates a random number at completion of a current BIOS check, which is employed by the tamper detector to randomly designate a whether a following BIOS check interrupt will be asserted as a result of timeout of an interval of occurrence of an event.
  - 21. The method as recited in claim 20, wherein the microprocessor further comprises a random number generator disposed within the execution logic, and wherein the random number generator generates a random number at completion of a current BIOS check, which is employed by the partition selector to randomly designate a number of the plurality of BIOS content.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
VIA Technologies Incorporated (VIA Technologies)
Original Assignee
VIA Technologies Incorporated (VIA Technologies)
Inventors
Henry, G. Glenn
Primary Examiner(s)
Zand, Kambiz
Assistant Examiner(s)
Getachew, Abiy

Application Number

US14/079,299
Publication Number

US 20150134978A1
Time in Patent Office

727 Days
Field of Search

713/194
US Class Current

1/1
CPC Class Codes

G06F 21/572 Secure firmware programming...

Secure BIOS tamper protection mechanism

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Secure BIOS tamper protection mechanism

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links