PLATFORM FIRMWARE ARMORING TECHNOLOGY
First Claim
1. A method, comprising:
- switching a platform firmware update mechanism located in a computer platform to a platform firmware armoring technology (PFAT) mode on a boot of the computer platform, wherein the computer platform includes a platform firmware storage location storing a first platform firmware;
in response to the platform firmware update mechanism switching to the PFAT mode, persistently locking the platform firmware storage location, wherein, when persistently locked, writes are not allowed to the platform firmware storage location by any entity other than an Authenticated Code Module (ACM) after a platform firmware update mechanism unlocking procedure.
1 Assignment
0 Petitions
Accused Products
Abstract
A method, apparatus, method, machine-readable medium, and system are disclosed. In one embodiment the method includes is a processor. The processor includes switching a platform firmware update mechanism located in a computer platform to a platform firmware armoring technology (PFAT) mode on a boot of the computer platform. The computer platform includes a platform firmware storage location that stores a platform firmware. The method then persistently locks the platform firmware storage location in response to the platform firmware update mechanism switching to the PFAT mode. When persistently locked, writes are only allowed to the platform firmware storage location by an Authenticated Code Module in the running platform and only after a platform firmware update mechanism unlocking procedure.
65 Citations
25 Claims
-
1. A method, comprising:
-
switching a platform firmware update mechanism located in a computer platform to a platform firmware armoring technology (PFAT) mode on a boot of the computer platform, wherein the computer platform includes a platform firmware storage location storing a first platform firmware; in response to the platform firmware update mechanism switching to the PFAT mode, persistently locking the platform firmware storage location, wherein, when persistently locked, writes are not allowed to the platform firmware storage location by any entity other than an Authenticated Code Module (ACM) after a platform firmware update mechanism unlocking procedure. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An apparatus, comprising:
-
logic to switch a platform firmware update mechanism located in a computer platform to a platform firmware armoring technology (PFAT) mode on a boot of the computer platform, wherein the computer platform includes a platform firmware storage location storing a first platform firmware; in response to the platform firmware update mechanism switching to the PFAT mode, logic to persistently lock the platform firmware storage location, wherein, when persistently locked, writes are not allowed to the platform firmware storage location by any entity other than an Authenticated Code Module (ACM) after a platform firmware update mechanism unlocking procedure. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A machine-readable medium having stored thereon instructions, which if executed by a machine causes the machine to perform a method comprising:
-
switching a platform firmware update mechanism located in a computer platform to a platform firmware armoring technology (PFAT) mode on a boot of the computer platform, wherein the computer platform includes a platform firmware storage location storing a first platform firmware; in response to the platform firmware update mechanism switching to the PFAT mode, persistently locking the platform firmware storage location, wherein, when persistently locked, writes are not allowed to the platform firmware storage location by any entity other than an Authenticated Code Module (ACM) after a platform firmware update mechanism unlocking procedure. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
-
25. A system, comprising:
-
a platform component hub; a platform firmware storage to store a platform firmware; a system memory to store an Authenticated Code Module (ACM); logic to switch a platform firmware update mechanism located in a computer platform to a platform firmware armoring technology (PFAT) mode on a boot of the computer platform; and in response to the platform firmware update mechanism switching to the PFAT mode, the platform component hub to persistently lock the platform firmware storage location, wherein, when persistently locked, writes are not allowed to the platform firmware storage location by any entity other than the ACM after a platform firmware update mechanism unlocking procedure.
-
Specification