PLATFORM FIRMWARE ARMORING TECHNOLOGY

US 20120072734A1
Filed: 09/22/2010
Published: 03/22/2012
Est. Priority Date: 09/22/2010
Status: Active Grant

First Claim

Patent Images

1. A method, comprising:

switching a platform firmware update mechanism located in a computer platform to a platform firmware armoring technology (PFAT) mode on a boot of the computer platform, wherein the computer platform includes a platform firmware storage location storing a first platform firmware;

in response to the platform firmware update mechanism switching to the PFAT mode, persistently locking the platform firmware storage location, wherein, when persistently locked, writes are not allowed to the platform firmware storage location by any entity other than an Authenticated Code Module (ACM) after a platform firmware update mechanism unlocking procedure.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, apparatus, method, machine-readable medium, and system are disclosed. In one embodiment the method includes is a processor. The processor includes switching a platform firmware update mechanism located in a computer platform to a platform firmware armoring technology (PFAT) mode on a boot of the computer platform. The computer platform includes a platform firmware storage location that stores a platform firmware. The method then persistently locks the platform firmware storage location in response to the platform firmware update mechanism switching to the PFAT mode. When persistently locked, writes are only allowed to the platform firmware storage location by an Authenticated Code Module in the running platform and only after a platform firmware update mechanism unlocking procedure.

65 Citations

View as Search Results

25 Claims

1. A method, comprising:
- switching a platform firmware update mechanism located in a computer platform to a platform firmware armoring technology (PFAT) mode on a boot of the computer platform, wherein the computer platform includes a platform firmware storage location storing a first platform firmware;
  
  in response to the platform firmware update mechanism switching to the PFAT mode, persistently locking the platform firmware storage location, wherein, when persistently locked, writes are not allowed to the platform firmware storage location by any entity other than an Authenticated Code Module (ACM) after a platform firmware update mechanism unlocking procedure.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1, wherein the unlocking procedure further comprises:
    - the platform firmware update mechanism initiating a special memory write cycle to a PFAT protection control register, wherein the special memory write cycle to the PFAT protection control register causes a controller coupled to the platform firmware storage location to accept write commands from the platform firmware update mechanism to an address space of the platform firmware storage location.
  - 3. The method of claim 2, further comprising:
    - providing a public encryption key to the platform firmware storage location;
      
      receiving an unsecure request to update the first platform firmware with an updated firmware image;
      
      loading the updated firmware image into a system memory in the computer platform in response to the unsecure request;
      
      invoking the ACM once the firmware image has completely loaded into system memory;
      
      performing an authentication of the updated firmware image using the public encryption key;
      
      executing the unlocking procedure for the platform firmware storage location in response to the updated firmware image being successfully authenticated; and
      
      copying the authenticated firmware image from the system memory to the platform firmware storage location.
  - 4. The method of claim 3, further comprising:
    - issuing an error when the authentication of the firmware image fails.
  - 5. The method of claim 3, wherein the first platform firmware comprises a system management firmware and wherein the controller comprises a platform component hub.
  - 6. The method of claim 3, wherein the first platform firmware comprises a controller management firmware and wherein the controller comprises an controller located in the computer platform.
  - 7. The method of claim 6, further comprising:
    - at each boot of the computer platform,generating an ephemeral password;
      
      storing the ephemeral password in a secure location accessible only by the ACM; and
      
      distributing the ephemeral password to at least the controller coupled to the platform firmware storage location.
  - 8. The method of claim 7, further comprising:
    - in response to the successful authentication of the updated firmware image using the public encryption key, the ACM sending a secure request to the controller requesting permission to update the controller management firmware, wherein the secure request includes the ephemeral password;
      
      the controller comparing the ephemeral password received from the secure request with the ephemeral password received during the most recent boot of the computer platform; and
      
      the controller allowing the ACM to perform the update to the controller management firmware in response to the two ephemeral passwords being equal.

9. An apparatus, comprising:
- logic to switch a platform firmware update mechanism located in a computer platform to a platform firmware armoring technology (PFAT) mode on a boot of the computer platform, wherein the computer platform includes a platform firmware storage location storing a first platform firmware;
  
  in response to the platform firmware update mechanism switching to the PFAT mode, logic to persistently lock the platform firmware storage location, wherein, when persistently locked, writes are not allowed to the platform firmware storage location by any entity other than an Authenticated Code Module (ACM) after a platform firmware update mechanism unlocking procedure.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The apparatus of claim 9, further comprising logic to:
    - initiate a special memory write cycle to a PFAT protection control register, wherein the special memory write cycle to the PFAT protection control register causes a controller coupled to the platform firmware storage location to accept write commands from the platform firmware update mechanism to an address space of the platform firmware storage location.
  - 11. The apparatus of claim 10, further comprising logic to:
    - provide a public encryption key to the platform firmware storage location;
      
      receive an unsecure request to update the first platform firmware with an updated firmware image;
      
      load the updated firmware image into a system memory in the computer platform in response to the unsecure request;
      
      invoke the ACM once the firmware image has completely loaded into system memory;
      
      perform an authentication of the updated firmware image using the public encryption key;
      
      execute the unlocking procedure for the platform firmware storage location in response to the updated firmware image being successfully authenticated; and
      
      copy the authenticated firmware image from the system memory to the platform firmware storage location.
  - 12. The apparatus of claim 11, further comprising logic to:
    - issue an error when the authentication of the firmware image fails.
  - 13. The apparatus of claim 11, wherein the first platform firmware comprises a system management firmware and wherein the controller comprises a platform component hub.
  - 14. The apparatus of claim 11, wherein the first platform firmware comprises a controller management firmware and wherein the controller comprises an controller located in the computer platform.
  - 15. The apparatus of claim 14, further comprising:
    - at each boot of the computer platform, logic togenerate an ephemeral password;
      
      store the ephemeral password in a secure location accessible only by the ACM; and
      
      distribute the ephemeral password to at least the controller coupled to the platform firmware storage location.
  - 16. The apparatus of claim 15, further comprising:
    - in response to the successful authentication of the updated firmware image using the public encryption key, logic to send a secure request to the controller requesting permission to update the controller management firmware, wherein the secure request includes the ephemeral password;
      
      logic within the controller to compare the ephemeral password received from the secure request with the ephemeral password received during the most recent boot of the computer platform; and
      
      logic within the controller to allow the ACM to perform the update to the controller management firmware in response to the two ephemeral passwords being equal.

17. A machine-readable medium having stored thereon instructions, which if executed by a machine causes the machine to perform a method comprising:
- switching a platform firmware update mechanism located in a computer platform to a platform firmware armoring technology (PFAT) mode on a boot of the computer platform, wherein the computer platform includes a platform firmware storage location storing a first platform firmware;
  
  in response to the platform firmware update mechanism switching to the PFAT mode, persistently locking the platform firmware storage location, wherein, when persistently locked, writes are not allowed to the platform firmware storage location by any entity other than an Authenticated Code Module (ACM) after a platform firmware update mechanism unlocking procedure.
- View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
- - 18. The machine-readable medium of claim 17, wherein the unlocking procedure further comprises:
    - the platform firmware update mechanism initiating a special memory write cycle to a PFAT protection control register, wherein the special memory write cycle to the PFAT protection control register causes a controller coupled to the platform firmware storage location to accept write commands from the platform firmware update mechanism to an address space of the platform firmware storage location.
  - 19. The machine-readable medium of claim 18, wherein the performed method further comprises:
    - providing a public encryption key to the platform firmware storage location;
      
      receiving an unsecure request to update the first platform firmware with an updated firmware image;
      
      loading the updated firmware image into a system memory in the computer platform in response to the unsecure request;
      
      invoking the ACM once the firmware image has completely loaded into system memory;
      
      performing an authentication of the updated firmware image using the public encryption key;
      
      executing the unlocking procedure for the platform firmware storage location in response to the updated firmware image being successfully authenticated; and
      
      copying the authenticated firmware image from the system memory to the platform firmware storage location.
  - 20. The machine-readable medium of claim 19, wherein the performed method further comprises:
    - issuing an error when the authentication of the firmware image fails.
  - 21. The machine-readable medium of claim 19, wherein the first platform firmware comprises a system management firmware and wherein the controller comprises a platform component hub.
  - 22. The machine-readable medium of claim 19, wherein the first platform firmware comprises a controller management firmware and wherein the controller comprises an controller located in the computer platform.
  - 23. The machine-readable medium of claim 22, wherein the performed method further comprises:
    - at each boot of the computer platform,generating an ephemeral password;
      
      storing the ephemeral password in a secure location accessible only by the ACM; and
      
      distributing the ephemeral password to at least the controller coupled to the platform firmware storage location.
  - 24. The machine-readable medium of claim 23, wherein the performed method further comprises:
    - in response to the successful authentication of the updated firmware image using the public encryption key, the ACM sending a secure request to the controller requesting permission to update the controller management firmware, wherein the secure request includes the ephemeral password;
      
      the controller comparing the ephemeral password received from the secure request with the ephemeral password received during the most recent boot of the computer platform; and
      
      the controller allowing the ACM to perform the update to the controller management firmware in response to the two ephemeral passwords being equal.

25. A system, comprising:
- a platform component hub;
  
  a platform firmware storage to store a platform firmware;
  
  a system memory to store an Authenticated Code Module (ACM);
  
  logic to switch a platform firmware update mechanism located in a computer platform to a platform firmware armoring technology (PFAT) mode on a boot of the computer platform; and
  
  in response to the platform firmware update mechanism switching to the PFAT mode, the platform component hub to persistently lock the platform firmware storage location, wherein, when persistently locked, writes are not allowed to the platform firmware storage location by any entity other than the ACM after a platform firmware update mechanism unlocking procedure.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
Ghetie, Sergiu D., Warrier, Ulhas S., Moran, Douglas R., Brannock, Kirk, Wishman, Allen R., De Mevergnies, Michael Neve, Karrar, Adil

Granted Patent

US 8,522,322 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/189
CPC Class Codes

G06F 21/572   Secure firmware programming...

G06F 21/60   Protecting data

G06F 21/64   Protecting data integrity, ...

G06F 21/74   operating in dual or compar...

G06F 2221/2137   Time limited access, e.g. t...

PLATFORM FIRMWARE ARMORING TECHNOLOGY

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

65 Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

PLATFORM FIRMWARE ARMORING TECHNOLOGY

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

65 Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links