System and Method of Configuring Information Handling Systems
First Claim
1. An information handling system, comprising:
- at least one processor;
a memory medium that is coupled to the at least one processor and that stores information handling system firmware, executable by the at least one processor; and
a remote access controller that is coupled to the at least one processor;
wherein the remote access controller is configured to;
receive a digital signature, signed by a signing authority, for a request for utilization of an information handling system firmware application programming interface (API) of the information handling system firmware, signed based at least on information associated with a certificate signed by a certificate authority;
decrypt the digital signature, utilizing a public key associated with the certificate, to determine a first hash value;
determine a second hash value of the request for utilization of the information handling system firmware API;
determine that the first hash value matches the second hash value;
determine that the signing authority is authorized for the request for utilization of the information handling system firmware API;
determine that the signing authority is authorized for the request for utilization of the information handling system firmware API on a platform model of the information handling system; and
permit utilization of the information handling system firmware API.
7 Assignments
0 Petitions
Accused Products
Abstract
In one or more embodiments, one or more systems, methods, and/or processes may receive a digital signature, signed by a signing authority, for a request for utilization of an information handling system firmware application programming interface (API) of the information handling system firmware, signed based at least on information associated with a certificate signed by a certificate authority; may determine that the signing authority is authorized for the request for utilization of the information handling system firmware API; may determine that the signing authority is authorized for the request for utilization of the information handling system firmware API on a platform model of the information handling system; may determine that the certificate is not on a certificate revocation list; and may permit utilization of the information handling system firmware API.
18 Citations
20 Claims
-
1. An information handling system, comprising:
-
at least one processor; a memory medium that is coupled to the at least one processor and that stores information handling system firmware, executable by the at least one processor; and a remote access controller that is coupled to the at least one processor; wherein the remote access controller is configured to; receive a digital signature, signed by a signing authority, for a request for utilization of an information handling system firmware application programming interface (API) of the information handling system firmware, signed based at least on information associated with a certificate signed by a certificate authority; decrypt the digital signature, utilizing a public key associated with the certificate, to determine a first hash value; determine a second hash value of the request for utilization of the information handling system firmware API; determine that the first hash value matches the second hash value; determine that the signing authority is authorized for the request for utilization of the information handling system firmware API; determine that the signing authority is authorized for the request for utilization of the information handling system firmware API on a platform model of the information handling system; and permit utilization of the information handling system firmware API. - View Dependent Claims (2, 3, 4, 5, 6, 7, 18)
-
-
8. A method, comprising:
-
a remote access controller, of an information handling system, receiving a digital signature, signed by a signing authority, for a request for utilization of an information handling system firmware application programming interface (API), signed based at least on information associated with a certificate signed by a certificate authority; the remote access controller decrypting the digital signature, utilizing a public key associated with the certificate, to determine a first hash value; the remote access controller determining a second hash value of the request for utilization of the information handling system firmware API; the remote access controller determining that the first hash value matches the second hash value; the remote access controller determining that the signing authority is authorized for the request for utilization of the information handling system firmware API; the remote access controller determining that the signing authority is authorized for the request for utilization of the information handling system firmware API on a platform model of the information handling system; and the remote access controller permitting utilization of the information handling system firmware API. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. An remote access controller, comprising:
-
at least one processor; a memory medium that is coupled to the at least one processor and that stores firmware that includes instructions, which when executed by the at least one processor, cause the remote access controller to; receive a digital signature, signed by a signing authority, for a request for utilization of an information handling system firmware application programming interface (API) of the information handling system firmware, signed based at least on information associated with a certificate signed by a certificate authority; decrypt the digital signature, utilizing a public key associated with the certificate, to determine a first hash value; determine a second hash value of the request for utilization of the information handling system firmware API; determine that the first hash value matches the second hash value; determine that the signing authority is authorized for the request for utilization of the information handling system firmware API; determine that the signing authority is authorized for the request for utilization of the information handling system firmware API on a platform model of the information handling system; determine that the certificate is not on a certificate revocation list; and permit utilization of the information handling system firmware API. - View Dependent Claims (16, 17, 19, 20)
-
Specification