BIOS protection device
First Claim
Patent Images
1. A processing system comprising:
- a central processor;
a BIOS memory device including a boot program;
a BIOS protection device including an internal memory;
a plurality of memory address and data paths configured to provide communication between the processor, the BIOS memory device and the BIOS protection device; and
wherein the BIOS protection device is configured to store a copy of the boot program in the internal memory as the BIOS protection device verifies the authenticity of the boot program, wherein the BIOS protection device is further configured to control the memory address and data paths to prevent execution of the boot program until the boot program is authenticated, and wherein the BIOS protection device provides the central processor with access to the copy of the boot program from the internal memory for execution by the central processor when the boot program is successfully authenticated.
5 Assignments
0 Petitions
Accused Products
Abstract
A boot program held in a BIOS memory device of a processing system is authenticated. At system start-up, a BIOS protection device temporarily prevents execution of the boot program by the central processor of the processing system by control of address and data paths. The BIOS protection device interrogates the contents of the BIOS memory device to establish authentication. If the contents of the BIOS memory device are not authentic, execution of the boot program is prevented.
28 Citations
31 Claims
-
1. A processing system comprising:
-
a central processor; a BIOS memory device including a boot program; a BIOS protection device including an internal memory; a plurality of memory address and data paths configured to provide communication between the processor, the BIOS memory device and the BIOS protection device; and wherein the BIOS protection device is configured to store a copy of the boot program in the internal memory as the BIOS protection device verifies the authenticity of the boot program, wherein the BIOS protection device is further configured to control the memory address and data paths to prevent execution of the boot program until the boot program is authenticated, and wherein the BIOS protection device provides the central processor with access to the copy of the boot program from the internal memory for execution by the central processor when the boot program is successfully authenticated. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method of authenticating a boot program held in a BIOS memory device of a processing system, wherein the processing system comprises a central processor, the BIOS memory device, a BIOS protection device, and address and data paths, the method comprising:
-
at start-up, using the BIOS protection device to temporarily prevent execution of the boot program by the central processor; using the BIOS protection device to take control of the address and data paths; using the BIOS protection device to interrogate the contents of the BIOS memory device to establish if the boot program is authentic; if the boot program is authentic, storing a copy of the boot program in internal memory of the BIOS protection device; if the contents of the BIOS memory device are not authentic, using the BIOS protection device to prevent execution of the boot program and to prevent further operation of the central processor; and if the boot program stored in the BIOS memory device is authentic, using the BIOS protection device to control the address and data paths so that the central processor executes the copy of the boot program in the internal memory of the BIOS protection device. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21)
-
- 22. A BIOS protection device for connection to a processing system between a central processor and a BIOS memory device containing a boot program, the BIOS protection device including address and data path interface connections for connection to address and data path(s), an authentication processor, and an internal memory, wherein the BIOS protection device is configured so that, when power is applied to the BIOS protection device, the BIOS protection device takes control of the address and data path(s) to which it is connected and the authentication processor interrogates the BIOS memory device connected to the address and data path(s) to determine if the boot program contained in the BIOS memory device is authentic, wherein the BIOS protection device stores a copy of the authenticated boot program in the internal memory, and only if the boot program is determined to be authentic does the BIOS protection device control the address and data path(s) to permit the central processor to execute the copy of the boot program stored in the internal memory of the BIOS protection device.
- 29. The device as claimed in 28 wherein the BIOS protection device holds the reset signal to hold the motherboard in the reset (or, disabling) state while the authentication of the boot program is performed.
Specification