A kind of starting verification method and system

A kind of starting verification method and system

  • CN 104,200,153 B
  • Filed: 09/12/2014
  • Issued: 04/16/2019
  • Est. Priority Date: 09/12/2014
  • Status: Active Grant
First Claim
Patent Images

1. a kind of starting verification method, which is characterized in that be applied to electronic equipment, the electronic equipment includes master chip, describedMethod includes:

  • Starting micro- bootstrap miniboot, the miniboot is previously integrated in the central processor CPU of the master chip,It include the first verification information in the miniboot;

    The second verification information is verified using first verification information, and passes through verifying in second verification informationWhen, bootstrap uboot is verified using second verification information;

    When the uboot passes through verifying, starts the uboot, third verification information is embedded in the uboot;

    Using the third verification information to recovery/upgrade procedure Recovery of operating system nucleus Kernel and operating systemIt is verified;

    When the Kernel and the Recovery pass through verifying, start the Kernel and Recovery, wherein instituteState the second verification information, uboot, Kernel and Recovery are stored in the memory flash of the master chip;

    Wherein, described that the second verification information is verified using first verification information, and in second verification informationWhen passing through verifying, bootstrap uboot is verified using second verification information, comprising;

    Based on the first signed data generated of signing is carried out to the second public key using the first private key in advance, the first public key pair is utilizedSecond public key is verified;

    It is generated based on sign to the uboot using the second private key in advance when second public key passes through verifyingSecond signed data verifies the uboot using second public key, wherein first public key, the first private key areA pair of of the code key being mutually matched, second public key, the second private key are a pair of of the code key being mutually matched;

    First public key and instituteIt states the first private key to be generated by chip producer, first private key is taken care of by chip producer;

    Second public key and second privateKey is generated by operator, and second private key is taken care of by operator;

    Wherein, it is described using the third verification information to recovery/upgrading journey of operating system nucleus Kernel and operating systemSequence Recovery is verified, comprising;

    Third number of signature generated of signing is carried out to the Kernel and the Recovery using third private key based on preparatoryAccording to being verified using third public key to the Kernel and the Recovery, wherein the third public key, third private keyFor a pair of of the code key being mutually matched;

    The third public key and the third private key are generated by operator, and the third private key is by transportingSeek Shang Baoguan.

View all claims
    ×
    ×

    Thank you for your feedback

    ×
    ×