发明申请
US20060005034A1 System and method for protected operating system boot using state validation
有权
使用状态验证的受保护操作系统引导的系统和方法
- 专利标题: System and method for protected operating system boot using state validation
- 专利标题(中): 使用状态验证的受保护操作系统引导的系统和方法
-
申请号: US10882134申请日: 2004-06-30
-
公开(公告)号: US20060005034A1公开(公告)日: 2006-01-05
- 发明人: Bryan Willman , Paul England , Kenneth Ray , Jamie Hunter , Lonny McMichael , Derek LaSalle , Pierre Jacomet , Mark Paley , Thekkthalackal Kurien , David Cross
- 申请人: Bryan Willman , Paul England , Kenneth Ray , Jamie Hunter , Lonny McMichael , Derek LaSalle , Pierre Jacomet , Mark Paley , Thekkthalackal Kurien , David Cross
- 申请人地址: US WA Redmond
- 专利权人: Microsoft Corporation
- 当前专利权人: Microsoft Corporation
- 当前专利权人地址: US WA Redmond
- 主分类号: H04K1/00
- IPC分类号: H04K1/00 ; H04L9/00 ; G06F15/177 ; G06F9/00 ; G06F9/24 ; G06F9/445
摘要:
A mechanism for protected operating system boot that prevents rogue components from being loaded with the operating system, and thus prevents divulgence of the system key under inappropriate circumstances. After a portion of the machine startup procedure has occurred, the operating system loader is run, the loader is validated, and a correct machine state is either verified to exist and/or created. Once the loader has been verified to be a legitimate loader, and the machine state under which it is running is verified to be correct, the loader's future behavior is known to protect against the loading of rogue components that could cause divulgence of the system key. With the loader's behavior being known to be safe for the system key, the validator may unseal the system key and provides it to the loader.
公开/授权文献
信息查询
