发明授权
US08793504B2 Validating a system with multiple subsystems using trusted platform modules and virtual platform modules
有权
使用可信平台模块和虚拟平台模块验证具有多个子系统的系统
- 专利标题: Validating a system with multiple subsystems using trusted platform modules and virtual platform modules
- 专利标题(中): 使用可信平台模块和虚拟平台模块验证具有多个子系统的系统
-
申请号: US13402109申请日: 2012-02-22
-
公开(公告)号: US08793504B2公开(公告)日: 2014-07-29
- 发明人: Ronald L. Billau , Vincenzo V. Di Luoffo , Terence K. Hennessy
- 申请人: Ronald L. Billau , Vincenzo V. Di Luoffo , Terence K. Hennessy
- 申请人地址: US NY Armonk
- 专利权人: International Business Machines Corporation
- 当前专利权人: International Business Machines Corporation
- 当前专利权人地址: US NY Armonk
- 代理机构: Martin & Associates, LLC
- 代理商 Bret J. Petersen
- 主分类号: G06F11/30
- IPC分类号: G06F11/30 ; H04K1/00 ; G06F9/00 ; H04M1/66
摘要:
Software validation is provided for a breakout system having multiple subsystems at the edge of a mobile data network. The software validation utilizes one or more trusted platform modules (TPM) to secure multiple subsystems including virtual machines in the breakout system. Hash values for the software in the various subsystems are placed in Platform Configuration Registers (PCRs) of the TPM. The TPM cryptographically signs quotes, which are a collection of hash values from the PCRs. The breakout system produces an extensible markup language (XML) file with the signed quotes related to the subsystems and sends them to a network management system for verification. The network management system validates the software configured on the breakout system using a public key to access the quotes and compares the values to known good values stored in an inventory record associated with the specific breakout system being validated.
公开/授权文献
信息查询
