公开(公告)号：US20070198214A1

公开(公告)日：2007-08-23

申请号：US11355719

申请日：2006-02-16

申请人： Steven Bade ,  Andrew Kegel ,  Leendert Van Doorn

发明人： Steven Bade ,  Andrew Kegel ,  Leendert Van Doorn

IPC分类号： G21C17/00

CPC分类号： G06F21/577 ,  G06F11/3409 ,  G06F2201/81

摘要： A solution for evaluating trust in a computer infrastructure is provided. In particular, a plurality of computing devices in the computer infrastructure evaluate one or more other computing devices in the computer infrastructure based on a set of device measurements for the other computing device(s) and a set of reference measurements. To this extent, each of the plurality of computing devices also provides a set of device measurements for processing by the other computing device(s) in the computer infrastructure.

摘要翻译： 提供了一种评估计算机基础设施信任的解决方案。 特别地，计算机基础设施中的多个计算设备基于用于其他计算设备的一组设备测量值和一组参考测量结果来评估计算机基础结构中的一个或多个其他计算设备。 在这种程度上，多个计算设备中的每一个还提供一组设备测量值以供计算机基础设施中的其他计算设备处理。

公开(公告)号：US20060133615A1

公开(公告)日：2006-06-22

申请号：US11014067

申请日：2004-12-16

申请人： Steven Bade ,  Ching-Yun Chao

发明人： Steven Bade ,  Ching-Yun Chao

IPC分类号： H04L9/00

CPC分类号： G06F21/33 ,  G06F21/34 ,  G06F21/445 ,  H04L9/3265 ,  H04L9/3273 ,  H04L2209/56 ,  H04L2209/805

摘要： A first data processing system, which includes a first cryptographic device, is communicatively coupled with a second data processing system, which includes a second cryptographic device. The cryptographic devices then mutually authenticate themselves. The first cryptographic device stores a private key of a first asymmetric cryptographic key pair and a public key of a second asymmetric cryptographic key pair that is associated with the second data processing system. The second cryptographic device stores a private key of the second asymmetric cryptographic key pair and a public key of the first asymmetric cryptographic key pair that is associated with the first data processing system. In response to successfully performing the mutual authentication operation between the two cryptographic systems, the first data processing system is enabled to invoke sensitive cryptographic functions on the first cryptographic device while the first data processing system remains communicatively coupled with the second data processing system.

摘要翻译： 包括第一密码装置的第一数据处理系统与包括第二密码装置的第二数据处理系统通信地耦合。 然后密码设备会自己相互认证。 第一加密设备存储与第二数据处理系统相关联的第一非对称密码密钥对和第二非对称密码密钥对的公钥的私钥。 第二加密设备存储第二非对称密码密钥对的私钥和与第一数据处理系统相关联的第一非对称密码密钥对的公开密钥。 响应于成功地执行两个加密系统之间的相互认证操作，第一数据处理系统能够在第一数据处理系统保持与第二数据处理系统通信耦合的同时在第一密码装置上调用敏感的加密功能。

公开(公告)号：US20060090070A1

公开(公告)日：2006-04-27

申请号：US10970461

申请日：2004-10-21

申请人： Steven Bade ,  David Challener

发明人： Steven Bade ,  David Challener

IPC分类号： H04L9/00

CPC分类号： G06F21/57

摘要： A method and system for verifying binding of an initial trusted device to a secured processing system binds an initial device or replacement when no binding information is available from another device in the system. A platform credential is issued only when a valid binding is verified, by sending a proof of binding to a credential provider, such as the manufacturer. The method secures against security breaches that can occur when a device is removed from the system during the binding process. The binding information is generated in the device upon installation and includes system identification information so that at each initialization, upon return of binding information from the system to the device, the device can ensure that it is installed in the proper system and abort operation if the system does not match.

公开(公告)号：US20060075223A1

公开(公告)日：2006-04-06

申请号：US10957545

申请日：2004-10-01

申请人： Steven Bade ,  Charles Ball ,  Ryan Catherman ,  James Hoff ,  James Ward

发明人： Steven Bade ,  Charles Ball ,  Ryan Catherman ,  James Hoff ,  James Ward

IPC分类号： H04L9/00 ,  G06F12/14 ,  H04L9/32 ,  G06F11/30

CPC分类号： G06F21/57

摘要： A method, computer program, and system for paging platform configuration registers in and out of a trusted platform module. In a trusted computing platform, an unlimited number of platform configuration registers can be obtained through paging. The trust platform module encrypts and decrypts platform configuration registers for storage outside the trusted platform module.

摘要翻译： 用于寻呼平台配置的方法，计算机程序和系统在可信平台模块内进出。 在可信赖的计算平台中，可以通过寻呼获得无限数量的平台配置寄存器。 信任平台模块对平台配置寄存器进行加密和解密，以便在可信平台模块之外进行存储。

公开(公告)号：US20060010326A1

公开(公告)日：2006-01-12

申请号：US10887441

申请日：2004-07-08

申请人： Steven Bade ,  Ronald Perez ,  Leendert Van Doorn ,  Helmut Weber

发明人： Steven Bade ,  Ronald Perez ,  Leendert Van Doorn ,  Helmut Weber

IPC分类号： H04L9/00

CPC分类号： G06F21/572

摘要： A method, system and computer program product for enhancing the functionality of the existing core root of trust measurement (CRTM). The CRTM is extended to allow platform manufacturer controlled and certified code to be incorporated into the function of the CRTM, wherein the manufacturer may define the policy for accepting a new function into the CRTM. When a firmware or software module image is compiled, the build process generates a hash value of the compiled firmware or software image, wherein the hash value reflects a fingerprint (or short hand) representation of the compiled image. A determination is made as to whether the hash value of the firmware or software image is to be a CRTM extension. If so, a digital signature of the module is created using the CRTM extension private key. This signature value is added to the firmware or software module.

摘要翻译： 一种用于增强现有核心信任度量（CRTM）功能的方法，系统和计算机程序产品。 CRTM被扩展为允许平台制造商控制和认证的代码被并入CRTM的功能，其中制造商可以将接受新功能的策略定义到CRTM中。 当编译固件或软件模块图像时，构建过程产生编译的固件或软件映像的哈希值，其中散列值反映编译图像的指纹（或短手）表示。 确定固件或软件映像的哈希值是否为CRTM扩展。 如果是这样，使用CRTM扩展专用密钥创建模块的数字签名。 该签名值被添加到固件或软件模块。

公开(公告)号：US20050010812A1

公开(公告)日：2005-01-13

申请号：US10464886

申请日：2003-06-19

申请人： William Terrell ,  Steven Bade

发明人： William Terrell ,  Steven Bade

IPC分类号： H04L9/00

CPC分类号： G06F11/302 ,  G06F11/3051 ,  G06F11/3055

摘要： A method and apparatus for automatically collecting, combining, and storing operating system environment information in a trusted location on the data processing system to provide a persistent store record of all operating system events leading up to the detection of a problem. The software for the ‘black box’ device is a combination of existing system software and logging capability with the added ‘black box’ specific software functions required to generate, time-stamp, cryptographically sign and log events to the secure logging device. Operating system environment information is collected, entered into a log, and stored in a trusted location on the system. The information in this log may be used to analyze system crashes caused by security breaches. Determinations can be made from the log if the system was at correct security software ‘patch’ level or if network services were incorrectly configured or enabled.

摘要翻译： 一种用于在数据处理系统的可信位置中自动收集，组合和存储操作系统环境信息以提供导致问题检测的所有操作系统事件的持久存储记录的方法和装置。 “黑盒”设备的软件是现有系统软件和记录功能的组合，以及生成，时间戳，加密签名和将事件记录到安全日志记录设备所需的添加的“黑匣子”特定软件功能。 收集操作系统环境信息，输入到日志中，并将其存储在系统上的信任位置。 此日志中的信息可用于分析由安全漏洞引起的系统崩溃。 如果系统处于正确的安全软件“修补程序”级别或网络服务配置不正确或启用，则可以从日志中进行确定。

公开(公告)号：US20070260545A1

公开(公告)日：2007-11-08

申请号：US11381237

申请日：2006-05-02

申请人： Steven Bade ,  Richard Dayan ,  James Hanna ,  Andrew Kegel

发明人： Steven Bade ,  Richard Dayan ,  James Hanna ,  Andrew Kegel

IPC分类号： H04L9/00 ,  G06F12/14 ,  H04L9/32 ,  G06F11/30 ,  H04K1/00

CPC分类号： G06F21/57 ,  G06F21/575 ,  H04L2463/101

摘要： Embodiments of the present invention address deficiencies of the art in respect to trusted platform module (TPM) unification in a trusted computing environment and provide a novel and non-obvious method, system and computer program product for trusted platform module data harmonization. In one embodiment of the invention, a TPM log harmonization method can include designating both a single master TPM for a master node among multiple nodes, and also a multiplicity of subsidiary TPMs for remaining ones of the nodes. The method further can include extending the single master TPM with a measurement representing a rendezvous operation for the nodes.

摘要翻译： 本发明的实施例解决了可信计算环境中可信任平台模块（TPM）统一方面的技术缺陷，并提供了一种用于可信平台模块数据协调的新颖且非显而易见的方法，系统和计算机程序产品。 在本发明的一个实施例中，TPM对数协调方法可以包括指定多个节点之间的主节点的单个主TPM，以及用于剩余节点的多个辅助TPM。 该方法还可以包括使用表示节点的会合操作的测量来扩展单个主TPM。

公开(公告)号：US20060136748A1

公开(公告)日：2006-06-22

申请号：US11014559

申请日：2004-12-16

申请人： Steven Bade ,  Ching-Yun Chao

发明人： Steven Bade ,  Ching-Yun Chao

IPC分类号： G06F12/14

CPC分类号： H04L9/3265 ,  G06F21/33 ,  G06F21/34 ,  G06F21/445 ,  H04L9/0897 ,  H04L9/3247 ,  H04L9/3273 ,  H04L2209/805

摘要： A data processing system accepts a removable storage media, which becomes electrically engaged with a system unit within the data processing system, after which the removable storage media and the hardware security unit mutually authenticate themselves. The removable storage media stores a private key of a first asymmetric cryptographic key pair and a public key of a second asymmetric cryptographic key pair that is associated with the hardware security unit, and the hardware security unit stores a private key of the second asymmetric cryptographic key pair and a public key of the first asymmetric cryptographic key pair that is associated with the removable storage media. In response to successfully performing the mutual authentication operation between the removable storage media and the hardware security unit, the system unit is enabled to invoke cryptographic functions on the hardware security unit while the removable storage media remains engaged with the system unit.

摘要翻译： 数据处理系统接受与数据处理系统内的系统单元电接合的可移动存储介质，之后可拆卸存储介质和硬件安全单元相互认证自身。 可移动存储介质存储与硬件安全单元相关联的第一非对称加密密钥对和第二非对称密码密钥对的公钥的私钥，并且硬件安全单元存储第二非对称密码密钥的私钥 对和与可移动存储介质相关联的第一非对称加密密钥对的公开密钥。 响应于成功地执行可移动存储介质和硬件安全单元之间的相互认证操作，系统单元能够在可移动存储介质保持与系统单元接合的同时在硬件安全单元上调用加密功能。

公开(公告)号：US20060026422A1

公开(公告)日：2006-02-02

申请号：US10902711

申请日：2004-07-29

申请人： Steven Bade ,  Thomas Dewkett ,  Nia Kelley ,  Siegfried Sutter ,  Helmut Weber

发明人： Steven Bade ,  Thomas Dewkett ,  Nia Kelley ,  Siegfried Sutter ,  Helmut Weber

IPC分类号： H04L9/00

CPC分类号： H04L63/104 ,  H04L9/0877 ,  H04L9/0897 ,  H04L63/20 ,  H04L2209/805

摘要： A method, apparatus, and computer program product are described for implementing a trusted computing environment within a data processing system. The data processing system includes a primary hardware trusted platform module (TPM) and a secondary hardware backup TPM. The data processing system also includes multiple logical partitions. The primary hardware TPM is used to provide trusted computing services to the logical partitions. A determination is made as to whether the primary hardware TPM is malfunctioning. If a determination is made that the primary hardware TPM is malfunctioning, the secondary hardware TPM is designated as a new primary hardware TPM and is utilized instead of the primary TPM to provide trusted computing services to the logical partitions.

摘要翻译： 描述了用于在数据处理系统内实现可信计算环境的方法，装置和计算机程序产品。 数据处理系统包括主硬件可信平台模块（TPM）和辅助硬件备份TPM。 数据处理系统还包括多个逻辑分区。 主要硬件TPM用于向逻辑分区提供可信计算服务。 确定主要硬件TPM是否发生故障。 如果确定主硬件TPM出现故障，则辅助硬件TPM被指定为新的主要硬件TPM，并且被使用而不是主TPM来向逻辑分区提供可信计算服务。

公开(公告)号：US20060026419A1

公开(公告)日：2006-02-02

申请号：US10902670

申请日：2004-07-29

申请人： Richard Arndt ,  Steven Bade ,  Thomas Dewkett ,  Charles Gainey ,  Nia Kelley ,  Siegfried Sutter ,  Helmut Weber

发明人： Richard Arndt ,  Steven Bade ,  Thomas Dewkett ,  Charles Gainey ,  Nia Kelley ,  Siegfried Sutter ,  Helmut Weber

IPC分类号： H04L9/00

CPC分类号： H04L63/20 ,  G06F21/57 ,  H04L63/0876 ,  H04L63/102

摘要： A method, apparatus, and computer program product are described for implementing a trusted computing environment within a data processing system where the data processing system includes a single hardware trusted platform module (TPM). Multiple logical partitions are provided in the data processing system. A unique context is generated for each one of the logical partitions. When one of the logical partitions requires access to the hardware TPM, that partition's context is required to be stored in the hardware TPM. The hardware TPM includes a finite number of storage locations, called context slots, for storing contexts. Each context slot can store one partition's context. Each one of the partitions is associated with one of the limited number of context storage slots in the hardware TPM. At least one of the context slots is simultaneously associated with more than one of the logical partitions. Contexts are swapped into and out of the hardware TPM during runtime of the data processing system so that when ones of the partitions require access to the hardware TPM, their required contexts are currently stored in the hardware TPM.

摘要翻译： 描述了一种在数据处理系统内实现可信计算环境的方法，装置和计算机程序产品，其中数据处理系统包括单个硬件可信平台模块（TPM）。 在数据处理系统中提供了多个逻辑分区。 为每个逻辑分区生成唯一的上下文。 当其中一个逻辑分区需要访问硬件TPM时，该分区的上下文需要存储在硬件TPM中。 硬件TPM包括有限数量的存储位置，称为上下文时隙，用于存储上下文。 每个上下文时隙都可以存储一个分区的上下文。 每个分区与硬件TPM中的有限数量的上下文存储时隙中的一个相关联。 至少一个上下文时隙同时与多于一个的逻辑分区相关联。 在数据处理系统的运行期间，上下文交换进出硬件TPM，以便当这些分区中的一个需要访问硬件TPM时，其所需的上下文当前存储在硬件TPM中。