公开(公告)号：US20240160743A1

公开(公告)日：2024-05-16

申请号：US18055356

申请日：2022-11-14

Applicant: Advanced Micro Devices, Inc.

Inventor： Nimit Madhubhai Patel

IPC: G06F21/57

CPC classification number: G06F21/575 ,  G06F21/572 ,  G06F2221/033

Abstract: An apparatus and method for providing access to reliable boot firmware. In various implementations, a computing system includes an integrated circuit with a security processor. Prior to performing any steps of a bootup operation using one of multiple copies of boot firmware, the security processor determines whether multiple signatures exist where the signatures are based on the multiple copies of boot firmware. Each of the multiple copies of boot firmware is a copy of a particular version of boot firmware. If the multiple signatures do not yet exist, then the security processor generates the signatures using the multiple copies of boot firmware. During a bootup operation, when the security processor determines that the multiple signatures already exist, the security processor uses these signatures to validate one or more of the multiple copies of boot firmware. The security processor continues with the bootup operation using the validated copy of boot firmware.

公开(公告)号：US12158956B2

公开(公告)日：2024-12-03

申请号：US18055356

申请日：2022-11-14

Applicant: Advanced Micro Devices, Inc.

Inventor： Nimit Madhubhai Patel

IPC: G06F21/57

Abstract: An apparatus and method for providing access to reliable boot firmware. In various implementations, a computing system includes an integrated circuit with a security processor. Prior to performing any steps of a bootup operation using one of multiple copies of boot firmware, the security processor determines whether multiple signatures exist where the signatures are based on the multiple copies of boot firmware. Each of the multiple copies of boot firmware is a copy of a particular version of boot firmware. If the multiple signatures do not yet exist, then the security processor generates the signatures using the multiple copies of boot firmware. During a bootup operation, when the security processor determines that the multiple signatures already exist, the security processor uses these signatures to validate one or more of the multiple copies of boot firmware. The security processor continues with the bootup operation using the validated copy of boot firmware.