-
公开(公告)号:US20240037216A1
公开(公告)日:2024-02-01
申请号:US17875067
申请日:2022-07-27
申请人: DELL PRODUCTS L.P.
CPC分类号: G06F21/53 , H04L9/3073 , H04L9/3268 , G06F21/572 , G06F2221/033
摘要: Systems and methods are provided that may be implemented to provide a basic input/output system (BIOS) with the ability to authenticate and then execute one-time unique instructions that are previously left behind (i.e., stored) in public memory of an information handling system by a containerized computing environment session that is no longer executing on the information handling system. The disclosed systems and methods may be so implemented to share with the system BIOS privileged instructions to identify which executables are authorized for execution on a targeted information handling system. The privileged instructions may be previously created and optionally stored together with an executable code in system public memory, and these instructions may provide instructions on how to execute the executable code.
-
公开(公告)号:US11347519B2
公开(公告)日:2022-05-31
申请号:US16884985
申请日:2020-05-27
申请人: Dell Products L.P.
发明人: Amy C. Nelson , Richard M. Tonry
IPC分类号: G06F9/00 , G06F9/4401 , G06F11/34 , G06F21/60 , G06F8/654
摘要: An information handling system may include a processor and a basic input/output system (BIOS) comprising a program of instructions executable by the processor and configured to cause the processor to initialize one or more information handling resources of the information handling system. The BIOS may be further configured to, during a boot of the information handling system, determine whether a BIOS configuration change has been made during a current boot session of the information handling system, and responsive to determining that a BIOS configuration change has been made during the current boot session, store an indication of the BIOS configuration change to a non-volatile memory.
-
3.发明申请公开(公告)号:US20210243030A1
公开(公告)日:2021-08-05
申请号:US16777415
申请日:2020-01-30
申请人: DELL PRODUCTS L.P.
摘要: Various embodiments of systems and methods are provided to bind a system identifier that uniquely identifies an information handling system (IHS) to the system platform, so that the identity of the IHS can be cryptographically verified. More specifically, the present disclosure provides methods to bind a unique system identifier to an IHS platform, and methods to cryptographically verify the identity of the IHS using the unique system identifier and a plurality of keys generated and stored with a Trusted Platform Module (TPM) of the IHS. Systems are provided herein to perform such methods. As such, the systems and methods disclosed herein enable system identity to be irrefutably verified, thereby preventing theft and misuse of system identity.
-
4.发明授权公开(公告)号:US11909882B2
公开(公告)日:2024-02-20
申请号:US16777415
申请日:2020-01-30
申请人: DELL PRODUCTS L.P.
CPC分类号: H04L9/3234 , H04L9/0897 , H04L9/3263 , H04L63/0442
摘要: Various embodiments of systems and methods are provided to bind a system identifier that uniquely identifies an information handling system (IHS) to the system platform, so that the identity of the IHS can be cryptographically verified. More specifically, the present disclosure provides methods to bind a unique system identifier to an IHS platform, and methods to cryptographically verify the identity of the IHS using the unique system identifier and a plurality of keys generated and stored with a Trusted Platform Module (TPM) of the IHS. Systems are provided herein to perform such methods. As such, the systems and methods disclosed herein enable system identity to be irrefutably verified, thereby preventing theft and misuse of system identity.
-
5.发明授权公开(公告)号:US12131140B2
公开(公告)日:2024-10-29
申请号:US17486791
申请日:2021-09-27
申请人: DELL PRODUCTS L.P.
CPC分类号: G06F8/61 , G06F8/65 , G06F8/71 , G06F21/577
摘要: Methods and systems are provided that may be implemented to methods and systems may be implemented to automatically identify types and status of vulnerabilities in identified software or firmware components (e.g., libraries), and then automatically deploy security vulnerability fixes (e.g., patches or updates) in these identified components across different affected software or firmware applications. In one example, the disclosed methods and systems may operate to dynamically and automatically aggregate identified third party software and/or firmware vulnerabilities into a centralized repository, and may be further implemented to automatically handle the roll out and deployment of vulnerability fixes to patch or update third party libraries to solve any security vulnerability reported on these third party libraries.
-
6.发明申请公开(公告)号:US20230097733A1
公开(公告)日:2023-03-30
申请号:US17486791
申请日:2021-09-27
申请人: DELL PRODUCTS L.P.
摘要: Methods and systems are provided that may be implemented to methods and systems may be implemented to automatically identify types and status of vulnerabilities in identified software or firmware components (e.g., libraries), and then automatically deploy security vulnerability fixes (e.g., patches or updates) in these identified components across different affected software or firmware applications. In one example, the disclosed methods and systems may operate to dynamically and automatically aggregate identified third party software and/or firmware vulnerabilities into a centralized repository, and may be further implemented to automatically handle the roll out and deployment of vulnerability fixes to patch or update third party libraries to solve any security vulnerability reported on these third party libraries.
-
7.发明授权公开(公告)号:US11604880B2
公开(公告)日:2023-03-14
申请号:US16800751
申请日:2020-02-25
申请人: DELL PRODUCTS L.P.
IPC分类号: G06F21/57 , H04L9/32 , H04L9/40 , H04L9/08 , G06F9/4401
摘要: The present disclosure provides various embodiments of systems and related methods to track and cryptographically verify system configuration changes. More specifically, systems and methods are disclosed herein to track an original system configuration of an information handling system (IHS) as the system was built by a manufacturing facility, and any system configuration changes that are made to the original system configuration after the IHS leaves the manufacturing facility. Once a user takes ownership of the IHS, systems and methods disclosed herein may be used to cryptographically verify a current system configuration of the IHS. In doing so, the present disclosure provides a way to authenticate or validate system configuration changes that may occur after the IHS leaves the manufacturing facility.
-
公开(公告)号:US11481497B2
公开(公告)日:2022-10-25
申请号:US17018416
申请日:2020-09-11
申请人: Dell Products L.P.
摘要: A method may include, during execution of a basic input/output system comprising boot firmware configured to be the first code executed by the processor when the information handling system is booted and/or powered on and execute prior to execution of an operating system of the information handling system, executing a hardware attestation verification application configured to: (i) read a platform certificate comprising information associated with one or more information handling resources of the information handling system recorded during creation of the platform certificate; (ii) perform hardware attestation of the information handling system by comparing information associated with the one or more information handling resources and the information stored within the platform certificate; and (iii) generate a log indicative of the results of the hardware attestation.
-
9.发明申请公开(公告)号:US20210266184A1
公开(公告)日:2021-08-26
申请号:US16800751
申请日:2020-02-25
申请人: DELL PRODUCTS L.P.
摘要: The present disclosure provides various embodiments of systems and related methods to track and cryptographically verify system configuration changes. More specifically, systems and methods are disclosed herein to track an original system configuration of an information handling system (IHS) as the system was built by a manufacturing facility, and any system configuration changes that are made to the original system configuration after the IHS leaves the manufacturing facility. Once a user takes ownership of the IHS, systems and methods disclosed herein may be used to cryptographically verify a current system configuration of the IHS. In doing so, the present disclosure provides a way to authenticate or validate system configuration changes that may occur after the IHS leaves the manufacturing facility.
-
公开(公告)号:US20170140151A1
公开(公告)日:2017-05-18
申请号:US14942840
申请日:2015-11-16
申请人: Dell Products, L.P.
CPC分类号: G06F21/575 , G06F1/26 , G06F9/4403 , G06F2221/034 , H04L9/0825 , H04L9/0897 , H04L9/3234 , H04L2209/127
摘要: Systems and methods for securely passing user authentication data between a Pre-Boot Authentication (PBA) environment and an Operating System (OS) are described. In some embodiments, an Information Handling System (IHS) may include a processor; and a Basic I/O System (BIOS) coupled to the processor, the BIOS having program instructions stored thereon that, upon execution by the processor, cause the computer system to: identify an encrypted Single-Sign-On (SSO) token and a Trusted Platform Module (TPM) key pair provisioned by an Operating System (OS) and stored in an OS registry; extract a TPM public key from the TPM key pair; encrypt a PBA private key generated by a PBA application with the TPM public key; and store the encrypted PBA private key, the TPM key pair, and the encrypted SSO token in a shadow partition of a self-encrypting hard drive coupled to the IHS.
-
-
-
-
-
-
-
-
-
搜索结果
10 条记录 (耗时 0.017 秒)
