Trusting an unverified code image in a computing device
    5.
    发明授权
    Trusting an unverified code image in a computing device 有权
    信任计算设备中未验证的代码映像

    公开(公告)号:US08291480B2

    公开(公告)日:2012-10-16

    申请号:US11620699

    申请日:2007-01-07

    IPC分类号: G06F7/04

    CPC分类号: G06F21/00 G06F21/575

    摘要: A method and an apparatus for configuring a key stored within a secure storage area (e.g., ROM) of a device including one of enabling and disabling the key according to a predetermined condition to execute a code image are described. The key may uniquely identify the device. The code image may be loaded from a provider satisfying a predetermined condition to set up at least one component of an operating environment of the device. Verification of the code image may be optional according to the configuration of the key. Secure execution of an unverified code image may be based on a configuration that disables the key.

    摘要翻译: 描述了一种用于配置存储在装置的安全存储区域(例如,ROM)中的密钥的方法和装置,包括根据预定条件启用和禁用密钥以执行代码图像之一的设备。 密钥可以唯一标识设备。 可以从满足预定条件的提供商加载代码图像以建立设备的操作环境的至少一个组件。 根据密钥的配置,验证码图像可以是可选的。 未经验证的代码图像的安全执行可能基于禁用该键的配置。

    Trusting an unverified code image in a computing device
    6.
    发明授权
    Trusting an unverified code image in a computing device 有权
    信任计算设备中未验证的代码映像

    公开(公告)号:US08826405B2

    公开(公告)日:2014-09-02

    申请号:US13621183

    申请日:2012-09-15

    IPC分类号: G06F7/04 G06F21/00 G06F21/57

    CPC分类号: G06F21/00 G06F21/575

    摘要: A method and an apparatus for configuring a key stored within a secure storage area (e.g., ROM) of a device including one of enabling and disabling the key according to a predetermined condition to execute a code image are described. The key may uniquely identify the device. The code image may be loaded from a provider satisfying a predetermined condition to set up at least one component of an operating environment of the device. Verification of the code image may be optional according to the configuration of the key. Secure execution of an unverified code image may be based on a configuration that disables the key.

    摘要翻译: 描述了一种用于配置存储在装置的安全存储区域(例如,ROM)中的密钥的方法和装置,包括根据预定条件启用和禁用密钥以执行代码图像之一的设备。 密钥可以唯一标识设备。 可以从满足预定条件的提供商加载代码图像以建立设备的操作环境的至少一个组件。 根据密钥的配置,验证码图像可以是可选的。 未经验证的代码图像的安全执行可能基于禁用该键的配置。

    Secure booting a computing device
    7.
    发明授权
    Secure booting a computing device 有权
    安全启动计算设备

    公开(公告)号:US08688967B2

    公开(公告)日:2014-04-01

    申请号:US13558249

    申请日:2012-07-25

    IPC分类号: H04L29/00

    摘要: A method and an apparatus for executing codes embedded inside a device to verify a code image loaded in a memory of the device are described. A code image may be executed after being verified as a trusted code image. The embedded codes may be stored in a secure ROM (read only memory) chip of the device. In one embodiment, the verification of the code image is based on a key stored within the secure ROM chip. The key may be unique to each device. Access to the key may be controlled by the associated secure ROM chip. The device may complete establishing an operating environment subsequent to executing the verified code image.

    摘要翻译: 描述用于执行嵌入在设备内的代码以验证加载在设备的存储器中的代码图像的方法和装置。 可以在验证为可信代码图像之后执行代码图像。 嵌入代码可以存储在设备的安全ROM(只读存储器)芯片中。 在一个实施例中,代码图像的验证基于存储在安全ROM芯片内的密钥。 每个设备的密钥可能是唯一的。 访问密钥可以由相关的安全ROM芯片来控制。 设备可以在执行验证的代码图像之后完成建立操作环境。

    TRUSTING AN UNVERIFIED CODE IMAGE IN A COMPUTING DEVICE
    8.
    发明申请
    TRUSTING AN UNVERIFIED CODE IMAGE IN A COMPUTING DEVICE 有权
    在计算机设备中记录一个未经许可的代码图像

    公开(公告)号:US20130081124A1

    公开(公告)日:2013-03-28

    申请号:US13621183

    申请日:2012-09-15

    IPC分类号: G06F21/00

    CPC分类号: G06F21/00 G06F21/575

    摘要: A method and an apparatus for configuring a key stored within a secure storage area (e.g., ROM) of a device including one of enabling and disabling the key according to a predetermined condition to execute a code image are described. The key may uniquely identify the device. The code image may be loaded from a provider satisfying a predetermined condition to set up at least one component of an operating environment of the device. Verification of the code image may be optional according to the configuration of the key. Secure execution of an unverified code image may be based on a configuration that disables the key.

    摘要翻译: 描述了一种用于配置存储在装置的安全存储区域(例如,ROM)中的密钥的方法和装置,包括根据预定条件启用和禁用密钥以执行代码图像之一的设备。 密钥可以唯一标识设备。 可以从满足预定条件的提供商加载代码图像以建立设备的操作环境的至少一个组件。 根据密钥的配置,验证码图像可以是可选的。 未经验证的代码图像的安全执行可能基于禁用该键的配置。

    SECURE BOOTING A COMPUTING DEVICE
    9.
    发明申请
    SECURE BOOTING A COMPUTING DEVICE 有权
    安全打击计算机设备

    公开(公告)号:US20130024677A1

    公开(公告)日:2013-01-24

    申请号:US13558249

    申请日:2012-07-25

    IPC分类号: G06F21/00

    摘要: A method and an apparatus for executing codes embedded inside a device to verify a code image loaded in a memory of the device are described. A code image may be executed after being verified as a trusted code image. The embedded codes may be stored in a secure ROM (read only memory) chip of the device. In one embodiment, the verification of the code image is based on a key stored within the secure ROM chip. The key may be unique to each device. Access to the key may be controlled by the associated secure ROM chip. The device may complete establishing an operating environment subsequent to executing the verified code image.

    摘要翻译: 描述用于执行嵌入在设备内的代码以验证加载在设备的存储器中的代码图像的方法和装置。 可以在验证为可信代码图像之后执行代码图像。 嵌入代码可以存储在设备的安全ROM(只读存储器)芯片中。 在一个实施例中,代码图像的验证基于存储在安全ROM芯片内的密钥。 每个设备的密钥可能是唯一的。 访问密钥可以由相关的安全ROM芯片来控制。 设备可以在执行验证的代码图像之后完成建立操作环境。

    Secure booting a computing device
    10.
    发明授权
    Secure booting a computing device 有权
    安全启动计算设备

    公开(公告)号:US08254568B2

    公开(公告)日:2012-08-28

    申请号:US11620689

    申请日:2007-01-07

    IPC分类号: H04L9/00

    摘要: A method and an apparatus for executing codes embedded inside a device to verify a code image loaded in a memory of the device are described. A code image may be executed after being verified as a trusted code image. The embedded codes may be stored in a secure ROM (read only memory) chip of the device. In one embodiment, the verification of the code image is based on a key stored within the secure ROM chip. The key may be unique to each device. Access to the key may be controlled by the associated secure ROM chip. The device may complete establishing an operating environment subsequent to executing the verified code image.

    摘要翻译: 描述用于执行嵌入在设备内的代码以验证加载在设备的存储器中的代码图像的方法和装置。 可以在验证为可信代码图像之后执行代码图像。 嵌入代码可以存储在设备的安全ROM(只读存储器)芯片中。 在一个实施例中,代码图像的验证基于存储在安全ROM芯片内的密钥。 每个设备的密钥可能是唯一的。 访问密钥可以由相关的安全ROM芯片来控制。 设备可以在执行验证的代码图像之后完成建立操作环境。