公开(公告)号：US20190034616A1

公开(公告)日：2019-01-31

申请号：US16126342

申请日：2018-09-10

Applicant: Intel Corporation

Inventor： MICHAEL RAZIEL ,  ABHILASHA BHARGAV-SPANTZEL ,  HORMUZD M. KHOSRAVI

IPC: G06F21/40 ,  G06F21/57

Abstract: An input device of a secure authentication protocol system may receive at least one user authentication factor in a pre-boot session. The input device may verify the received authentication factors and may store the verified authentication factors. During a post-boot session, the input device may communicate the verified authentication factor and a stored post-boot session credential received during a prior post-boot session to an authentication engine executing in a trusted execution environment. The authentication engine verifies the received post-boot session credential is logically associated with an immediately preceding post-boot session. Upon successful verification of the received post-boot session credential, the verified authentication factors or data indicative of a successfully verified authentication factor received during the pre-boot session are used in the current post-boot session.

公开(公告)号：US20170091438A1

公开(公告)日：2017-03-30

申请号：US14866502

申请日：2015-09-25

Applicant: Intel Corporation

Inventor： MICHAEL RAZIEL ,  ABHILASHA BHARGAV-SPANTZEL ,  HORMUZD M. KHOSRAVI

IPC: G06F21/40

CPC classification number: G06F21/40 ,  G06F21/57 ,  G06F21/575

Abstract: An input device of a secure authentication protocol system may receive at least one user authentication factor in a pre-boot session. The input device may verify the received authentication factors and may store the verified authentication factors. During a post-boot session, the input device may communicate the verified authentication factor and a stored post-boot session credential received during a prior post-boot session to an authentication engine executing in a trusted execution environment. The authentication engine verifies the received post-boot session credential is logically associated with an immediately preceding post-boot session. Upon successful verification of the received post-boot session credential, the verified authentication factors or data indicative of a successfully verified authentication factor received during the pre-boot session are used in the current post-boot session.