Systems and methods for securely booting a computer with a trusted processing module
    1.
    发明授权
    Systems and methods for securely booting a computer with a trusted processing module 有权
    使用可信处理模块安全地引导计算机的系统和方法

    公开(公告)号:US07725703B2

    公开(公告)日:2010-05-25

    申请号:US11031161

    申请日:2005-01-07

    IPC分类号: G06F21/02 G06F21/22

    CPC分类号: G06F21/575

    摘要: In a computer with a trusted platform module (TPM), an expected hash value of a boot component may be placed into a platform configuration register (PCR), which allows a TPM to unseal a secret. The secret may then be used to decrypt the boot component. The hash of the decrypted boot component may then be calculated and the result can be placed in a PCR. The PCRs may then be compared. If they do not, access to the an important secret for system operation can be revoked. Also, a first secret may be accessible only when a first plurality of PCR values are extant, while a second secret is accessible only after one or more of the first plurality of PCR values has been replaced with a new value, thereby necessarily revoking further access to the first secret in order to grant access to the second secret.

    摘要翻译: 在具有可信平台模块(TPM)的计算机中,引导组件的预期散列值可以被放置到平台配置寄存器(PCR)中,这允许TPM解密秘密。 然后可以使用秘密来解密引导组件。 然后可以计算解密的引导组件的散列,并将结果置于PCR中。 然后可以比较PCR。 如果不这样做,可以取消对系统运行的重要秘密的访问。 此外,只有当第一多个PCR值存在时,第一个秘密才可以访问,而第二个秘密只有在第一个多个PCR值中的一个或多个被新的值替换之后才可访问,从而必然取消进一步的访问 到第一个秘密,以授予访问第二个秘密。

    Systems and methods for boot recovery in a secure boot process on a computer with a hardware security module
    2.
    发明授权
    Systems and methods for boot recovery in a secure boot process on a computer with a hardware security module 有权
    在具有硬件安全模块的计算机上的安全引导过程中启动恢复的系统和方法

    公开(公告)号:US07506380B2

    公开(公告)日:2009-03-17

    申请号:US11035715

    申请日:2005-01-14

    CPC分类号: G06F21/575 G06F2221/2101

    摘要: Systems and methods are provided for maintaining and updating a secure boot process on a computer with a trusted platform module (TPM). A boot process may be maintained by inspecting a log of TPM activity, determining data that prevented a secret to unseal, and returning the data to an original state. In situations where this type of recovery is not workable, techniques for authenticating a user may be used, allowing the authenticated user to bypass the security features of the boot process and reseal the boot secrets to platform configuration register (PCR) values that may have changed. Finally, a secure boot process may be upgraded by migrating TPM sealed secrets to a temporary storage location, updating one or more aspects of a secure boot process, and resealing the secrets to the resulting new platform configuration. Other advantages and features of the invention are described below.

    摘要翻译: 提供了系统和方法,用于在具有可信平台模块(TPM)的计算机上维护和更新安全引导过程。 可以通过检查TPM活动的日志来确定启动过程,确定防止秘密解密的数据,并将数据返回到原始状态。 在这种类型的恢复不可行的情况下,可以使用用于验证用户的技术,允许经过身份验证的用户绕过引导过程的安全特征并将启动秘密重新密封到可能已经改变的平台配置寄存器(PCR)值 。 最后,可以通过将TPM密封的秘密迁移到临时存储位置来升级安全引导过程,更新安全引导过程的一个或多个方面,以及将密码重新密封到所得到的新平台配置。 下面描述本发明的其它优点和特征。

    Systems and methods for controlling access to data on a computer with a secure boot process
    3.
    发明授权
    Systems and methods for controlling access to data on a computer with a secure boot process 有权
    用于通过安全启动过程控制计算机上数据访问的系统和方法

    公开(公告)号:US07565553B2

    公开(公告)日:2009-07-21

    申请号:US11036415

    申请日:2005-01-14

    IPC分类号: G06F12/14

    CPC分类号: G06F21/575 G06F21/78

    摘要: Systems and methods for controlling access to data on a computer with a secure boot process can provide a highly efficient mechanism for preventing future access to encrypted digital resources. This may be advantageous in a range of scenarios, for example where a computer is sold and assurance is desired that no stray private data remains on the hard disk. Data resources, for example all data associated with one or more particular hard disk partitions, may be encrypted. The decryption key may be available through a secure boot process. By erasing, altering, or otherwise disabling a secret, such as a decryption key or a process that obtains a decryption key, the data formerly accessible using such secret becomes inaccessible.

    摘要翻译: 用于通过安全引导过程控制计算机上的数据访问的系统和方法可以提供用于防止将来访问加密数字资源的高效机制。 这在一系列场景中可能是有利的,例如在出售计算机的地方,并且希望确保硬盘上不存在杂散私有数据。 数据资源,例如与一个或多个特定硬盘分区相关联的所有数据可以被加密。 解密密钥可以通过安全引导过程来获得。 通过擦除,改变或以其他方式禁用诸如解密密钥或获得解密密钥的过程的秘密,使用这种秘密的以前可访问的数据变得不可访问。

    Systems and methods for updating a secure boot process on a computer with a hardware security module
    4.
    发明授权
    Systems and methods for updating a secure boot process on a computer with a hardware security module 有权
    使用硬件安全模块在计算机上更新安全引导过程的系统和方法

    公开(公告)号:US08028172B2

    公开(公告)日:2011-09-27

    申请号:US11036018

    申请日:2005-01-14

    IPC分类号: H04L9/32

    CPC分类号: G06F21/575

    摘要: Systems and methods are provided for maintaining and updating a secure boot process on a computer with a trusted platform module (TPM). A boot process may be maintained by inspecting a log of TPM activity, determining data that prevented a secret to unseal, and returning the data to an original state. In situations where this type of recovery is not workable, techniques for authenticating a user may be used, allowing the authenticated user to bypass the security features of the boot process and reseal the boot secrets to platform configuration register (PCR) values that may have changed. Finally, a secure boot process may be upgraded by migrating TPM sealed secrets to a temporary storage location, updating one or more aspects of a secure boot process, and resealing the secrets to the resulting new platform configuration. Other advantages and features of the invention are described below.

    摘要翻译: 提供了系统和方法,用于在具有可信平台模块(TPM)的计算机上维护和更新安全引导过程。 可以通过检查TPM活动的日志来确定启动过程,确定防止秘密解密的数据,并将数据返回到原始状态。 在这种类型的恢复不可行的情况下,可以使用用于验证用户的技术,允许经过身份验证的用户绕过引导过程的安全特征并将启动秘密重新密封到可能已经改变的平台配置寄存器(PCR)值 。 最后,可以通过将TPM密封的秘密迁移到临时存储位置来升级安全引导过程,更新安全引导过程的一个或多个方面,以及将密码重新密封到所得到的新平台配置。 下面描述本发明的其它优点和特征。

    Systems and methods for updating a secure boot process on a computer with a hardware security module
    5.
    发明申请
    Systems and methods for updating a secure boot process on a computer with a hardware security module 有权
    使用硬件安全模块在计算机上更新安全引导过程的系统和方法

    公开(公告)号:US20060161784A1

    公开(公告)日:2006-07-20

    申请号:US11036018

    申请日:2005-01-14

    IPC分类号: H04L9/00

    CPC分类号: G06F21/575

    摘要: Systems and methods are provided for maintaining and updating a secure boot process on a computer with a trusted platform module (TPM). A boot process may be maintained by inspecting a log of TPM activity, determining data that prevented a secret to unseal, and returning the data to an original state. In situations where this type of recovery is not workable, techniques for authenticating a user may be used, allowing the authenticated user to bypass the security features of the boot process and reseal the boot secrets to platform configuration register (PCR) values that may have changed. Finally, a secure boot process may be upgraded by migrating TPM sealed secrets to a temporary storage location, updating one or more aspects of a secure boot process, and resealing the secrets to the resulting new platform configuration. Other advantages and features of the invention are described below.

    摘要翻译: 提供了系统和方法,用于在具有可信平台模块(TPM)的计算机上维护和更新安全引导过程。 可以通过检查TPM活动的日志来确定启动过程,确定防止秘密解密的数据,并将数据返回到原始状态。 在这种类型的恢复不可行的情况下,可以使用用于验证用户的技术,允许经过身份验证的用户绕过引导过程的安全特征并将启动秘密重新密封到可能已经改变的平台配置寄存器(PCR)值 。 最后,可以通过将TPM密封的秘密迁移到临时存储位置来升级安全引导过程,更新安全引导过程的一个或多个方面,以及将密码重新密封到所得到的新平台配置。 下面描述本发明的其它优点和特征。

    Systems and methods for securely booting a computer with a trusted processing module
    7.
    发明申请
    Systems and methods for securely booting a computer with a trusted processing module 有权
    使用可信处理模块安全地引导计算机的系统和方法

    公开(公告)号:US20060155988A1

    公开(公告)日:2006-07-13

    申请号:US11031161

    申请日:2005-01-07

    IPC分类号: H04L9/00

    CPC分类号: G06F21/575

    摘要: In a computer with a trusted platform module (TPM), an expected hash value of a boot component may be placed into a platform configuration register (PCR), which allows a TPM to unseal a secret. The secret may then be used to decrypt the boot component. The hash of the decrypted boot component may then be calculated and the result can be placed in a PCR. The PCRs may then be compared. If they do not, access to the an important secret for system operation can be revoked. Also, a first secret may be accessible only when a first plurality of PCR values are extant, while a second secret is accessible only after one or more of the first plurality of PCR values has been replaced with a new value, thereby necessarily revoking further access to the first secret in order to grant access to the second secret.

    摘要翻译: 在具有可信平台模块(TPM)的计算机中,引导组件的预期散列值可以被放置到平台配置寄存器(PCR)中,这允许TPM解密秘密。 然后可以使用秘密来解密引导组件。 然后可以计算解密的引导组件的散列,并将结果置于PCR中。 然后可以比较PCR。 如果不这样做,可以取消对系统运行的重要秘密的访问。 此外,只有当第一多个PCR值存在时,第一个秘密才可以访问,而第二个秘密只有在第一个多个PCR值中的一个或多个被新的值替换之后才可访问,从而必然取消进一步的访问 到第一个秘密,以授予访问第二个秘密。

    Methods and Systems for Protecting Data in USB Systems
    10.
    发明申请
    Methods and Systems for Protecting Data in USB Systems 审中-公开
    USB系统数据保护方法与系统

    公开(公告)号:US20090313397A1

    公开(公告)日:2009-12-17

    申请号:US12348487

    申请日:2009-01-05

    IPC分类号: G06F13/28

    摘要: The various embodiments described below are directed to providing authenticated and confidential messaging from software executing on a host (e.g. a secure software application or security kernel) to and from I/O devices operating on a USB bus. The embodiments can protect against attacks that are levied by software executing on a host computer. In some embodiments, a secure functional component or module is provided and can use encryption techniques to provide protection against observation and manipulation of USB data. In other embodiments, USB data can be protected through techniques that do not utilized (or are not required to utilize) encryption techniques. In accordance with these embodiments, USB devices can be designated as “secure” and, hence, data sent over the USB to and from such designated devices can be provided into protected memory. Memory indirection techniques can be utilized to ensure that data to and from secure devices is protected.

    摘要翻译: 下面描述的各种实施例旨在从在USB总线上操作的I / O设备到主机(例如安全软件应用或安全内核)上执行的软件提供经认证和保密的消息传递。 这些实施例可以防止在主计算机上执行的软件所征收的攻击。 在一些实施例中,提供了安全的功能部件或模块,并且可以使用加密技术来提供对USB数据的观察和操纵的保护。 在其他实施例中,USB数据可以通过不被利用(或不需要利用)加密技术的技术来保护。 根据这些实施例,USB设备可以被指定为“安全”,因此,可以通过USB向这些指定设备发送和从这些指定设备发送的数据提供到受保护的存储器中。 可以利用内存间接技术来确保进出安全设备的数据受到保护。