公开(公告)号：US20230274002A1

公开(公告)日：2023-08-31

申请号：US17682928

申请日：2022-02-28

Applicant: Micron Technology, Inc.

Inventor： Alessandro Orlando ,  Niccolo' Izzo ,  Danilo Caraccio

IPC: G06F21/57 ,  H04L9/32

CPC classification number: G06F21/572 ,  H04L9/3263 ,  G06F2221/033 ,  G06F9/4406

Abstract: Disclosed in some examples are methods, systems, and devices for authenticating a firmware object on a device and in some examples to safeguard the attestation process from the execution of malicious firmware. In some examples, a firmware update process may, in addition to updating the firmware on the device, write a hash of the authentic firmware code in a secure storage device (e.g., a register). This may be done in some examples in a protected environment (e.g., a trusted execution environment or a protected firmware update process). Upon first boot after the update, a firmware update checker compares the firmware object that is booted with the value of the secure storage device. If the values match, the alias certificate may be regenerated, and the boot continues. If the values do not match, then the alias certificate may not be regenerated, and the system may have an authenticity failure because the key and the certificate do not match.