公开(公告)号：US10721080B2

公开(公告)日：2020-07-21

申请号：US16351877

申请日：2019-03-13

Applicant: Microsoft Technology Licensing, LLC

Inventor： Christopher Edward Fenner ,  Peter David Waxman ,  Gabriel Fortunato Stocco ,  Kam Kouladjie ,  Cristian Stefan Salvan ,  Prabu Raju ,  Himanshu Soni ,  Gridhar Viswanathan

IPC: H04L9/32 ,  G06F21/57 ,  G16H10/60 ,  G06F21/62 ,  H04L9/08 ,  H04L29/06 ,  G16H40/20

Abstract: The present invention provides for streamlined issuance of certificates and other tokens that are contingent on key attestation of keys from a trusted platform module within a computing platform. Various methods are described for wrapping the requested token in a secret, such as an AES key, that is encrypted to a TPM based key in a key challenge. If the requesting platform fails the key challenge, the encrypted certificate or token cannot be decrypted. If requesting platform passes the challenge, the encrypted certificate or token can be decrypted using the AES key recovered from the key challenge.

公开(公告)号：US12101410B2

公开(公告)日：2024-09-24

申请号：US17401181

申请日：2021-08-12

Applicant: Microsoft Technology Licensing, LLC

Inventor： Md. Nazmus Sakib ,  Ronald Aigner ,  Ling Tony Chen ,  Peter David Waxman ,  David Guy Weston ,  Bryan David Kelly

IPC: H04L9/32 ,  G06F9/455 ,  H04L9/08

CPC classification number: H04L9/3234 ,  G06F9/45558 ,  H04L9/083 ,  G06F2009/45587

Abstract: Methods, systems, apparatuses, and computer-readable storage mediums described herein enable executable code of a hardware security platform (HSP) circuit to communicate with a hypervisor in a separate processor. The hypervisor generates and manages virtual machines. The HSP code comprises trusted platform module (TPM) logic, that processes TPM commands received via the hypervisor, and in response to the processing, communicates security information (e.g., measurements, keys, authorization data) with the virtual machines via the hypervisor. The TPM logic receives security information related to a virtual machine from the hypervisor and stores the security information in non-volatile memory of the HSP circuit, where security information from a particular VM is distinguishable from security information from another VM in the HSP memory. The hypervisor (and VMs) communicate via a network fabric with the HSP circuit within an SOC, or the HSP may reside on a discrete chip and communicate via a secure encrypted channel.

公开(公告)号：US11853428B2

公开(公告)日：2023-12-26

申请号：US17337251

申请日：2021-06-02

Applicant: Microsoft Technology Licensing, LLC

Inventor： Md. Nazmus Sakib ,  Bryan David Kelly ,  Ling Tony Chen ,  Peter David Waxman

IPC: G06F21/57 ,  G06F9/54 ,  G06F21/55

CPC classification number: G06F21/572 ,  G06F9/541 ,  G06F21/554 ,  G06F2221/033

Abstract: Embodiments described herein are directed to firmware policy enforcement of a computing device. For example, a security processor of the computing device is utilized to boot the computing device. During a boot session, the security processor loads and executes specialized firmware. The specialized firmware, when executed, causes the security processor to determine whether other types of firmware to be executed on the computing device is in compliance with a policy specified by the specialized firmware. Based at least on a determination that the other firmware is in compliance with the policy, the security processor executes the other firmware. Based at least on a determination that the other firmware is not in compliance with the policy, the security processor performs a mitigation with respect to the other firmware.

公开(公告)号：US10277407B2

公开(公告)日：2019-04-30

申请号：US15248463

申请日：2016-08-26

Applicant: Microsoft Technology Licensing, LLC

Inventor： Christopher Edward Fenner ,  Peter David Waxman ,  Gabriel Fortunato Stocco ,  Kam Kouladjie ,  Cristian Stefan Salvan ,  Prabu Raju ,  Himanshu Soni ,  Giridhar Viswanathan

IPC: H04L9/32 ,  H04L9/08 ,  H04L29/06 ,  G06F21/57 ,  G06F19/00

Abstract: The present invention provides for streamlined issuance of certificates and other tokens that are contingent on key attestation of keys from a trusted platform module within a computing platform. Various methods are described for wrapping the requested token in a secret, such as an AES key, that is encrypted to a TPM based key in a key challenge. If the requesting platform fails the key challenge, the encrypted certificate or token cannot be decrypted. If requesting platform passes the challenge, the encrypted certificate or token can be decrypted using the AES key recovered from the key challenge.

公开(公告)号：US20170302459A1

公开(公告)日：2017-10-19

申请号：US15248463

申请日：2016-08-26

Applicant: Microsoft Technology Licensing, LLC

Inventor： Christopher Edward Fenner ,  Peter David Waxman ,  Gabriel Fortunato Stocco ,  Kam Kouladjie ,  Cristian Stefan Salvan ,  Prabu Raju ,  Himanshu Soni ,  Giridhar Viswanathan

IPC: H04L9/32 ,  H04L9/08 ,  H04L29/06

CPC classification number: H04L9/3268 ,  G06F19/00 ,  G06F21/57 ,  H04L9/0819 ,  H04L9/0825 ,  H04L9/321 ,  H04L9/3213 ,  H04L9/3234 ,  H04L9/3247 ,  H04L9/3271 ,  H04L63/0823

Abstract: The present invention provides for streamlined issuance of certificates and other tokens that are contingent on key attestation of keys from a trusted platform module within a computing platform. Various methods are described for wrapping the requested token in a secret, such as an AES key, that is encrypted to a TPM based key in a key challenge. If the requesting platform fails the key challenge, the encrypted certificate or token cannot be decrypted. If requesting platform passes the challenge, the encrypted certificate or token can be decrypted using the AES key recovered from the key challenge.

公开(公告)号：US12204648B2

公开(公告)日：2025-01-21

申请号：US18393843

申请日：2023-12-22

Applicant: Microsoft Technology Licensing, LLC

Inventor： Md. Nazmus Sakib ,  Bryan David Kelly ,  Ling Tony Chen ,  Peter David Waxman

IPC: G06F21/57 ,  G06F21/62 ,  H04L9/08 ,  H04L9/32

Abstract: Embodiments described herein are directed to transferring the ownership of a computing device from one entity to another entity. For example, a security processor is utilized to boot the computing device. During a boot session, the security processor loads and executes boot code, which determines whether specialized firmware authorized by the current owner indicates whether a transfer of ownership is to occur. In response to determining that the specialized firmware indicates that a transfer of ownership is to occur, the secure processor loads and executes the specialized firmware. The specialized firmware, when executed, causes the security processor to program a set of fuses with the public key of the new owner. Execution of the specialized firmware also causes the security processor to invalidate the public key of the original owner, which is stored in another set of fuses.

公开(公告)号：US11893118B2

公开(公告)日：2024-02-06

申请号：US17330170

申请日：2021-05-25

Applicant: Microsoft Technology Licensing, LLC

Inventor： Md. Nazmus Sakib ,  Bryan David Kelly ,  Ling Tony Chen ,  Peter David Waxman

IPC: G06F21/57 ,  G06F21/62 ,  H04L9/08 ,  H04L9/32

CPC classification number: G06F21/575 ,  G06F21/572 ,  G06F21/6209 ,  H04L9/0891 ,  H04L9/3236 ,  H04L9/3247

Abstract: Embodiments described herein are directed to transferring the ownership of a computing device from one entity to another entity. For example, a security processor is utilized to boot the computing device. During a boot session, the security processor loads and executes boot code, which determines whether specialized firmware authorized by the current owner indicates whether a transfer of ownership is to occur. In response to determining that the specialized firmware indicates that a transfer of ownership is to occur, the secure processor loads and executes the specialized firmware. The specialized firmware, when executed, causes the security processor to program a set of fuses with the public key of the new owner. Execution of the specialized firmware also causes the security processor to invalidate the public key of the original owner, which is stored in another set of fuses.

公开(公告)号：US10803175B2

公开(公告)日：2020-10-13

申请号：US14641184

申请日：2015-03-06

Applicant: Microsoft Technology Licensing, LLC

Inventor： Janani Vasudevan ,  Peter David Waxman ,  Kinshuman Kinshumann ,  Justin A. Hou ,  Peter J. Kaufman ,  Yuhang Zhu ,  Giridhar Viswanathan ,  Scott R. Shell

IPC: G06F21/57 ,  H04L29/06 ,  G06F21/60 ,  H04L9/32

Abstract: A device boots in a secure manner that allows measurements reflecting which components are loaded during booting to be generated. Measurements of such components, as well as of a device management agent and the security state of the device, are also obtained. The device management agent accesses an attestation service for an enterprise, which is a collection of resources managed by a management service. The device management agent provides the obtained measurements to the attestation service, which evaluates the measurements and based on the evaluation determines whether the device is verified for use in the enterprise. The management service uses this verification to ensure that the device management agent is running in a secure manner, is accurately providing indications of the state of the device to the management service, and is implementing policy received from the management service.

公开(公告)号：US20190280883A1

公开(公告)日：2019-09-12

申请号：US16351877

申请日：2019-03-13

Applicant: Microsoft Technology Licensing, LLC

Inventor： Christopher Edward Fenner ,  Peter David Waxman ,  Gabriel Fortunato Stocco ,  Kam Kouladjie ,  Cristian Stefan Salvan ,  Prabu Raju ,  Himanshu Soni ,  Giridhar Viswanathan

IPC: H04L9/32 ,  G16H10/60 ,  G06F21/62 ,  H04L9/08 ,  G06F21/57 ,  H04L29/06

Abstract: The present invention provides for streamlined issuance of certificates and other tokens that are contingent on key attestation of keys from a trusted platform module within a computing platform. Various methods are described for wrapping the requested token in a secret, such as an AES key, that is encrypted to a TPM based key in a key challenge. If the requesting platform fails the key challenge, the encrypted certificate or token cannot be decrypted. If requesting platform passes the challenge, the encrypted certificate or token can be decrypted using the AES key recovered from the key challenge.

公开(公告)号：US20160259941A1

公开(公告)日：2016-09-08

申请号：US14641184

申请日：2015-03-06

Applicant: Microsoft Technology Licensing, LLC

Inventor： Janani Vasudevan ,  Peter David Waxman ,  Kinshuman Kinshumann ,  Justin A. Hou ,  Peter J. Kaufman ,  Yuhang Zhu ,  Giridhar Viswanathan ,  Scott R. Shell

IPC: G06F21/57 ,  G06F21/60 ,  H04L29/06

Abstract: A device boots in a secure manner that allows measurements reflecting which components are loaded during booting to be generated. Measurements of such components, as well as of a device management agent and the security state of the device, are also obtained. The device management agent accesses an attestation service for an enterprise, which is a collection of resources managed by a management service. The device management agent provides the obtained measurements to the attestation service, which evaluates the measurements and based on the evaluation determines whether the device is verified for use in the enterprise. The management service uses this verification to ensure that the device management agent is running in a secure manner, is accurately providing indications of the state of the device to the management service, and is implementing policy received from the management service.

Abstract translation: 设备以安全的方式引导，允许测量反映在引导期间加载哪些组件以生成。 还获得了这些组件以及设备管理代理的测量以及设备的安全状态。 设备管理代理访问企业的认证服务，企业是管理服务管理的资源集合。 设备管理代理将获得的测量结果提供给认证服务，其对评估进行评估，并且基于评估来确定设备是否被验证用于企业中。 管理服务使用该验证来确保设备管理代理以安全的方式运行，准确地向管理服务提供设备状态的指示，并且正在执行从管理服务接收到的策略。