Patent Grant
11418335
Electronic devices can include various components for performing different tasks. For example, the components can include a processor, a memory, an embedded controller, an input/output (I/O) device, and other components. Various code (in the form of machine-readable instructions including firmware and/or software) are executable on the embedded controller, the processor, and other components.
Some implementations of the present disclosure are described with respect to the following figures.
Throughout the drawings, identical reference numbers designate similar, but not necessarily identical, elements. The figures are not necessarily to scale, and the size of some parts may be exaggerated to more clearly illustrate the example shown. Moreover, the drawings provide examples and/or implementations consistent with the description; however, the description is not limited to the examples and/or implementations provided in the drawings.
In the present disclosure, use of the term “a,” “an”, or “the” is intended to include the plural forms as well, unless the context clearly indicates otherwise. Also, the term “includes,” “including,” “comprises,” “comprising,” “have,” or “having” when used in this disclosure specifies the presence of the stated elements, but do not preclude the presence or addition of other elements.
An electronic device is vulnerable to an attack by an unauthorized entity, such as malware loaded into the electronic device, or a user that attempts to gain unauthorized access of the electronic device. Examples of electronic devices include any or some combination of the following: computers (e.g., desktop computers, notebook computers, tablet computers, server computers, etc.), handheld devices (e.g., smartphones, game appliances, etc.), wearable devices (e.g., smart watches, head-mounted devices, smart eyeglasses, etc.), Internet-of-Things (IoT) devices, controllers in vehicles, storage systems, communication nodes, and so forth.
An electronic device can include a memory that is used to store data. In some examples, the memory may be in the form of a nonvolatile memory, which is a memory that retains stored data even if power is removed from the memory. In other examples, a memory can include volatile memory, which is a memory that loses its stored data if power is removed from the memory.
An unauthorized entity may attempt to access certain information stored in a memory. The unauthorized entity can be in the form of malware executing in an electronic device. Alternatively, the unauthorized entity can be a user who may attempt to gain access to information stored in a memory.
To protect against unauthorized access of data stored in a memory, the data may be protected such that access of the data is possible if a requester of the data presents a security credential, such as a password, an encryption key, or another type of credential.
As an example, a boot code may store, in the memory, data associated with establishing a wireless connection with a wireless network (e.g., a wireless local area network or WLAN, a cellular network, etc.). The data for establishing the wireless connection with the wireless network may include a password or private key that is used to gain access to the wireless network. The boot code may be configured to automatically establish the wireless connection with the wireless network, such as during a pre-boot phase of the electronic device. The pre-boot phase can refer to a phase prior to starting of an operating system of the electronic device. It may be inconvenient to seek user input of the password or private key each time the boot code attempts to establish a wireless connection. Thus, the password or private key may be stored in the memory for use by the boot code in automatically performing pre-boot establishment of the wireless connection.
Although an example is described in the context of pre-boot establishment of a wireless connection with a wireless network, it is noted that the data stored in the memory can also be used to perform a wireless connection with the wireless network after the electronic device has completed booting.
Also, in other examples, other types of data (used for other purposes) stored in a memory may be subject to unauthorized access.
An unauthorized entity may attempt to gain access of the password or other private data stored in the memory that the unauthorized entity can then use to gain access of the wireless network, or for another purpose.
To protect against unauthorized access of the data stored in the memory, the data may be encrypted using an encryption key. Some example techniques of generating encryption keys may be associated with various issues. For example, a key derivation technique that prompts a user to enter a password or other information for deriving an encryption key may reduce user convenience since the user has to remember the information to be entered to generate the encryption key. In other examples, an electronic device may have to implement a specialized cryptographic subsystem to generate the encryption key, which may be associated with increased complexity and cost of the electronic device.
In accordance with some implementations of the present disclosure, as shown in
In some examples, the embedded controller 102 can be used to perform specific tasks. The tasks of the embedded controller 102 can be performed by embedded controller (EC) code 106, in the form of machine-readable instructions such as EC firmware or EC software, executed on the embedded controller 102. In other examples, the tasks of the embedded controller 102 can be performed by a hardware processing circuit of the embedded controller 102. Examples of tasks that can be performed by the embedded controller 102 include any one or some combination of the following: power supply control in the electronic device 100 (for controlling a power supply that supplies power supply voltages to various components in the electronic device 100), charging and control of a battery in the electronic device 100, thermal monitoring (to monitor a temperature in the electronic device 100), fan control (to control a fan in the electronic device 100), and interaction with a user input device (such as performing a scan of a keyboard of the electronic device 100 or interaction with a pointing device such as a mouse, touchpad, touchscreen, and so forth). In other examples, the embedded controller 102 can perform additional or alternative tasks. The embedded controller 102 can be implemented with a microcontroller, an application-specific integrated circuit (ASIC), a programmable gate array (PGA), or any other type of programmable circuit.
The security credential 118 generated by the embedded controller 102 can be in the form of an encryption key, a password, or any other information that can be used to encrypt data or otherwise protect data against unauthorized access. For example, a requester is unable to access encrypted information unless the requester presents an encryption key that can be used to decrypt the encrypted information. In other examples, an access mechanism prevents access of the information unless a security credential (e.g., a password, a security code, etc.) is presented that matches a specified security credential.
The embedded controller 102 has access to specified information that is inaccessible to the processor 104 or any other entity in the electronic device 100. The specified information can include a key or any other type of information that the embedded controller 102 is able to access. Another component (such as the processor 104) is unable to access the specified information. The embedded controller 102 is able to generate the security credential 118 based on the specified information that no other entity in the electronic device 100 can access. The derived credential 118 can be shared with a program code (including machine-readable instructions) executable on the processor 104, so that the embedded controller 102 does not have to share the specified information (such as the key in the specified information) with another entity.
In some examples, the specified information can be hardcoded into the embedded controller 102. For example, the specified information can be hardcoded by fusing the specified information into the embedded controller 102. Fusing refers to programming fuses of the embedded controller 102 to provide a collection of values that make up the specified information. In further examples, the embedded controller 102 can include an internal nonvolatile storage to store the specified information. As yet further examples, the specified information can be stored in an external nonvolatile storage that is external to and accessible by the embedded controller 102. The internal or external nonvolatile storage is electrically isolated way from any other entities (other than the embedded controller 102), and thus inaccessible, to the other entities of the electronic device. The internal or external nonvolatile storage in such examples may include a one-time programmable (OTP) storage, which is a storage that can be programmed once with data values. Once the OTP storage is programmed, the data values stored in the OTP storage cannot be changed.
In the foregoing examples in which the specified information is fused into the embedded controller 102 or stored in an (internal or external) OTP storage, the specified information can be referred to as OTP information 122. Such OTP information 122 can also be referred to as “hardware information.” Although reference is made to “OTP information” in the present discussion, in other examples, other specified information stored in re-writable storage can be used for deriving an encryption key or other security credential.
In some examples, the OTP information 122 includes a key 126. This key that is part of the OTP information 122 may be referred to as a “hardware key” that the embedded controller 102 can use to encrypt information.
As discussed further below, a security credential generation logic 120 of the embedded controller 102 can use the OTP information 122 to derive the security credential 118. The security credential generation logic 120 can be implemented using a portion of the hardware processing circuit of the embedded controller 102, or alternatively, can be implemented as machine-readable instructions (e.g., part of the EC code 106) executable by the embedded controller 102.
The security credential 118 being derived based on the OTP information 122 can refer to the security credential 118 being derived based on the entirety of the OTP information 122 or a portion of the OTP information 122, and possibly based on additional information (discussed further below).
The embedded controller 102 can transmit the derived security credential 118 in a secure manner to a program code executable by the processor 104. A discussion of how information can be communicated in a “secure manner” is provided further below. Note that the derived security credential 118 that is transferred to the program code in the secure manner is inaccessible by any other entity of the electronic device 100 outside the context of the secure transfer. Further, no other entity (aside from the embedded controller 102) can derive the derived security credential 118 because no other entity can access the OTP information 122.
Note that the OTP information 122 (or a portion of the OTP information 122) is not communicated to the program code, so that the OTP information (portion) 122 is not exposed to the program code executable by the processor 104. Consequently, even if the electronic device 100 is subject to an attack by an entity that has access to the processor 104 (e.g., malware executable on the processor 104), the OTP information 122 is protected against unauthorized access. The derived security credential 118 can be considered to be equivalent in cryptographic integrity with the OTP information 122. However, the derived security credential 118 is not identical to the OTP information 122 (or to a key in the OTP information 122).
The program code executable on the processor 104 can encrypt data stored in a memory (e.g., shared memory 108) using the derived security credential 118. Such encrypted data is represented as protected data 116 in
In examples according to
The BIOS code can perform checking of hardware components to ensure that the hardware components are present and functioning properly. This can be part of a power-on self-test (POST) procedure, for example. After the POST procedure, the BIOS code can progress through the remainder of a booting sequence, after which the BIOS code can load and pass control to an operating system (OS) 112. BIOS code can also refer to Unified Extensible Firmware Interface (UEFI) code. In some examples, the BIOS code can also include a runtime portion that is executed after the OS 112 loads.
Although
In the example of
Further examples of the protected data 116 can include any or some combination of the following: data useable to establish a wireless connection with a wireless network (e.g., a password or other private data such as a private key that is used as part of the process of establishing the wireless connection), other passwords and/or keys, configuration information for the electronic device 100 or components of the electronic device 100, program code, or any other information deemed to be sensitive such that it is to be protected against unauthorized access.
To generate the security credential 118, the OTP information (portion) 122 is input as a seed to a security credential derivation function 123 executed by the security credential generation logic 120. As an example, the security credential generation function 123 executed by the security credential generation logic 120 is a key derivation function, such as a Password-Based Key Derivation Function 2 (PBKDF2). The key derivation function can apply a pseudorandom function, such as a hash-based message authentication code (HMAC), to an input seed (which in this case includes the OTP information 122 or a portion of the OTP information 122) to generate a derived encryption key. The derived encryption key is an example of the security credential 118.
In some examples, the portion of the OTP information 122 used by the key derivation function can include the hardware key 126 that is part of the OTP information 122. Another input to the key derivation function can include a salt value, which can include a random number produced by a random number generator (RNG) 128, which can be part of (or be coupled to) the security credential generation logic 120. Thus, the OTP information (portion) 122 and the random number produced by the RNG 120 are input to the key derivation function, which produces a derived encryption key.
In other examples, another type of the security credential derivation function 123 can be used by the security credential generation logic 120 to produce the security credential 118.
The security credential 118 can be communicated in a secure manner over a secure channel 130 to a program code executed by the processor 104. For example, the program code executed by the processor 104 can include the boot code 110. Communicating the security credential 118 in the secure channel 130 protects the security credential 118 against unauthorized access by an entity that executes in the electronic device 100 or that has access to the electronic device 100. The protection against the unauthorized access in the secure channel 130 can be based on use of a protection code and/or use of a trusted interface between the embedded controller 102 and the processor 104.
In some examples, the protection code to protect the security credential 118 communicated in the secure channel 130 includes a value that can be used to verify the integrity of the security credential 118. For example, the protection code can be in the form of an HMAC, which can be used to verify the integrity of the security credential 118, as well as the authenticity of information (e.g., a message) that includes the security credential 118. Note that the HMAC is not used to encrypt the information including the security credential 118, but rather, an HMAC value is transferred with the information including the security credential 118, and the HMAC value (e.g., an HMAC hash value) can be used to verify the integrity and the authenticity of the information including the security credential 118.
In further examples, as an alternative to or in addition to using a protection code such as an HMAC to protect communication of the security credential 118 over the secure channel 130, a trusted interface 132, such as in the form of a trusted application programming interface (API), can be used as part of the secure channel 130. The trusted interface 132 can have an open state or a closed state. In the open state, the trusted interface 132 allows for information to be passed between the embedded controller 102 and a program code (e.g., the boot code 110) executing on the processor 104. In the closed state, the trusted interface 132 does not allow for communication of information between the embedded controller 102 and the program code executing on the processor 104.
Whether the trusted interface 132 is open or closed is based on a flag 134 stored in a volatile memory 136 connected to the embedded controller 102. A volatile memory can include a dynamic random access memory (DRAM), a static random access memory (SRAM), or any other type of memory that loses its content if power is removed from the memory.
The flag 134 can include a bit or multiple bits stored in the volatile memory 136. If the flag 134 is set to a first value, then the trusted interface 132 is in the open state. However, if the flag 134 is set to a different second value, then the trusted interface 132 is in the closed state. In some examples, when the electronic device 100 initially starts, the flag 134 can default to the first value that corresponds to the trusted interface 132 being in the open state. During the time that the flag 134 is set to the first value, the trusted interface 132 can be used to perform communication between the embedded controller 102 and a program code (e.g., the boot code 110) executing on the processor 104.
During the time that the flag 134 is set to the first value and the trusted interface 132 is in the open state, the program code that executes on the processor 104 is deemed to be secure. For example, during this time, the part of the boot code 110 that executes on the processor 104 is from a secure portion of the shared memory 108 or is subject to verification, such as by the embedded controller 102, so that the electronic device 100 can trust the part of the boot code 110 that executes while the trusted interface 132 is in the open state.
The boot code 110 executing on the processor 104 can subsequently inform the embedded controller 102 to set the flag 134 to the second value that corresponds to the trusted interface 132 being in the closed state. For example, the boot code 110 can inform the embedded controller 102 to set the flag 134 to the second value in response to the boot code 110 exiting a specified phase. Alternatively, the embedded controller 102 can close the trusted interface 132 by setting the flag 134 to the second value after the derived security credential 118 has been retrieved once.
Thus, more generally, the trusted interface 132 is available for communicating information during an initial boot phase of the boot code 110, and unavailable for communicating information after the initial boot phase of the boot code 110.
For example, the trusted part of the boot code 110 that can execute while the trusted interface 132 is open can include a Platform Initialization (PI) or Pre-EFI (PEI) code of the BIOS. The PI or PEI code can retrieve the derived security credential 118 over the open trusted interface 132, after which either the BIOS can close the trusted interface 132 or the embedded controller 102 closes the trusted interface 132 after the derived security credential 118 has been retrieved once. The PI/PEI stage of execution is deemed a trusted platform state, since a small number of entities are running at this point, and none are deemed capable of intruding on the embedded controller 102 to BIOS communication. The PEI code can make the derived security credential 118 available in a piece of memory referred to in the UEFI context as a hand-off block (HOB). An early Driver eXecution Environment (DXE) code of the BIOS can read the HOB; store the content of the HOB in a System Management Random Access Memory (SMRAM); and finally, securely delete the HOB's contents from memory using a cryptographically secure overwrite method. The DXE phase is the phase of the boot code 110 when the boot code 110 loads drivers for configured components in an electronic device 100. The early DXE code is deemed to be just as secure as the PI/PEI code. Before other code is allowed to execute, the DXE code locks the SMRAM so that no other entity can read from or write to the content (which includes the derived security credential 118) of the SMRAM. The BIOS code can read, update, or delete the content of the SMRAM—however, no other entity is able to access the SMRAM. As a result, storage of the derived security credential 118 in the SMRAM is deemed relatively secure.
After the trusted interface 132 is closed, the trusted interface 132 can be re-opened by a power on/off cycle of the electronic device 100, and the foregoing process can be re-iterated.
The secure channel 130 can refer to either or both of: a channel (such as a bus or other communication link) over which information is protected by a protection code (e.g., an HMAC), or the trusted interface 132.
For example, if the HMAC is used (and the trusted interface 132 is not used) to protect the security credential 118, the embedded controller 102 generates an HMAC, and transmits the security credential 118 along with the HMAC to the boot code 110 (or other program code) executable on the processor 104.
If the trusted interface 132 is used (but the HMAC is not used) to protect the security credential 118, the embedded controller 102 transmits the security credential 118 to the boot code 110 (or other program code) executable on the processor 104 while the trusted interface 132 is in the open state. Once the trusted interface 132 transitions to the closed state, the embedded controller 102 does not transmit the security credential 118 to the boot code 110 (or other program code).
In other examples, both the HMAC and the trusted interface 132 can be used. In such examples, key information used for deriving the HMAC can be exchanged between the embedded controller 102 and boot code 110 (or other program code) executing on the processor 104 while the trusted interface 132 is in the open state. Once the trusted interface 132 transitions to the closed state, exchanging key information between the embedded controller 102 and a program code executing on the processor 104 is not performed. However, in the closed state of the trusted interface 132, the HMAC can be used to protect the security credential 118 communicated between the embedded controller 102 and the boot code 110 (or other program code) executing on the processor 104.
After receiving the security credential 118 from the embedded controller 102, the boot code 110 (or other program code) executing on the processor 104 can use the security credential 118 to encrypt data or otherwise protect data that is stored as the protected data 116 in the shared memory 108. For example, if the security credential 118 is a derived encryption key, the derived encryption key can be used by the boot code 110 (or other program code) to encrypt data that is stored as the protected data 116. The encrypted protected data 116 is not accessible by an entity that does not have the encryption key.
As another example, the protected data 116 stored in the shared memory 108 is not encrypted. However, the boot code 110 (or other program code) can manage access of the protected data 116 using the security credential 118.
The OTP information (or a portion of the OTP information 122) and the salt value are input (at 206) to the security credential derivation function 123 to derive the security credential 118.
The embedded controller 102 sends (at 208) the derived security credential 118 over the secure channel 130 to the boot code 110. The boot code 110 protects (at 210) data using the derived security credential 118, and the protected data is stored as the protected data 116 in the shared memory 108.
The controller 306 can perform various tasks. The tasks include a security credential derivation task 308 that derives a security credential based on information (e.g., the OTP information 122) including a key (e.g., the hardware key 126) accessible by the controller 306. Note that security credential can be derived based on just the hardware key 126, or based on the hardware key 126 and other information, such as the remaining portion of the OTP information 122.
The tasks further include a security credential communication task 310 that communicates the derived security credential in a secure manner to a program code 312 executable on the processor 304.
The tasks further include a data protection task 314 that uses the derived security credential to protect data 316 stored in the memory 302 against unauthorized access.
The machine-readable instructions additionally include security credential communication instructions 406 to communicate the derived security credential over a secure channel to a program code executable on the processor, the derived security credential for use in protecting data stored in a memory.
The process includes using (at 504), by the embedded controller, the one-time programmable information as a seed in producing a derived security credential. The process further includes communicating (at 506), by the embedded controller, the derived security credential in a secure manner to a program code executable on a processor of the electronic device. The process further includes protecting (at 508), using the derived security credential, data stored in a memory.
The storage medium 400 (
In the foregoing description, numerous details are set forth to provide an understanding of the subject disclosed herein. However, implementations may be practiced without some of these details. Other implementations may include modifications and variations from the details discussed above. It is intended that the appended claims cover such modifications and variations.
| Filing Document | Filing Date | Country | Kind |
|---|---|---|---|
| PCT/US2019/016261 | 2/1/2019 | WO |
| Publishing Document | Publishing Date | Country | Kind |
|---|---|---|---|
| WO2020/159533 | 8/6/2020 | WO | A |
| Number | Name | Date | Kind |
|---|---|---|---|
| 5269022 | Shinjo et al. | Dec 1993 | A |
| 5327531 | Bealkowski et al. | Jul 1994 | A |
| 5432927 | Grote et al. | Jul 1995 | A |
| 5469573 | McGill, III et al. | Nov 1995 | A |
| 5564054 | Bramnick et al. | Oct 1996 | A |
| 5713024 | Halladay | Jan 1998 | A |
| 5745669 | Hugard et al. | Apr 1998 | A |
| 5778070 | Mattison | Jul 1998 | A |
| 5819087 | Le et al. | Oct 1998 | A |
| 5822581 | Christeson | Oct 1998 | A |
| 5828888 | Kozaki et al. | Oct 1998 | A |
| 5918047 | Leavitt et al. | Jun 1999 | A |
| 5987605 | Hill et al. | Nov 1999 | A |
| 6205527 | Goshey et al. | Mar 2001 | B1 |
| 6223336 | Tojima | Apr 2001 | B1 |
| 6275930 | Bonamico | Aug 2001 | B1 |
| 6539473 | Hubacher et al. | Mar 2003 | B1 |
| 6651188 | Harding et al. | Nov 2003 | B2 |
| 6665813 | Forsman et al. | Dec 2003 | B1 |
| 6711675 | Spiegel et al. | Mar 2004 | B1 |
| 6934881 | Gold et al. | Aug 2005 | B2 |
| 6990577 | Autry | Jan 2006 | B2 |
| 7069445 | Cheston et al. | Jun 2006 | B2 |
| 7100087 | Yang et al. | Aug 2006 | B2 |
| 7136994 | Zimmer et al. | Nov 2006 | B2 |
| 7193895 | Jin et al. | Mar 2007 | B2 |
| 7203808 | Rothman et al. | Apr 2007 | B2 |
| 7340595 | Blinick et al. | Mar 2008 | B2 |
| 7383431 | Takamizawa et al. | Jun 2008 | B2 |
| 7409539 | Arnez et al. | Aug 2008 | B2 |
| 7483810 | Jackson et al. | Jan 2009 | B2 |
| 7613872 | Dayan et al. | Nov 2009 | B2 |
| 7734945 | Levidow et al. | Jun 2010 | B1 |
| 7818622 | Burks, III et al. | Oct 2010 | B2 |
| 7890726 | Falik et al. | Feb 2011 | B1 |
| 7900091 | Chou et al. | Mar 2011 | B2 |
| 7908470 | Cavanna | Mar 2011 | B1 |
| 7930532 | Lin et al. | Apr 2011 | B2 |
| 7930576 | Harris et al. | Apr 2011 | B2 |
| 8006125 | Meng et al. | Aug 2011 | B1 |
| 8082384 | Sareen et al. | Dec 2011 | B2 |
| 8086841 | Guo et al. | Dec 2011 | B2 |
| 8132253 | Martinez et al. | Mar 2012 | B2 |
| 8190950 | Chen et al. | May 2012 | B2 |
| 8255988 | Carpenter | Aug 2012 | B2 |
| 8316200 | Matsuoka et al. | Nov 2012 | B2 |
| 8341386 | Lee | Dec 2012 | B2 |
| 8392762 | Aralakuppe Ramegowda et al. | Mar 2013 | B2 |
| 8429391 | Galbo et al. | Apr 2013 | B2 |
| 8489922 | Matthew | Jul 2013 | B2 |
| 8732527 | Tabone et al. | May 2014 | B2 |
| 9063836 | Swanson et al. | Jun 2015 | B2 |
| 9251380 | Au et al. | Feb 2016 | B1 |
| 9411688 | Poolla et al. | Aug 2016 | B1 |
| 9417967 | Huang et al. | Aug 2016 | B2 |
| 9542195 | Astarabadi et al. | Jan 2017 | B1 |
| 9575768 | Kim | Feb 2017 | B1 |
| 9734339 | Jeansonne et al. | Aug 2017 | B2 |
| 9785596 | Hodge et al. | Oct 2017 | B2 |
| 9852298 | Jeansonne et al. | Dec 2017 | B2 |
| 9880908 | Jeansonne et al. | Jan 2018 | B2 |
| 9990255 | Jeansonne et al. | Jun 2018 | B2 |
| 10089472 | Jeansonne et al. | Oct 2018 | B2 |
| 20010008011 | Oba | Jul 2001 | A1 |
| 20020002652 | Takahashi | Jan 2002 | A1 |
| 20020078338 | Lay et al. | Jun 2002 | A1 |
| 20030079007 | Merkin | Apr 2003 | A1 |
| 20030126511 | Yang et al. | Jul 2003 | A1 |
| 20030212936 | Neuman et al. | Nov 2003 | A1 |
| 20030221114 | Hino et al. | Nov 2003 | A1 |
| 20040025002 | Cepulis et al. | Feb 2004 | A1 |
| 20040030877 | Frid | Feb 2004 | A1 |
| 20040068334 | Tsai et al. | Apr 2004 | A1 |
| 20040076043 | Boals et al. | Apr 2004 | A1 |
| 20040133790 | Hensley | Jul 2004 | A1 |
| 20040153846 | Lee | Aug 2004 | A1 |
| 20040193862 | Lin | Sep 2004 | A1 |
| 20040268079 | Riedle et al. | Dec 2004 | A1 |
| 20050033954 | Wang et al. | Feb 2005 | A1 |
| 20050081090 | Lin | Apr 2005 | A1 |
| 20050108564 | Freeman et al. | May 2005 | A1 |
| 20050190699 | Smith et al. | Sep 2005 | A1 |
| 20050210180 | Rothman et al. | Sep 2005 | A1 |
| 20050251673 | Bosley et al. | Nov 2005 | A1 |
| 20050273588 | Ong et al. | Dec 2005 | A1 |
| 20060020844 | Gibbons et al. | Jan 2006 | A1 |
| 20060075395 | Lee et al. | Apr 2006 | A1 |
| 20060143431 | Rothman et al. | Jun 2006 | A1 |
| 20060161784 | Hunter et al. | Jul 2006 | A1 |
| 20060168435 | Svensson et al. | Jul 2006 | A1 |
| 20060184799 | Seo | Aug 2006 | A1 |
| 20060225067 | Yang | Oct 2006 | A1 |
| 20060236198 | Llntz, Jr. et al. | Oct 2006 | A1 |
| 20070088943 | Phelps et al. | Apr 2007 | A1 |
| 20070260866 | Wang et al. | Nov 2007 | A1 |
| 20080040596 | Mai et al. | Feb 2008 | A1 |
| 20080066075 | Nutter et al. | Mar 2008 | A1 |
| 20080072030 | Karpa | Mar 2008 | A1 |
| 20080086629 | Dellow | Apr 2008 | A1 |
| 20080086631 | Chow et al. | Apr 2008 | A1 |
| 20080090653 | Kuehling et al. | Apr 2008 | A1 |
| 20080098381 | Lin | Apr 2008 | A1 |
| 20080126779 | Smith | May 2008 | A1 |
| 20080126782 | Dayan et al. | May 2008 | A1 |
| 20080141016 | Chang et al. | Jun 2008 | A1 |
| 20080155331 | Rothman et al. | Jun 2008 | A1 |
| 20080172558 | Stakutis et al. | Jul 2008 | A1 |
| 20080195750 | Sadovsky et al. | Aug 2008 | A1 |
| 20080209553 | Lu et al. | Aug 2008 | A1 |
| 20080269954 | Lev et al. | Oct 2008 | A1 |
| 20080288767 | Wang et al. | Nov 2008 | A1 |
| 20080307134 | Geissler et al. | Dec 2008 | A1 |
| 20090049293 | Jiang | Feb 2009 | A1 |
| 20090063834 | Huang et al. | Mar 2009 | A1 |
| 20090089570 | Andrianov | Apr 2009 | A1 |
| 20090100287 | Chu et al. | Apr 2009 | A1 |
| 20090150598 | Jung et al. | Jun 2009 | A1 |
| 20090150662 | Desselle et al. | Jun 2009 | A1 |
| 20090158020 | Chen et al. | Jun 2009 | A1 |
| 20090158024 | Hung et al. | Jun 2009 | A1 |
| 20090172639 | Natu et al. | Jul 2009 | A1 |
| 20090217373 | Stillerman et al. | Aug 2009 | A1 |
| 20090240934 | Chou | Sep 2009 | A1 |
| 20090248955 | Tamada | Oct 2009 | A1 |
| 20090249113 | Chou et al. | Oct 2009 | A1 |
| 20090271602 | Burks, III et al. | Oct 2009 | A1 |
| 20090327684 | Zimmer et al. | Dec 2009 | A1 |
| 20100017589 | Reed et al. | Jan 2010 | A1 |
| 20100064127 | Lee | Mar 2010 | A1 |
| 20100070800 | Hanna | Mar 2010 | A1 |
| 20100082960 | Grobman et al. | Apr 2010 | A1 |
| 20100082968 | Beverly | Apr 2010 | A1 |
| 20100100720 | Wu et al. | Apr 2010 | A1 |
| 20100115187 | Wu et al. | May 2010 | A1 |
| 20100115256 | Challener | May 2010 | A1 |
| 20100169551 | Yano et al. | Jul 2010 | A1 |
| 20100235617 | Chen | Sep 2010 | A1 |
| 20100299493 | McGee, III | Nov 2010 | A1 |
| 20100299560 | Lin | Nov 2010 | A1 |
| 20110029742 | Grube et al. | Feb 2011 | A1 |
| 20110060899 | Hsieh et al. | Mar 2011 | A1 |
| 20110066837 | Lee et al. | Mar 2011 | A1 |
| 20110087872 | Shah et al. | Apr 2011 | A1 |
| 20110093675 | Lu et al. | Apr 2011 | A1 |
| 20110093741 | Liang et al. | Apr 2011 | A1 |
| 20120011393 | Roberts et al. | Jan 2012 | A1 |
| 20120072710 | Gupta et al. | Mar 2012 | A1 |
| 20120072897 | Selvam | Mar 2012 | A1 |
| 20120079174 | Nellans et al. | Mar 2012 | A1 |
| 20120210165 | Lambert et al. | Aug 2012 | A1 |
| 20120239920 | Yang | Sep 2012 | A1 |
| 20120297178 | Peng et al. | Nov 2012 | A1 |
| 20120303944 | Peng et al. | Nov 2012 | A1 |
| 20120324150 | Moshayedi et al. | Dec 2012 | A1 |
| 20130013905 | Held et al. | Jan 2013 | A1 |
| 20130047031 | Tabone et al. | Feb 2013 | A1 |
| 20130159690 | Tsukamoto et al. | Jun 2013 | A1 |
| 20130163764 | van den Berg | Jun 2013 | A1 |
| 20130232325 | Jang et al. | Sep 2013 | A1 |
| 20140115314 | Huang et al. | Apr 2014 | A1 |
| 20140237223 | Chudgar et al. | Aug 2014 | A1 |
| 20140281455 | Kochar | Sep 2014 | A1 |
| 20140325203 | Roche et al. | Oct 2014 | A1 |
| 20150095631 | Rahardjo et al. | Apr 2015 | A1 |
| 20150095632 | Huang et al. | Apr 2015 | A1 |
| 20150242656 | Dasari et al. | Aug 2015 | A1 |
| 20150301880 | Allu et al. | Oct 2015 | A1 |
| 20150324588 | Locke | Nov 2015 | A1 |
| 20150381647 | Huang et al. | Dec 2015 | A1 |
| 20160055113 | Hodge | Feb 2016 | A1 |
| 20160055332 | Jeansonne | Feb 2016 | A1 |
| 20160055338 | Jeansonne et al. | Feb 2016 | A1 |
| 20160063255 | Jeansonne et al. | Mar 2016 | A1 |
| 20160211977 | Kohiyama | Jul 2016 | A1 |
| 20160246964 | Martinez et al. | Aug 2016 | A1 |
| 20160294802 | Xiao et al. | Oct 2016 | A1 |
| 20160316370 | Boyapalle et al. | Oct 2016 | A1 |
| 20160364570 | Stern | Dec 2016 | A1 |
| 20170249002 | Costa et al. | Aug 2017 | A1 |
| 20170337380 | Domke | Nov 2017 | A1 |
| 20180279394 | Peng et al. | Sep 2018 | A1 |
| Number | Date | Country |
|---|---|---|
| 1534685 | Oct 2004 | CN |
| 1612115 | May 2005 | CN |
| 1799028 | Jul 2006 | CN |
| 1928843 | Mar 2007 | CN |
| 100472657 | Mar 2009 | CN |
| 101458743 | Jun 2009 | CN |
| 101894054 | Nov 2010 | CN |
| 101965570 | Feb 2011 | CN |
| 102239472 | Nov 2011 | CN |
| 102971742 | Mar 2013 | CN |
| 2034780 | Mar 2009 | EP |
| 20090034104 | Apr 2009 | KR |
| 20090060774 | Jun 2009 | KR |
| 20100017874 | Feb 2010 | KR |
| 101038567 | Jun 2011 | KR |
| 480444 | Mar 2002 | TW |
| I280487 | May 2007 | TW |
| 200809489 | Feb 2008 | TW |
| 200842567 | Nov 2008 | TW |
| 200931312 | Jul 2009 | TW |
| 200941344 | Oct 2009 | TW |
| 201007465 | Feb 2010 | TW |
| 201020785 | Jun 2010 | TW |
| 201133342 | Oct 2011 | TW |
| WO-2010135485 | Nov 2010 | WO |
| WO-2012148422 | Nov 2012 | WO |
| Entry |
|---|
| “TMS320C31 Embedded Control”, Texas Instruments <http://www.ti.com/lit/an/spru083/spru083.pdf>, Feb. 1998. |
| James Bottomley's random Pages, Anatomy of the UEFI Boot Sequence on the Intel Galileo, blog.handsenpartnership.com, downloaded Jan. 3, 2019 (5 pages). |
| HP Sure Start, Technical white paper, Automatic firmware intrusion detection and repair, Feb. 2018 (14 pages). |
| Lee, “Embedded Controller Usage in Low Power Embedded Designs, an Overview”, < http://download.intel.com/design/intarch/papers/326133.pdf>, Sep. 2011. |
| Patelay; “A Single-chip Solution for System-supervisory Functions”, <http://www.embedded-control-europe.com/digitalissues/ecejun10/files/ecejun10.pdf >, Jun. 18, 2010. |
| Regenscheid et al., “BIOS Integrity Measurement Guidelines (Draft)”, <http://csrc.nist.gov/publications/drafts/800-155/draft-SP800-155_Dec2011.pdf>, Dec. 2011. |
| Wikipedia, HMAC last edited Dec. 18, 2018 (5 pages). |
| Wikipedia, PBKDF2 last edited Dec. 30, 2018 (4 pages). |
| Wikipedia, Trusted Platform Module last edited Dec. 27, 2018 (8 pages). |
| Yin et al., “Verification-based Multi-backup Firmware Architecture, an Assurance of Trusted Boot Process for the Embedded Systems”, 2011 International Joint Conference of IEEE TrustCom-11, pp. 1188-1195. |
| Number | Date | Country | |
|---|---|---|---|
| 20210359854 A1 | Nov 2021 | US |
