Systems and methods for secure boot and runtime tamper detection

Assignee

• Dell Products L.P. · US

Inventors

• Prakash Nara · Round Rock, US
• Wei Liu · Austin, US
• Charles E. Rose · Nashua, US
• Santosh Kumar · معلمی نژاد, US
• Sudhir Vittal Shetty · Cedar Park, US
• Marshal F. Savage · Austin, US
• Rhushabh Bhandari · Cedar Park, US
• Madhav Karri · Austin, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F8/63
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A method may include determining if both of two redundant operating system images for executing functionality of a chassis management controller were found during one or more previous boot sessions of the chassis management controller to be unsecure, wherein each operating system image comprises an integrated kernel and initial file root system stored in a respective first partition of a memory of the chassis management controller, verity hashes of a root file system of such operating system image, the verity hashes stored in a respective second partition of the memory, and the root file system of such operating system image stored in a respective third partition of the memory. The method may also include, in response to determining that one of the two redundant operating system images is secure, initiate verification of such operating system image to determine if such operating system image has indicia of tampering.