Merging multiple compute nodes with trusted platform modules utilizing provisioned node certificates

Assignee

• International Business Machines Corporation · US

Inventors

• Timothy R. Block · Rochester, US
• Elaine R. Palmer · Hanover, US
• Kenneth A. Goldman · Norwalk, US
• Christopher J. Engel · Rochester, US
• William E. Hall · Clinton, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L2209/127
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Method, apparatus, and computer program product are provided for merging multiple compute nodes with trusted platform modules utilizing provisioned node certificates. In some embodiments, compute nodes are connected to be available for merger into a single multi-node system. Each compute node includes a trusted platform module (TPM) provisioned with a platform certificate and a signed attestation key (AK) certificate and is accessible to firmware on the compute node. One compute node is assigned the role of master compute node (MCN), with the other compute node(s) each assigned the role of slave compute node (SCN). A quote request is sent from the MCN to each SCN under control of firmware on the MCN. In response to receiving the quote request, a quote response is sent from each respective SCN to the MCN under control of firmware on the respective SCN, wherein the quote response includes the AK certificate of the respective SCN's TPM.