Configuring trusted remote management communications using UEFI
US11416615B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 2, 2020 |
| Grant date | Aug 16, 2022 |
| Priority date | — |
| Expiry date | Mar 26, 2041 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/126
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Methods and system are provided for remote management of an IHS (Information Handling System). A keypair is generated by a client management application using operating system capabilities of the IHS. The client management application, as a privileged operating system user, writes a public key of the keypair to UEFI (Unified Extensible Firmware Interface) variables stored within a secured data storage device of the IHS. A BIOS of the IHS retrieves the public key from the UEFI variables and uses it to encrypt a remote management secret. The BIOS writes the encrypted secret back to the UEFI variables. The client management application uses the keypair to recover the remote management secret from the encrypted secret that was written to the UEFI variables by the BIOS. The secret is used to establish a secure remote management session between the client management application and a remote access controller of the IHS.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.