Patent · US Active

Securely signing configuration settings

US11822664B2 · kind B2 · utility

0Cited by

4References

20Claims

0Family size

Assignee

Apple Inc. · US

Inventors

Xeno S. Kovah · Milpitas, US
Nikolaj Schlej · Deggendorf, DE
Thomas P. Mensch · Sunnyvale, US
Wade Benson · San Jose, US
Jerrold V. Hauck · Windermere, US
Josh P. de Cesare · Campbell, US
Austin G. Jennings · Santa Clara, US
John J. Dong · San Jose, US
Robert C. Graham · San Jose, US
Jacques Fortier · San Francisco, US

Key dates

Filing date	Nov 6, 2020
Grant date	Nov 21, 2023
Priority date	—
Expiry date	Jan 28, 2042

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Techniques are disclosed relating to securing computing devices during boot. In various embodiments, a secure circuit of a computing device generates for a public key pair and signs, using a private key of the public key pair, configuration settings for an operating system of the computing device. A bootloader of the computing device receives a certificate for the public key pair from a certificate authority and initiates a boot sequence to load the operating system. The boot sequence includes the bootloader verifying the signed configuration settings using a public key included in the certificate and the public key pair. In some embodiments, the secure circuit cryptographically protects the private key based on a passcode of a user, the passcode being usable by the user to authenticate to the computing device.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.