Trusted and validated platform device certificate provisioning using security protocol data model (SPDM)

Assignee

• Dell Products L.P. · US

Inventors

• Viswanath Ponnuru · Kanchinakote, IN
• Chandrashekar Nelogal · Round Rock, US
• Dharma Bhushan Ramaiah · Bengaluru, IN
• Vineeth Radhakrishnan · Palakkad, IN
• Mini Thottunkal Thankappan · Kanchinakote, IN
• Rama Rao Bisa · Kanchinakote, IN
• Shinose Abdul Rahiman · Bengaluru, IN

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L9/3268
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Systems and methods provide for SPDM-enabled devices that conform to an SPDM specification. An SPDM-enabled device receives a request to provision a certificate chain on the device and sends an event notification message to a baseboard management controller. The event notification message indicates receipt of a request to provision a certificate chain in a slot on the SPDM-enabled device. The baseboard management controller evaluates the certificate chain against the device manufacturer's certificate profile policy. If the certificate chain is valid, then a validation successful message is sent to the SPDM-enabled device, which in turn sends a certificate provision response to a requesting device. If the certificate chain is not valid, then a validation failure message is sent to the SPDM-enabled device, which causes the SPDM-enabled device to enter a quarantine state.