Patent · US Active

Method for extending the CRTM in a trusted platform

US8185750B2 · kind B2 · utility

6Cited by

2References

20Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Steven A. Bade · Georgetown, US
Ronald Perez · Mount Kisco, US
Leendert Peter Van Doorn · Valhalla, US
Helmut H. Weber · Waldenbuch, DE

Key dates

Filing date	Mar 31, 2008
Grant date	May 22, 2012
Priority date	—
Expiry date	Sep 5, 2028

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/572
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method, system and computer program product for enhancing the functionality of the existing core root of trust measurement (CRTM). The CRTM is extended to allow platform manufacturer controlled and certified code to be incorporated into the function of the CRTM, wherein the manufacturer may define the policy for accepting a new function into the CRTM. When a firmware or software module image is compiled, the build process generates a hash value of the compiled firmware or software image, wherein the hash value reflects a fingerprint (or short hand) representation of the compiled image. A determination is made as to whether the hash value of the firmware or software image is to be a CRTM extension. If so, a digital signature of the module is created using the CRTM extension private key. This signature value is added to the firmware or software module.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.