Patent · US Active

Firmware verified boot

US8812854B2 · kind B2 · utility

14Cited by

3References

31Claims

0Family size

Assignee

Google LLC · US

Inventors

Gaurav Shah · Los Angeles, US
William Alexander Drewry · Nashville, US
Randall R. Spangler · San Jose, US
Ryan Tabone · San Francisco, US
Sumit Gwalani · Hyderabad, IN
Luigi Semenzato · Oakland, US

Key dates

Filing date	Oct 12, 2010
Grant date	Aug 19, 2014
Priority date	—
Expiry date	Nov 30, 2032

Classification

Technology area (CPC H)Electricity
CPC primaryH04L9/3247
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A computer-implemented method for verifying a boot process of a computing system includes reading, by the computing system during the boot process, a header section of a read-write portion of firmware of the computing system. The method further includes generating, using a first cryptographic hash algorithm, a message digest corresponding with the header, and decrypting, using a first public-key, an encrypted signature corresponding to the header. The method further includes comparing the message digest corresponding with the header and the decrypted signature corresponding to the header. In the event the message digest corresponding to the header and the decrypted signature corresponding to the header match, the boot process is continued. In the event the message digest corresponding to the header and the decrypted signature corresponding to the header do not match, the boot process is halted.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.