Synchronization of UEFI secure boot variables on a managed server
US9779241B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 25, 2013 |
| Grant date | Oct 3, 2017 |
| Priority date | — |
| Expiry date | Jan 15, 2035 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F21/575
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Techniques are provided for actively managing secure boot variables. Such techniques include receiving a request from an entity to modify a portion of a basic input/output system (BIOS), the request including a data segment, and verifying that the requesting entity is authorized to modify a portion of the BIOS. In response to verifying that the requesting entity is authorized, the portion of the BIOS is modified based on the received request and the data segment, and a copy of the data segment is stored in a file on a physical memory that is communicatively coupled to the BIOS. If the BIOS is updated, thereby erasing part or all of the secure boot variables that are stored in the BIOS, the record of changes of the secure boot variables along with default authenticated variables may be used to restore the secure boot variables to a state prior to the BIOS update.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.