The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

G06F 21/00 (2013.01); G06F 9/4401 (2018.01); G06F 9/38 (2018.01); G06F 21/33 (2013.01); G06F 21/44 (2013.01); G06F 21/51 (2013.01);

U.S. Cl.

CPC ...

G06F 9/4411 (2013.01); G06F 9/3877 (2013.01); G06F 9/442 (2013.01); G06F 21/33 (2013.01); G06F 21/44 (2013.01); G06F 21/51 (2013.01);

Abstract

Examples disclosed herein relate to using an integrity manifest certificate to verify the state of a platform. A device identity of a device that has the device identity provisioned and stored in a security co-processor to retrieve an integrity proof from the security co-processor. The device includes at least one processing element, at least one memory device, and a bus including at least one bus device, and wherein the device identity is associated with a device identity certificate signed by a first authority. The integrity proof includes a representation of each of a plurality of hardware components including the at least one processing element, the at least one memory device, the at least one bus device, and a system board and a representation of plurality of firmware components included in the device. The integrity proof is provided to a certification station. The certification station determines that the integrity proof is an expected value based on an expected provisioning state of the device and the device identity. The certification station signs, using a second authority, an integrity manifest certificate, based on the integrity proof and the device identity. The integrity manifest certificate is stored.

Find Patent Forward Citations