Boliven Patents - US6401208: Method for BIOS authentication prior to BIOS execution

Join
today

Boliven PRO is more than just patent search

Build and save lists using the powerful Lists feature
Analyze and download your search results
Share patent search results with your clients

New to Patents? Find out more from CambridgeIP ®

US6401208: Method for BIOS authentication prior to BIOS execution

Filing Information

Inventor(s)	Derek L. Davis · Pranav Mehta ·
Assignee(s)	Intel Corporation · View assignee updates
Attorney/Agent(s)	Blakely, Sokoloff, Taylor & Zafman LLP ·
Primary Examiner	Albert Decady ·
Assistant Examiner	Steve Kabakoff ·
Application Number	US9118147
Filing date	07/17/1998
Issue date	06/04/2002
Predicted expiration date	07/17/2018
U.S. Classifications	713/193 · 713/187 · 713/188 · 713/191 · 713/189 ·
International Classifications	--
Kind Code	B2
International Classifications	713187-188 · 713189 · 713191 · 713193 · 713200 ·

Abstract

A cryptographic device is implemented in communication with a host processor to prevent the host processor from performing a standard boot-up procedure until a basic input output system (BIOS) code is authenticated. This is accomplished by a cryptographic device which is addressed by the host processor during execution of a first instruction following a power-up reset. The cryptographic device includes a first integrated circuit (IC) device and a second IC device. The first IC device includes a memory to contain firmware and a root certification key. The second IC device includes logic circuitry to execute a software code to authenticate the BIOS code before permitting execution of the BIOS code by the host processor.

Independent Claims | See all claims (19)

1. A system comprising: a chipset including a controller; a storage device coupled to the chipset and controlled by the memory controller, the storage device including software code, a digital signature of the software code, and a digital certificate pre-stored within the storage device; a processor coupled to the chipset via a data/control control line, the processor including an opcode fetch emulation bit, the opcode fetch emulation bit to default to a predetermined state during a power-on reset condition and cause the processor to disguise a data fetch to the storage device as an instruction fetch through deassertion of the data/control control line so that the data fetch appears as an instruction fetch to the controller; and a cryptographic device in communication with the processor, the cryptographic device to authenticate the software code, loaded into the cryptographic device during a boot procedure, before permitting the processor to execute the software code.
12. A cryptographic device comprising: a first integrated circuit device including a cryptographic engine and a memory to contain firmware and a root certification key; and a second integrated circuit device including logic circuitry to execute firmware to authenticate retrieved basic input/output system (BIOS) code loaded into the first integrated circuit device along with a BIOS signature and a BIOS certificate before permitting execution of the BIOS code during a standard boot procedure.
16. A method comprising: performing an instruction fetch to an address mapped to an internal memory of a cryptographic device during a power-on reset, the instruction fetch to occur before a boot procedure; authenticating a basic input output system (BIOS) code during the power-on reset before permitting the BIOS code to be executed, the authenticating of the BIOS code includes initiating a data cycle to fetch the BIOS code and disguising a data fetch over the data cycle as an instruction fetch so that the data fetch appears as the instruction fetch to a controller of an electronic system employing the cryptographic device; and generating a soft reset by the cryptographic device to enable the boot procedure to proceed.

References Cited

U.S. Patent Documents

Document Number	Assignees	Inventors	Issue/Pub Date
US5022077	International Business Machines Corp.	Bealkowski et al.	Jun 1991
US5276853*	Fujitsu Limited	Yamaguchi et al.	Jan 1994
US5421006*	Compaq Computer Corp.	Jablon et al.	May 1995
US5444850*	Trend Micro Devices Incorporated	Chang	Aug 1995
US5473692	Intel Corporation	Davis	Dec 1995
US5539828	Intel Corporation	Davis	Jul 1996
US5568552	Intel Corporation	Davis	Oct 1996
US5796840	Intel Corporation	Davis	Aug 1998
US5805712	Intel Corporation	Davis	Sep 1998
US5828753	Intel Corporation	Davis	Oct 1998
US5835594*	Intel Corporation	Albrecht et al.	Nov 1998
US5844986*	Intel Corporation	Davis	Dec 1998
US5919257*	Novell, Inc.	Trostle	Jul 1999
US6009524*	Compact Computer Corp	Olarig et al.	Dec 1999
US6061794*	Compaq Computer Corp.	Angelo et al.	May 2000

Foreign Patent Documents

Document Number	Assignees	Inventors	Issue/Pub Date
WO199815082*			Apr 1998

* cited by examiner

Other Publications

Lynch, “CSC 277—Operating Systems,” Jul. 2000, http://www.qvctc.commnet.edu/classes/csc277/bios.hml internet.*

“Windows 2000 Professional Intel-based boot process,” http://www.gateway.com/sup..roduct/software/win2000/750433034.shtml internetJul. 2000.*

* cited by examiner

Referenced By

Document Number	Assignee	Inventors	Issue/Pub Date
US8281229	Intel Corporation	Yen Hsiang Chew et al.	Oct 2012
US8281132	Broadcom Corporation	Mark L. Buer et al.	Oct 2012
US8335930		Richard C. Johnson et al.	Dec 2012
US7464256	Aristocrat Technologies Australia Pty. Limited	Robert Linley Muir	Dec 2008
US7210134	Sonic Solutions	Randy Langer	Apr 2007
US7356682	Microsoft Corporation	Butler W. Lampson et al.	Apr 2008
US6594663	Intel Corporation	Joseph A. Schaefer et al.	Jul 2003
US6581159	Intel Corporation	Bryon S. Nevis et al.	Jun 2003
US7434263	Microsoft Corporation	Butler W. Lampson et al.	Oct 2008
US6775778	Texas Instruments Incorporated	Frank L. Laczko, Sr. et al.	Aug 2004
US6732261	Intel Corporation	William J. Chalmers et al.	May 2004
US6785806	Intel Corporation	Joseph A. Schaefer et al.	Aug 2004
US7457412	Microsoft Corporation	Paul England et al.	Nov 2008
US7207066	Robert Bosch GmbH	Martin Thomas et al.	Apr 2007
US7308576	Intel Corporation	Andrew F. Glew et al.	Dec 2007
US7412053	Silicon Image, Inc.	James D. Lyle	Aug 2008
US7496727	Transmeta Corporation	Christian Ludloff et al.	Feb 2009
US7618317		Mark D. Jackson	Nov 2009
US6629192	Intel Corporation	Joseph A. Schaefer et al.	Sep 2003
US6928548	Intel Corporation	Robert P. Hale et al.	Aug 2005
US7203841	IGT	Mark D. Jackson et al.	Apr 2007
US6591362	Inventech Corporation	Yung Fu Li	Jul 2003
US7587589	Microsoft Corporation	Paul England et al.	Sep 2009
US7302709	Microsoft Corporation	Paul England et al.	Nov 2007
US7228432	ANGELO MICHAEL F	Michael F. Angelo et al.	Jun 2007
US7424612	Microsoft Corporation	Paul England et al.	Sep 2008
US7516903	Renesas Technology Corp.	Hirotaka Nishizawa et al.	Apr 2009
US7543336	Microsoft Corporation	Butler W. Lampson et al.	Jun 2009
US6625730	Hewlett-Packard Development Company, L.P.	Michael F. Angelo et al.	Sep 2003
US7179170	IGT	Michael G. Martinek et al.	Feb 2007
US7240201	Hewlett-Packard Development Company, L.P.	E. David Neufeld et al.	Jul 2007
US7424611	Lenovo (Singapore) Pte. Ltd.	Akira Hino et al.	Sep 2008
US7470182	IGT	Michael G. Martinek et al.	Dec 2008
US6571335	Intel Corporation	Amy ODonnell et al.	May 2003
US6907522	Microsoft Corporation	Dinarte Morais et al.	Jun 2005
US7073064	Hewlett-Packard Development Company, L.P.	Michael F. Angelo et al.	Jul 2006
US7127605	Axalto, Inc.	Michael A. Montgomery et al.	Oct 2006
US7036023	Microsoft Corporation	Robert M. Fries et al.	Apr 2006
US7415620	Microsoft Corporation	Paul England et al.	Aug 2008
US7496957	Hewlett-Packard Development Company, L.P.	Tom Howard et al.	Feb 2009
US7529919	Microsoft Corporation	Butler W. Lampson et al.	May 2009
US7487365	Microsoft Corporation	Paul England et al.	Feb 2009
US6857068	Telefonaktiebolaget LM Ericsson (publ)	Bernd Mller et al.	Feb 2005
US7424606	Microsoft Corporation	Butler W. Lampson et al.	Sep 2008
US7600132	Adaptec, Inc.	Fadi A. Mahmoud	Oct 2009
US7867084	IGT	Michael G. Martinek et al.	Jan 2011
US7890771	Microsoft Corporation	Paul England et al.	Feb 2011
US7676840	Microsoft Corporation	Dinarte Morais et al.	Mar 2010
US7681046		Andrew Morgan et al.	Mar 2010
US7694151		Richard C. Johnson et al.	Apr 2010
US7711952	Coretrace Corporation	Daniel M. Teal et al.	May 2010
US7730293	Hewlett-Packard Development Company, L.P.	Eric Owhadi et al.	Jun 2010
US7730326	Apple Inc.	Muthya Girish et al.	Jun 2010
US7752456	Microsoft Corporation	Paul England et al.	Jul 2010
US7757294	Xilinx, Inc.	James M. Simkins	Jul 2010
US7765397	Microsoft Corporation	Paul England et al.	Jul 2010
US7783040	IGT	Mark D. Jackson et al.	Aug 2010
US7788502	Xilinx, Inc.	Adam P. Donlin et al.	Aug 2010
US7793347		Guillermo J. Rozas	Sep 2010
US7797536	Silicon Image, Inc.	James D. Lyle	Sep 2010
US7836219	PMC-Sierra US, Inc.	Fadi A. Mahmoud et al.	Nov 2010
US7837556	IGT	Robert E. Breckner et al.	Nov 2010
US7860252	STMicroelectronics (Research & Development) Limited	Stuart Andrew Ryan et al.	Dec 2010
US7020730	Infineon Technologies AG	Oliver Kniffler	Mar 2006
US7581111	Hewlett-Packard Development Company, L.P.	Matthew J. Wagner et al.	Aug 2009
US7382880	Hewlett-Packard Development Company, L.P.	Michael F. Angelo et al.	Jun 2008
US6584559	Avaya Technology Corp.	Won Uk Huh et al.	Jun 2003
US7930503	Hewlett-Packard Development Company, L.P.	Michael F. Angelo et al.	Apr 2011
US7937754	Canon Kabushiki Kaisha	Kiyoshi Katano et al.	May 2011
US7931533	IGT	Steven G. LeMay et al.	Apr 2011
US7971072	Xilinx, Inc.	Adam P. Donlin et al.	Jun 2011
US7966467		Christian Ludloff et al.	Jun 2011
US7988559	IGT	Mark L. Yoseloff et al.	Aug 2011
US7988554	IGT	Steven G. LeMay et al.	Aug 2011
US8095801	Robert Bosch GmbH	Norbert Miller et al.	Jan 2012
US8117431	Hong Fu Jin Precision Industry (ShenZhen) Co., Ltd.	Zhen Wang	Feb 2012
US8250372	Aristocrat Technologies Australia Pty Ltd.	Robert Linley Muir	Aug 2012
US8220060	Xilinx, Inc.	James M. Simkins	Jul 2012
US8251807	IGT	Steven G. LeMay et al.	Aug 2012