Electrical computers and digital processing systems: support – Reconfiguration
Reexamination Certificate
1998-04-30
2001-04-24
Elmore, Reba I. (Department: 2187)
Electrical computers and digital processing systems: support
Reconfiguration
C709S216000, C709S246000, C709S241000, C709S241000, C713S001000, C713S002000
Reexamination Certificate
active
06223284
ABSTRACT:
BACKGROUND OF THE INVENTION
1. Field of the Invention
The present invention relates to non-volatile memory flashing and security management for a computer system, and more particularly, to a method and apparatus for remote non-volatile memory flashing and security management.
2. Description of the Related Art
A remote system management product ideally mhlimizes user action required for system management. Various system management tasks such as delivering software to a target machine or powering a target machine may be remotely performed by a system administrator rather than a user. Certain other system management tasks, however, maintain the need for user action in combination with tasks performed by a system administrator. For these tasks, it has been necessary for a user to be present at a target machine. Two examples of these tasks are flashing a read-only-memory (ROM) of a target machine and changing a security setting for a target machine.
The conventional method of flashing a read-only-memory (ROM) or changing a security setting of a target computer system begins with downloading a new ROM image and flash utility onto a fixed disk of the target computer system. The ROM image and flash utility have typically been gathered from a support compact disc or a website and stored on an operating system partition or a dedicated vendor unique system partition of the fixed disk. Alternatively, the new ROM image and flash utility may be initially stored onto a secondary ROM or non-volatile random access memory (NVRAM) and then copied to the system ROM of the computer system. The system ROM is placed in a protected state by the basic input/output system (BIOS) services during power up of the computer system, thereby preventing a flash operation to the system ROM. After the new ROM image and flash utility are downloaded, the flash utility forces the user to create a flash utility diskette. The user then cold boots the computer system with the created diskette in the floppy drive. When the computer system detects the created diskette, the computer system brings up the program to flash the system ROM. The program to flash the system ROM can prompt the user to enter an administrator password. The program then allows the user to set a configuration parameter or flag to indicate a request to flash the system ROM with the new ROM image. The request to flash the ROM is queued. Upon a reboot of the computer system, the flash utility diskette provides the administrator password to the system ROM to place the system ROM in an unprotected state allowing for a flash operation to the system ROM. Placing the system ROM in an unprotected state upon reboot prevents the BIOS from protecting or locking the ROM. The flash utility diskette next flashes the system ROM. It thus has been necessary for a user to copy a flash utility and ROM image to the system ROM, reboot the computer system, and enter an administrator password as a prerequisite to flashing the ROM. The flash utility which performs the flash of the system ROM also verifies that the system ROM is flashed correctly. The computer system must then be rebooted again to activate the new ROM image flashed to the system ROM.
Similarly, in administering certain security settings of a computer system, it has been necessary to store code and a security settings file on a system partition, request a change to a security setting which is queued for execution upon the next reboot of the computer system, and reboot the computer system to activate the change to the security setting. This process of downloading a flash ROM and security software package and running the code in the package upon reboot of the computer system before flashing a ROM or changing a security setting may be termed an out-of-band process.
Flashing a ROM or changing a security setting as an Aout-of-band≅ process has certain disadvantages. Queuing a change to a security setting and activating the change to the security setting upon reboot poses a risk of intervention between the time the change is queued and the time the computer system is rebooted. For example, if a system administrator requests a disabling of a power-on password of a terminated employee, the power-on password of the terminated employee continues to be in effect after the request by the administrator until a subsequent reboot of the computer system. As a result, in this time window, a terminated employee is able to tamper with the files on the computer system prior to a reboot of the computer system. Another basic disadvantage of an out-of-band process is the risk of system error upon the reboot of the computer system. If a system error occurs upon a reboot of a computer system, the queued request to change a security setting may not be serviced. Therefore, upon reboot of a computer system, a system administrator is unable to determine if the change to a security setting is in effect.
SUMMARY OF THE INVENTION
Briefly, a system according to the present invention provides a remote flash ROM and security package to be delivered to a system ROM of a target computer system for remote flashing of the system ROM or remote configuration of security settings for the computer system. The remote flash ROM and security package includes flash ROM and security control code for calling a remote flash and security driver to selectively execute a remote flash and a remote security setting configuration, a file containing a ROM image to be flashed to the system ROM, a security settings file which preferably is encrypted, and a remote flash and security control container for containing the flash ROM and security control code, the ROM image file, and the security settings file. The remote flash and security driver may be included in the remote flash ROM and security package or may be resident to the target computer system. If the target computer system includes a web browser which may serve as a remote flash and security control container, the remote flash ROM and security package need not include a remote flash and security control container.
In the disclosed embodiment, the computer system includes a secure memory device, or “black box,” containing an administrator password for locking and unlocking the flash part of the system ROM. The “black box” permits unlocking the flash part without the need for a cold power cycle of the computer system. The remote flash ROM and security package may provide an administrator password matching the administrator password stored in the “black box” to place the computer system in an administrator mode. The administrator mode allows for unlocking the flash part of the system ROM and changing security settings for the computer system. A system ROM thereby may be flashed remotely without the need for a user to enter an administrator password. The ROM image to be flashed to the flash part preferably includes a digital signature and certificate for authenticating the ROM image and a checksum for verifying the ROM image.
Flashing the ROM or changing a security setting in accordance with the present invention occurs as an “inband” process. Flashing a ROM or changing a security setting through an in-band process elimates the need to download a flash ROM and security package to a system partition of a fixed disk of a computer system and also the need to reboot a computer system after downloading the package to flash the ROM or change a security setting. By eliminating the need to download a flash ROM and security package to a system partition of a fixed disk, more free memory space is available on the fixed disk. Further, by eliminating the need to reboot a computer system after downloading a flash ROM and security package, a ROM may be flashed interactively at runtime or a security setting may be changed interactively at runtime.
REFERENCES:
patent: 5339437 (1994-08-01), Yuen
patent: 5421009 (1995-05-01), Platt
patent: 5579522 (1996-11-01), Christeson et al.
patent: 5724027 (1998-03-01), Shipman et al.
patent: 5761071 (1998-06-01), Bernstein et al.
patent: 5794033 (1998-08-01), Adlebert
patent: 5812857
Crisan Adrian
Hokanson Paul B.
McCann Paul H.
Novoa Manuel
Sharum Wayne P.
Akin Gump Strauss Hauer & Feld L.L.P.
Compaq Computer Corporation
Elmore Reba I.
LandOfFree
Method and apparatus for remote ROM flashing and security... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for remote ROM flashing and security..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for remote ROM flashing and security... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2529753