Electrical computers and digital processing systems: support – Digital data processing system initialization or configuration – Loading initialization program
Reexamination Certificate
2011-03-22
2011-03-22
Stoynov, Stefan (Department: 2116)
Electrical computers and digital processing systems: support
Digital data processing system initialization or configuration
Loading initialization program
C713S001000, C713S164000, C713S182000, C713S189000, C726S002000, C726S026000, C380S255000, C380S277000
Reexamination Certificate
active
07913074
ABSTRACT:
Tools and techniques for securely launching encrypted operating systems are described herein. The tools may provide computing systems that include operating systems (OSs) that define boot paths for the systems. This boot path may include first and second OS loader components. The first loader may include instructions for retrieving a list of disk sectors from a first store, and for retrieving these specified sectors from an encrypted second store. The first loader may also store the sectors in a third store that is accessible to both the first and the second loader components, and may invoke the second loader to try launching the OS using these sectors. In turn, the second loader may include instructions for retrieving these sectors from the third store, and for unsealing a key for decrypting these sectors. The second loader may then decrypt these sectors, and attempt to launch the OS from these sectors.
REFERENCES:
patent: 7103762 (2006-09-01), Harper et al.
patent: 2005/0021944 (2005-01-01), Craft et al.
patent: 2005/0039006 (2005-02-01), Stelling et al.
patent: 2005/0091496 (2005-04-01), Hyser
patent: 2005/0108564 (2005-05-01), Freeman et al.
patent: 2005/0111664 (2005-05-01), Ritz et al.
patent: 2005/0246525 (2005-11-01), Bade et al.
patent: 2005/0262571 (2005-11-01), Zimmer et al.
patent: 2006/0010326 (2006-01-01), Bade et al.
patent: 2006/0015717 (2006-01-01), Liu et al.
patent: 2006/0155988 (2006-07-01), Hunter et al.
patent: 2006/0212939 (2006-09-01), England et al.
patent: 2007/0050643 (2007-03-01), Negishi
patent: 2009/0288161 (2009-11-01), Wei et al.
“Intel Trusted Execution Technology”, available at least as early as Jun. 8, 2007, at <<http://download.intel.com/technology/security/downloads/31516803.pdf>>, Intel Corporation, 2006, pp. 140.
Kuhlmann, et al., “D02.2 Requirements Definition and Specification”, available at least as early as Jun. 8, 2007, at <<http://www.opentc.net/deliverables2006/OTC—D02.2—Requirements—Definition—and—Specification—update.pdf>>, pp. 141.
“Secure Startup-Full Volume Encryption: Technical Overview”, available at least as early as Jun. 8, 2007, at <<http://download.microsoft.com/download/5/D/6/5D6EAF2B-7DDF-476B-93DC-7CF0072878E6/secure-start—tech.doc>>, WinHEC, 2005, pp. 20.
“Trusted Computing IY5608: The Roots of Trust—The RTM and the TPM”, available at least as early as Jun. 8, 2007, at <<http://www.isg.rhul.ac.uk/files/IY5608—-—Lecture—2—Roots—of—Trust.pdf>>, 2007, pp. 63.
Lewis Nathan T.
Litwack Kevin M
Ray Kenneth D.
Wooten David R
Lee & Hayes PLLC
Microsoft Corporation
Stoynov Stefan
LandOfFree
Securely launching encrypted operating systems does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Securely launching encrypted operating systems, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Securely launching encrypted operating systems will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2741908