-
公开(公告)号:US20240296227A1
公开(公告)日:2024-09-05
申请号:US18177151
申请日:2023-03-02
申请人: Dell Products, L.P.
发明人: Vineeth Radhakrishnan , Mini Thottunkal Thankappan , Shinose Abdul Rahiman , Rama Rao Bisa , Dharma Bhushan Ramaiah
CPC分类号: G06F21/572 , H04L9/3265 , H04L9/3271 , G06F2221/033
摘要: According to embodiments of the present disclosure, a firmware cloning prevention system and method provided using Security Protocol and Data Model (SPDM)-enabled devices. The firmware cloning prevention system and method include program instructions that may be executed on a processing system to determine, by a first node configured in a certificate chain as specified by the SPDM specification, that a second node in the certificate chain possesses a private key stored on the ensuing node, perform a challenge-response verification to establish proof of possession of the private key, and inhibit operation of the ensuing node based upon the challenge-response verification. The second node is the next sequential node of the certificate chain.
-
公开(公告)号:US20240296226A1
公开(公告)日:2024-09-05
申请号:US18177148
申请日:2023-03-02
申请人: Dell Products, L.P.
发明人: Dharma Bhushan Ramaiah , Vineeth Radhakrishnan , Mini Thottunkal Thankappan , Shinose Abdul Rahiman , Rama Rao Bisa
CPC分类号: G06F21/572 , H04L9/3236 , H04L9/3263
摘要: According to embodiments of the present disclosure, an Information Handling System (IHS), systems and methods for identifying firmware versions of a firmware image using SPDM alias certificates are disclosed. In one embodiment, an IHS includes a Security Protocol and Data Model (SPDM)-enabled device conforming to a SPDM specification, and computer-executable instructions to receive a request to attest a firmware image, generate an alias certificate using a hash of the firmware and version information associated with the firmware in response to the request, and using the alias certificate, attest the version of the firmware image using the version information.
-
公开(公告)号:US20240291636A1
公开(公告)日:2024-08-29
申请号:US18174137
申请日:2023-02-24
申请人: Dell Products, L.P.
发明人: Shinose Abdul Rahiman , Rama Rao Bisa , Dharma Bhushan Ramaiah , Vineeth Radhakrishnan , Mini Thottunkal Thankappan
CPC分类号: H04L9/0825 , H04L9/0869 , H04L9/3263
摘要: According to embodiments of the present disclosure, a Security Protocol and Data Model (SPDM)-enabled device uses a device identity to provide, among other things, a SPDM-based firmware protection system and method that, upon execution by computer-readable instructions, receive, from a requesting device, a request to update the SPDM-enabled device with a software package, and obtain the software package from an online portal. The computer-readable instructions further encrypt the software package with an encryption key, encrypt the encryption key with a device identity certificate of the requesting device, and send the encrypted software package and encrypted encryption key to the requesting device.
-
公开(公告)号:US20240103845A1
公开(公告)日:2024-03-28
申请号:US17934684
申请日:2022-09-23
申请人: Dell Products, L.P.
发明人: Shinose Abdul Rahiman , Vineeth Radhakrishnan , Rama Rao Bisa , Mini Thottunkal Thankappan , Dharma Bhushan Ramaiah , Kapil Kalra , Javad Mohammed Basheer
IPC分类号: G06F8/656
CPC分类号: G06F8/656
摘要: Embodiments of systems and methods to provide firmware updates to multiple similar hardware devices in an Information Handling System (IHS) are disclosed. In an illustrative, non-limiting embodiment, an IHS may include computer-executable instructions to receive a request to perform a firmware update on a specific type of the hardware device, determine a subset of the hardware devices that are to receive the firmware update according to the type of each of the hardware devices, and download the firmware update to each of the subset of hardware devices.
-
公开(公告)号:US20240103830A1
公开(公告)日:2024-03-28
申请号:US17935158
申请日:2022-09-26
申请人: Dell Products, L.P.
发明人: Deepaganesh Paulraj , Kala Sampathkumar , Rama Rao Bisa , Darshan Hebbar , Manjunath AM , Elie Antoun Jreij , Naveen Karthick Chandrasekaran , Pavan Kumar Gavvala , Manjunath Vishwanath , Sivakami Velusamy
IPC分类号: G06F8/65
CPC分类号: G06F8/65
摘要: In various embodiments, a remote access controller supporting remote management of an Information Handling System (IHS). The remote access controller receives a first firmware image comprising first firmware for a first hardware component of the IHS. A personality of the first firmware is determined and at least a portion of the first firmware is stored to a first region of a persistent storage of the first hardware component, where the first region is designated as storing firmware for adapting the first hardware component to the first personality. In response to a detected reconfiguration of the IHS, the remote access controller generates a notification of the first firmware that is stored by the first hardware component and that is usable to adapt operation of the first hardware component to the first personality.
-
公开(公告)号:US20240103720A1
公开(公告)日:2024-03-28
申请号:US17935645
申请日:2022-09-27
申请人: Dell Products, L.P.
发明人: Manjunath AM , Rama Rao Bisa , Pavan Kumar Gavvala , Mahesh Babu Ramaiah , Naveen Karthick Chandrasekaran , Darshan Hebbar , Deepaganesh Paulraj
IPC分类号: G06F3/06
CPC分类号: G06F3/0607 , G06F3/0634 , G06F3/0653 , G06F3/0679
摘要: Embodiments of systems and methods to provide a firmware update to devices configured in a redundant configuration in an Information Handling System (IHS) are disclosed. In an illustrative, non-limiting embodiment, an IHS may include computer-executable instructions to receive a firmware update image associated with the storage unit, receive an indication that the storage unit requires a reboot of the IHS, and when the storage unit is experiencing minimal I/O usage, reset the storage unit using the firmware update image. The firmware update image is configured to perform rebootless firmware updates on the storage unit.
-
公开(公告)号:US11675599B2
公开(公告)日:2023-06-13
申请号:US16984726
申请日:2020-08-04
申请人: Dell Products L.P.
发明人: Chitrak Gupta , Rama Rao Bisa , John R. Palmer
IPC分类号: G06F1/20 , G06F11/34 , G06F9/38 , G06F13/20 , G06F9/4401
CPC分类号: G06F9/3877 , G06F9/4411 , G06F13/20
摘要: An information handling system may include a processor, one or more accelerators communicatively coupled to the processor, and a management controller communicatively coupled to the processor and the one or more accelerators and configured for out-of-band management of the information handling system, the management controller further configured to receive information regarding the one or more accelerators, determine a criticality factor for each of the one or more accelerators based on the information, determine an accelerator health status for each of the one or more accelerators, and determine an overall system health of the information handling system based on the criticality factors and the accelerator health statuses.
-
公开(公告)号:US11652806B2
公开(公告)日:2023-05-16
申请号:US17373582
申请日:2021-07-12
申请人: Dell Products L.P.
CPC分类号: H04L63/062 , H04L9/0894 , H04L63/0428 , H04L2463/062
摘要: A key management system includes a managed system coupled to a management system through a network. The managed system includes managed device locking subsystem(s) coupled to a managed device and a key storage. The managed device locking subsystem(s) retrieve, through the network from the management system, a managed device locking key that is configured to unlock the managed device. The managed device locking subsystem(s) then encrypt the managed device locking key to provide an encrypted managed device locking key, and store the encrypted managed device locking key in the key storage. Subsequent to storing the encrypted managed device locking key, the managed device locking subsystem(s) retrieve the encrypted managed device locking key from the key storage, and decrypt the encrypted managed device locking key to provide a decrypted managed device locking key. The managed device locking subsystem(s) then use the decrypted managed device locking key to unlock the managed device.
-
公开(公告)号:US20230087829A1
公开(公告)日:2023-03-23
申请号:US17477622
申请日:2021-09-17
申请人: Dell Products L.P.
发明人: Viswanath Ponnuru , Chandrashekar Nelogal , Chandrasekhar Mugunda , Dharma Bhushan Ramaiah , Shinose Abdul Rahiman , Vineeth Radharisknan , Rama Rao Bisa
摘要: A system and method are disclosed for delegating, by a resource-constrained device, a privilege to a basic input/output system, wherein the privilege allows the basic input/output system to authenticate an endpoint device on behalf of the resource-constrained device. The system and method also includes generating an asymmetric security key that includes a private key and a public key and transmitting the public key to the basic input/output system, wherein the public key is included in a proxy certificate generated by the basic input/output system. In addition, the system and method includes establishing a secure session between the basic input/output system and the endpoint device using the private key and the proxy certificate, wherein the secure session is used by the basic input/output system to authenticate and verify that the endpoint device is authorized to perform an operation.
-
公开(公告)号:US11429541B2
公开(公告)日:2022-08-30
申请号:US16241817
申请日:2019-01-07
申请人: DELL PRODUCTS L.P.
摘要: On power-up, self-encrypting drives (SEDs, 150) are unlocked one after another in an order based on the SEDs' unlocking priorities. In determining the priorities, one or more of the following factors are taken into account: (1) the content stored on the SEDs; the SEDs storing the OS are given higher priorities; (2) the SEDs' access history on previous power-ups: if a SED was accessed earlier than other SEDs, then this SED is given a higher priority; (3) whether there is an access request pending for a SED. Such prioritization allows the system to reach full functionality faster on power-ups. Other features are also provided.
-
-
-
-
-
-
-
-
-
搜索结果
98 条记录 (耗时 0.025 秒)
