Patent search ap:("Apple Inc.") AND inv:"Corey T. Kallenberg" Page 1

1.

发明申请
Method and Apparatus for Secure System Boot 审中-公开

公开(公告)号：US20180349608A1

公开(公告)日：2018-12-06

申请号：US15721365

申请日：2017-09-29

Applicant: Apple Inc.

Inventor： Joshua P. de Cesare , Timothy R. Paaske , Xeno S. Kovah , Nikolaj Schlej , Jeffrey R. Wilcox , Ezekiel T. Runyon , Hardik K. Doshi , Kevin H. Alderfer , Corey T. Kallenberg

IPC: G06F21/57 , G06F9/44 , G06F21/44

CPC classification number: G06F21/575

Abstract: A method and apparatus for performing a secure boot of a computer system is disclosed. A computer system according to the disclosure includes an auxiliary processor and a main processor. The boot process includes initially booting the auxiliary processor. The auxiliary processor includes a non-volatile memory storing boot code for the main processor. The auxiliary processor may perform a verification of the boot code. Subsequent to verifying the boot code, the main processor may be released from a reset state. Once the main processor is no longer in the reset state, the boot code may be provided thereto. Thereafter, the boot procedure may continue with the main processor executing the boot code.

2.

发明申请
Method and Apparatus for Boot Variable Protection 审中-公开

公开(公告)号：US20180349609A1

公开(公告)日：2018-12-06

申请号：US15721502

申请日：2017-09-29

Applicant: Apple Inc.

Inventor： Joshua P. de Cesare , Timothy R. Paaske , Xeno S. Kovah , Nikolaj Schlej , Jeffrey R. Wilcox , Hardik K. Doshi , Kevin H. Alderfer , Corey T. Kallenberg

IPC: G06F21/57 , G06F9/44 , G06F21/79

CPC classification number: G06F21/575 , G06F9/4401 , G06F21/73 , G06F21/79

Abstract: A method and apparatus for protecting boot variables is disclosed. A computer system includes a main processor and an auxiliary processor. The auxiliary processor includes a non-volatile memory that stores variables associated with boot code that is also stored thereon. The main processor may send a request to the auxiliary processor to alter one of the variables stored in the non-volatile memory. Responsive to receiving the request, the auxiliary processor may execute a security policy to determine if the main processor meets the criteria for altering the variable. If the auxiliary processor determines that the main processor meets the criteria, it may grant permission to alter the variable.

3.

发明授权
Method and apparatus for boot variable protection 有权

公开(公告)号：US10417429B2

公开(公告)日：2019-09-17

申请号：US15721502

申请日：2017-09-29

Applicant: Apple Inc.

Inventor： Joshua P. de Cesare , Timothy R. Paaske , Xeno S. Kovah , Nikolaj Schlej , Jeffrey R. Wilcox , Hardik K. Doshi , Kevin H. Alderfer , Corey T. Kallenberg

IPC: G06F21/57 , G06F21/79 , G06F9/4401

Abstract: A method and apparatus for protecting boot variables is disclosed. A computer system includes a main processor and an auxiliary processor. The auxiliary processor includes a non-volatile memory that stores variables associated with boot code that is also stored thereon. The main processor may send a request to the auxiliary processor to alter one of the variables stored in the non-volatile memory. Responsive to receiving the request, the auxiliary processor may execute a security policy to determine if the main processor meets the criteria for altering the variable. If the auxiliary processor determines that the main processor meets the criteria, it may grant permission to alter the variable.

4.

发明授权
Method and apparatus for secure system boot 有权

公开(公告)号：US11263326B2

公开(公告)日：2022-03-01

申请号：US15721365

申请日：2017-09-29

Applicant: Apple Inc.

Inventor： Joshua P. de Cesare , Timothy R. Paaske , Xeno S. Kovah , Nikolaj Schlej , Jeffrey R. Wilcox , Ezekiel T. Runyon , Hardik K. Doshi , Kevin H. Alderfer , Corey T. Kallenberg

IPC: G06F9/4401 , G06F21/57 , G06F21/44

Abstract: A method and apparatus for performing a secure boot of a computer system is disclosed. A computer system according to the disclosure includes an auxiliary processor and a main processor. The boot process includes initially booting the auxiliary processor. The auxiliary processor includes a non-volatile memory storing boot code for the main processor. The auxiliary processor may perform a verification of the boot code. Subsequent to verifying the boot code, the main processor may be released from a reset state. Once the main processor is no longer in the reset state, the boot code may be provided thereto. Thereafter, the boot procedure may continue with the main processor executing the boot code.

5.

发明授权
Boot firmware sandboxing 有权

公开(公告)号：US11238160B2

公开(公告)日：2022-02-01

申请号：US16428757

申请日：2019-05-31

Applicant: Apple Inc.

Inventor： Corey T. Kallenberg , Rafal Wojtczuk , Xeno S. Kovah , Andrew J. Fish

IPC: G06F21/57 , G06F13/28 , G06F21/53

Abstract: Techniques are disclosed relating to securely booting a computer system. In some embodiments, a bootloader initiates a boot sequence to load an operating system of the computing device and detects firmware of a peripheral device to be executed during the boot process to initialize the peripheral device for use by the computing device. In response to the detecting, the bootloader instantiates a sandbox that isolates the firmware from the bootloader. In various embodiments, the firmware is loaded from an option read-only memory (OROM) included the peripheral device and executed during the boot sequence to initialize the peripheral device. In some embodiments, the bootloader assigns one or more memory address ranges to the firmware, and the sandbox restricts the firmware from accessing memory addresses that are not included in the assigned one or more address ranges.

6.

发明申请
Method and Apparatus for Boot Variable Protection 审中-公开

公开(公告)号：US20190114433A1

公开(公告)日：2019-04-18

申请号：US16206092

申请日：2018-11-30

Applicant: Apple Inc.

Inventor： Joshua P. de Cesare , Timothy R. Paaske , Xeno S. Kovah , Nikolaj Schlej , Jeffrey R. Wilcox , Hardik K. Doshi , Kevin H. Alderfer , Corey T. Kallenberg

IPC: G06F21/57 , G06F21/62 , G06F9/4401 , G06F21/79

Abstract: A method and apparatus for protecting boot variables is disclosed. A computer system includes a main processor and an auxiliary processor. The auxiliary processor is associated with a non-volatile memory that stores variables associated with boot code that is also stored thereon. The main processor may send a request to the auxiliary processor to alter one of the variables stored in the non-volatile memory. Responsive to receiving the request, the auxiliary processor may execute a security policy to determine if the main processor meets the criteria for altering the variable. If the auxiliary processor determines that the main processor meets the criteria, it may grant permission to alter the variable.

7.

发明申请
Method and Apparatus for Secure System Boot 审中-公开

公开(公告)号：US20190102558A1

公开(公告)日：2019-04-04

申请号：US16205838

申请日：2018-11-30

Applicant: Apple Inc.

Inventor： Joshua P. de Cesare , Timothy R. Paaske , Xeno S. Kovah , Nikolaj Schlej , Jeffrey R. Wilcox , Ezekiel T. Runyon , Hardik K. Doshi , Kevin H. Alderfer , Corey T. Kallenberg

IPC: G06F21/57 , G06F9/4401

Abstract: A method and apparatus for performing a secure boot of a computer system is disclosed. A computer system according to the disclosure includes an auxiliary processor and a main processor. The boot process includes initially booting the auxiliary processor. The auxiliary processor is associated with a non-volatile memory storing boot code for the main processor. The auxiliary processor may perform a verification of the boot code. Subsequent to verifying the boot code, the main processor may be released from a reset state. Once the main processor is no longer in the reset state, the boot code may be provided thereto. Thereafter, the boot procedure may continue with the main processor executing the boot code.

Search Results

Country/Region

Patent validity

Application date

Publication (announcement) day

applicant

The country/region where the applicant is located

Inventor

IPC

IPC Department

IPC class

IPC subclass

IPC group

IPC team

Appearance classification