专利检索 ap:("Cisco Technology, Inc.") AND inv:"Martin Edward Ramsdale" 第 1 页

1.

发明公开
VALIDATION OF IPXE SCRIPTS USING OWNER CERTIFICATES AND OWNERSHIP VOUCHERS 审中-公开

公开(公告)号：US20240086205A1

公开(公告)日：2024-03-14

申请号：US17943440

申请日：2022-09-13

申请人： Cisco Technology, Inc.

发明人： Reda Haddad , Martin Edward Ramsdale , Srihari Raghavan , Jabir Hamediya Mohammed , Sandesh K. Rao

IPC分类号： G06F9/4401 , G06F9/448 , H04L9/32

CPC分类号： G06F9/4401 , G06F9/4482 , H04L9/3268

摘要： Techniques and architecture are described for validating and verifying iPXE scripts prior to execution during a booting process. During the booting process of a network device, right after the UEFI/BIOS stage of the booting process, a trusted iPXE script may make a request to a network server for the ownership voucher and owner certificate of the network device. The ownership voucher and owner certificate may then be stored in a trusted platform module (TPM) on the network device. In configurations, the retrieved owner certificate may be validated by the ownership voucher. The owner certificate may be used to validate iPXE scripts. Once validated, the iPXE scripts may be executed and the booting process may be continued to the kernel loading step and the application loading step. During a subsequent booting process of the network device, the ownership voucher and owner certificate may be retrieved from the TPM.

2.

发明授权
Validation of iPXE scripts using owner certificates and ownership vouchers 有权

公开(公告)号：US12067402B2

公开(公告)日：2024-08-20

申请号：US17943440

申请日：2022-09-13

申请人： Cisco Technology, Inc.

发明人： Reda Haddad , Martin Edward Ramsdale , Srihari Raghavan , Jabir Hamediya Mohammed , Sandesh K. Rao

IPC分类号： G06F9/4401 , G06F9/448 , H04L9/32

CPC分类号： G06F9/4401 , G06F9/4482 , H04L9/3268

摘要： Techniques and architecture are described for validating and verifying iPXE scripts prior to execution during a booting process. During the booting process of a network device, right after the UEFI/BIOS stage of the booting process, a trusted iPXE script may make a request to a network server for the ownership voucher and owner certificate of the network device. The ownership voucher and owner certificate may then be stored in a trusted platform module (TPM) on the network device. In configurations, the retrieved owner certificate may be validated by the ownership voucher. The owner certificate may be used to validate iPXE scripts. Once validated, the iPXE scripts may be executed and the booting process may be continued to the kernel loading step and the application loading step. During a subsequent booting process of the network device, the ownership voucher and owner certificate may be retrieved from the TPM.