Method and system for bootstrapping a trusted server having redundant trusted platform modules
作者: Andrew Gregory Kegel , Leendert Peter Van Doorn , Linda Nancy Betz , Steven A. Bade , David R. Safford
DOI:
关键词:
摘要: Multiple trusted platform modules within a data processing system are used in redundant manner that provides reliable mechanism for securely storing secret at rest is to bootstrap module. A hypervisor requests each module encrypt copy of the data, thereby generating multiple versions encrypted values, which then stored non-volatile memory platform. At some later point time, values retrieved, decrypted by performed previous encryption, and compared other. If any do not match quorum from comparison operation, corresponding non-matching value designated as defective because it has been able correctly decrypt previously encrypted.
google.nl 参考文章(19)
Peter H. Gum, Stephen J. Schmandt, Roger E. Hough, Lucina L. Green, Vincent A. Spano, Phil C. Yeh, Ronald M. Smith, Sandra L. Rankin, Devon S. Yu, Scheduling normally interchangeable facilities in multiprocessor computer systems ,(1994)
Leslie Cline, Sundeep Bajikar, Edwin Pole, David Poisner, Low pin count docking architecture for a trusted platform ,(2003)
Kim Ryal, Brant Candelore, Locking a hard drive to a host ,(2002)
David W. Grawrock, Connecting a virtual token to a physical token ,(2001)
James Hoff, James Ward, Scott Elliott, Christopher Long, Method and system for binding a device to a planar ,(2001)
David W. Grawrock, Platform and method for securely transmitting an authorization secret. ,(2000)
Graeme John Proudler, Information security system ,(2002)
W.A. Arbaugh, D.J. Farber, J.M. Smith, A secure and reliable bootstrap architecture ieee symposium on security and privacy. pp. 65- 71 ,(1997) , 10.1109/SECPRI.1997.601317