US 11,907,375 B2
System and method for signing and interlocking a boot information file to a host computing system
Lee A. Preimesberger, Houston, TX (US); Vartan Yosef Kasheshian, Houston, TX (US); and Jorge Cisneros, Houston, TX (US)
Assigned to Hewlett Packard Enterprise Development LP, Spring, TX (US)
Filed by Hewlett Packard Enterprise Development LP, Houston, TX (US)
Filed on Apr. 13, 2021, as Appl. No. 17/228,917.
Prior Publication US 2022/0327215 A1, Oct. 13, 2022
Int. Cl. G06F 21/57 (2013.01); G06F 16/23 (2019.01); G06F 21/44 (2013.01); G06F 9/4401 (2018.01)
CPC G06F 21/575 (2013.01) [G06F 9/4406 (2013.01); G06F 16/2379 (2019.01); G06F 21/44 (2013.01); G06F 2221/034 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
receiving, by a manageability controller of a host computing system, a boot information file of the host computing system from a processor of a computing device;
signing, by the manageability controller, the boot information file with a hashed data of a unique identifier, to generate a signed boot information file;
communicating, by the manageability controller, the signed boot information file to the processor;
in response to successful download of the signed boot information file by the processor, updating, by the manageability controller, a boot database stored in a non-volatile random-access memory of a firmware engine of the host computing system with a thumbprint data of the signed boot information file for interlocking the host computing system to the signed boot information file; and
appending, by the manageability controller, the boot information file stored in a non-volatile storage drive of the host computing system, by using the hashed data of the unique identifier to generate an appended boot information file, wherein the appended boot information file and the signed boot information file are similar files.