US 11,985,258 B2
Split chain of digital certificates for supply chain integrity
Jason Matthew Young, Round Rock, TX (US); Eugene David Cho, Austin, TX (US); Huijun Xie, Hopkinton, MA (US); Chandrashekar Nelogal, Round Rock, TX (US); Marshal F. Savage, Austin, TX (US); and Viswanath Ponnuru, Bangalore (IN)
Assigned to Dell Products, L.P., Round Rock, TX (US)
Filed by Dell Products, L.P., Round Rock, TX (US)
Filed on Jan. 24, 2022, as Appl. No. 17/648,741.
Prior Publication US 2023/0239165 A1, Jul. 27, 2023
Int. Cl. H04L 9/32 (2006.01); H04L 9/08 (2006.01)
CPC H04L 9/3268 (2013.01) [H04L 9/0825 (2013.01); H04L 9/3265 (2013.01); H04L 2209/12 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method for validating hardware components of an IHS (Information Handling System), the method comprising:
retrieving an attestation certificate that is stored to the IHS, wherein the attestation certificate specifies authenticated instructions for operation of a hardware component of the IHS, and wherein the attestation certificate is endorsed by a self-signed root attestation certificate;
retrieving an identity certificate that is stored to the IHS, wherein the identity certificate specifies an identity of the hardware component, and wherein the identity certificate is endorsed using an embedded keypair of the hardware component; and
validating that the root attestation certificate corresponds to the hardware component that is specified in the identity certificate by confirming that a public key included in the identity certificate is identical to a public key included in the attestation certificate.