US 12,367,102 B2
Platform-independent architecture for secure system reset
Karunakara Kotary, Vancouver, WA (US); Akram Hamdy, Redmond, WA (US); Pingfan Song, Newcastle, WA (US); Neeraj Ladkani, Bothell, WA (US); and Muhammad A. Ahmed, Redmond, WA (US)
Assigned to Microsoft Technology Licensing, LLC, Redmond, WA (US)
Filed by Microsoft Technology Licensing, LLC, Redmond, WA (US)
Filed on Apr. 13, 2023, as Appl. No. 18/299,791.
Prior Publication US 2024/0345924 A1, Oct. 17, 2024
Int. Cl. G06F 11/14 (2006.01); G06F 8/61 (2018.01); G06F 21/55 (2013.01); G06F 21/57 (2013.01); H04L 41/344 (2022.01); H04L 67/00 (2022.01)
CPC G06F 11/1417 (2013.01) [G06F 8/61 (2013.01); G06F 11/1438 (2013.01); G06F 21/554 (2013.01); G06F 21/572 (2013.01); H04L 67/34 (2013.01); H04L 41/344 (2022.05)] 20 Claims
OG exemplary drawing
 
1. A method of secure reset for a processing device, the method comprising:
detecting a predefined trigger event in a processing device that includes a baseboard management controller (BMC) that executes system firmware on behalf of a managed host coupled to the BMC;
in response to detection of the predefined trigger event, booting the processing device in a safe boot mode that maintains a central processing system of the managed host in an off state while performing a sequence of operations including:
detecting architectural characteristics of the managed host;
establishing a connection to a cloud-based firmware catalog service;
transmitting the architectural characteristics of the managed host to the cloud-based firmware catalog service;
downloading a new version of system firmware from the cloud-based firmware catalog service that is executable by the BMC and that is compatible with the architectural characteristics of the managed host; and
automatically installing the new version of the system firmware without powering on the central processing system of the managed host.