	US 12,393,741 B2
	Bios-based device protection using detection and mitigation of modifications to a protected storage region
Tomer Shachar, Beer Sheva (IL); Yevgeni Gehtman, Modi'in (IL); and Ophir Buchman, Raanana (IL)
Assigned to Dell Products L.P., Round Rock, TX (US)
Filed by Dell Products L.P., Round Rock, TX (US)
Filed on Feb. 14, 2023, as Appl. No. 18/109,603.
Prior Publication US 2024/0273242 A1, Aug. 15, 2024
Int. Cl. G06F 21/78 (2013.01); G06F 9/4401 (2018.01); G06F 21/64 (2013.01)

CPC G06F 21/78 (2013.01) [G06F 9/4401 (2013.01); G06F 21/64 (2013.01)]

20 Claims

1. A method, comprising:

obtaining, by a basic input/output system (BIOS) of at least one processing device, during a first execution of a boot process, an indication of a protected storage region of at least one storage device associated with the at least one processing device;

storing, by the BIOS, during the first execution of the boot process, content of the protected storage region in a backup storage region of a persistent storage device associated with the BIOS;

comparing, by the BIOS, during a subsequent execution of the boot process, one or more of: (i) content of the protected storage region to the content of the backup storage region and (ii) a first hash value of the content of the protected storage region to a second hash value of the content of the backup storage region, to detect one or more changes in the content of the protected storage region; and

initiating at least one automated action responsive to the one or more detected changes in the content of the protected storage region, wherein the at least one automated action comprises notifying at least one user of the one or more detected changes in the content of the protected storage region;

wherein the method is performed by the at least one processing device, wherein the at least one processing device comprises a processor coupled to a memory.