US 12,072,982 B2
Pre-authorized virtualization engine for dynamic firmware measurement
Shekar Babu Suryanarayana, Bangalore (IN); Anand Prakash Joshi, Round Rock, TX (US); Amy Christine Nelson, Round Rock, TX (US); and Nicholas D. Grobelny, Evergreen, CO (US)
Assigned to Dell Products L.P., Round Rock, TX (US)
Filed by Dell Products L.P., Round Rock, TX (US)
Filed on Jun. 10, 2022, as Appl. No. 17/837,329.
Prior Publication US 2023/0401316 A1, Dec. 14, 2023
Int. Cl. H04L 29/06 (2006.01); G06F 21/54 (2013.01); G06F 21/57 (2013.01); G06F 21/60 (2013.01)
CPC G06F 21/572 (2013.01) [G06F 21/54 (2013.01); G06F 21/575 (2013.01); G06F 21/602 (2013.01)] 21 Claims
OG exemplary drawing
 
1. An information handling system comprising:
a processor;
first non-transitory computer-readable media communicatively coupled to the processor and having stored thereon a basic input/output system (BIOS);
a cryptoprocessor; and
second non-transitory computer-readable media communicatively coupled to the processor and having stored thereon:
an operating system; and
a virtual BIOS engine configured to, during runtime of the operating system:
in response to an operating system event for updating firmware, load onto an isolated compute domain of the processor to emulate firmware update processes of the first non-transitory computer-readable media with a virtual non-transitory computer-readable media and emulate the firmware update processes of the cryptoprocessor with a virtual cryptoprocessor;
extract a firmware payload to the virtual non-transitory computer-readable media; and
execute a virtual trust chain to measure the firmware payload in the virtual non-transitory computer-readable media.