| CPC G06F 21/572 (2013.01) [G06F 8/65 (2013.01)] | 20 Claims |
|
1. An IHS (Information Handling System) comprising a plurality of hardware components installed within an enclosure, the IHS further comprising:
one or more CPUs installed within the enclosure of the IHS and utilizing one or more buses to transmit communications to the plurality of hardware components of the IHS; and
a remote access controller installed within the enclosure of the IHS and operating from a separate power plane from the one or more CPUs and that supports remote management of the Information Handling System (IHS), the remote access controller comprising a logic unit and a memory device having instructions stored thereon that, upon execution by the logic unit, cause the remote access controller to:
upon initialization of the IHS, calculate a measurement based on firmware loaded for use by a first of the hardware components of the IHS, wherein further initialization of the IHS is halted by the remote access controller until an integrity of the firmware loaded for use by the first hardware component is validated and no firmware update is required for the first hardware component;
based on the measurement, evaluate the integrity of the firmware loaded for use by the first hardware component against a reference signature;
when the integrity of the firmware is not validated based on the evaluation, quarantine the first hardware component;
when the integrity of the firmware is successfully validated based on the evaluation, determine whether a firmware update is required for the firmware loaded for use by the first hardware component; and
when a firmware update is required for the first hardware component: validate an integrity of updated firmware for the first hardware component, initiate loading of the updated firmware by the first hardware component and allow further initialization of the first hardware component and allow further initialization of the IHS.
|