| CPC H04L 41/082 (2013.01) [G06F 8/65 (2013.01); G06F 21/53 (2013.01); H04L 9/0819 (2013.01); H04L 9/3218 (2013.01); H04L 9/3247 (2013.01); H04L 41/0895 (2022.05); H04L 43/50 (2013.01); G06F 2221/033 (2013.01); H04L 9/50 (2022.05); H04L 41/147 (2013.01); H04L 41/149 (2022.05); H04L 41/40 (2022.05); H04L 43/08 (2013.01); H04L 43/20 (2022.05)] | 30 Claims |
|
1. A system, comprising:
a processor; and
memory to store instructions, which when executed by the processor, cause the system to:
receive at a resilient security island (RSI) partition of a first network node, an update from a source, the first network node hosting the RSI partition and a host partition, the RSI partition comprising reserved hardware resources of the first network node, the reserved hardware resources including storage and networking resources, the RSI partition connected to a second RSI partition at a second node over a communication channel that is only for communication between RSI partitions, and the RSI partition having a Root of Trust (RoT) that is separate from an RoT of the first network node;
verify, by the RSI partition, provenance of the update;
apply, by the RSI partition, the update to modify a configuration of the RSI partition or the host partition;
test, by the RSI partition, the modified configuration of the RSI partition or the host partition; and
provide a cryptographic proof that the test was completed and an update status to an update coordinator.
|