Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Computer security startup protection method on basis of UEFI (Unified Extensible Firmware Interface)

A computer security and computer technology, applied in computer security devices, internal/peripheral computer component protection, computing, etc., can solve the problem of no OSLoader file security protection, achieve security protection, enhance security, and prevent illegal extraction and tampering effects

Inactive Publication Date: 2016-08-03
GUANGDONG UNIV OF TECH
View PDF4 Cites 10 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This technology is only for computer malicious code prevention methods based on the MBR disk partition format. It does not prevent malicious code for computers using GPT disk partitions, especially the ESP partition that is visible on the operating system layer and stores important files related to startup. ; At the same time, this technology does not protect the security of OSLoader files

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Computer security startup protection method on basis of UEFI (Unified Extensible Firmware Interface)
  • Computer security startup protection method on basis of UEFI (Unified Extensible Firmware Interface)
  • Computer security startup protection method on basis of UEFI (Unified Extensible Firmware Interface)

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0040] In order to better understand the present invention, the following drawings further illustrate the content of the present invention, but the content of the present invention is not limited to the following embodiments.

[0041] The UEFI-based computer security startup protection method of the present invention is to perform the following steps before the computer enters the operating system:

[0042] S101: Make UEFI load the USBKey driver in the DXE stage;

[0043]S102: Determine whether the USBKey driver is loaded successfully, if yes, enter step S103, otherwise, enter step S111;

[0044] S103: In the BDS stage, the boot manager identifies the USBKey hardware and starts the USBKey device;

[0045] S104: After the USBKey is started, identify the serial number of the USBKey;

[0046] S105: In the TSL stage, realize the first identity authentication by judging whether the serial number of the USBKey is legal, if yes, go to step S106, otherwise, go to step S113;

[0047...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a computer security startup protection method on the basis of a UEFI (Unified Extensible Firmware Interface). The method comprises the following steps of enabling the UEFI to load a USB (universal serial bus) Key driving program in a DXE (Driver Extension Environment) stage, wherein the operation of whether to load the driving program successfully or not can influence to guide a manager to identify USB Key hardware in a BDS (Boot Device Selection) stage; in the BDS stage, guiding the manager to identify the USB Key hardware, and starting USB Key equipment; in a TSL (Transient System Load) stage, verifying a USB Key serial number, loading an OS loader file in a USB Key to a memory, then calling a dynamic password authentication server in the USB Key to perform secondary authentication, finally performing malicious code scanning on an ESP (EFI system partition) partition by means of calling EFI (Extensible Firmware Interface) safety protection software, preventing a key system file in the ESP partition from being invaded, and guaranteeing the security startup of a computer. The method disclosed by the invention has the advantages that the security of a computer startup procedure is enhanced in a manner of combining software and hardware on the premise of not affecting the normal startup of the computer.

Description

technical field [0001] The present invention relates to the technical field of computer security, and more specifically, relates to a UEFI-based computer security startup protection method. Background technique [0002] With the continuous development of Unified Extensible Firmware Interface (UEFI) technology, UEFI security has become one of the focuses of people's attention. UEFI is a new computer firmware interface standard proposed by Intel. It has been handed over to the UEFI Alliance for maintenance. It has replaced the traditional BIOS and is used to start the computer and perform hardware initialization. [0003] figure 1 Describes the original boot process of UEFI, mainly including SEC (Security), PEI (Pre-EFINitialization), DXE (DriverExtensionEnvironment), BDS (BootDeviceSelection) and TSL (TransientSystemLoad) and other stages. Among them, the SEC stage is the hardware reliability verification stage, which is used to obtain the system control right and transfer ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F21/56G06F21/34G06F21/57G06F21/85
CPCG06F21/34G06F21/563G06F21/575G06F21/85G06F2221/034
Inventor 苏庆陈东新吴伟民张晶晶
Owner GUANGDONG UNIV OF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products