Trusted platform module protection for non-volatile memory express (nvme) recovery
US-2022350615-A1 · Nov 3, 2022 · US
Embedded controller based NVMe key management service
US12450071B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-12450071-B2 |
| Application number | US-202418421137-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jan 24, 2024 |
| Priority date | Jan 24, 2024 |
| Publication date | Oct 21, 2025 |
| Grant date | Oct 21, 2025 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A firmware management operation. The firmware management operation includes providing an information handling system with a distributed BIOS, the distributed BIOS including a BIOS component and a BIOS variable; identifying a processor environment installed on an information handling system from a plurality of processor environments; performing a firmware key management operation, the firmware key management operation managing a key when performing a distributed firmware management operation.
First claim
Opening claim text (preview).
What is claimed is: 1. A computer-implementable method for performing a firmware management operation, comprising: providing an information handling system with a distributed BIOS, the distributed BIOS including a BIOS component and a BIOS variable; identifying a processor environment installed on an information handling system from a plurality of processor environments; performing a firmware key management operation, the firmware key management operation managing a key when performing a distributed firmware management operation; and wherein the firmware key management operation uses a replay protected memory block service to enable secure read and write operations with an associated boot partition; and, the replay protected memory block service enables write protection of the associated boot partition during operating system runtime. 2. The method of claim 1 , wherein: the firmware key management operation manages a BIOS key. 3. The method of claim 1 , wherein: the information handing system includes an embedded controller; and, the embedded controller is implemented to provide a root of trust function when performing the firmware key management operation. 4. The method of claim 3 , wherein: the embedded controller stores the key; and, the embedded controller communicates with a non-volatile memory using the key. 5. A system comprising: a processor; a data bus coupled to the processor; and a non-transitory, computer-readable storage medium embodying computer program code, the non-transitory, computer-readable storage medium being coupled to the data bus, the computer program code interacting with a plurality of computer operations and comprising instructions executable by the processor and configured for: providing an information handling system with a distributed BIOS, the distributed BIOS including a BIOS component and a BIOS variable; identifying a processor environment installed on an information handling system from a plurality of processor environments; performing a firmware key management operation, the firmware key management operation managing a key when performing a distributed firmware management operation; and wherein the firmware key management operation uses a replay protected memory block service to enable secure read and write operations with an associated boot partition; and, the replay protected memory block service enables write protection of the associated boot partition during operating system runtime. 6. The system of claim 5 , wherein: the firmware key management operation manages a BIOS key. 7. The system of claim 5 , wherein: the information handing system includes an embedded controller; and, the embedded controller is implemented to provide a root of trust function when performing the firmware key management operation. 8. The system of claim 7 , wherein: the embedded controller stores the key; and, the embedded controller communicates with a non-volatile memory using the key. 9. A non-transitory, computer-readable storage medium embodying computer program code, the computer program code comprising computer executable instructions configured for: providing an information handling system with a distributed BIOS, the distributed BIOS including a BIOS component and a BIOS variable; identifying a processor environment installed on an information handling system from a plurality of processor environments; performing a firmware key management operation, the firmware key management operation managing a key when performing a distributed firmware management operation; and wherein the firmware key management operation uses a replay protected memory block service to enable secure read and write operations with an associated boot partition; and, the replay protected memory block service enables write protection of the associated boot partition during operating system runtime. 10. The non-transitory, computer-readable storage medium of claim 9 , wherein: the firmware key management operation manages a BIOS key. 11. The non-transitory, computer-readable storage medium of claim 9 , wherein: the information handing system includes an embedded controller; and, the embedded controller is implemented to provide a root of trust function when performing the firmware key management operation. 12. The non-transitory, computer-readable storage medium of claim 11 , wherein: the embedded controller stores the key; and, the embedded controller communicates with a non-volatile memory using the key. 13. The non-transitory, computer-readable storage medium of claim 9 , wherein: the computer executable instructions are deployable to a client system from a server system at a remote location. 14. The non-transitory, computer-readable storage medium of claim 9 , wherein: the computer executable instructions are provided by a service provider to a user on an on-demand basis.
Assignees
Inventors
Classifications
- G06F9/4401Primary
Bootstrapping (security arrangements therefor G06F21/57) · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US12450071B2 cover?
- A firmware management operation. The firmware management operation includes providing an information handling system with a distributed BIOS, the distributed BIOS including a BIOS component and a BIOS variable; identifying a processor environment installed on an information handling system from a plurality of processor environments; performing a firmware key management operation, the firmware k…
- Who is the assignee on this patent?
- Dell Products Lp
- What technology area does this patent fall under?
- Primary CPC classification G06F9/4401. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Oct 21 2025 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 3 related publications on this page (citations in our corpus or others sharing the same primary CPC).