Inventors:
- Round Rock TX, US
Juan Francisco Diaz - Round Rock TX, US
Jayanth Raghuram - Round Rock TX, US
Murali Manohar Shanmugam - Cedar Park TX, US
International Classification:
G06F 9/4401
G06F 21/57
G06F 13/42
Abstract:
A boot process security system includes a processing system including a plurality of registers, and at least one memory system that includes instructions that, when executed by the processing system, cause the processing system to provide a BIOS. During a Driver eXecution Environment (DXE) sub-process that is included in a boot process and that occurs prior to passing control of the boot process to any third-party drivers, the BIOS programs at least one of the plurality of registers in order to configure at least one secure subsystem. The BIOS then verifies, during the boot process, that the at least one secure subsystem has been configured to provide a predetermined configuration, and locks the at least one secure subsystem. The BIOS then confirms that the at least one secure subsystem has been locked prior to passing control of the boot process to any third-party drivers.