A UEFI-based computer security startup protection method

A computer security and computer technology, applied in computer security devices, internal/peripheral computer component protection, computing, etc., can solve the problem of no OSLoader file security protection, achieve security protection, solve security risks, and prevent illegal extraction and tampering effects

Inactive Publication Date: 2018-12-21
GUANGDONG UNIV OF TECH
View PDF2 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This technology is only for computer malicious code prevention methods based on the MBR disk partition format, and does not prevent malicious code for computers using GPT disk partitions, especially the ESP partition that is visible on the operating system layer and stores important files related to startup. ; At the same time, this technology does not protect the security of OS Loader files

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A UEFI-based computer security startup protection method
  • A UEFI-based computer security startup protection method
  • A UEFI-based computer security startup protection method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0039] In order to better understand the present invention, the content of the present invention will be further explained below in conjunction with the accompanying drawings.

[0040] Such as figure 2 with image 3 As shown, the UEFI-based computer security startup protection method of the present invention is to perform the following steps before the computer enters the operating system:

[0041] S101: Make UEFI load the USB Key driver in the DXE stage;

[0042] S102: Determine whether the USB Key driver is loaded successfully, if yes, enter step S103, otherwise, enter step S113;

[0043]S103: In the BDS stage, the boot manager identifies the USB Key hardware and starts the USB Key device;

[0044] S104: After the USB Key is activated, identify the serial number of the USB Key;

[0045] S105: In the TSL stage, realize the first identity authentication by judging whether the serial number of the USB Key is legal, if yes, go to step S106, otherwise, go to step S113;

[0...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a computer security startup protection method on the basis of a UEFI (Unified Extensible Firmware Interface). The method comprises the following steps of enabling the UEFI to load a USB (universal serial bus) Key driving program in a DXE (Driver Extension Environment) stage, wherein the operation of whether to load the driving program successfully or not can influence to guide a manager to identify USB Key hardware in a BDS (Boot Device Selection) stage; in the BDS stage, guiding the manager to identify the USB Key hardware, and starting USB Key equipment; in a TSL (Transient System Load) stage, verifying a USB Key serial number, loading an OS loader file in a USB Key to a memory, then calling a dynamic password authentication server in the USB Key to perform secondary authentication, finally performing malicious code scanning on an ESP (EFI system partition) partition by means of calling EFI (Extensible Firmware Interface) safety protection software, preventing a key system file in the ESP partition from being invaded, and guaranteeing the security startup of a computer. The method disclosed by the invention has the advantages that the security of a computer startup procedure is enhanced in a manner of combining software and hardware on the premise of not affecting the normal startup of the computer.

Description

technical field [0001] The present invention relates to the technical field of computer security, and more specifically, relates to a UEFI-based computer security startup protection method. Background technique [0002] With the continuous development of Unified Extensible Firmware Interface (UEFI) technology, UEFI security has become one of the focuses of people's attention. UEFI is a new computer firmware interface standard proposed by Intel. It has been handed over to the UEFI Alliance for maintenance. It has replaced the traditional BIOS and is used to start the computer and perform hardware initialization. [0003] figure 1 Describes the original boot process of UEFI, mainly including SEC (Security), PEI (Pre-EFINitialization), DXE (Driver Extension Environment), BDS (Boot Device Selection) and TSL (Transient System Load) and other stages. Among them, the SEC stage is the hardware reliability verification stage, which is used to obtain the system control right and tra...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/56G06F21/34G06F21/57G06F21/85
CPCG06F21/34G06F21/563G06F21/575G06F21/85G06F2221/034
Inventor 苏庆陈东新吴伟民张晶晶
Owner GUANGDONG UNIV OF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap