Active verification of boot firmware (ECC2)

Patent Number: 7,716,470

Date: May 11, 2010

Inventors: Stillerman; Matthew A. (Ithaca, NY), Kozen; Dexter (Ithaca, NY), Merritt; Thomas J. (Pleasanton, CA)

Abstract: Concerns verification of a boot time device driver code. Using the certificate, the verifier can trace back from the code all the way to the security policy, reconstructing and verifying the proof that the code meets the policy. In this way, the verifier can function independently of trust in the compiler.