Home > Design Patterns > Trusted Platform BIOS

Trusted Platform BIOS (Cope, Erl)

How can the BIOS on a cloud-based environment be protected from malicious code?

Trusted Platform BIOS

Problem

Malware and rootkits can start before the operating system is launched, completely bypassing operating system security and remaining completely hidden.

Solution

Using security validation from the silicon up and remote monitoring of the platform security status, cloud consumers can verify that they are using compute platforms that meet their security assurance requirements.

Application

Trusted compute platforms are made available by the cloud provider with trusted platform modules (TPMs) which are hardware security modules (HSMs) that enable security assurance by validating digital signatures of code, starting at the basic input/output system (BIOS) using a measured boot.
Trusted Platform BIOS: A platform startup sequence with a trusted BIOS.

A platform startup sequence with a trusted BIOS.