[go: up one dir, main page]

EP0791195A4 - Method and apparatus for controlling network and workstation access prior to workstation boot - Google Patents

Method and apparatus for controlling network and workstation access prior to workstation boot

Info

Publication number
EP0791195A4
EP0791195A4 EP95901043A EP95901043A EP0791195A4 EP 0791195 A4 EP0791195 A4 EP 0791195A4 EP 95901043 A EP95901043 A EP 95901043A EP 95901043 A EP95901043 A EP 95901043A EP 0791195 A4 EP0791195 A4 EP 0791195A4
Authority
EP
European Patent Office
Prior art keywords
workstation
workstations
boot
operating system
prom
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP95901043A
Other languages
German (de)
French (fr)
Other versions
EP0791195A1 (en
Inventor
Steve Ming-Jang Chang
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Trend Micro Devices Inc
Original Assignee
Trend Micro Devices Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US08/101,837 external-priority patent/US5444850A/en
Application filed by Trend Micro Devices Inc filed Critical Trend Micro Devices Inc
Publication of EP0791195A1 publication Critical patent/EP0791195A1/en
Publication of EP0791195A4 publication Critical patent/EP0791195A4/en
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/572Secure firmware programming, e.g. of basic input output system [BIOS]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/575Secure boot
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/78Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
    • G06F21/80Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data in storage media based on magnetic or optical technology, e.g. disks with sectors
    • G06F21/805Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data in storage media based on magnetic or optical technology, e.g. disks with sectors using a security table for the storage sub-system
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/4401Bootstrapping
    • G06F9/4416Network booting; Remote initial program loading [RIPL]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2211/00Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
    • G06F2211/007Encryption, En-/decode, En-/decipher, En-/decypher, Scramble, (De-)compress
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2211/00Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
    • G06F2211/1097Boot, Start, Initialise, Power

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Stored Programmes (AREA)
  • Information Transfer Between Computers (AREA)
  • Computer And Data Communications (AREA)

Abstract

A method and apparatus for preboot file and information transfer between workstations (13) and other workstations (15) or workstations (13) and servers (11) on local area networks. During a workstation boot sequence, the various components of the workstation and network operating system are loaded and executed. Since all control of the workstation after the boot sequence is passed to the workstation operating system, any mangement tasks performed after boot must be performed by application programs (23) running on the workstation. The present invention overcomes problems created by using such application programs to perform management tasks by providing a hardware component (27), for example a ROM or PROM (61) containing appropriate programming placed in the usually unused boot ROM socket of a LAN card installed in the individual workstations (13), or a chip including a PROM or ROM (61) built onto the motherboard or system board of the individual workstations. The program in the PROM (61) is set up so that, at system start-up (31), prior to loading of the workstation operating system software during the boot sequence, it performs certain operating system functions (35) by using the basic input/output system (BIOS) of the workstation to enable the workstation to communicate with a server on the network and make the necessary resource of the workstation available to a server management application (11c) running on the server via the network. This process, controlled by a system administrator (15), allows a variety of preboot functions to take place in the workstation.
EP95901043A 1993-08-04 1994-10-24 Method and apparatus for controlling network and workstation access prior to workstation boot Withdrawn EP0791195A4 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US08/101,837 US5444850A (en) 1993-08-04 1993-08-04 Method and apparatus for controlling network and workstation access prior to workstation boot
PCT/US1994/012222 WO1996013002A1 (en) 1993-08-04 1994-10-24 Method and apparatus for controlling network and workstation access prior to workstation boot

Publications (2)

Publication Number Publication Date
EP0791195A1 EP0791195A1 (en) 1997-08-27
EP0791195A4 true EP0791195A4 (en) 1998-05-20

Family

ID=26788479

Family Applications (1)

Application Number Title Priority Date Filing Date
EP95901043A Withdrawn EP0791195A4 (en) 1993-08-04 1994-10-24 Method and apparatus for controlling network and workstation access prior to workstation boot

Country Status (4)

Country Link
EP (1) EP0791195A4 (en)
JP (1) JPH10511783A (en)
AU (1) AU1042895A (en)
WO (1) WO1996013002A1 (en)

Families Citing this family (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6138236A (en) * 1996-07-01 2000-10-24 Sun Microsystems, Inc. Method and apparatus for firmware authentication
US6463537B1 (en) * 1999-01-04 2002-10-08 Codex Technologies, Inc. Modified computer motherboard security and identification system
US7395324B1 (en) * 1999-10-18 2008-07-01 Wnf Consulting Method and apparatus for maintaining a computer system
JP3714119B2 (en) 2000-06-13 2005-11-09 日本電気株式会社 User authentication type network OS boot method and system using BIOS preboot environment
KR20020090726A (en) * 2001-05-29 2002-12-05 주식회사 네이버월드 Network system of settopbox with bios and network booting in one chip and information exchange method using therof
US7328340B2 (en) * 2003-06-27 2008-02-05 Intel Corporation Methods and apparatus to provide secure firmware storage and service access
DE10336404B3 (en) * 2003-08-06 2005-05-04 Adams, Michael Monitoring device for data processing systems
JP2007531125A (en) 2004-03-26 2007-11-01 アブソリュート ソフトウエア コーポレイション Persistence service provider
JP4604543B2 (en) 2004-04-30 2011-01-05 日本電気株式会社 Computer, computer startup method, management server device, and program
US8418226B2 (en) 2005-03-18 2013-04-09 Absolute Software Corporation Persistent servicing agent
CA2601260C (en) * 2005-03-18 2016-05-03 Absolute Software Corporation Persistent servicing agent

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5012514A (en) * 1990-06-26 1991-04-30 Paul Renton Hard drive security system
EP0449242A2 (en) * 1990-03-28 1991-10-02 National Semiconductor Corporation Method and structure for providing computer security and virus prevention

Family Cites Families (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4590557A (en) * 1983-09-12 1986-05-20 Pitney Bowes Inc. Method and apparatus for controlling software configurations in data processing systems
US4982430A (en) * 1985-04-24 1991-01-01 General Instrument Corporation Bootstrap channel security arrangement for communication network
US5146568A (en) * 1988-09-06 1992-09-08 Digital Equipment Corporation Remote bootstrapping a node over communication link by initially requesting remote storage access program which emulates local disk to load other programs
US5247659A (en) * 1988-10-06 1993-09-21 International Computers Limited Method for bootstrap loading in a data processing system comprising searching a plurality of program source devices for a bootstrap program if initial data indicating a bootstrap program source device fails a validity check
US5121345A (en) * 1988-11-03 1992-06-09 Lentz Stephen A System and method for protecting integrity of computer data and software
US5138712A (en) * 1989-10-02 1992-08-11 Sun Microsystems, Inc. Apparatus and method for licensing software on a network of computers
US5073933A (en) * 1989-12-01 1991-12-17 Sun Microsystems, Inc. X window security system
US5261104A (en) * 1990-03-22 1993-11-09 International Business Machines Flexible computer initialization
US5325529A (en) * 1990-05-18 1994-06-28 Compaq Computer Corporation External boot information loading of a personal computer
US5237690A (en) * 1990-07-06 1993-08-17 International Business Machines Corporation System for testing adaptor card upon power up and having disablement, enablement, and reconfiguration options
US5204897A (en) * 1991-06-28 1993-04-20 Digital Equipment Corporation Management interface for license management system
US5276863A (en) * 1991-06-28 1994-01-04 Digital Equipment Corporation Computer system console
US5325532A (en) * 1992-09-25 1994-06-28 Compaq Computer Corporation Automatic development of operating system boot image

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0449242A2 (en) * 1990-03-28 1991-10-02 National Semiconductor Corporation Method and structure for providing computer security and virus prevention
US5012514A (en) * 1990-06-26 1991-04-30 Paul Renton Hard drive security system

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
"INITIALIZATION CODE EXECUTED AFTER POST AND BEFORE THE OPERATING SYSTEM GETS CONTROL", IBM TECHNICAL DISCLOSURE BULLETIN, vol. 32, no. 9A, February 1990 (1990-02-01), ARMONK, NY, US, pages 407 - 408, XP000083123 *
SCOTT P E ET AL: "BOOT MECHANISM FOR DISCLESS HP-UX", HEWLETT-PACKARD JOURNAL, vol. 39, no. 5, October 1988 (1988-10-01), PALO ALTO, CA, US, pages 33 - 36, XP000051592 *
See also references of WO9613002A1 *

Also Published As

Publication number Publication date
WO1996013002A1 (en) 1996-05-02
AU1042895A (en) 1996-05-15
EP0791195A1 (en) 1997-08-27
JPH10511783A (en) 1998-11-10

Similar Documents

Publication Publication Date Title
KR100286008B1 (en) Software program automatic update method
KR100382851B1 (en) A method and apparatus for managing client computers in a distributed data processing system
US5842024A (en) Method of software installation
US6052779A (en) Automatic wake-up of systems in a data processing network
US6684397B1 (en) Auto-install apparatus and method
US6487718B1 (en) Method and apparatus for installing applications in a distributed data processing system
US5365606A (en) Virtual software machine running multiple program modules in a single address space of a target computer
EP0791195A4 (en) Method and apparatus for controlling network and workstation access prior to workstation boot
US5884022A (en) Method and apparatus for controlling server activation in a multi-threaded environment
DE10121671A1 (en) Provision of a generic interface between machine specific operating systems and service components of applications written in a chosen computer language running via the operating system
US6651095B2 (en) Methods, systems and computer program products for management of preferences in a heterogeneous computing environment
CA2207849A1 (en) Method and apparatus for providing simple, secure management of remote servers
JPH06222910A (en) Method and apparatus for automatic installation of pluralityof software products pn computer device and for arrangement of operating environment of computer device
CN109684822B (en) Multi-user access environment configuration method, device, equipment and multi-online system
TW368635B (en) Method and apparatus for controlling software access to system resources
US20030208573A1 (en) Remote execution of software using windows management instrumentation
GB2376324A (en) Apparatus and method for updating applications to embedded devices and peripherals within a network environment
US20020174161A1 (en) Java startup wrapper
US5838911A (en) Method and apparatus for obtaining network information by using a dynamic link library
US7177934B2 (en) Method and apparatus for providing application specific strategies to a JAVA platform including start and stop policies
US7702777B2 (en) Centralized software maintenance of blade computer system
EP1611523B1 (en) Controlling usage of system resources by a network manager
KRAIMER EPICS: Input/Output Controller(IOC) application developer's guide
CN1434940A (en) Two-Layer operating system and method for avionics software applications
US20050198203A1 (en) Method and system for controlling remote computers

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 19970522

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AT BE CH DE DK ES FR GB GR IE IT LI LU MC NL PT SE

A4 Supplementary search report drawn up and despatched

Effective date: 19980402

AK Designated contracting states

Kind code of ref document: A4

Designated state(s): AT BE CH DE DK ES FR GB GR IE IT LI LU MC NL PT SE

17Q First examination report despatched

Effective date: 19990108

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 20000503