BIOS PROTECTION USING REQUEST INTERCEPTION AND APPROVAL OF BIOS MODIFICATIONS

Organization Name

Dell Products L.P.

Inventor(s)

Tomer Shachar of Beer Sheva (IL)

Ophir Buchman of Raanana (IL)

Yevgeni Gehtman of Modi'in (IL)

BIOS PROTECTION USING REQUEST INTERCEPTION AND APPROVAL OF BIOS MODIFICATIONS - A simplified explanation of the abstract

This abstract first appeared for US patent application 18123005 titled 'BIOS PROTECTION USING REQUEST INTERCEPTION AND APPROVAL OF BIOS MODIFICATIONS

Simplified Explanation: The patent application describes techniques for protecting the basic input/output system (BIOS) of a device by intercepting and approving BIOS modifications before performing a reboot or shutdown.

Key Features and Innovation:

• Obtaining a request for a reboot or shutdown of a device
• Checking if a BIOS update is pending before proceeding with the reboot or shutdown
• Generating an approval request if a BIOS update is pending
• Initiating automated actions based on the approval request
• Resetting the BIOS update flag and clearing the BIOS staging environment if the update is not approved

Potential Applications: This technology can be applied in various devices and systems where BIOS security and integrity are crucial, such as computers, servers, and embedded systems.

Problems Solved: This technology addresses the potential risks associated with unauthorized or malicious BIOS modifications that could compromise the security and functionality of a device.

Benefits:

• Enhanced BIOS security and protection
• Prevention of unauthorized BIOS updates
• Automated approval process for BIOS modifications
• Improved device integrity and reliability

Commercial Applications: The technology can be valuable for cybersecurity companies, device manufacturers, and IT departments looking to enhance the security of their systems and prevent unauthorized BIOS modifications.

Questions about BIOS Protection: 1. How does this technology improve the overall security of a device? 2. What are the potential implications of unauthorized BIOS modifications on a device's functionality and security?

Frequently Updated Research: Stay updated on the latest advancements in BIOS security and protection technologies to ensure the most effective measures are in place to safeguard devices.

By implementing these techniques, organizations can significantly reduce the risks associated with unauthorized BIOS modifications and enhance the overall security and reliability of their systems.

Original Abstract Submitted

Techniques are provided for basic input/output system (BIOS) protection using BIOS modification interception and approval. One method comprises, by an entity associated with an operating system of a device, obtaining a request to perform a reboot and/or a shutdown of the processing device; determining, prior to performing the reboot and/or the shutdown, whether an update of a BIOS of the device is pending; generating an approval request, responsive to determining that the update of the BIOS is pending and prior to performing the reboot and/or the shutdown; and initiating an automated action, responsive to a result of the approval request. In some embodiments, a BIOS update flag may be reset and/or a BIOS staging environment may be cleared following the updating of the image, responsive to a user not approving the update.