IIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIII
US007194619B2
(12) United States Patent ao) Patent No.: Us 7,194,619 B2
Abbondanzio et al. (45) Date of Patent: Mar. 20,2007
(73) Assignee: International Business Machines Corporation, Armonk, NY (US)
( * ) Notice: Subject to any disclaimer, the term of this patent is extended or adjusted under 35 U.S.C. 154(b) by 757 days.
(21) Appl. No.: 10/109,230
(22) Filed: Mar. 26, 2002
(65) Prior Publication Data
US 2003/0188176 Al Oct. 2, 2003
(51) Int. CI.
G06F15/177 (2006.01)
H04L 9/00 (2006.01)
(52) U.S. CI 713/155; 713/2; 709/222
(58) Field of Classification Search 713/2 100,
713/185-225; 712/185; 365/185.33; 709/180-225 See application file for complete search history.
(56) References Cited
U.S. PATENT DOCUMENTS
5,870,554 A 2/1999 Grossman et al 395/200.52
5,872,968 A 2/1999 Knox et al 395/652
5,892,902 A 4/1999 Clark 395/187.01
5,948,101 A 9/1999 David et al 713/2
5,974,547 A * 10/1999 Klimenko 713/2
6,138,236 A * 10/2000 Mirov et al 713/200
6,189,100 Bl 2/2001 Barr et al 713/182
6,223,284 Bl * 4/2001 Novoa et al 713/100
6,282,642 Bl 8/2001 Cromer et al 713/2
6,317,826 Bl 11/2001 McCall et al 713/1
6,560,706 Bl* 5/2003 Carbajal et al 713/155
6,633,978 Bl * 10/2003 Angelo et al 713/100
6,751,658 Bl* 6/2004 Haun et al 709/222
2002/0154781 Al* 10/2002 Sowa et al 380/278
* cited by examiner
Primary Examiner—Gilberto Barron, Jr.
Assistant Examiner—Brandon Hoffman
(74) Attorney, Agent, or Firm—Robert A. Voigt, Jr.;
Winstead Sechrest & Minick RC.
A method, system and computer program product for remotely booting devices. A deployment server may remotely transmit authentication parameter(s), e.g., public key, secret key, to a service unit configured to establish a private connection between server blades and the deployment server. The service unit may remotely install the authentication parameter(s) onto the server blade(s) to be booted by either the deployment server or another boot server. By the service unit remotely installing the authentication parameter(s) onto the server blade(s), the need to manually install them during each network boot operation may be alleviated. By remotely transmitting authentication parameter(s) instead of manually installing them on the devices to be booted during each network boot operation, the deployment server may be able to generate unique authentication parameter(s), e.g., public/private key pair, secret key, for each network boot operation thereby substantially reducing the exposure to replay attacks.
56 Claims, 7 Drawing Sheets
