Invention Title:

PAVE AND/OR REPAVE SYSTEMS AND METHODS USING RANSOMWARE PROTECTION SMART NETWORK INTERFACE CONTROLLER OR RANSOMWARE PROTECTION STORAGE DEVICE SECURE SNAPSHOTS

Publication number:

US20240143758

Publication date:

2024-05-02

Section:

Physics

Class:

G06F21/565

Inventor:

Wai Chuen Yim Merrimack, NH, United States

Assignee:

DELL PRODUCTS L.P. Round Rock, TX, United States

Applicant:

Dell Products L.P. Round Rock, TX, United States

Drawings (4 of 11)

Drawing 01 for PAVE AND/OR REPAVE SYSTEMS AND METHODS USING RANSOMWARE PROTECTION SMART NETWORK INTERFACE CONTROLLER OR RANSOMWARE PROTECTION STORAGE DEVICE SECURE SNAPSHOTS

Drawing 02 for PAVE AND/OR REPAVE SYSTEMS AND METHODS USING RANSOMWARE PROTECTION SMART NETWORK INTERFACE CONTROLLER OR RANSOMWARE PROTECTION STORAGE DEVICE SECURE SNAPSHOTS

Drawing 03 for PAVE AND/OR REPAVE SYSTEMS AND METHODS USING RANSOMWARE PROTECTION SMART NETWORK INTERFACE CONTROLLER OR RANSOMWARE PROTECTION STORAGE DEVICE SECURE SNAPSHOTS

Drawing 04 for PAVE AND/OR REPAVE SYSTEMS AND METHODS USING RANSOMWARE PROTECTION SMART NETWORK INTERFACE CONTROLLER OR RANSOMWARE PROTECTION STORAGE DEVICE SECURE SNAPSHOTS

Smart overview of the Invention

The patent application describes a system for protecting Information Handling Systems (IHSs) using a ransomware protection engine integrated into either a Smart Network Interface Controller (SmartNIC) or a storage device. This system creates a secure snapshot of an IHS's boot device, which serves as a baseline for creating read and writable snapshots. These snapshots are then exposed to the IHS as primary boot devices through a Unified Extensible Firmware Interface (UEFI) or Basic Input/Output System (BIOS). The system ensures that the IHS can be restored to a known good state, enhancing security and reliability.

Functionality

The ransomware protection engine allows for both paving and repaving of an IHS. Paving involves creating a secure snapshot and then generating a read and writable version of it, which persists across reboots. Repaving is triggered by a command through the SmartNIC's management interface, recreating the boot snapshot and restoring the IHS to its original secure state. This process helps maintain system integrity even after potential ransomware attacks.

Security Enhancements

To further enhance security, the system can create an additional read and writable snapshot from the secure snapshot, which acts as an alternate boot device. This alternate snapshot is recreated on each reboot, providing an additional layer of protection against ransomware attacks. The system also supports updating the IHS's operating environment by applying firmware or software updates to the boot device and subsequently creating new secure snapshots.

Technical Implementation

The ransomware protection features can be implemented using an Application Specific Integrated Circuit (ASIC) within the storage device or through a memory controller that includes the ransomware protection capabilities. This integration allows for seamless operation without requiring modifications to host software, ensuring that secure snapshots can be used effectively for instantaneous pave and repave operations.

Applications and Benefits

This technology is particularly beneficial for enterprises facing increasing malware threats and stringent compliance requirements. By enabling frequent initialization or reinitialization of hardware to a known good state, it reduces reliance on traditional, error-prone methods like PXE servers or USB-media installations. The use of SmartNICs or storage devices with integrated ransomware protection provides a more efficient, reliable, and secure approach to maintaining system integrity.