z15 selfboot and secure boot
- 1 September 2020
- journal article
- research article
- Published by IBM in IBM Journal of Research and Development
- Vol. 64 (5/6), 5:1-5:9
- https://doi.org/10.1147/jrd.2020.3008097
Abstract
The IBM Z central processor (CP) and storage controller (SC) chips contain hardware and firmware to serve selfboot and secure boot needs. Selfboot initializes the CP/SC chips from hardware and firmware, which reside in each chip module. This establishes a core root of trust and also guarantees a boot time that is independent of the system configuration, which is key for large enterprise class systems consisting of multiple drawers and chips. Secure boot is built on this core root of trust and is used to authenticate the firmware loaded from system memory prior to execution of that firmware. Selfboot and secure boot also guarantee the integrity of the CP and SC chips by restricting hardware and memory accesses through debug or service interfaces during boot, runtime, and code update phases. In this article, we describe the basic hardware and firmware concepts that are implemented and enabled for the z 15 CP and SC chips.Keywords
This publication has 10 references indexed in Scilit:
- IBM z14: Processor Characterization and Power Management for High-Reliability Mainframe SystemsIEEE Journal of Solid-State Circuits, 2018
- Robust power management in the IBM z13IBM Journal of Research and Development, 2015
- Innovations in infrastructure firmware for the IBM z13IBM Journal of Research and Development, 2015
- Scalable and modular pervasive logic/firmware designIBM Journal of Research and Development, 2012
- Structural and functional test of IBM System z10 chipsIBM Journal of Research and Development, 2009
- Reducing planned outages for book hardware maintenance with concurrent book replacementIBM Journal of Research and Development, 2007
- The GNU 64-bit PL8 compiler: Toward an open standard environment for firmware developmentIBM Journal of Research and Development, 2004
- Millicode in an IBM zSeries processorIBM Journal of Research and Development, 2004
- System control structure of the IBM eServer z900IBM Journal of Research and Development, 2002
- Advanced microprocessor test strategy and methodologyIBM Journal of Research and Development, 1997