Remote Encryption Management Image Flows

There are three general usage flows that are implemented using the Remote Encryption Management solution with Remote Encryption Management Image to execute use case functionality:

   Starting Remote Encryption Management Service

   Using Remote Encryption Management Service

   Stopping Remote Encryption Management Service

 

Starting Remote Encryption Management Service

Each of the use cases provided by the Remote Encryption Management solution implements some type of action on a hard drive.  Before any drive actions can be executed, the Remote Encryption Management service must be started for the Intel AMT system. This involves establishing a connection with the Intel AMT system and then using the functionality provided by Intel AMT to remotely boot the client to the Remote Encryption Management Bridge ISO. 

The following diagram and table describe what happens when starting the Remote Encryption Management Service.

 

Step

Description

1

The Management Application sends a request to the Remote Encryption Management Library to initiate a Remote Encryption Management session for a specific Intel AMT system.

2

The Remote Encryption Management Library uses the Intel AMT Library to initiate SOL and IDER sessions.

3

The Remote Encryption Management Library uses the Intel AMT Library to boot the Intel AMT system to the Remote Encryption Management Bridge ISO.

4

The Remote Encryption Management Image boots on the Intel AMT system.  Once Remote Encryption Management Image is booted, the ATA-Over-LAN Bridge Application is automatically started.

5

The ATA-Over-LAN Bridge Application writes a “ready” message to the SOL communication channel.

6

The Remote Encryption Management Library retrieves a “ready” message from the SOL communication channel.

 

Using Remote Encryption Management Service

After the Remote Encryption Management Service is started, WS-MAN formatted messages can be exchanged between the Remote Encryption Management Library and the Intel AMT system, where the service is running on to execute specific drive actions.

The following diagram and table describe what happens for each message exchange.

 

Step

Description

1

The Remote Encryption Management Library requests a WS-MAN formatted request string from the ATA-Over-LAN Bridge Library.

2

The Remote Encryption Management Library writes the WS-MAN formatted request string to the Intel AMT system over a SOL communication channel.

3

The ATA-Over-LAN Bridge Application receives a WS-MAN formatted request from the SOL communication channel.

4

The ATA-Over-LAN Bridge executes the request and forms a WS-MAN formatted response.

5

The WS-MAN formatted response is written out to the SOL communication channel.

6

The Remote Encryption Management Library retrieves a WS-MAN formatted response from the SOL communication channel.

7

The Remote Encryption Management Library sends a WS-MAN formatted response to the ATA-Over-LAN Bridge Library for processing. The ATA-Over-LAN Bridge Library returns the processed output data to the Remote Encryption Management Library.

 

Stopping Remote Encryption Management Service

After all necessary drive actions are complete the Remote Encryption Management service should be stopped:

1.  The Remote Encryption Management Library uses the Intel AMT Library to reboot the Intel AMT system from the Remote Encryption Management Bridge ISO. 

2.  The Remote Encryption Management Library uses the Intel AMT Library to end the established SOL and IDER sessions.

Copyright © 2006-2013, Intel Corporation. All rights reserved.