公开(公告)号：EP3238371A1

公开(公告)日：2017-11-01

申请号：EP15873938.3

申请日：2015-11-19

申请人： Intel Corporation

发明人： CHHABRA, Jasmeet ,  SMITH, Ned ,  SHELLER, Micah J. ,  HELDT-SHELLER, Nathan

IPC分类号： H04L9/32 ,  H04L12/26

CPC分类号： G06F21/577 ,  G06F21/31 ,  G06F21/316 ,  G06F21/32 ,  G06F21/53 ,  G06F2221/034 ,  G06F2221/2115 ,  G06N99/005 ,  H04L63/083 ,  H04L63/0861 ,  H04L2463/082 ,  H04W12/06 ,  H04W12/12

摘要： Technologies for information security include a computing device with one or more sensors. The computing device may authenticate a user and, after successful authentication, analyze sensor data to determine whether it is likely that the user authenticated under duress. If so, the computing device performs a security operation such as generating an alert or presenting false but plausible data to the user. Additionally or alternatively, the computing device, within a trusted execution environment, may monitor sensor data and apply a machine-learning classifier to the sensor data to identify an elevated risk of malicious attack. For example, the classifier may identify potential user identification fraud. The computing device may trigger a security response if elevated risk of attack is detected. For example, the trusted execution environment may trigger increased authentication requirements or increased anti-theft monitoring for the computing device. Other embodiments are described and claimed.

摘要翻译： 信息安全技术包括具有一个或多个传感器的计算设备。 计算设备可以认证用户并且在成功认证之后分析传感器数据以确定用户是否有可能在胁迫下认证。 如果是这样，则计算设备执行安全操作，例如生成警报或向用户呈现虚假但合理的数据。 附加地或可选地，计算设备在受信任的执行环境内可监视传感器数据并将机器学习分类器应用于传感器数据以识别恶意攻击的高风险。 例如，分类器可以识别潜在的用户识别欺诈。 如果检测到升高的攻击风险，则计算设备可以触发安全响应。 例如，可信执行环境可以触发增加的认证要求或增加对计算设备的防盗监控。 描述并要求保护其他实施例。

公开(公告)号：EP3198781A2

公开(公告)日：2017-08-02

申请号：EP15844210.3

申请日：2015-08-24

申请人： Intel Corporation

发明人： SMITH, Ned ,  DELEEUW, William

IPC分类号： H04L9/08 ,  G06F7/58

CPC分类号： H04L9/085 ,  H04L9/0662 ,  H04L9/0836 ,  H04L9/0866 ,  H04L9/0872

摘要： Various embodiments are generally directed to an apparatus, method and other techniques generating one or more polynomial elements for a polynomial function using a node value of a pseudo random number generator tree as a seed value, the polynomial function comprising a secret value and the polynomial elements, and the pseudo random number generator tree at least partially matching at least one other pseudo random number generator tree on another device, generating a plurality of share values based on the one or more polynomial elements and the polynomial function and distributing a share value of the plurality of share values to a device.

摘要翻译： 各种实施例通常涉及使用伪随机数生成器树的节点值作为种子值来生成用于多项式函数的一个或多个多项式元素的设备，方法和其他技术，该多项式函数包括秘密值和多项式元素 ，并且所述伪随机数生成器树至少部分地与另一设备上的至少一个其他伪随机数生成器树匹配，基于所述一个或多个多项式元素和所述多项式函数来生成多个份额值，并且将所述 多个共享值到设备。

公开(公告)号：EP2807792A1

公开(公告)日：2014-12-03

申请号：EP11878513.8

申请日：2011-12-28

申请人： Intel Corporation

发明人： BAKSHI, Sanjay ,  SMITH, Ned

IPC分类号： H04L9/32 ,  H04W12/06 ,  G06K17/00

CPC分类号： G06Q20/40145 ,  G06Q20/3224 ,  G06Q20/3278 ,  G06Q20/34 ,  H04L9/3234 ,  H04L63/0492 ,  H04L63/08 ,  H04L63/18 ,  H04L2209/805 ,  H04W12/06

摘要： In one embodiment a controller comprises logic to receive, via a near field communication link, an identification packet generated by a remote authentication provider, associate an electronic signature with the identification packet, transmit the identification packet to a remote authentication provider, receive an authorization from the remote authentication provider, receive login information associated with the identification packet, and initiate a login procedure using the login information. Other embodiments may be described.

公开(公告)号：EP1955516A2

公开(公告)日：2008-08-13

申请号：EP06837704.3

申请日：2006-11-14

申请人： Intel Corporation

发明人： SMITH, Ned ,  WALKER, Jesse ,  SOOD, Kapil

IPC分类号： H04L29/06 ,  G06F21/00 ,  G06F9/455

CPC分类号： H04L63/10 ,  G06F9/45558 ,  G06F2009/45587 ,  H04L63/14

摘要： In a processor based system comprising a plurality of logical machines, selecting a logical machine of the system to serve as a host; the host communicating with a policy decision point (PDP) of a network to provision a data channel interconnecting the processor based system and the network and to provision a logical data channel interconnecting each logical machine of the system to the network.