公开(公告)号：US20130031619A1

公开(公告)日：2013-01-31

申请号：US13189869

申请日：2011-07-25

Applicant: Rod D. Waltermann ,  David Rivera

Inventor： Rod D. Waltermann ,  David Rivera

IPC: H04L9/32

CPC classification number: H04L9/3226 ,  G06F21/305 ,  G06F2221/2137 ,  H04L63/083 ,  H04L2209/80 ,  H04M1/673 ,  H04W12/06

Abstract: Devices, methods and products are described that provide for remote authentication of mobile information handling devices. One aspect provides a method comprising configuring an information handling device operating through a mobile operating system to allow communication with least one remote authentication architecture; denying access to a information handling device of the information handling device responsive to a device lock event; and granting access to the display device responsive to an unlock event comprising entry of logon credentials authenticated at the at least one remote authentication architecture. Other embodiments and aspects are also described herein.

Abstract translation: 描述了提供移动信息处理设备的远程认证的设备，方法和产品。 一方面提供了一种方法，包括配置通过移动操作系统操作的信息处理设备，以允许与至少一个远程认证体系结构通信; 响应于设备锁定事件拒绝对信息处理设备的信息处理设备的访问; 以及响应于解锁事件授予对所述显示设备的访问，所述解锁事件包括在所述至少一个远程认证架构上认证的登录凭证的输入。 本文还描述了其它实施例和方面。

公开(公告)号：US20130031484A1

公开(公告)日：2013-01-31

申请号：US13189788

申请日：2011-07-25

Applicant: Karen R. Kluttz ,  James A. Hunt ,  David Rivera ,  Rod D. Waltermann

Inventor： Karen R. Kluttz ,  James A. Hunt ,  David Rivera ,  Rod D. Waltermann

IPC: G06F3/048

CPC classification number: G06F3/0481 ,  G06F17/30126

Abstract: Devices, methods and products are described that provide file transfer applications. One aspect provides a method including opening a file transfer application on an information handling device having an internal storage device; providing a source display area indicating a source storage device; providing a destination display area indicating a destination storage device; responsive to movement of one or more file icons a predetermined threshold amount beyond a boundary separating said source display area and said destination display area, change one or more indications to indicate to a user a destination storage device to which one or more files is to be transferred, said changing further comprising modifying screen brightness of the source display area; and responsive to movement of said one or more file icons a predetermined threshold amount beyond said boundary, transferring said one or more files to said destination storage device. Other embodiments are described.

Abstract translation: 描述了提供文件传输应用的设备，方法和产品。 一方面提供一种方法，包括在具有内部存储装置的信息处理装置上打开文件传送应用程序; 提供指示源存储装置的源显示区域; 提供指示目的地存储装置的目的地显示区域; 响应于一个或多个文件图标的移动超过分隔所述源显示区域和所述目的地显示区域的边界的预定阈值量，改变一个或多个指示以向用户指示将要存在一个或多个文件的目的地存储设备 所述改变进一步包括改变所述源显示区域的屏幕亮度; 并且响应于所述一个或多个文件图标的移动超过所述边界的预定阈值量，将所述一个或多个文件传送到所述目的地存储设备。 描述其他实施例。

公开(公告)号：US09495562B2

公开(公告)日：2016-11-15

申请号：US13189837

申请日：2011-07-25

Applicant: David Rivera ,  Rod D. Waltermann

Inventor： David Rivera ,  Rod D. Waltermann

IPC: G06F21/78 ,  G06F3/06

CPC classification number: G06F21/78 ,  G06F3/0614 ,  G06F3/0644 ,  G06F2221/2105

Abstract: Devices, methods and products are described that provide removable storage device data protection. One aspect provides a method comprising: ascertaining a protected removable storage device connected to an information handling device, said protected removable storage device having a first partition for storing data according to a first file system type, and a second partition for storing user data according to a second file system type; and responsive to said information handling device recognizing said second file system type, querying for user credentials to decrypt a data encryption key used to encrypt said user data of said second partition. Other embodiments are described.

Abstract translation: 描述了提供可移动存储设备数据保护的设备，方法和产品。 一个方面提供一种方法，包括：确定连接到信息处理装置的受保护的可移动存储装置，所述受保护的可移除存储装置具有根据第一文件系统类型存储数据的第一分区，以及根据第一文件系统类型存储用户数据的第二分区 第二种文件系统类型; 并且响应于所述信息处理设备识别所述第二文件系统类型，查询用户凭证来解密用于加密所述第二分区的所述用户数据的数据加密密钥。 描述其他实施例。

公开(公告)号：US09262042B2

公开(公告)日：2016-02-16

申请号：US13189788

申请日：2011-07-25

Applicant: Karen R. Kluttz ,  James A. Hunt ,  David Rivera ,  Rod D. Waltermann

Inventor： Karen R. Kluttz ,  James A. Hunt ,  David Rivera ,  Rod D. Waltermann

IPC: G06F3/0481 ,  G06F17/30

CPC classification number: G06F3/0481 ,  G06F17/30126

Abstract: Devices, methods and products are described that provide file transfer applications. One aspect provides a method including opening a file transfer application on an information handling device having an internal storage device; providing a source display area indicating a source storage device; providing a destination display area indicating a destination storage device; responsive to movement of one or more file icons a predetermined threshold amount beyond a boundary separating said source display area and said destination display area, change one or more indications to indicate to a user a destination storage device to which one or more files is to be transferred, said changing further comprising modifying screen brightness of the source display area; and responsive to movement of said one or more file icons a predetermined threshold amount beyond said boundary, transferring said one or more files to said destination storage device. Other embodiments are described.

Abstract translation: 描述了提供文件传输应用的设备，方法和产品。 一方面提供一种方法，包括在具有内部存储装置的信息处理装置上打开文件传送应用程序; 提供指示源存储装置的源显示区域; 提供指示目的地存储装置的目的地显示区域; 响应于一个或多个文件图标的移动超过分隔所述源显示区域和所述目的地显示区域的边界的预定阈值量，改变一个或多个指示以向用户指示将要存在一个或多个文件的目的地存储设备 所述改变进一步包括改变所述源显示区域的屏幕亮度; 并且响应于所述一个或多个文件图标的移动超过所述边界的预定阈值量，将所述一个或多个文件传送到所述目的地存储设备。 描述其他实施例。

公开(公告)号：US08490200B2

公开(公告)日：2013-07-16

申请号：US12054531

申请日：2008-03-25

Applicant: David Rivera ,  David C. Challener ,  Rod D. Waltermann

Inventor： David Rivera ,  David C. Challener ,  Rod D. Waltermann

IPC: H04L29/06

CPC classification number: G06F21/88

Abstract: A technique for identifying a user of a device includes receiving a tracking mechanism trigger and capturing (e.g., periodically) identifying information on the user of the device in response to the trigger.

Abstract translation: 用于识别设备的用户的技术包括响应于触发而接收跟踪机制触发和捕获（例如，周期性地）标识关于设备的用户的信息。

公开(公告)号：US20130055377A1

公开(公告)日：2013-02-28

申请号：US13222033

申请日：2011-08-31

Applicant: Liang Chen ,  Joshua N. Novak ,  Rod D. Waltermann ,  David Rivera ,  Jun Li

Inventor： Liang Chen ,  Joshua N. Novak ,  Rod D. Waltermann ,  David Rivera ,  Jun Li

IPC: G06F21/00

CPC classification number: G06F21/54

Abstract: Devices, methods and products are described that provide for selective system or root level access for applications on an information handling device. One aspect provides a method comprising determining whether an application has system privileges on an information handling device; and executing privileged code from the application on said information handling device responsive to determining that the application has system privileges through one or more native services operating on said information handling device. Other aspects and embodiments are also described herein.

Abstract translation: 描述了为信息处理设备上的应用提供选择性系统或根级访问的设备，方法和产品。 一方面提供了一种方法，包括确定应用是否具有对信息处理设备的系统特权; 以及响应于通过在所述信息处理设备上操作的一个或多个本地服务来确定所述应用具有系统特权，在所述信息处理设备上执行来自所述应用的特权代码。 本文还描述了其它方面和实施例。

公开(公告)号：US20110154010A1

公开(公告)日：2011-06-23

申请号：US12641029

申请日：2009-12-17

Applicant: Randall S. Springfield ,  Howard J. Locker ,  David Rivera ,  Joseph M. Pennisi ,  Rod D. Waltermann

Inventor： Randall S. Springfield ,  Howard J. Locker ,  David Rivera ,  Joseph M. Pennisi ,  Rod D. Waltermann

IPC: H04L9/00 ,  G06F1/24

CPC classification number: H04L9/3234 ,  G06F21/57 ,  H04L9/3236 ,  H04L9/3263 ,  H04L2209/127

Abstract: An exemplary apparatus includes one or more processors; memory; circuitry configured to hash a value associated with core root of trust measurement code and system management code; store the hash in a secure register; load an operating system; validate a certificate associated with the core root of trust measurement code and validate a certificate associated with the system management code; based on the validated certificates, provide an expected hash associated with the core root of trust measurement code and the system management code; decide if the expected hash matches the hash stored in the register; and, if the expected hash matches the hash stored in the register, commence a dynamic root of trust measurement session. Various other apparatuses, systems, methods, etc., are also disclosed.

Abstract translation: 示例性装置包括一个或多个处理器; 记忆; 配置为对与信任测度代码的核心根和系统管理代码相关联的值进行散列的电路; 将哈希存储在安全寄存器中; 加载操作系统; 验证与信任测度代码的核心根相关联的证书，并验证与系统管理代码相关联的证书; 基于验证的证书，提供与信任测度代码的核心根和系统管理代码相关联的预期散列; 确定预期哈希是否与存储在寄存器中的哈希匹配; 并且如果期望的哈希与存储在寄存器中的哈希匹配，则启动信任测量会话的动态根。 还公开了各种其它装置，系统，方法等。

公开(公告)号：US07818567B2

公开(公告)日：2010-10-19

申请号：US11535542

申请日：2006-09-27

Applicant: Rod D. Waltermann ,  David C. Challener ,  Philip L. Childs ,  Norman A. Dion, II ,  James Hunt ,  Nathan J. Peterson ,  David Rivera ,  Randall S. Springfield ,  Arnold S. Weksler

Inventor： Rod D. Waltermann ,  David C. Challener ,  Philip L. Childs ,  Norman A. Dion, II ,  James Hunt ,  Nathan J. Peterson ,  David Rivera ,  Randall S. Springfield ,  Arnold S. Weksler

IPC: H04L29/06

CPC classification number: G06F21/575 ,  G06F21/6209 ,  G06F2221/2107 ,  H04L9/0897 ,  H04L2209/127

Abstract: A method for protecting Security Accounts Manager (SAM) files within a Windows® operating system is disclosed. A SAM file encryption key is generated by encrypting a SAM file via a syskey utility provided within the Windows® operating system. The SAM file encryption key is then stored in a virtual floppy disk by selecting an option to store SAM file encryption key to a floppy disk under the syskey utility. A blob is generated by performing a Trusted Platform Module (TPM) Seal command against the SAM file encryption key along with a value stored in a Performance Control Register and a TPM Storage Root Key. The blob is stored in a non-volatile storage area of a computer.

Abstract translation: 披露了一种在Windows®操作系统中保护安全帐户管理器（SAM）文件的方法。 通过在Windows®操作系统中提供的syskey实用程序加密SAM文件来生成SAM文件加密密钥。 然后，SAM文件加密密钥存储在虚拟软盘中，方法是选择将SAM文件加密密钥存储到syskey实用程序下的软盘中。 通过对SAM文件加密密钥执行可信平台模块（TPM）密封命令以及存储在性能控制寄存器和TPM存储根密钥中的值来生成blob。 斑点存储在计算机的非易失性存储区域中。

公开(公告)号：US20090249485A1

公开(公告)日：2009-10-01

申请号：US12054531

申请日：2008-03-25

Applicant: David Rivera ,  David C. Challener ,  Rod D. Waltermann

Inventor： David Rivera ,  David C. Challener ,  Rod D. Waltermann

IPC: G06F21/00

CPC classification number: G06F21/88

Abstract: A technique for identifying a user of a device includes receiving a tracking mechanism trigger and capturing (e.g., periodically) identifying information on the user of the device in response to the trigger.

Abstract translation: 用于识别设备的用户的技术包括响应于触发而接收跟踪机制触发和捕获（例如，周期性地）标识关于设备的用户的信息。

公开(公告)号：US09881151B2

公开(公告)日：2018-01-30

申请号：US13222033

申请日：2011-08-31

Applicant: Liang Chen ,  Joshua N. Novak ,  Rod D. Waltermann ,  David Rivera ,  Jun Li

Inventor： Liang Chen ,  Joshua N. Novak ,  Rod D. Waltermann ,  David Rivera ,  Jun Li

IPC: G06F21/54

CPC classification number: G06F21/54

Abstract: Devices, methods and products are described that provide for selective system or root level access for applications on an information handling device. One aspect provides a method comprising determining whether an application has system privileges on an information handling device; and executing privileged code from the application on said information handling device responsive to determining that the application has system privileges through one or more native services operating on said information handling device. Other aspects and embodiments are also described herein.