公开(公告)号：US20170093896A1

公开(公告)日：2017-03-30

申请号：US14866327

申请日：2015-09-25

Applicant: Intel Corporation

Inventor： RAJESH POORNACHANDRAN ,  KARUNAKARA KOTARY ,  VINCENT ZIMMER ,  RONALD STORY

IPC: H04L29/06 ,  G06F12/14 ,  G06F21/57 ,  H04B5/00

CPC classification number: H04L63/1425 ,  G06F21/575 ,  G06F21/82 ,  H04B5/0062 ,  H04L63/0236 ,  H04L63/0876 ,  H04L63/101 ,  H04L63/12

Abstract: Various embodiments are generally directed to an apparatus, method and other techniques to receive port configuration information from a radio frequency identification (RFID) device, the port configuration information indicating whether one or more I/O ports are permitted or unpermitted for use and perform a verification of an I/O port of one or more I/O ports based on the port configuration information stored in the RFID device. Embodiments also include causing an action to occur based on whether the I/O port has been verified or not verified.

公开(公告)号：US20170286086A1

公开(公告)日：2017-10-05

申请号：US15086293

申请日：2016-03-31

Applicant: INTEL CORPORATION

Inventor： KRISHNAKUMAR NARASIMHAN ,  NICHOLAS J. ADAMS ,  KARUNAKARA KOTARY ,  Brett P Wang

IPC: G06F9/445 ,  G06F11/14 ,  G06F21/57

CPC classification number: G06F11/1469 ,  G06F8/654 ,  G06F21/572 ,  G06F2201/84

Abstract: A mechanism is described for facilitating dynamic capsule generation and recovery in computing environments according to one embodiment. A method of embodiments, as described herein, includes accessing a current firmware and a capsule driver binary file (“capsule file”) from a storage device, and merging the current firmware with the capsule file and a capsule header into a capsule payload. The method may further include assigning a security protocol to the capsule payload to ensure a secured capsule payload, and storing the secured capsule payload at the storage device for subsequent updates.

公开(公告)号：US20180181762A1

公开(公告)日：2018-06-28

申请号：US15393198

申请日：2016-12-28

Applicant: INTEL CORPORATION

Inventor： RAJESH POORNACHANDRAN ,  NED M. SMITH ,  VINCENT J. ZIMMER ,  ATUL A. KHARE ,  KARUNAKARA KOTARY

IPC: G06F21/57 ,  G06F21/55

CPC classification number: G06F21/577 ,  G06F21/554 ,  G06F21/575 ,  G06F2221/033

Abstract: Techniques and computing devices for persistent firmware transfer monitoring and, more specifically, but not exclusively, to a resource filter within a firmware resource monitor configured to persistently store resource information after a boot operation. In one embodiment, for example, an apparatus for persistent firmware transfer monitoring in a computer system comprises at least one memory, at least one processor, and a resource filter comprising logic, at least a portion of the logic comprised in hardware and executed by the processor. The logic to may be configured to receive a list of required resources during a boot operation and receive a list of excluded resources. The resource filter may be further configured to persistently store the list of required resources and the list of excluded resources after the boot operation has completed. It may be determined that one or more changes occurred to either of the list of required resources and the list of excluded resources during the boot process, and a security alert may be generated indicating a potential security threat. Other embodiments are described and claimed.

公开(公告)号：US20150370302A1

公开(公告)日：2015-12-24

申请号：US14312017

申请日：2014-06-23

Applicant: Intel Corporation

Inventor： GIRI P. MUDUSURU ,  VINCENT J. ZIMMER ,  KARUNAKARA KOTARY ,  RONALD N. STORY ,  ROBERT C. SWANSON ,  ISAAC W. ORAM

IPC: G06F1/30 ,  G06F13/32 ,  G11C14/00 ,  G11C7/10 ,  G11C11/00 ,  G06F11/14 ,  G06F12/02

CPC classification number: G06F1/30 ,  G06F11/1441 ,  G06F11/2015 ,  G06F12/0246 ,  G06F12/0804 ,  G06F12/0866 ,  G06F12/0875 ,  G06F12/1416 ,  G06F12/1491 ,  G06F13/32 ,  G06F2212/1024 ,  G06F2212/222 ,  G11C5/141

Abstract: Generally, this disclosure provides systems, devices, methods and computer readable media for a Unified Extensible Firmware Interface (UEFI) with durable storage to provide memory write persistence, for example, in the event of power loss. The system may include a processor to host the firmware interface which may be configured to control access to system variables in a protected region of a volatile memory. The system may also include a power management circuit to provide power to the processor and further to provide a power loss indicator to the firmware interface. The system may also include a reserve energy storage module to provide power to the processor in response to the power loss indicator. The firmware interface is further configured to copy the system variables from the volatile memory to a non-volatile memory in response to the power loss indicator.

Abstract translation: 通常，本公开提供了用于具有耐用存储器的统一可扩展固件接口（UEFI）的系统，设备，方法和计算机可读介质，以提供例如在电力丢失的情况下的存储器写持续性。 该系统可以包括用于托管固件接口的处理器，其可被配置为控制对易失性存储器的受保护区域中的系统变量的访问。 该系统还可以包括电源管理电路，以向处理器提供电力，并进一步向固件接口提供功率损耗指示符。 系统还可以包括备用能量存储模块，以响应于功率损耗指示器向处理器提供电力。 固件接口还被配置为响应于功率损耗指示器将系统变量从易失性存储器复制到非易失性存储器。