-
121.发明申请System and method for providing fault tolerant security among a cluster of servers 审中-公开在一组服务器之间提供容错安全的系统和方法公开(公告)号:US20060136713A1
公开(公告)日:2006-06-22
申请号:US11023273
申请日:2004-12-22
申请人: Vincent Zimmer , Michael Rothman , Robert Swanson
发明人: Vincent Zimmer , Michael Rothman , Robert Swanson
IPC分类号: H04L9/00
CPC分类号: H04L63/0428 , H04L9/083 , H04L9/085 , H04L9/3013
摘要: A system and method are described for performing security operations for a cluster of servers. In one embodiment, a global secret is generated which is used to perform security operations for the cluster of servers. A plurality, n, shadows are generated based on the global secret. A subset of the plurality of shadows, m, may be used to recreate the global secret. The plurality of shadows are then distributed and stored across the plurality of servers.
摘要翻译: 描述了为一组服务器执行安全性操作的系统和方法。 在一个实施例中,生成用于对服务器集群执行安全操作的全局秘密。 基于全局秘密生成多个n个阴影。 可以使用多个阴影m的子集来重建全局秘密。 然后,多个阴影分布并存储在多个服务器上。
-
公开(公告)号:US20060085652A1
公开(公告)日:2006-04-20
申请号:US10970405
申请日:2004-10-20
申请人: Vincent Zimmer , Michael Rothman
发明人: Vincent Zimmer , Michael Rothman
IPC分类号: G06F12/14
CPC分类号: H04L63/0823 , G06F13/4068 , G06F21/575 , G06F21/71 , G06F21/72 , G06F21/80 , G06F2221/2107 , G06F2221/2115 , H04L9/3268 , H04L63/0435 , H04L63/061 , H04L63/08
摘要: In one embodiment, a method is provided that may include one or more operations. One of these operations may include, in response, at least in part, to a request to store input data in storage, encrypting, based least in part upon one or more keys, the input data to generate output data to store in the storage. The one or more keys may be authorized by a remote authority. Alternatively or additionally, another of these operations may include, in response, at least in part, to a request to retrieve the input data from the storage, decrypting, based at least in part upon the at least one key, the output data. Many modifications, variations, and alternatives are possible without departing from this embodiment.
-
123.发明申请公开(公告)号:US20060075274A1
公开(公告)日:2006-04-06
申请号:US10947714
申请日:2004-09-23
申请人: Vincent Zimmer , Michael Rothman
发明人: Vincent Zimmer , Michael Rothman
IPC分类号: G06F11/00
CPC分类号: G06F11/0793 , G06F11/0706
摘要: A method for managing a run-time recovery includes loading a recovery kernel into a processor cache. The recovery kernel is executed in the processor cache. Other embodiments are described and claimed.
摘要翻译: 用于管理运行时恢复的方法包括将恢复内核加载到处理器高速缓存中。 恢复内核在处理器高速缓存中执行。 描述和要求保护其他实施例。
-
公开(公告)号:US20060070065A1
公开(公告)日:2006-03-30
申请号:US10952639
申请日:2004-09-29
申请人: Vincent Zimmer , Michael Rothman
发明人: Vincent Zimmer , Michael Rothman
IPC分类号: G06F9/455
CPC分类号: G06F9/5016 , G06F9/45558 , G06F2009/45583
摘要: Memory support of heterogeneous virtual machine operating system guests. A virtual machine monitor (VMM) is launched on a computer system. A first virtual machine (VM) supported by the VMM is launched, the first VM to support a first guest operating system (OS). A second VM supported by the VMM is launched, the second VM to support a second guest OS, wherein a number of memory addressing bits of the first guest OS is smaller than a number of memory addressing bits of the second guest OS. Pages for the first guest OS are maintained at a lower level in a guest OS page table hierarchy than pages for the second guest OS in the guest OS page table hierarchy.
摘要翻译: 内存支持异构虚拟机操作系统客户端。 在计算机系统上启动虚拟机监视器(VMM)。 VMM支持的第一个虚拟机(VM)被启动,第一个VM支持第一个客户机操作系统(OS)。 启动由VMM支持的第二VM,第二VM支持第二客户操作系统,其中,第一客户操作系统的多个存储器寻址位数小于第二客户操作系统的存储器寻址位数。 第一客户操作系统的页面在客户OS操作系统页表层次结构中保持在较低级别,而不是访客操作系统页表层次结构中的第二客户操作系统的页面。
-
公开(公告)号:US20060005002A1
公开(公告)日:2006-01-05
申请号:US10882465
申请日:2004-06-30
申请人: Vincent Zimmer , Michael Rothman
发明人: Vincent Zimmer , Michael Rothman
IPC分类号: G06F15/177
CPC分类号: G06F9/4403
摘要: Common operations that are to be performed by various environment-specific entities are identified. The environments may include pre-boot environment and run-time environment. A common entity is established to include the common operations. The common entity may be stored in memory associated with system management mode (SMM). A system management interrupt (SMI) may be used by the various environment-specific entities to invoke the common entity.
摘要翻译: 识别由各种环境特定实体执行的常见操作。 环境可能包括预引导环境和运行时环境。 建立一个共同实体来包括共同业务。 公共实体可以存储在与系统管理模式(SMM)相关联的存储器中。 系统管理中断(SMI)可能被各种环境特定的实体用于调用公共实体。
-
公开(公告)号:US20050289332A1
公开(公告)日:2005-12-29
申请号:US10875742
申请日:2004-06-23
申请人: Michael Rothman , Vincent Zimmer
发明人: Michael Rothman , Vincent Zimmer
IPC分类号: G06F15/177
CPC分类号: G06F9/4403
摘要: A method, system and article of manufacture to improve the boot speed of a platform. One or more non-blocking platform initializations are performed during a pre-boot phase of a computer system. One or more platform initializations are performed during the pre-boot phase, wherein the one or more platform initializations are performed concurrently in part with the one or more non-blocking platform initializations.
摘要翻译: 一种提高平台启动速度的方法,系统和制造。 在计算机系统的预引导阶段期间执行一个或多个非阻塞平台初始化。 在预引导阶段期间执行一个或多个平台初始化,其中一个或多个平台初始化部分地与一个或多个非阻塞平台初始化同时执行。
-
127.发明申请Remote management and provisioning of a system across a network based connection 有权通过基于网络的连接远程管理和配置系统公开(公告)号:US20050223007A1
公开(公告)日:2005-10-06
申请号:US10812019
申请日:2004-03-30
申请人: Vincent Zimmer , Michael Rothman
发明人: Vincent Zimmer , Michael Rothman
IPC分类号: G06F17/30
CPC分类号: G06F21/57 , G06F2221/2115 , G06F2221/2117
摘要: An attestation identity key (AIK) is created and stored in a client computer's firmware. When the client computer is connected to a network for the first time, the AIK allows a provisioning server to determine if the client computer has been tampered with. This attestation can take place even in the absence of an operating system on the client computer.
摘要翻译: 证明身份密钥(AIK)被创建并存储在客户端计算机的固件中。 当客户端计算机首次连接到网络时,AIK允许配置服务器确定客户端计算机是否已被篡改。 即使在客户端计算机上没有操作系统的情况下也可以进行此认证。
-
公开(公告)号:US20050212720A1
公开(公告)日:2005-09-29
申请号:US10813536
申请日:2004-03-29
申请人: Michael Rothman , Vincent Zimmer
发明人: Michael Rothman , Vincent Zimmer
IPC分类号: G09G5/00
CPC分类号: G06F21/84
摘要: A method and computing system working on and/or viewing materials on a computing system in a private manner in a public environment, such as an internet café, a school, common carrier, etc. The computing system is capable of operating in a privacy mode by utilizing a human display interface which allows the user to view displayed material from a computing device while substantially excluding other people from being able to view the material.
摘要翻译: 在诸如网吧,学校,公共运营商等公共环境中以私人方式在计算系统上工作和/或查看材料的方法和计算系统。计算系统能够以隐私模式操作 通过使用人类显示界面,其允许用户从计算设备查看显示的材料,同时基本上排除其他人以能够观看材料。
-
公开(公告)号:US20050210180A1
公开(公告)日:2005-09-22
申请号:US10803950
申请日:2004-03-19
申请人: Michael Rothman , Vincent Zimmer
发明人: Michael Rothman , Vincent Zimmer
CPC分类号: G06F3/0632 , G06F3/0614 , G06F3/0689 , G06F9/4401 , G06F9/45558 , G06F2009/45579
摘要: A region on a memory device may be provided, where the region is protected from direct access by the operating system without the use of a hardware controller. Access may be provided through firmware with the use of a virtual machine manager. The system may be used to provide a software RAID.
摘要翻译: 可以提供存储器设备上的区域,其中该区域被保护免受操作系统的直接访问而不使用硬件控制器。 访问可以通过使用虚拟机管理器的固件来提供。 该系统可用于提供软件RAID。
-
130.发明申请System software to self-migrate from a faulty memory location to a safe memory location 失效系统软件从故障存储器位置自行迁移到安全存储器位置公开(公告)号:US20050188278A1
公开(公告)日:2005-08-25
申请号:US10748502
申请日:2003-12-30
申请人: Vincent Zimmer , Michael Rothman
发明人: Vincent Zimmer , Michael Rothman
IPC分类号: G06F11/00
CPC分类号: G06F11/106
摘要: A method and system to provide system software to self-migrate from a faulty memory location to a safe memory location. A faulty portion of memory in a system software memory region of a computer system is detected, the faulty portion having stored a system software component. The system software component is relocated from the faulty portion of memory to a safe portion of memory.
摘要翻译: 一种方法和系统,用于提供系统软件以从故障存储器位置自行迁移到安全存储器位置。 检测到计算机系统的系统软件存储器区域中存储器的故障部分,故障部分已经存储了系统软件组件。 系统软件组件从存储器的故障部分重新定位到存储器的安全部分。
-
-
-
-
-
-
-
-
-
搜索结果
204 条记录 (耗时 0.033 秒)
