公开(公告)号：US08041958B2

公开(公告)日：2011-10-18

申请号：US11353896

申请日：2006-02-14

Applicant: David C. Challener ,  Mark C. Davis ,  Peter Hortensius ,  Rod D. Waltermann

Inventor： David C. Challener ,  Mark C. Davis ,  Peter Hortensius ,  Rod D. Waltermann

IPC: G06F12/14

CPC classification number: G06F21/567 ,  G06F21/125

Abstract: A method for preventing malicious software from execution within a computer system is disclosed. A permutation is performed on a subset of instructions within an application program to yield a permuted sequence of instructions before any actual execution of the application program on the computer system. A permutation sequence number of the permuted sequence of instructions is stored in a permuted instruction pointer table. The permuted sequence of instructions is executed in an execution module that is capable of translating the permuted sequence of instructions to an actual machine code of a processor within the computer system according to the permutation sequence number of the permuted sequence of instructions stored in the permuted instruction pointer table.

Abstract translation: 公开了一种防止在计算机系统内执行恶意软件的方法。 在应用程序中的指令子集上执行排列，以在计算机系统上的应用程序的任何实际执行之前产生置换的指令序列。 置换的指令序列的置换序列号存储在置换的指令指针表中。 指令的置换序列在执行模块中执行，该执行模块能够根据存储在置换指令中的置换的指令序列的置换序列号，将置换的指令序列转换为计算机系统内的处理器的实际机器码 指针表。

公开(公告)号：US20110246815A1

公开(公告)日：2011-10-06

申请号：US12751581

申请日：2010-03-31

Applicant: Nathan J. Peterson ,  Rod D. Waltermann

Inventor： Nathan J. Peterson ,  Rod D. Waltermann

IPC: G06F11/20 ,  G06F11/16

CPC classification number: H04L43/0817 ,  G06F11/0709 ,  G06F11/0757 ,  G06F11/2023 ,  G06F11/2041 ,  H04L43/10

Abstract: An apparatus, method, and computer readable storage medium are disclosed to recover from lost resources in a distributed server environment. A status monitor module receives, at a first computer, periodic status messages from a peer computer. Each periodic status message indicates that the peer computer is providing a service for which the first computer serves as a backup service provider. A failure detection module determines, based on the periodic status messages, that the peer computer has stopped providing the service. An advancement module provides the service, at the first computer, in response to determining that the peer computer has stopped providing the service.

Abstract translation: 公开了一种装置，方法和计算机可读存储介质，用于从分布式服务器环境中的丢失资源中恢复。 状态监视器模块在第一计算机处接收来自对等计算机的定期状态消息。 每个周期性状态消息指示对等计算机正在提供第一计算机用作备份服务提供商的服务。 故障检测模块基于周期性状态消息确定对等计算机已经停止提供服务。 响应于确定对等计算机已经停止提供服务，提前模块在第一计算机提供服务。

公开(公告)号：US20110246714A1

公开(公告)日：2011-10-06

申请号：US12750361

申请日：2010-03-30

Applicant: Yi Zhou ,  Liang Chen ,  Rod D. Waltermann ,  John C. Mese

Inventor： Yi Zhou ,  Liang Chen ,  Rod D. Waltermann ,  John C. Mese

IPC: G06F12/16 ,  G06F12/00 ,  G06F15/177 ,  G06F9/455

CPC classification number: G06F9/45533 ,  G06F8/63 ,  G06F9/4406 ,  G06F9/44505 ,  G06F11/0727 ,  G06F11/0793

Abstract: Embodiments generally provide a utility for migrating an existing user operating system to a remote storage device. A utility for migrating user operating systems according to embodiments automatically detects and fixes inconsistent partition interdependencies resulting from the migration process.

Abstract translation: 实施例通常提供用于将现有用户操作系统迁移到远程存储设备的实用程序。 根据实施例的用于迁移用户操作系统的实用程序自动检测和修复由迁移过程导致的不一致的分区相互依赖性。

公开(公告)号：US20110246556A1

公开(公告)日：2011-10-06

申请号：US12751162

申请日：2010-03-31

Applicant: Nathan J. Peterson ,  Rod D. Waltermann ,  Arnold S. Weksler

Inventor： Nathan J. Peterson ,  Rod D. Waltermann ,  Arnold S. Weksler

IPC: G06F15/16 ,  G06F9/46

CPC classification number: H04L67/1097 ,  G06F9/5083

Abstract: Methods and arrangements where clients, in a diskless environment involving a storage area network, communicate to more optimally distribute the amount of disk input/output the individual clients are creating for the shared disk array.

Abstract translation: 涉及存储区域网络的无盘环境中的客户端进行通信以更好地分配各个客户端为共享磁盘阵列创建的磁盘输入/输出量的方法和布置。

公开(公告)号：US20110088082A1

公开(公告)日：2011-04-14

申请号：US12578462

申请日：2009-10-13

Applicant: Howard Locker ,  Rod D. Waltermann ,  Richard Wayne Cheston ,  Song Chunyu

Inventor： Howard Locker ,  Rod D. Waltermann ,  Richard Wayne Cheston ,  Song Chunyu

IPC: H04L29/06 ,  G06F9/00 ,  G06F15/177

CPC classification number: G06F21/575 ,  G06F21/53

Abstract: An exemplary apparatus includes one or more processors, volatile memory, a storage drive and circuitry configured to establish a network connection and to attempt to send credentials via an established network connection. Such an apparatus further includes circuitry configured, responsive to authentication failure after an attempt to send credentials, to release an implemented security policy and load an operating system stored on the storage drive, and, responsive to an attempt to send credentials, to maintain an implemented security policy and to use an operating system exposed via an established network connection and associated with the sent credentials Such an apparatus optionally includes circuitry configured to implement a security policy that isolates at least a portion of a local storage drive. Various other apparatuses, systems, methods, etc., are also disclosed.

Abstract translation: 示例性设备包括一个或多个处理器，易失性存储器，存储驱动器和被配置为建立网络连接并且尝试经由建立的网络连接发送凭证的电路。 这样的装置还包括：在尝试发送凭证之后，响应于认证失败，释放所实施的安全策略并加载存储在存储驱动器上的操作系统，以及响应于尝试发送凭证来维护实现的电路 安全策略，并且使用通过建立的网络连接公开并与所发送的证书相关联的操作系统。这种装置可选地包括被配置为实现隔离本地存储驱动器的至少一部分的安全策略的电路。 还公开了各种其它装置，系统，方法等。

公开(公告)号：US07782201B2

公开(公告)日：2010-08-24

申请号：US12028556

申请日：2008-02-08

Applicant: Arnold S. Weksler ,  Scott E. Kelso ,  Nathan J. Peterson ,  Rod D. Waltermann

Inventor： Arnold S. Weksler ,  Scott E. Kelso ,  Nathan J. Peterson ,  Rod D. Waltermann

IPC: G08B13/14

CPC classification number: H04M1/72527 ,  H04M2250/12

Abstract: A technique for preventing damage to a portable device includes detecting movement of a portable device and determining whether a port of the portable device is attached to an external device. When the external device is attached to the port, a notification is provided to a user of the portable device that the external device requires detachment from the portable device (e.g., assuming that the notification is not masked).

Abstract translation: 用于防止对便携式设备的损坏的技术包括检测便携式设备的移动并确定便携式设备的端口是否附接到外部设备。 当外部设备附接到端口时，向便携式设备的用户提供通知，外部设备需要从便携式设备拆卸（例如，假设通知未被屏蔽）。

公开(公告)号：US07765407B2

公开(公告)日：2010-07-27

申请号：US11612092

申请日：2006-12-18

Applicant: Howard Locker ,  Daryl Cromer ,  Randall S. Springfield ,  Rod D. Waltermann

Inventor： Howard Locker ,  Daryl Cromer ,  Randall S. Springfield ,  Rod D. Waltermann

IPC: G06F21/00

CPC classification number: G06F21/575

Abstract: A method for providing centralized user authorization to allow secure sign-on to a computer system is disclosed. In response to a user attempting to boot up a computer system, a message is sent to a trusted server by a hypervisor within the computer to request a new hard drive password for the computer system. If the user is not authorized to access the computer system, a packet is sent by the trusted server to instruct the hypervisor to stop any boot process on the computer system. If the user is authorized to access the computer system, a packet containing a partial hard drive password is sent by the trusted server to the computer system. The packet is then encrypted with a system public key by the computer system to yield the partial hard drive password. The computer system subsequently combines the partial hard drive password with a user password to generate a new complete hard drive password to continue with the boot process.

Abstract translation: 公开了一种用于提供集中式用户授权以允许对计算机系统进行安全登录的方法。 响应于尝试启动计算机系统的用户，由计算机内的虚拟机管理程序向可信服务器发送消息，以请求计算机系统的新的硬盘驱动器密码。 如果用户没有权限访问计算机系统，则可信服务器发送一个数据包，以指示管理程序停止计算机系统上的任何引导过程。 如果用户被授权访问计算机系统，则包含部分硬盘驱动器密码的分组由可信服务器发送到计算机系统。 然后，计算机系统使用系统公钥对数据包进行加密，以产生部分硬盘驱动器密码。 计算机系统随后将部分硬盘驱动器密码与用户密码相结合，以生成新的完整硬盘驱动器密码，以继续引导过程。

公开(公告)号：US20090245111A1

公开(公告)日：2009-10-01

申请号：US12059872

申请日：2008-03-31

Applicant: Rod D. Waltermann ,  Joshua N. Novak

Inventor： Rod D. Waltermann ,  Joshua N. Novak

IPC: G08C15/00

CPC classification number: H04L41/042 ,  H04L41/0896 ,  H04L43/0876 ,  H04L43/16 ,  H04L67/1097 ,  H04L69/16 ,  H04L69/163

Abstract: An apparatus, system, and method are disclosed for managing network bandwidth. A monitor module monitors traffic of a plurality of peer computers over a Transmission Control Protocol/Internet Protocol (TCP/IP) network. A detection module detects traffic exceeding a traffic threshold for the network. A delay module delays issuing each TCP/IP acknowledge signal for a specified delay interval in response to detecting the traffic exceeding the traffic threshold.

Abstract translation: 公开了一种用于管理网络带宽的装置，系统和方法。 监视器模块通过传输控制协议/因特网协议（TCP / IP）网络监视多个对等计算机的业务。 检测模块检测超过网络流量阈值的流量。 响应于检测到超过流量阈值的流量，延迟模块延迟以指定的延迟间隔发布每个TCP / IP确认信号。

公开(公告)号：US20090003292A1

公开(公告)日：2009-01-01

申请号：US11772221

申请日：2007-06-30

Applicant: Rod D. Waltermann ,  Scott E. Kelso ,  John C. Mese ,  Nathan J. Peterson ,  Arnold S. Weksler

Inventor： Rod D. Waltermann ,  Scott E. Kelso ,  John C. Mese ,  Nathan J. Peterson ,  Arnold S. Weksler

IPC: H04Q7/24

CPC classification number: H04W8/24 ,  G08B13/1418 ,  H04W4/025 ,  H04W8/005 ,  H04W64/00

Abstract: An arrangement for employing a host of receivers that may already be present in a laptop, to enable the laptop to collect a significant amount of data about its location. Once the system then finds a readily available connection, it can then transmit information about its location as well as other information to help pinpoint the location of the laptop.

Abstract translation: 用于采用可能已经存在于膝上型计算机中的接收器的主机的布置，以使笔记本电脑能够收集关于其位置的大量数据。 一旦系统找到一个容易获得的连接，它就可以发送有关其位置的信息以及其他信息，以帮助确定笔记本电脑的位置。

公开(公告)号：US20080244553A1

公开(公告)日：2008-10-02

申请号：US11692283

申请日：2007-03-28

Applicant: Daryl Carvis Cromer ,  Howard Jeffrey Locker ,  Randall Scott Springfield ,  Rod D. Waltermann

Inventor： Daryl Carvis Cromer ,  Howard Jeffrey Locker ,  Randall Scott Springfield ,  Rod D. Waltermann

IPC: G06F9/44

CPC classification number: G06F21/572

Abstract: A system, method, and program product is provided that receives and processes a firmware update at a computer system. The computer system is executing a hypervisor and one or more guest operating systems, and the firmware update corresponds to a hardware device accessible by the computer system. The hardware device is a type that is programmed using an updateable firmware. The hypervisor operating in the computer system processes the received firmware update by first inhibiting use of the device by each of the guest operating systems. After the guest operating systems have been inhibited from using the device, the firmware in the device is upgraded by the hypervisor using the received firmware update. After the firmware has been upgraded, each of the guest operating systems is allowed use of the device.

Abstract translation: 提供了一种在计算机系统接收和处理固件更新的系统，方法和程序产品。 计算机系统正在执行管理程序和一个或多个客户操作系统，并且固件更新对应于计算机系统可访问的硬件设备。 硬件设备是使用可更新固件编程的类型。 在计算机系统中操作的管理程序通过首先禁止每个客户操作系统使用该设备来处理所接收的固件更新。 在客户机操作系统被禁止使用设备之后，设备中的固件由管理程序使用接收到的固件更新进行升级。 在升级固件之后，允许每个客户机操作系统使用该设备。