公开(公告)号：US20100146317A1

公开(公告)日：2010-06-10

申请号：US12330332

申请日：2008-12-08

Applicant: David Carroll Challener ,  Daryl Cromer ,  Howard Locker ,  Randall Scott Springfield

Inventor： David Carroll Challener ,  Daryl Cromer ,  Howard Locker ,  Randall Scott Springfield

IPC: G06F1/32 ,  G06F1/28

CPC classification number: G06F1/263 ,  G06F1/3203 ,  G06F1/3293 ,  Y02D10/122 ,  Y02D50/20

Abstract: An apparatus, system, and method are disclosed for computer system power management. A control module 602 is activated on a computer 200 in response to an event and enters 818 a standby state if the computer 200 is not already 814 in the standby state. A policy module 604 detects 904 a power source of a predetermined type connected to the computer 200 and dictates 908 one or more processors 302 of higher power consumption for a more abundant type of power source such as an AC adapter 314, or one or more processors 304 of lower power consumption for a less abundant type of power source such as a battery 318. A configuration module 606, activated by the control module 602, switches 1004 the computer 200 to one or more processors 302 and 304 of a predetermined power consumption as dictated and exits 1016 the standby state.

Abstract translation: 公开了一种用于计算机系统电源管理的装置，系统和方法。 控制模块602响应于事件而在计算机200上被激活，并且如果计算机200尚未处于待机状态则进入818待机状态。 策略模块604检测904连接到计算机200的预定类型的电源，并指示908个用于更丰富类型的电源（例如AC适配器314）或一个或多个处理器的更高功耗的一个或多个处理器302 304为较不丰富的电源（例如电池318）的较低功耗。由控制模块602激活的配置模块606将计算机200切换到具有预定功率消耗的一个或多个处理器302和304，如 指定并退出1016备用状态。

公开(公告)号：US20100115256A1

公开(公告)日：2010-05-06

申请号：US12265909

申请日：2008-11-06

Applicant: David Carroll Challener ,  Howard Locker ,  Joseph Michael Pennist ,  Randall Scott Springfield

Inventor： David Carroll Challener ,  Howard Locker ,  Joseph Michael Pennist ,  Randall Scott Springfield

IPC: G06F15/177

CPC classification number: G06F8/66

Abstract: An apparatus, system, and method are disclosed for quiescing a boot environment. A reservation module reserves a portion of a first storage device. A store module stores an update boot image to the reserved portion. A detection module detects the update boot image stored on the first storage device when the computer boots and executes the update boot image in place of a standard boot image in response to detecting the update boot image. The update boot image places a computer in a known quiescent state.

Abstract translation: 公开了用于停止引导环境的装置，系统和方法。 预留模块保留第一存储设备的一部分。 存储模块将更新引导映像存储到保留部分。 当计算机启动时，检测模块检测存储在第一存储设备上的更新引导映像，并且响应于检测到更新引导映像而执行替换引导映像代替标准引导映像。 更新引导映像将计算机置于已知的静态状态。

公开(公告)号：US20090205044A1

公开(公告)日：2009-08-13

申请号：US12027761

申请日：2008-02-07

Applicant: David Carroll Challener ,  Howard Locker ,  Philip John Jakes ,  Randall Scott Springfield

Inventor： David Carroll Challener ,  Howard Locker ,  Philip John Jakes ,  Randall Scott Springfield

IPC: G06F11/00

CPC classification number: G06F21/552

Abstract: An apparatus, system, and method are disclosed for secure hard disk signed audit. The apparatus is provided with a plurality of modules configured to functionally execute the necessary steps of monitoring interactions with an audited system, detecting an interrupt event corresponding to an auditable interaction, and logging an audit record for the auditable interaction in response to the interrupt event, wherein the audit record is logged in an access-restricted portion of a portion-securable hard disk. These modules in the described embodiments include a gate module, a detection module, and a logging module.

Abstract translation: 公开了用于安全硬盘签名审核的装置，系统和方法。 该装置设置有多个模块，其被配置为在功能上执行监视与被审计系统的交互的必要步骤，检测与可审计交互相对应的中断事件，以及响应于中断事件记录可审计交互的审计记录， 其中审计记录被记录在部分可安全的硬盘的访问受限的部分中。 所述实施例中的这些模块包括门模块，检测模块和测井模块。

公开(公告)号：US20090070598A1

公开(公告)日：2009-03-12

申请号：US11852418

申请日：2007-09-10

Applicant: Daryl Carvis Cromer ,  Howard Jeffrey Locker ,  Randall Scott Springfield

Inventor： Daryl Carvis Cromer ,  Howard Jeffrey Locker ,  Randall Scott Springfield

IPC: G06F12/14

CPC classification number: G06F21/575

Abstract: A system, method, and program product is provided that initializes expected PCRs stored in a TPM by generating and storing a random number, seeding expected PCRs with the random number, inputting a set of startup code processes to a hash algorithm resulting in a set of hash values, updating the expected PCRs using the set of hash values, and saving the expected PCRs in a nonvolatile data area that is secured by the TPM. Upon reboot, the random number is retrieved from the nonvolatile data area, the PCRs are seeded with the retrieved random number, the startup code processes are input to the hash algorithm process resulting in another set of hash values, the PCRs are updated using the resulting set of hash values, and an encrypted data object is decrypted in response to the PCRs being the same as the expected PCRs.

Abstract translation: 提供了一种系统，方法和程序产品，其通过生成和存储随机数来初始化存储在TPM中的预期PCR，将随机数的种子预期PCR输入到一个散列算法中，从而产生一组 散列值，使用该组散列值更新预期PCR，并将预期PCR保存在由TPM保护的非易失性数据区域中。 在重新启动时，从非易失性数据区域检索随机数，用检索的随机数种子PCR，将启动代码处理输入到散列算法处理，得到另一组散列值，使用所得到的更新PCR 响应于与预期PCR相同的PCR来解密加密数据对象。

公开(公告)号：US07484241B2

公开(公告)日：2009-01-27

申请号：US10994620

申请日：2004-11-22

Applicant: David Carroll Challener ,  Steven Dale Goodman ,  James Patrick Hoff ,  David Rivera ,  Randall Scott Springfield

Inventor： David Carroll Challener ,  Steven Dale Goodman ,  James Patrick Hoff ,  David Rivera ,  Randall Scott Springfield

IPC: G06F7/04 ,  H04L9/32

CPC classification number: G06F21/41

Abstract: Methods and arrangements are disclosed for secure single sign on to an operating system using only a power-on password. In many embodiments modified BIOS code prompts for, receives and verifies the power-on password. The power-on password is hashed and stored in a Platform Configuration Register of the Trusted Platform Module. In a setup mode, the trusted platform module encrypts the operating system password using the hashed power-on password. In a logon mode, the trusted platform module decrypts the operating system password using the hashed power-on password.

Abstract translation: 公开了仅使用开机密码的安全单点登录到操作系统的方法和布置。 在许多实施例中，修改的BIOS代码提示，接收和验证开机密码。 开机密码被散列并存储在可信平台模块的平台配置寄存器中。 在设置模式下，可信平台模块使用散列开机密码对操作系统密码进行加密。 在登录模式下，可信平台模块使用散列开机密码解密操作系统密码。

公开(公告)号：US07480265B2

公开(公告)日：2009-01-20

申请号：US10727004

申请日：2003-12-03

Applicant: Daryl Carvis Cromer ,  Philip John Jakes ,  Howard Jeffrey Locker ,  Randall Scott Springfield

Inventor： Daryl Carvis Cromer ,  Philip John Jakes ,  Howard Jeffrey Locker ,  Randall Scott Springfield

IPC: G08C17/00 ,  H04B1/16

CPC classification number: H04L12/12 ,  H04W52/0225 ,  H04W84/12 ,  Y02D70/142 ,  Y02D70/144

Abstract: A system and method for autonomic extensions to wake on LAN are presented. An access point detects wake on LAN (WOL) requests that are targeted for unassociated clients. When the access point detects a WOL request for an unassociated client, the access point stores the WOL request in a table for a predefined amount of time. A client queries the access point periodically to see if the access point is storing a WOL request which is targeted for the client. When the access point receives the query, the access point compares the client's identifier, such as its MAC address, with targeted client identifiers corresponding to pending WOL requests. When the access point detects a match, the access point sends the WOL request to the client for the client to process.

Abstract translation: 提出了一种用于局域网唤醒的自主扩展的系统和方法。 接入点检测针对非关联客户机的唤醒唤醒（WOL）请求。 当接入点检测到无关联客户端的WOL请求时，接入点将WOL请求存储在表中预定义的时间量。 客户端定期查询接入点，查看接入点是否正在存储针对客户端的WOL请求。 当接入点接收到查询时，接入点将客户端的标识符（例如其MAC地址）与对应于待处理的WOL请求的目标客户端标识进行比较。 当接入点检测到匹配时，接入点将发送WOL请求给客户端进行处理。

公开(公告)号：US20080301675A1

公开(公告)日：2008-12-04

申请号：US11755130

申请日：2007-05-30

Applicant: Daryl Carvis Cromer ,  Howard Jeffrey Locker ,  Randall Scott Springfield ,  Jennifer Greenwood Zawacki

Inventor： Daryl Carvis Cromer ,  Howard Jeffrey Locker ,  Randall Scott Springfield ,  Jennifer Greenwood Zawacki

IPC: G06F9/455

CPC classification number: G06F9/45533 ,  G06F3/1438

Abstract: A hypervisor operating system instantiates a virtual video driver to a main operating system that supports only one type of graphics adapter. The virtual driver handles graphics remapping among plural different display drivers associated with plural different display monitors to enable a computer to output data on multiple different monitors even though the main O.S. supports only one type of display driver.

Abstract translation: 虚拟机管理程序操作系统将虚拟视频驱动程序实例化为仅支持一种图形适配器的主操作系统。 虚拟驱动器处理与多个不同显示监视器相关联的多个不同显示驱动器之间的图形重新映射，以使得计算机能够在多个不同显示器上输出数据，即使主O.S. 仅支持一种显示驱动程序。

公开(公告)号：US20080184025A1

公开(公告)日：2008-07-31

申请号：US12058696

申请日：2008-03-29

Applicant: Richard Alan Dayan ,  Joseph Wayne Freeman ,  William Fred Keown ,  Randall Scott Springfield

Inventor： Richard Alan Dayan ,  Joseph Wayne Freeman ,  William Fred Keown ,  Randall Scott Springfield

IPC: G06F15/177

CPC classification number: G06F9/4406 ,  G06F11/1417 ,  G06F11/1441

Abstract: A system, computer program product and method for booting to a partition in a non-volatile storage unit without a local operator. In one embodiment, one or more bits in a BOOT register may be set by an operating system indicating if the BIOS should boot to the partition. The BIOS may then read the BOOT register to determine if the BIOS is to boot to the partition as well as any activities to perform if the BIOS is to boot to the partition. In another embodiment, a network interface card may insert directive information received from a packet in a register within the network interface card. The BIOS may then read the register within the network interface card to determine if the BIOS is to boot to the partition as well as any activities to perform if the BIOS is to boot to the partition.

Abstract translation: 用于在没有本地操作者的情况下引导到非易失性存储单元中的分区的系统，计算机程序产品和方法。 在一个实施例中，BOOT寄存器中的一个或多个位可以由操作系统设置，指示是否BIOS应该引导到分区。 然后，BIOS可以读取BOOT寄存器，以确定BIOS是否要引导到分区，以及BIOS是否要引导到分区时执行的任何活动。 在另一个实施例中，网络接口卡可以将从分组接收的指令信息插入网络接口卡内的寄存器中。 然后，BIOS可以读取网络接口卡内的寄存器，以确定BIOS是否要引导到分区，以及BIOS要启动到分区的任何活动。

公开(公告)号：US20080133905A1

公开(公告)日：2008-06-05

申请号：US11565452

申请日：2006-11-30

Applicant: David Carroll Challener ,  Seiichi Kawano ,  Randall Scott Springfield ,  Rod D. Waltermann

Inventor： David Carroll Challener ,  Seiichi Kawano ,  Randall Scott Springfield ,  Rod D. Waltermann

IPC: H04L9/32

CPC classification number: H04L9/0822 ,  H04L9/3226

Abstract: An apparatus, system, and method are disclosed for remotely accessing a shared password. A storage module stores identifiers, passwords, and keys within a secure key structure of a client. The passwords and keys include a shared password encrypted with a shared password key that is encrypted with a service structure key. The storage module also stores the service structure key encrypted with a key derived from a service password on a trusted server. An input/output module accesses the trusted server from the client with a prospective service password and receives the encrypted service structure key from the trusted server if a hash of the prospective service password is equivalent to the service password. An encryption module may decrypt the service structure key with the prospective service password, the shared password key with the service structure key, and the shared password with the shared password key.

Abstract translation: 公开了用于远程访问共享密码的装置，系统和方法。 存储模块在客户端的安全密钥结构内存储标识符，密码和密钥。 密码和密钥包括使用通过服务结构密钥加密的共享密码密钥加密的共享密码。 存储模块还将在服务密码上导出的密钥加密的服务结构密钥存储在可信服务器上。 输入/输出模块从客户端接收可信服务密码，如果预期服务密码的散列等于服务密码，则从可信服务器接收加密的服务结构密钥。 加密模块可以利用预期服务密码，具有服务结构密钥的共享密码密钥和具有共享密码密钥的共享密码对服务结构密钥进行解密。

公开(公告)号：US07366888B2

公开(公告)日：2008-04-29

申请号：US09876426

申请日：2001-06-07

Applicant: Richard Alan Dayan ,  Joseph Wayne Freeman ,  William Fred Keown, Jr. ,  Randall Scott Springfield

Inventor： Richard Alan Dayan ,  Joseph Wayne Freeman ,  William Fred Keown, Jr. ,  Randall Scott Springfield

IPC: G06F15/177

CPC classification number: G06F9/4406 ,  G06F11/1417 ,  G06F11/1441

Abstract: A system, computer program product and method for booting to a partition in a non-volatile storage unit without a local operator. In one embodiment, one or more bits in a BOOT register may be set by an operating system indicating if the BIOS should boot to the partition. The BIOS may then read the BOOT register to determine if the BIOS is to boot to the partition as well as any activities to perform if the BIOS is to boot to the partition. In another embodiment, a network interface card may insert directive information received from a packet in a register within the network interface card. The BIOS may then read the register within the network interface card to determine if the BIOS is to boot to the partition as well as any activities to perform if the BIOS is to boot to the partition.

Abstract translation: 用于在没有本地操作者的情况下引导到非易失性存储单元中的分区的系统，计算机程序产品和方法。 在一个实施例中，BOOT寄存器中的一个或多个位可以由操作系统设置，指示是否BIOS应该引导到分区。 然后，BIOS可以读取BOOT寄存器，以确定BIOS是否要引导到分区，以及BIOS是否要引导到分区时执行的任何活动。 在另一个实施例中，网络接口卡可以将从分组接收的指令信息插入网络接口卡内的寄存器中。 然后，BIOS可以读取网络接口卡内的寄存器，以确定BIOS是否要引导到分区，以及BIOS要启动到分区的任何活动。