利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

93 条记录 (耗时 0.034 秒)

    FIRMWARE-BASED TRUSTED PLATFORM MODULE FOR ARM PROCESSOR ARCHITECTURES AND TRUSTZONE SECURITY EXTENSIONS
    11.
    发明申请
    FIRMWARE-BASED TRUSTED PLATFORM MODULE FOR ARM PROCESSOR ARCHITECTURES AND TRUSTZONE SECURITY EXTENSIONS 有权
    用于ARM处理器架构和TRUSTZONE安全扩展的基于固件的TRUSTED平台模块

    公开(公告)号:US20130031374A1

    公开(公告)日:2013-01-31

    申请号:US13193945

    申请日:2011-07-29

    申请人: Stefan Thom Jeremiah Cox David Linsley Magnus Nystrom Himanshu Raj David Robinson Stefan Saroiu Rob Spiger Alastair Wolman

    发明人: Stefan Thom Jeremiah Cox David Linsley Magnus Nystrom Himanshu Raj David Robinson Stefan Saroiu Rob Spiger Alastair Wolman

    IPC分类号: G06F21/00

    CPC分类号: G06F21/552 G06F21/46 G06F21/57 G06F21/572 G06F21/575 G06F21/71 G06F21/74 G06F2221/034

    摘要: A “Firmware-Based TPM” or “fTPM” ensures that secure code execution is isolated to prevent a wide variety of potential security breaches. Unlike a conventional hardware based Trusted Platform Module (TPM), isolation is achieved without the use of dedicated security processor hardware or silicon. In general, the fTPM is first instantiated in a pre-OS boot environment by reading the fTPM from system firmware or firmware accessible memory or storage and placed into read-only protected memory of the device. Once instantiated, the fTPM enables execution isolation for ensuring secure code execution. More specifically, the fTPM is placed into protected read-only memory to enable the device to use hardware such as the ARM® architecture's TrustZone™ extensions and security primitives (or similar processor architectures), and thus the devices based on such architectures, to provide secure execution isolation within a “firmware-based TPM” without requiring hardware modifications to existing devices.

    摘要翻译: 基于固件的TPM或fTPM确保安全代码执行被隔离,以防止各种潜在的安全漏洞。 与传统的基于硬件的可信平台模块(TPM)不同,在不使用专用安全处理器硬件或硅片的情况下实现隔离。 通常,通过从系统固件或固件可访问的存储器或存储器读取fTPM并将其放置在设备的只读受保护的存储器中,fTPM首先在前OS引导环境中实例化。 一旦实例化,fTPM就能实现执行隔离,以确保执行安全的代码。 更具体地说,将fTPM放置到受保护的只读存储器中,以使设备能够使用诸如ARM®架构的TrustZone™扩展和安全原语(或类似的处理器架构)之类的硬件,从而使基于这种架构的设备提供 基于固件的TPM中的安全执行隔离,而不需要对现有设备进行硬件修改。

    Trusted sensors
    15.
    发明授权
    Trusted sensors 有权
    可信传感器

    公开(公告)号:US08832461B2

    公开(公告)日:2014-09-09

    申请号:US12823150

    申请日:2010-06-25

    申请人: Stefan Saroiu Alastair Wolman

    发明人: Stefan Saroiu Alastair Wolman

    IPC分类号: G06F11/30 G06F21/57 G06F21/53

    CPC分类号: G06F21/57 G06F21/53 H04L9/3218 H04L9/3247 H04L2209/805

    摘要: Architecture that provides trusted sensors and trusted sensor readings on computing devices such as mobile devices. The architecture utilizes a trustworthy computing technology (e.g., trusted platform module (TPM). In the context of TPM, one implementation requires no additional hardware beyond the TPM and a virtualized environment to provide trusted sensor readings. A second implementation incorporates trusted computing primitives directly into sensors and enhances security using signed sensor readings. Privacy issues arising from the deployment of trusted sensors are also addressed by utilizing protocols.

    摘要翻译: 在计算设备(如移动设备)上提供信任的传感器和可靠的传感器读数的架构。 该架构采用可信赖的计算技术(例如可信赖的平台模块(TPM)),在TPM的上下文中,一个实现不需要TPM以外的附加硬件和虚拟化环境来提供可信赖的传感器读数。第二个实现包括可信赖的计算原语直接 传感器,并使用带符号的传感器读数增强安全性。通过使用协议也可以解决部署信任传感器所引起的隐私问题。

    Location proofs
    16.
    发明授权
    Location proofs 有权
    位置证明

    公开(公告)号:US08531334B2

    公开(公告)日:2013-09-10

    申请号:US12613540

    申请日:2009-11-06

    申请人: Alastair Wolman Stefan Saroiu

    发明人: Alastair Wolman Stefan Saroiu

    IPC分类号: H04K1/00

    CPC分类号: H04W12/00 G01S5/0205 G01S19/23 G01S19/42

    摘要: A wireless computing device includes an antenna that is configured to transmit and receive wireless signals. The wireless computing device comprises a transmitter component that causes a first wireless signal to be transmitted to a wireless access point via the antenna, wherein the first wireless signal comprises a request for a location proof, wherein the request for the location proof comprises data that identifies the wireless computing device, and wherein the location proof comprises data that is indicative of a geographic location of the wireless access point. The system also includes a receiver component that receives, via the antenna, a second wireless signal from the wireless access point, wherein the second wireless signal is received by the receiver component subsequent to the transmitter component causing the first wireless signal to be transmitted to the wireless access point.

    摘要翻译: 无线计算设备包括被配置为发送和接收无线信号的天线。 无线计算设备包括发射机组件,其使第一无线信号通过天线发射到无线接入点,其中,第一无线信号包括对位置证明的请求,其中对位置证明的请求包括标识的数据 所述无线计算设备,并且其中所述位置证明包括指示所述无线接入点的地理位置的数据。 该系统还包括接收器组件,其经由天线从无线接入点接收第二无线信号,其中第二无线信号由发射机组件之后的接收机组件接收,使得第一无线信号被发送到 无线接入点。

    LOCATION PROOFS
    18.
    发明申请
    LOCATION PROOFS 有权
    位置申请

    公开(公告)号:US20110109508A1

    公开(公告)日:2011-05-12

    申请号:US12613540

    申请日:2009-11-06

    申请人: Alastair Wolman Stefan Saroiu

    发明人: Alastair Wolman Stefan Saroiu

    IPC分类号: G01S5/14

    CPC分类号: H04W12/00 G01S5/0205 G01S19/23 G01S19/42

    摘要: A wireless computing device includes an antenna that is configured to transmit and receive wireless signals. The wireless computing device comprises a transmitter component that causes a first wireless signal to be transmitted to a wireless access point via the antenna, wherein the first wireless signal comprises a request for a location proof, wherein the request for the location proof comprises data that identifies the wireless computing device, and wherein the location proof comprises data that is indicative of a geographic location of the wireless access point. The system also includes a receiver component that receives, via the antenna, a second wireless signal from the wireless access point, wherein the second wireless signal is received by the receiver component subsequent to the transmitter component causing the first wireless signal to be transmitted to the wireless access point.

    摘要翻译: 无线计算设备包括被配置为发送和接收无线信号的天线。 无线计算设备包括发射机组件,其使第一无线信号通过天线发射到无线接入点,其中,第一无线信号包括对位置证明的请求,其中对位置证明的请求包括标识的数据 所述无线计算设备,并且其中所述位置证明包括指示所述无线接入点的地理位置的数据。 该系统还包括接收器组件,其经由天线从无线接入点接收第二无线信号,其中第二无线信号由发射机组件之后的接收机组件接收,使得第一无线信号被发送到 无线接入点。