-
11.发明申请公开(公告)号:US20100205375A1
公开(公告)日:2010-08-12
申请号:US12368882
申请日:2009-02-10
申请人: David Carroll Challener , Richard Wayne Cheston , Howard Locker , Randall Scott Springfield , Rod D. Waltermann
发明人: David Carroll Challener , Richard Wayne Cheston , Howard Locker , Randall Scott Springfield , Rod D. Waltermann
IPC分类号: G06F12/08
CPC分类号: G06F12/0868 , G06F2212/263 , G06F2212/314 , H04L29/08846 , H04L67/1097 , H04L67/2842
摘要: A method, apparatus, and system are disclosed of forward caching for a managed client. A storage module stores a software image on a storage device of a backend server. The backend server provides virtual disk storage on the storage device through a first intermediate network point for a plurality of diskless data processing devices. Each diskless data processing device communicates directly with the first intermediate network point. The storage module caches an image instance of the software image at the first intermediate network point. A tracking module detects an update to the software image on the storage device. The storage module copies the updated software image to the first intermediate network point as an updated image instance.
摘要翻译: 公开了一种用于被管理客户端的前向缓存的方法,装置和系统。 存储模块将软件映像存储在后端服务器的存储设备上。 后端服务器通过用于多个无盘数据处理设备的第一中间网络点在存储设备上提供虚拟磁盘存储。 每个无盘数据处理装置与第一中间网络点直接通信。 存储模块在第一中间网络点高速缓存软件映像的图像实例。 跟踪模块检测对存储设备上的软件映像的更新。 存储模块将更新的软件映像作为更新的图像实例复制到第一中间网络点。
-
公开(公告)号:US20100122250A1
公开(公告)日:2010-05-13
申请号:US12269668
申请日:2008-11-12
IPC分类号: G06F9/445 , G06F9/455 , G06F9/46 , G06F15/177
CPC分类号: G06F21/53 , G06F8/61 , G06F9/4401 , G06F9/45558 , G06F9/468 , G06F21/575 , G06F2009/45562 , G06F2009/45587
摘要: An apparatus, system, and method are disclosed for granting hypervisor privileges. An installation module installs a monitor hypervisor wherein only the monitor hypervisor is granted the hypervisor privileges by the computer. An authentication module authenticates a second hypervisor. An eviction module evicts the monitor hypervisor if the second hypervisor is authenticated. The installation module further installs the second hypervisor after the monitor hypervisor is evicted so that only the second hypervisor is granted hypervisor privileges by the computer
摘要翻译: 公开了用于授予管理程序特权的装置,系统和方法。 安装模块安装监视器管理程序,其中只有监视器管理程序被计算机授予管理程序的权限。 认证模块认证第二管理程序。 如果第二个管理程序被认证,驱逐模块将使监视器管理程序移走。 在监视器管理程序被驱逐之后,安装模块进一步安装第二管理程序,使得只有第二管理程序被计算机授予管理程序特权
-
13.发明授权公开(公告)号:US07620997B2
公开(公告)日:2009-11-17
申请号:US10748919
申请日:2003-12-22
申请人: David Carroll Challener , Daryl Carvis Cromer , Howard Jeffrey Locker , Hernando Ovies , Randall Scott Springfield
发明人: David Carroll Challener , Daryl Carvis Cromer , Howard Jeffrey Locker , Hernando Ovies , Randall Scott Springfield
摘要: When an authenticated wireless computer loses connectivity to a wireless access point of a network and roams to another access point, the wireless computer (e.g., a hypervisor in the computer) determines whether the new access point is authorized for secure communication and if so, releases access to secure data on the network through the new access point.
摘要翻译: 当经认证的无线计算机失去与网络的无线接入点的连接并漫游到另一接入点时,无线计算机(例如,计算机中的管理程序)确定新接入点是否被授权用于安全通信,如果是,则释放 通过新的接入点访问网络上的安全数据。
-
14.发明申请System and Method for Securely Clearing Secret Data that Remain in a Computer System Memory 有权安全清除计算机系统内存中保密数据的系统和方法公开(公告)号:US20090222915A1
公开(公告)日:2009-09-03
申请号:US12040953
申请日:2008-03-03
申请人: David Carroll Challener , Daryl Carvis Cromer , Howard Jeffrey Locker , Randall Scott Springfield
发明人: David Carroll Challener , Daryl Carvis Cromer , Howard Jeffrey Locker , Randall Scott Springfield
IPC分类号: G06F21/00
摘要: A system, method, and program product is provided that initializes a counter maintained in a nonvolatile memory of a security module to an initialization value. The security module receives requests for a secret from requesters. The security module releases the secret to the requesters and the released secrets are stored in memory areas allocated to the requesters. A counter is incremented when the secret is released. Requestors send notifications to the security module indicating that the requestor has removed the secret from the requestor's memory area. The security module decrements the counter each time a notification is received. When the computer system is rebooted, if the counter is not at the initialization value, the system memory is scrubbed erasing any secrets that remain in memory.
摘要翻译: 提供了一种系统,方法和程序产品,其将维护在安全模块的非易失性存储器中的计数器初始化为初始化值。 安全模块从请求者接收到秘密的请求。 安全模块向请求者释放秘密,所发布的秘密存储在分配给请求者的内存区域中。 当秘密被释放时,计数器递增。 请求者向安全模块发送指示请求者已经从请求者的存储区域移除了秘密的通知。 每次接收到通知时,安全模块都会递减计数器。 当计算机系统重新启动时,如果计数器不在初始化值,系统内存将被擦除擦除留在内存中的任何秘密。
-
15.发明申请System and Method for Secure Usage of Peripheral Devices Using Shared Secrets 有权使用共享密码安全使用外围设备的系统和方法公开(公告)号:US20090119785A1
公开(公告)日:2009-05-07
申请号:US11934829
申请日:2007-11-05
申请人: David Carroll Challener , Daryl Cromer , Philip John Jakes , Howard Jeffrey Locker , Randall Scott Springfield
发明人: David Carroll Challener , Daryl Cromer , Philip John Jakes , Howard Jeffrey Locker , Randall Scott Springfield
IPC分类号: G06F21/04
CPC分类号: G06F21/31 , G06F21/78 , G06F21/82 , G06F2221/2129
摘要: A system, method, and program product is provided that establishes a shared secret between a computer system and a peripheral device such as a removable nonvolatile storage device or a printer. After establishing the shared secret, the peripheral device is locked. After the peripheral device is locked, an unlock request is received and the shared secret is sent to the peripheral device. The peripheral device then attempts to verify the shared secret. If the shared secret is successfully verified, then the peripheral device is unlocked allowing use of the device by using an encryption key that is made available by the verified shared secret. On the other hand, if the shared secret is not verified, then the peripheral device remains locked and use of the device is prevented.
摘要翻译: 提供了一种系统,方法和程序产品,其在计算机系统和诸如可移动的非易失性存储设备或打印机的外围设备之间建立共享秘密。 建立共享密钥后,外围设备被锁定。 在外围设备被锁定之后,接收到解锁请求并将共享密钥发送到外围设备。 然后,外围设备尝试验证共享密钥。 如果共享密钥被成功验证,则外围设备被解锁,允许使用由验证的共享秘密提供的加密密钥来使用该设备。 另一方面,如果未验证共享密钥,则外围设备保持锁定,并且防止了设备的使用。
-
公开(公告)号:US20090083555A1
公开(公告)日:2009-03-26
申请号:US11861597
申请日:2007-09-26
CPC分类号: G06F21/6209 , G06F21/74 , G06F2221/2103 , G06F2221/2105 , H04L63/1441
摘要: A method and system are disclosed for placing a computer in a safe and secure lock down state from a remote location using a remote command device such as a cellular telephone. The method and system includes optional security provisions before restarting the computer.
摘要翻译: 公开了一种用于使用诸如蜂窝电话的远程命令装置将计算机从远程位置放置在安全和安全的锁定状态的方法和系统。 在重新启动计算机之前,该方法和系统包括可选的安全规定。
-
17.发明申请System and Method for Virtualized Hypervisor to Detect Insertion of Removable Media 有权虚拟化管理程序的系统和方法,用于检测可移动介质的插入公开(公告)号:US20080127309A1
公开(公告)日:2008-05-29
申请号:US11564832
申请日:2006-11-29
IPC分类号: G06F21/20
CPC分类号: H04L63/10 , G06F21/552 , G06F2221/2153
摘要: A system and method for using a client-side hypervisor in conjunction with a secure network-side monitoring mechanism to detect removable media insertions since a client's last network session with the secure network is presented. The hypervisor uses a “client-side insertion value” to track the number of times that a user inserts removable media into a socket located on the client. When the client is connected to the secure network, the client's hypervisor notifies the secure network of each insertion and the secure network increments a “secure network-side tracker value.” For each login request, the client includes the client-side insertion value, which the secure network compares against its secure network-side tracker value. When the two values are different, the secure network sends an action request to the client, such as a request to perform a full system scan. Once the client performs the action, the client's hypervisor resets its client-side insertion value and attempts to logon to the secure network again.
摘要翻译: 提出了客户端管理程序与安全网络侧监视机制结合使用以检测可移动介质插入的系统和方法,因为客户端与安全网络的最后一次网络会话。 管理程序使用“客户端插入值”来跟踪用户将可移动媒体插入位于客户端上的套接字的次数。 当客户端连接到安全网络时,客户端的管理程序会将安全网络通知每个插入,并且安全网络会增加“安全网络侧跟踪器值”。 对于每个登录请求,客户端包括客户端插入值,安全网络与安全网络侧跟踪器值进行比较。 当两个值不同时,安全网络向客户端发送动作请求,例如执行完整系统扫描的请求。 一旦客户端执行操作,客户端的管理程序将重置其客户端插入值,并尝试再次登录到安全网络。
-
18.发明申请Apparatus, system, and method for securing I/O communications between a blade and a peripheral interface device of a blade-based computer system 审中-公开用于保护刀片和基于刀片的计算机系统的外围接口设备之间的I / O通信的装置,系统和方法公开(公告)号:US20060184785A1
公开(公告)日:2006-08-17
申请号:US11058987
申请日:2005-02-16
申请人: David Carroll Challener , Daryl Carvis Cromer , Steven Dale Goodman , Howard Jeffery Locker , Randall Scott Springfield
发明人: David Carroll Challener , Daryl Carvis Cromer , Steven Dale Goodman , Howard Jeffery Locker , Randall Scott Springfield
IPC分类号: H04L9/00
CPC分类号: G06F21/606 , G06F21/85
摘要: An apparatus, system, and method are disclosed for securing I/O communications between a blade and peripheral interface device. The apparatus includes a determination module, a source security module, and a source communication module. The determination module identifies I/O data configured for transmission to a destination module configured to receive secure I/O data. The source security module encrypts the I/O data to generate secured I/O data such that subsequent decryption of the secured I/O data is restricted to a destination module. The source communication module transmits the secured I/O data over a vulnerable communication link to the destination module. The vulnerable communication link comprises a message intercept vulnerability. The destination module is configured to unencrypt the secure I/O data for a destination device such as a display device.
摘要翻译: 公开了用于保护刀片和外围接口设备之间的I / O通信的装置,系统和方法。 该装置包括确定模块,源安全模块和源通信模块。 确定模块识别配置为传输到配置为接收安全I / O数据的目标模块的I / O数据。 源安全模块加密I / O数据以产生安全的I / O数据,使得安全I / O数据的后续解密被限制到目的地模块。 源通信模块通过易受攻击的通信链路将目标模块的安全I / O数据发送到目标模块。 脆弱的通信链路包括消息拦截漏洞。 目的地模块被配置为对诸如显示设备的目的地设备的安全I / O数据进行解密。
-
19.发明授权System and method for protecting disk drive password when BIOS causes computer to leave suspend state 有权当BIOS使计算机挂起状态时,保护磁盘驱动器密码的系统和方法公开(公告)号:US07814321B2
公开(公告)日:2010-10-12
申请号:US11788654
申请日:2007-04-19
IPC分类号: H04L9/32
CPC分类号: G06F21/80
摘要: To unlock a HDD when a computer is in the suspend state, at both BIOS and the HDD a secret is combined with a password to render a new one-time password. BIOS sends its new one-time password to the HDD which unlocks itself only if a match is found. The new one-time password is then saved as an “old” password for subsequent combination with the secret when coming out of subsequent suspend states. In this way, if a computer is stolen the thief cannot sniff the bus between BIOS and the HDD to obtain a password that is of any use once the computer ever re-enters the suspend state.
摘要翻译: 要在计算机处于挂起状态时解锁HDD,在BIOS和HDD两者中,将密码与密码相结合以呈现新的一次性密码。 BIOS将其新的一次性密码发送到HDD,只有在找到匹配时才会自动解锁。 然后将新的一次性密码保存为“旧”密码,以便随后从后续挂起状态中与秘密组合。 以这种方式,如果计算机被盗,小偷不能在BIOS和HDD之间嗅探总线,以获得一旦计算机重新进入暂停状态就可以使用的密码。
-
20.发明申请Apparatus, System, and Method for Power Management Utilizing Multiple Processor Types 有权使用多种处理器类型的电源管理的装置,系统和方法公开(公告)号:US20100146317A1
公开(公告)日:2010-06-10
申请号:US12330332
申请日:2008-12-08
CPC分类号: G06F1/263 , G06F1/3203 , G06F1/3293 , Y02D10/122 , Y02D50/20
摘要: An apparatus, system, and method are disclosed for computer system power management. A control module 602 is activated on a computer 200 in response to an event and enters 818 a standby state if the computer 200 is not already 814 in the standby state. A policy module 604 detects 904 a power source of a predetermined type connected to the computer 200 and dictates 908 one or more processors 302 of higher power consumption for a more abundant type of power source such as an AC adapter 314, or one or more processors 304 of lower power consumption for a less abundant type of power source such as a battery 318. A configuration module 606, activated by the control module 602, switches 1004 the computer 200 to one or more processors 302 and 304 of a predetermined power consumption as dictated and exits 1016 the standby state.
摘要翻译: 公开了一种用于计算机系统电源管理的装置,系统和方法。 控制模块602响应于事件而在计算机200上被激活,并且如果计算机200尚未处于待机状态则进入818待机状态。 策略模块604检测904连接到计算机200的预定类型的电源,并指示908个用于更丰富类型的电源(例如AC适配器314)或一个或多个处理器的更高功耗的一个或多个处理器302 304为较不丰富的电源(例如电池318)的较低功耗。由控制模块602激活的配置模块606将计算机200切换到具有预定功率消耗的一个或多个处理器302和304,如 指定并退出1016备用状态。
-
-
-
-
-
-
-
-
-
搜索结果
170 条记录 (耗时 0.035 秒)
