-
公开(公告)号:US20210036998A1
公开(公告)日:2021-02-04
申请号:US17063485
申请日:2020-10-05
Applicant: Intel Corporation
Inventor: Brent D. Thomas , Eric Innis , Raghunandan Makaram
Abstract: An apparatus for cloud key management may include a networking interface, a memory, and a processor, coupled to the memory and the networking interface, the networking interface to couple the apparatus to one or more endpoint servers (EPSs) of a cloud service provider (CSP), each EPS including a hardware accelerator, and a management node (MN) of the CSP. The apparatus may further include an accelerator functional unit (AFU) developer interface module operated by the processor to receive cryptographic material (CM) for each of one or more AFU developers (AFUDs) and store it into the memory, the CM includes a public key hash (PKH), and an encryption key (EK) to decrypt an AFU of the AFUD. The apparatus may also include an EK communication module operated by the processor to: receive, from the MN, a request to send to a targeted EPS an encrypted lookup table (LUT), the LUT including PKHs and associated EKs for a set of the one or more AFUDs from which the targeted EPS is authorized to receive AFUs, and in response to the request, send, to the targeted EPS, the LUT.
-
公开(公告)号:US20190044731A1
公开(公告)日:2019-02-07
申请号:US16017770
申请日:2018-06-25
Applicant: Intel Corporation
Inventor: Brent D. Thomas , Eric Innis , Raghunandan Makaram
Abstract: An apparatus for cloud key management may include a networking interface, a memory, and a processor, coupled to the memory and the networking interface, the networking interface to couple the apparatus to one or more endpoint servers (EPSs) of a cloud service provider (CSP), each EPS including a hardware accelerator, and a management node (MN) of the CSP. The apparatus may further include an accelerator functional unit (AFU) developer interface module operated by the processor to receive cryptographic material (CM) for each of one or more AFU developers (AFUDs) and store it into the memory, the CM includes a public key hash (PKH), and an encryption key (EK) to decrypt an AFU of the AFUD. The apparatus may also include an EK communication module operated by the processor to: receive, from the MN, a request to send to a targeted EPS an encrypted lookup table (LUT), the LUT including PKHs and associated EKs for a set of the one or more AFUDs from which the targeted EPS is authorized to receive AFUs, and in response to the request, send, to the targeted EPS, the LUT.
-
13.发明申请公开(公告)号:US20160283433A1
公开(公告)日:2016-09-29
申请号:US14669295
申请日:2015-03-26
Applicant: Intel Corporation
Inventor: Mohan K. Nair , Brent D. Thomas , Ramamurthy Krithivas
CPC classification number: G06F13/4282 , G06F9/4411 , G06F13/4022 , G06F13/4068
Abstract: In one embodiment, a node includes at least one core to independently execute instructions; a first host device to receive information from the at least one core and to include the information in a first packet of a first communication protocol; a selection logic coupled to the first host device to receive the first packet and to provide the first packet to a conversion logic or a first interface to communicate with a first device via a first interconnect of the first communication protocol; the conversion logic to receive the first packet under selection of the selection logic and to encapsulate the first packet into a second packet of a second communication protocol; and a second interface coupled to the conversion logic to receive the second packet and to communicate the second packet to a second device via a second interconnect of the second communication protocol. Other embodiments are described and claimed.
Abstract translation: 在一个实施例中,节点包括独立执行指令的至少一个核心; 用于从所述至少一个核心接收信息并将所述信息包括在第一通信协议的第一分组中的第一主机设备; 耦合到所述第一主机设备以接收所述第一分组并且将所述第一分组提供给转换逻辑或第一接口以经由所述第一通信协议的第一互连与第一设备通信的选择逻辑; 所述转换逻辑在选择逻辑选择下接收第一分组,并将第一分组封装成第二通信协议的第二分组; 以及耦合到所述转换逻辑以接收所述第二分组并经由所述第二通信协议的第二互连将所述第二分组传送到第二设备的第二接口。 描述和要求保护其他实施例。
-
-
Search Results
13
records
(took 0.014 seconds)
