公开(公告)号：US10666497B2

公开(公告)日：2020-05-26

申请号：US16015247

申请日：2018-06-22

Applicant: Intel Corporation

Inventor： Maryam Tahhan ,  John Joseph Browne ,  Eoin Walsh ,  Timothy Verrall ,  Rory Browne ,  Emma Louise Foley ,  Shobhi Jain ,  Peter Mangan

IPC: H04L12/24 ,  H04L12/26

Abstract: There is disclosed in one example a computing apparatus, including: a local platform including a hardware platform; a management interface to communicatively couple the local platform to a management controller; a virtualization infrastructure to operate on the hardware platform and to provide a local virtualized function; and a resiliency controller to operate on the hardware platform, and configured to: receive a resiliency policy from the management controller via the management interface, the resiliency policy including information to handle a fault in the virtualized function; detect a fault in the local virtualized function; and effect a resiliency action responsive to detecting the fault.

公开(公告)号：US10445272B2

公开(公告)日：2019-10-15

申请号：US16027776

申请日：2018-07-05

Applicant: Intel Corporation

Inventor： Kevin Devey ,  John Browne ,  Chris Macnamara ,  Eoin Walsh ,  Bruce Richardson ,  Andrew Cunningham ,  Niall Power ,  David Hunt ,  Changzheng Wei ,  Eliezer Tamir

IPC: G06F13/38 ,  G06F1/3203 ,  G06F9/455 ,  G06F9/4401

Abstract: A network system includes a central processing unit and a peripheral device in electrical communication with the central processing unit. The peripheral device has at least one power input and a data input. The network system also includes an out of band controller in electrical communication with the central processing unit, the peripheral device, and an external management interface. Responsive to an identified threat, the out of band controller is configured to disable the at least one power input and the data input to the peripheral device, where the disablement indicates to the central processing unit that a hot plug event has occurred with respect to the peripheral device. The out of band controller is also configured to enable auxiliary power to the peripheral device such that the out of band controller remains in communication with the peripheral device during remediation of the identified threat.

公开(公告)号：US20190045000A1

公开(公告)日：2019-02-07

申请号：US16023733

申请日：2018-06-29

Applicant: Intel Corporation

Inventor： Chetan Hiremath ,  Timothy Verrall ,  Andrey Chilikin ,  Thomas Long ,  Maryam Tahhan ,  Eoin Walsh ,  Andrew Duignan ,  Rory Browne

IPC: H04L29/08 ,  H04L12/721

Abstract: Technologies for load-aware traffic steering include a compute device that includes a multi-homed network interface controller (NIC) with a plurality of NICs. The compute device determines a target virtual network function (VNF) of a plurality of VNFs to perform a processing operation on a network packet. The compute device further identifies a first steering point of a first NIC to steer the received network packet to virtual machines (VMs) associated with the target VNF and retrieves a resource utilization metric that corresponds to a usage level of a component of the compute device used by the VMs to process the network packet. Additionally, the compute device determines whether the resource utilization metric indicates a potential overload condition and provides a steering instruction to a second steering point of a second NIC that is usable to redirect the network traffic to the other VMs via the identified second steering point.

公开(公告)号：US20190042506A1

公开(公告)日：2019-02-07

申请号：US16027776

申请日：2018-07-05

Applicant: Intel Corporation

Inventor： Kevin Devey ,  John Browne ,  Chris Macnamara ,  Eoin Walsh ,  Bruce Richardson ,  Andrew Cunningham ,  Niall Power ,  David Hunt ,  Changzheng Wei ,  Eliezer Tamir

IPC: G06F13/38 ,  G06F1/32 ,  G06F9/455

Abstract: A network system includes a central processing unit and a peripheral device in electrical communication with the central processing unit. The peripheral device has at least one power input and a data input. The network system also includes an out of band controller in electrical communication with the central processing unit, the peripheral device, and an external management interface. Responsive to an identified threat, the out of band controller is configured to disable the at least one power input and the data input to the peripheral device, where the disablement indicates to the central processing unit that a hot plug event has occurred with respect to the peripheral device. The out of band controller is also configured to enable auxiliary power to the peripheral device such that the out of band controller remains in communication with the peripheral device during remediation of the identified threat.

公开(公告)号：US20180173549A1

公开(公告)日：2018-06-21

申请号：US15382075

申请日：2016-12-16

Applicant: Intel Corporation

Inventor： John J. Browne ,  Tomasz Kantecki ,  Timothy Verrall ,  Maryam Tahhan ,  Eoin Walsh ,  Rory Browne ,  Tarun Viswanathan

IPC: G06F9/455 ,  G06F9/50

CPC classification number: G06F9/5077 ,  H04L41/0896 ,  H04L41/5009 ,  H04L41/5025 ,  H04L41/5035 ,  H04L43/0817

Abstract: There is disclosed in an example, a computing apparatus, including: a processor having a resource direction capability; and one or more logic elements providing a network function virtualization orchestrator (NFVO) engine to: store for a virtual machine (VM) an extended performance profile, comprising a metric from the resource direction capability.

公开(公告)号：US12068928B2

公开(公告)日：2024-08-20

申请号：US17033557

申请日：2020-09-25

Applicant: Intel Corporation

Inventor： Kapil Sood ,  Timothy Verrall ,  Ned M. Smith ,  Tarun Viswanathan ,  Kshitij Doshi ,  Francesc Guim Bernat ,  John J. Browne ,  Katalin Bartfai-Walcott ,  Maryam Tahhan ,  Eoin Walsh ,  Damien Power

IPC: H04L12/00 ,  H04L9/40 ,  H04L41/5006 ,  H04L41/5019 ,  H04L43/0888

CPC classification number: H04L41/5006 ,  H04L41/5019 ,  H04L43/0888 ,  H04L63/123 ,  H04L63/126

Abstract: Methods, apparatus, systems and articles of manufacture are disclosed to schedule workloads based on secure edge to device telemetry by calculating a difference between a first telemetric data received from a first hardware device and an operating parameter and computing an adjustment for a second hardware device based on the difference between the first telemetric data and the operating parameter.

公开(公告)号：US11347870B2

公开(公告)日：2022-05-31

申请号：US16369042

申请日：2019-03-29

Applicant: Intel Corporation

Inventor： Ned M. Smith ,  Brinda Ganesh ,  Francesc Guim Bernat ,  Eoin Walsh ,  Evan Custodio

IPC: H04L9/32 ,  G06F21/60 ,  H04L9/40 ,  H04L41/5003 ,  H04L9/08 ,  H04L67/01

Abstract: Technologies for securely providing one or more remote accelerators hosted on edge resources to a client compute device includes a device that further includes an accelerator and one or more processors. The one or more processors are to determine whether to enable acceleration of an encrypted workload, receive, via an edge network, encrypted data from a client compute device, and transfer the encrypted data to the accelerator without exposing content of the encrypted data to the one or more processors. The accelerator is to receive, in response to a determination to enable the acceleration of the encrypted workload, an accelerator key from a secure server via a secured channel, and process, in response to a transfer of the encrypted data from the one or more processors, the encrypted data using the accelerator key.

公开(公告)号：US10860714B2

公开(公告)日：2020-12-08

申请号：US16022976

申请日：2018-06-29

Applicant: Intel Corporation

Inventor： John J. Browne ,  Marcel Cornu ,  Timothy Verrall ,  Tomasz Kantecki ,  Niall Power ,  Weigang Li ,  Eoin Walsh ,  Maryam Tahhan

IPC: G06F21/55 ,  G06F21/56

Abstract: Technologies for cache side channel attack detection and mitigation include an analytics server and one or more monitored computing devices. The analytics server polls each computing device for analytics counter data. The computing device generates the analytics counter data using a resource manager of a processor of the computing device. The analytics counter data may include last-level cache data or memory bandwidth data. The analytics server identifies suspicious core activity based on the analytics counter data and, if identified, deploys a detection process to the computing device. The computing device executes the detection process to identify suspicious application activity. If identified, the computing device may perform one or more corrective actions. Corrective actions include limiting resource usage by a suspicious process using the resource manager of the processor. The resource manager may limit cache occupancy or memory bandwidth used by the suspicious process. Other embodiments are described and claimed.

公开(公告)号：US20200218633A1

公开(公告)日：2020-07-09

申请号：US16819604

申请日：2020-03-16

Applicant: Intel Corporation

Inventor： John J. Browne ,  Tomasz Kantecki ,  Wojciech Andralojc ,  Timothy Verrall ,  Maryam Tahhan ,  Eoin Walsh ,  Damien Power ,  Chris Macnamara

IPC: G06F11/34 ,  G06F11/30 ,  G06N5/04

Abstract: A method for monitoring health of processes includes a compute device having a performance monitoring parameter manager and an analytics engine. The compute device accesses performance monitoring parameters associated with a monitored process of the compute device. The compute device samples one or more hardware counters associated with the monitored process and applies a performance monitor filter to the sampled one or more hardware counters to generate hardware counter values. The compute device performs a process fault check on the monitored process based on the hardware counter values and the performance monitoring parameters.

公开(公告)号：US10592383B2

公开(公告)日：2020-03-17

申请号：US15637706

申请日：2017-06-29

Applicant: Intel Corporation

Inventor： John J. Browne ,  Tomasz Kantecki ,  Wojciech Andralojc ,  Timothy Verrall ,  Maryam Tahhan ,  Eoin Walsh ,  Damien Power ,  Chris MacNamara

IPC: G06F11/00 ,  G06F11/34 ,  G06F11/30 ,  G06N5/04 ,  G06N20/00 ,  G06F11/07

Abstract: A method for monitoring health of processes includes a compute device having a performance monitoring parameter manager and an analytics engine. The compute device accesses performance monitoring parameters associated with a monitored process of the compute device. The compute device samples one or more hardware counters associated with the monitored process and applies a performance monitor filter to the sampled one or more hardware counters to generate hardware counter values. The compute device performs a process fault check on the monitored process based on the hardware counter values and the performance monitoring parameters.