公开(公告)号：US20160110532A1

公开(公告)日：2016-04-21

申请号：US14978072

申请日：2015-12-22

Applicant: Intel Corporation

Inventor： Ned M. Smith ,  Victoria C. Moore

IPC: G06F21/32 ,  G06F21/34

CPC classification number: G06F21/32 ,  G06F21/34 ,  G06F21/57 ,  G06F21/575 ,  G06F21/71 ,  G06F2221/2133 ,  G06F2221/2139

Abstract: An embodiment may include circuitry to be included, at least in part, in a host. The host may include at least one host central processing unit (CPU) to execute, at least in part, at least one host operating system (OS). The circuitry may perform, at least in part, at least one operation in isolation both from interference from and control by the at least one host CPU and the at least one host OS. The at least one operation may include user authorization determination and user presence determination. The authorization determination may be in response, at least in part, to indication of physical presence of at least one user in proximity to the host. The user presence determination may determine, at least in part, whether, after the indication has been provided, the physical presence of the at least one user in the proximity to the host has ceased.

Abstract translation: 一个实施例可以包括至少部分地在主机中包括的电路。 主机可以包括至少一个主机中央处理单元（CPU），至少部分地执行至少一个主机操作系统（OS）。 至少部分地，该电路可以隔离至少一个主机CPU和至少一个主机OS的干扰和由其控制的至少一个操作。 所述至少一个操作可以包括用户授权确定和用户存在确定。 至少部分地，授权确定可以响应于主机附近的至少一个用户的物理存在的指示。 用户存在确定可以至少部分地确定在已经提供了指示之后是否已经停止在主机附近的至少一个用户的物理存在。

公开(公告)号：US20250125944A1

公开(公告)日：2025-04-17

申请号：US19000185

申请日：2024-12-23

Applicant: Intel Corporation

Inventor： Pradeep M. Pappachan ,  Reshma Lal ,  Rakesh A. Ughreja ,  Kumar N. Dwarakanath ,  Victoria C. Moore

IPC: H04L9/00 ,  G06F9/54 ,  G06F21/44 ,  G06F21/57 ,  G06F21/60 ,  G06F21/83 ,  G06F21/84 ,  H04L9/08 ,  H04L9/40

Abstract: Systems and methods include establishing a cryptographically secure communication between an application module and an audio module. The application module is configured to execute on an information-handling machine, and the audio module is coupled to the information-handling machine. The establishment of the cryptographically secure communication may be at least partially facilitated by a mutually trusted module.

公开(公告)号：US20250112756A1

公开(公告)日：2025-04-03

申请号：US18978334

申请日：2024-12-12

Applicant: Intel Corporation

Inventor： Pradeep M. Pappachan ,  Reshma Lal ,  Rakesh A. Ughreja ,  Kumar N. Dwarakanath ,  Victoria C. Moore

IPC: H04L9/00 ,  G06F9/54 ,  G06F21/44 ,  G06F21/57 ,  G06F21/60 ,  G06F21/83 ,  G06F21/84 ,  H04L9/08 ,  H04L9/40

Abstract: Systems and methods include establishing a cryptographically secure communication between an application module and an audio module. The application module is configured to execute on an information-handling machine, and the audio module is coupled to the information-handling machine. The establishment of the cryptographically secure communication may be at least partially facilitated by a mutually trusted module.

公开(公告)号：US10552621B2

公开(公告)日：2020-02-04

申请号：US16140240

申请日：2018-09-24

Applicant: INTEL CORPORATION

Inventor： Ned M. Smith ,  Victoria C. Moore ,  Reshma Lal

IPC: G06F21/50 ,  G06F21/60 ,  G06F9/38 ,  G06F21/85 ,  G06F21/71 ,  G06F21/72 ,  G06F21/62 ,  G06F9/30 ,  G06F21/57 ,  G06F9/44 ,  G06F9/4401

Abstract: An Internet-of-Things (IoT) device platform to communicate in a trusted portion of an IoT network is disclosed. The trusted IoT platform can include a secure IoT system-on-chip (SoC) and can be integrated into various devices such that each of the devices may implement “roots of trust” to establish a trusted portion, or a trusted backbone, of the IoT network.

公开(公告)号：US10421432B2

公开(公告)日：2019-09-24

申请号：US15608297

申请日：2017-05-30

Applicant: Intel Corporation

Inventor： Victoria C. Moore ,  Ned M. Smith ,  Digvijay A. Raorane

IPC: B60R25/01 ,  H04L9/32 ,  G07C9/00

Abstract: A user-customizable locking assembly includes a user-customizable key, a user-customizable key receiver, and a key receiver receptacle. Each of the user-customizable key, a user-customizable key receiver, and a key receiver receptacle includes a physical unclonable function (PUF) circuit configured to provide a PUF response in response to receiving a challenge signal. The PUF circuits of the user-customizable key and a user-customizable key receiver include personalization fuses that allow a user to further personalize or change the PUF response produced by the corresponding PUF circuits. The key receiver receptacle also includes anti-theft fuses, which are activated if the user-customizable key receiver is removed from the key receiver receptacle. In use, a protected system may utilize the PUF responses from the each of the PUF circuits to authenticate the user-customizable locking assembly.

公开(公告)号：US20170332235A1

公开(公告)日：2017-11-16

申请号：US15419013

申请日：2017-01-30

Applicant: INTEL CORPORATION

Inventor： Ned M. Smith ,  Victoria C. Moore ,  Avi Kanon

IPC: H04W12/06 ,  G06F1/32 ,  G06F21/35 ,  G06F21/81 ,  H04B5/00 ,  H04W52/02 ,  G06F1/16 ,  G06F21/74 ,  H04L29/06

CPC classification number: H04W12/06 ,  G06F1/16 ,  G06F1/3231 ,  G06F1/3287 ,  G06F21/35 ,  G06F21/74 ,  G06F21/81 ,  G06F2200/1636 ,  G06F2221/2105 ,  G06F2221/2111 ,  H04B5/0056 ,  H04L63/0853 ,  H04W52/0225 ,  Y02D10/171 ,  Y02D10/173 ,  Y02D70/142 ,  Y02D70/144 ,  Y02D70/166 ,  Y02D70/42

Abstract: Described herein are techniques related to a tap-to-wake and tap-to-login system. This Abstract is submitted with the understanding that it will not be used to interpret or limit the scope and meaning of the claims. A tap-to-wake and tap-to-login system allows a user of a near field device to wake up a computing platform from a deep sleep state using a bump/tap without having to move a mouse or enter a keyboard stroke.

公开(公告)号：US20160094338A1

公开(公告)日：2016-03-31

申请号：US14498711

申请日：2014-09-26

Applicant: INTEL CORPORATION

Inventor： Pradeep M. Pappachan ,  Reshma Lal ,  Rakesh A. Ughreja ,  Kumar N. Dwarakanath ,  Victoria C. Moore

IPC: H04L9/00 ,  G06F21/57 ,  H04L9/08 ,  G06F21/60

CPC classification number: H04L9/00 ,  G06F9/54 ,  G06F21/445 ,  G06F21/57 ,  G06F21/606 ,  G06F21/83 ,  G06F21/84 ,  G06F2221/033 ,  H04L9/0838 ,  H04L63/0428 ,  H04L63/145

Abstract: Systems and methods include establishing a cryptographically secure communication between an application module and an audio module. The application module is configured to execute on an information-handling machine, and the audio module is coupled to the information-handling machine. The establishment of the cryptographically secure communication may be at least partially facilitated by a mutually trusted module.

Abstract translation: 系统和方法包括在应用模块和音频模块之间建立密码安全的通信。 应用模块被配置为在信息处理机上执行，并且音频模块耦合到信息处理机。 密码安全通信的建立可以至少部分地由相互信任的模块促成。

公开(公告)号：US11228420B2

公开(公告)日：2022-01-18

申请号：US16706095

申请日：2019-12-06

Applicant: INTEL CORPORATION

Inventor： Pradeep M. Pappachan ,  Reshma Lal ,  Rakesh A. Ughreja ,  Kumar N. Dwarakanath ,  Victoria C. Moore

IPC: H04L29/06 ,  H04L9/00 ,  G06F9/54 ,  G06F21/83 ,  G06F21/44 ,  G06F21/84 ,  G06F21/57 ,  G06F21/60 ,  H04L9/08

Abstract: Systems and methods include establishing a cryptographically secure communication between an application module and an audio module. The application module is configured to execute on an information-handling machine, and the audio module is coupled to the information-handling machine. The establishment of the cryptographically secure communication may be at least partially facilitated by a mutually trusted module.

公开(公告)号：US20170214526A1

公开(公告)日：2017-07-27

申请号：US15423975

申请日：2017-02-03

Applicant: Intel Corporation

Inventor： Ned M. Smith ,  Conor P. Cahill ,  Victoria C. Moore ,  Jason Martin ,  Micah J. Sheller

IPC: H04L9/08 ,  H04L29/06

CPC classification number: H04L9/0861 ,  G06F21/31 ,  G06F21/33 ,  G06F21/45 ,  H04L9/3234 ,  H04L63/0281 ,  H04L63/061 ,  H04L63/08 ,  H04L63/0815 ,  H04L63/0823 ,  H04L63/0838 ,  H04L63/1466 ,  H04L2209/127 ,  H04L2463/082

Abstract: In an embodiment, a security engine of a processor includes an identity provider logic to generate a first key pair of a key pairing associating system user and a service provider that provides a web service and having a second system coupled to the system via a network, to perform a secure communication with the second system to enable the second system to verify that the identity provider logic is executing in a trusted execution environment, and responsive to the verification, to send a first key of the first key pair to the second system. This key may enable the second system to verify an assertion communicated by the identity provider logic that the user has been authenticated to the system according to a multi-factor authentication. Other embodiments are described and claimed.

公开(公告)号：US20160364559A1

公开(公告)日：2016-12-15

申请号：US14734710

申请日：2015-06-09

Applicant: INTEL CORPORATION

Inventor： Niraj Bali ,  Kumar N. Dwarakanath ,  Asaf Haskel ,  Gennadi Iosad ,  Anoop K. Jayasankaran ,  Victoria C. Moore ,  Vinod Gomathi Nayagam ,  David Zahavi

IPC: G06F21/32 ,  H04L9/08 ,  G06F21/60 ,  G06K9/00 ,  G06F21/62

CPC classification number: G06F21/32 ,  G06F21/602 ,  G06F21/62 ,  G06F21/6209 ,  G06F21/74 ,  G06K9/00087 ,  G06K9/00885 ,  G06K2009/00953 ,  H04L9/0866 ,  H04L9/3231 ,  H04L9/3239 ,  H04L2209/24 ,  H04L2209/805

Abstract: A system includes one or more biometric sensors, a sensor hub and a trusted application execution environment. The sensor hub has exclusive access to the sensors and also isolates untrusted/unauthenticated portions of the operating system from direct access to unencrypted biometric data acquired by the sensors. During a biometric scan/collection process, only the sensor hub and a security engine can access the sensors and a storage component. The sensor hub reads the sensors to obtain the biometric data associated with the scan/collection process and stores the biometric data in the storage component. The security engine encrypts the biometric data before the sensor hub removes the access restrictions. Various components transfer the encrypted biometric data from the storage component to the trusted environment, which hosts algorithms for processing the biometric data.

Abstract translation: 系统包括一个或多个生物测定传感器，传感器集线器和可信应用执行环境。 传感器集线器具有对传感器的独占访问，并且还将操作系统的不受信任/未认证的部分与对传感器获取的未加密生物特征数据的直接访问隔离开。 在生物识别扫描/收集过程中，只有传感器集线器和安全引擎可以访问传感器和存储组件。 传感器集线器读取传感器以获得与扫描/收集过程相关联的生物特征数据，并将生物特征数据存储在存储部件中。 在传感器集线器移除访问限制之前，安全引擎加密生物特征数据。 各种组件将加密的生物特征数据从存储组件传送到可信环境，该环境承载用于处理生物特征数据的算法。