中科微点-全球专利检索

  1. Login
  2. Sign Up

Search Results

374 records (took 0.023 seconds)

    Efficient encryption in VPN sessions
    211.
    发明授权
    Efficient encryption in VPN sessions 有权

    公开(公告)号:US12255921B2

    公开(公告)日:2025-03-18

    申请号:US17349247

    申请日:2021-06-16

    Applicant: Intel Corporation

    Inventor: Akhilesh S. Thyagaturu Vinodh Gopal

    IPC: H04L9/40

    Abstract: Methods, apparatus, and software for efficient encryption in virtual private network (VPN) sessions. A VPN link and an auxiliary link (and associated sessions) are established between computing platforms to support end-to-end communication between respective application running on the platforms. The VPN link may employ a conventional VPN protocol such as TLS or IPsec, while the auxiliary link comprises a NULL encryption VPN tunnel. To transfer data, a determination is made to whether the data are encrypted or non-encrypted. Encrypted data are transferred over the auxiliary link to avoid re-encryption of the data. Non-encrypted are transferred over the VPN link. TLS and IPsec VPN agents may be used to assist in setting up the VPN and auxiliary sessions. The techniques avoid double encryption of VPN traffic, while ensuring that various types of traffic transferred between platforms is encrypted.

    Circuitry and methods for low-latency efficient chained decryption and decompression acceleration
    212.
    发明授权
    Circuitry and methods for low-latency efficient chained decryption and decompression acceleration 有权

    公开(公告)号:US12118130B2

    公开(公告)日:2024-10-15

    申请号:US17214820

    申请日:2021-03-27

    Applicant: Intel Corporation

    Inventor: Vinodh Gopal

    IPC: G06F21/72 G06F21/64 H04L9/06

    CPC classification number: G06F21/72 G06F21/64 H04L9/0643

    Abstract: Systems, methods, and apparatuses for low-latency page efficient chained decryption and decompression acceleration are described. In one embodiment, a processor comprises a hardware processor core, and an accelerator circuit coupled to the hardware processor core, the accelerator circuit to: in response to a descriptor, comprising an indication of a hash key and encrypted data to be decrypted, from the hardware processor core, perform a determination that the encrypted data is to be read in an encrypted order or a reverse order from the encrypted order, in response to the determination that the encrypted data is to be read in the reverse order, generate a resultant authentication tag in the reverse order for the encrypted data based at least in part on the hash key without reordering the encrypted data in the reverse order into the encrypted order, and, in response to the determination that the encrypted data is to be read in the encrypted order, generate the resultant authentication tag in the encrypted order for the encrypted data based at least in part on the hash key.

    Apparatus and method for low-latency decompression acceleration via a single job descriptor
    213.
    发明授权
    Apparatus and method for low-latency decompression acceleration via a single job descriptor 有权

    公开(公告)号:US11989582B2

    公开(公告)日:2024-05-21

    申请号:US17033760

    申请日:2020-09-26

    Applicant: Intel Corporation

    Inventor: James Guilford George Powley Vinodh Gopal Wajdi Feghali

    IPC: G06F9/38 G06F9/48

    CPC classification number: G06F9/4881 G06F9/3887 G06F2209/483

    Abstract: Apparatus and method for performing low-latency multi-job submission via a single job descriptor is described herein. An apparatus embodiment includes a plurality of descriptor queues to stores job descriptors describing work to be performed and enqueue circuitry to receive a first job descriptor which includes a first field to store a Single Instruction Multiple Data (SIMD) width. If the SIMD width indicates that the first job descriptor is an SIMD job descriptor and open slots are available in the descriptor queues to store new job descriptors, then the enqueue circuitry is to generate a plurality of job descriptors based on fields of the first job descriptor and to store them in the open slots of the descriptor queues. The generated job descriptors are processed by processing pipelines to perform the work described. At least some of the generated job descriptors are processed concurrently or in parallel by different processing pipelines.

    Dynamic offline end-to-end packet processing based on traffic class
    214.
    发明授权
    Dynamic offline end-to-end packet processing based on traffic class 有权

    公开(公告)号:US11956156B2

    公开(公告)日:2024-04-09

    申请号:US17016555

    申请日:2020-09-10

    Applicant: Intel Corporation

    Inventor: Akhilesh S. Thyagaturu Vinodh Gopal

    IPC: H04L47/2441 H04L9/40 H04L43/028 H04L49/90

    CPC classification number: H04L47/2441 H04L43/028 H04L49/9084 H04L63/0245

    Abstract: Methods and apparatus for dynamic offline end-to-end packet processing based on traffic class. An end-to-end connection is set up between an application on a client including a processor and host memory and an application on a remote server. An offline packet buffer is allocated in host memory. While the processor and/or a core on with the client application is executed is in a sleep state, the client is operated in an interrupt-less and polling-less mode as applied to a predetermined traffic class. Under the mode, a Network Interface Controller (NIC) at the client receives network traffic from the remote server and determines whether the network traffic is associated with the predetermined traffic class. When it is, the NIC writes packet data extracted from the network traffic to an offline packet buffer. Descriptors are generated and provided to the NIC to inform the NIC of the location and size of the offline packet buffer.

    HARDWARE ACCELERATED STRING FILTER
    217.
    发明公开
    HARDWARE ACCELERATED STRING FILTER 审中-公开

    公开(公告)号:US20240028577A1

    公开(公告)日:2024-01-25

    申请号:US18225939

    申请日:2023-07-25

    Applicant: Intel Corporation

    Inventor: Jixing Gu Vinodh Gopal Fang Xie David Cohen Wajdi Feghali

    IPC: G06F16/22

    CPC classification number: G06F16/2272 G06F16/24568

    Abstract: An apparatus may include an accelerator and a processor. The processor may receive an input string targeting a data buffer comprising a plurality of strings. The processor may receive, from the accelerator, a fixed-length data buffer based on the data buffer, respective ones of a plurality of entries of the fixed-length data buffer based on respective ones of the strings. The processor may receive, from the accelerator, a plurality of streams, respective ones of the plurality of streams to comprise a portion of respective entries in the fixed-length data buffer. The processor may generate, based on the input string, a plurality of target portions of the input string. The processor may receive, from the accelerator, indexes of the plurality of streams based on respective target portions of the input string matching respective entries of the plurality of streams. The processor may aggregate the indexes received from the accelerator.

    INSTRUCTIONS AND LOGIC TO PROVIDE SIMD SM4 CRYPTOGRAPHIC BLOCK CIPHER FUNCTIONALITY
    219.
    发明申请
    INSTRUCTIONS AND LOGIC TO PROVIDE SIMD SM4 CRYPTOGRAPHIC BLOCK CIPHER FUNCTIONALITY 有权

    公开(公告)号:US20220353070A1

    公开(公告)日:2022-11-03

    申请号:US17718237

    申请日:2022-04-11

    Applicant: Intel Corporation

    Inventor: Sean M. Gulley Gilbert M. Wolrich Vinodh Gopal Kirk S. Yap Wajdi K. Feghali

    IPC: H04L9/08 H04L9/06 G06F21/72 G06F9/30 G09C1/00 G06F9/38

    Abstract: Instructions and logic provide for a Single Instruction Multiple Data (SIMD) SM4 round slice operation. Embodiments of an instruction specify a first and a second source data operand set, and substitution function indicators, e.g. in an immediate operand. Embodiments of a processor may include encryption units, responsive to the first instruction, to: perform a slice of SM4-round exchanges on a portion of the first source data operand set with a corresponding keys from the second source data operand set in response to a substitution function indicator that indicates a first substitution function, perform a slice of SM4 key generations using another portion of the first source data operand set with corresponding constants from the second source data operand set in response to a substitution function indicator that indicates a second substitution function, and store a set of result elements of the first instruction in a SIMD destination register.

    Self-checking compression
    220.
    发明授权
    Self-checking compression 有权

    公开(公告)号:US11483009B2

    公开(公告)日:2022-10-25

    申请号:US16407105

    申请日:2019-05-08

    Applicant: Intel Corporation

    Inventor: Vinodh Gopal

    IPC: H03M7/30 H03M7/40 H04L1/00

    Abstract: Methods, apparatus, systems, and software for implementing self-checking compression. A byte stream is encoded to generate tokens and selected tokens are encoded with hidden parity information in a compressed byte stream that may be stored for later streaming or streamed to a receiver. As the compressed byte stream is received, it is decompressed, with the hidden parity information being decoded and used to detect for errors in the decompressed data, enabling errors to be detected on-the-fly rather than waiting to perform a checksum over an entire received file. In one embodiment the byte stream is encoded using a Lempel-Ziv 77 (LZ77)-based encoding process to generate a sequence of tokens including literals and references, with all or selected references encoded with hidden parity information in a compressed byte stream having a standard format such as DEFLATE or Zstandard. The hidden parity information is encoded such that the compressed byte stream may be decompressed without parity checks using standard DEFLATE or Zstandard decompression schemes. Dictionary coders such as LZ78 and LZW may also be used.

Patent Agency Ranking