公开(公告)号：US09792455B2

公开(公告)日：2017-10-17

申请号：US15147289

申请日：2016-05-05

Applicant: DELL PRODUCTS, L.P.

Inventor： James T. Gillon ,  Ricardo L. Martinez ,  Flaviu Cristian Chis

IPC: H04L9/00 ,  H04L9/32 ,  G06F21/62 ,  G06F21/00 ,  G06F21/55 ,  H04L29/06 ,  H04L29/08 ,  G06F21/31

CPC classification number: G06F21/6218 ,  G06F21/00 ,  G06F21/31 ,  G06F21/554 ,  G06F2221/2111 ,  H04L63/205 ,  H04L67/10

Abstract: An information handling system (IHS) performs security policy enforcement using security policy data maintained in an embedded controller, which operates within a privileged environment. The security policy data identifies security policies established for the IHS. The EC is directly connected to a number of sensors from which the EC receives sensor data and to at least one integrated functional device. The EC determines whether the received sensor data fulfills any trigger condition of a security policy. If the received sensor data does not fulfill any trigger condition of a security policy described by the security policy data, the EC continues to monitor sensors for updated sensor data. However, if the received sensor data fulfills any trigger condition of the security policy, the EC performs a security measure that involves enabling, disabling, or resetting one or more of the at least one integrated functional devices that can be disabled.

公开(公告)号：US09652251B2

公开(公告)日：2017-05-16

申请号：US14523644

申请日：2014-10-24

Applicant: Dell Products L.P.

Inventor： James T. Gillon

IPC: G06F9/00 ,  G06F15/177 ,  G06F9/44

CPC classification number: G06F9/4403 ,  G06F9/4406

Abstract: A pre-boot diagnostic display may be controlled by an embedded controller of an information handling system. The embedded controller may generate pre-boot diagnostic content during power on self-test (POST) of the information handling system. The pre-boot diagnostic content may be displayed to a user on a primary display of the information handling system during POST and before the information handling system is booted to an operating system.

公开(公告)号：US20160085951A1

公开(公告)日：2016-03-24

申请号：US14954938

申请日：2015-11-30

Applicant: Dell Products L.P.

Inventor： Daniel L. Hamlin ,  James T. Gillon ,  Christian L. Critz

IPC: G06F21/32 ,  G06F1/32

CPC classification number: G06F21/32 ,  G06F1/3296 ,  G06F9/4406 ,  G06F21/575 ,  G06F21/629 ,  G06F2221/034 ,  G06K9/00013 ,  G06K9/00087 ,  H04L63/0861

Abstract: A computer-implemented method provides power to a fingerprint reader while the remaining components of the information handling system are held in a low power, non-operating state. Placement of a finger across the fingerprint reader is detected with the information handling system in the non-operating state. A fingerprint is read and a corresponding fingerprint image is generated. The fingerprint image is buffered and an embedded controller is triggered to start an authentication device having a secure storage. The fingerprint image is compared to a fingerprint template contained in the secure storage. In response to the fingerprint image matching the fingerprint template, the authentication device signals the embedded controller to activate a user authenticated wake-up cycle to provide power to the other components of the information handling system such that the information handling system activates an operating system and enters a fully powered and user authenticated, operational state.

Abstract translation: 计算机实现的方法为指纹读取器提供电力，而信息处理系统的其余组件被保持在低功率，非操作状态。 在处于非操作状态的信息处理系统中检测到手指在指纹读取器上的放置。 读取指纹并产生相应的指纹图像。 指纹图像被缓冲，并且触发嵌入式控制器来启动具有安全存储的认证设备。 将指纹图像与包含在安全存储器中的指纹模板进行比较。 响应于与指纹模板匹配的指纹图像，认证设备发信号给嵌入式控制器以激活用户认证的唤醒周期，以向信息处理系统的其他组件提供电力，使得信息处理系统激活操作系统和 进入完全供电和用户认证的运行状态。

公开(公告)号：US20140344886A1

公开(公告)日：2014-11-20

申请号：US13893685

申请日：2013-05-14

Applicant: Dell Products L.P.

Inventor： James T. Gillon ,  Ricardo L. Martinez ,  Flaviu Cristian Chis

IPC: G06F21/00

CPC classification number: G06F21/6218 ,  G06F21/00 ,  G06F21/31 ,  G06F21/554 ,  G06F2221/2111 ,  H04L63/205 ,  H04L67/10

Abstract: An information handling system (IHS) performs security policy enforcement using security policy data maintained in an embedded controller, which operates within a privileged environment. The security policy data identifies security policies established for the IHS. The EC is directly connected to a number of sensors from which the EC receives sensor data and to at least one integrated functional device. The EC determines whether the received sensor data fulfills any trigger condition of a security policy. If the received sensor data does not fulfill any trigger condition of a security policy described by the security policy data, the EC continues to monitor sensors for updated sensor data. However, if the received sensor data fulfills any trigger condition of the security policy, the EC performs a security measure that involves enabling, disabling, or resetting one or more of the at least one integrated functional devices that can be disabled.

Abstract translation: 信息处理系统（IHS）使用在特权环境中运行的嵌入式控制器中维护的安全策略数据执行安全策略实施。 安全策略数据标识为IHS建立的安全策略。 EC直接连接到许多传感器，EC从该传感器接收传感器数据和至少一个集成的功能设备。 EC确定接收到的传感器数据是否满足安全策略的任何触发条件。 如果接收到的传感器数据不能满足安全策略数据描述的安全策略的任何触发条件，则EC将继续监视传感器以获取更新的传感器数据。 然而，如果接收到的传感器数据满足安全策略的任何触发条件，则EC执行涉及启用，禁用或重置可被禁用的至少一个集成功能设备中的一个或多个的安全措施。