公开(公告)号：US06687825B1

公开(公告)日：2004-02-03

申请号：US09527367

申请日：2000-03-17

申请人： David Carroll Challener ,  Daryl Carvis Cromer ,  Mark Charles Davis ,  Dhruv Manmohandas Desai ,  Charles William Kaufman ,  Hernando Ovies ,  James Peter Ward

发明人： David Carroll Challener ,  Daryl Carvis Cromer ,  Mark Charles Davis ,  Dhruv Manmohandas Desai ,  Charles William Kaufman ,  Hernando Ovies ,  James Peter Ward

IPC分类号： G06F1130

CPC分类号： G06F21/80 ,  G06F21/6209

摘要： A data processing system and method are disclosed for protecting data within a hard disk drive included within a data processing system. Data is generated. A signature value is provided which is stored in a signature device. The signature device is capable of being inserted into and removed from a computer system. A textual description of the data is created. The data is encrypted utilizing both the signature value stored on the device and the textual description. The encrypted data is then stored on the hard disk drive. The data processing system does not permanently store encryption keys.

摘要翻译： 公开了一种用于保护包含在数据处理系统内的硬盘驱动器内的数据的数据处理系统和方法。 生成数据。 提供签名值，其被存储在签名设备中。 签名装置能够插入计算机系统和从计算机系统中移除。 创建数据的文本描述。 使用存储在设备上的签名值和文本描述来加密数据。 然后将加密的数据存储在硬盘驱动器上。 数据处理系统不会永久存储加密密钥。

公开(公告)号：US06609207B1

公开(公告)日：2003-08-19

申请号：US09260921

申请日：1999-03-02

申请人： Daryl Carvis Cromer ,  Brandon Jon Ellison ,  Eric Richard Kern ,  Howard Locker ,  Randall Scott Springfield ,  James Peter Ward

发明人： Daryl Carvis Cromer ,  Brandon Jon Ellison ,  Eric Richard Kern ,  Howard Locker ,  Randall Scott Springfield ,  James Peter Ward

IPC分类号： G06F1214

CPC分类号： G06F21/88 ,  G06F21/31

摘要： A data processing system and method including a docking station and a portable computer capable of being coupled to the docking station are disclosed for securing the docking station, the portable computer, and for securing the attachment of the docking station to the portable computer. The portable computer is coupled to the docking station. A disconnection password is established. When the portable computer is disconnected from the docking station, a user is prompted for the disconnection password. The portable computer is disabled in response to a failure to correctly enter the disconnection password, wherein the portable computer is inoperable without a correct entry of the disconnection password. When a portable computer is connected to the docking station, a correct entry of a connection password is required. In response to a failure to correctly enter the connection password, access to the docking station is prohibited. When the docking station is physically removed from its stationary support, correct entry of a relocation password is required. In response to a failure to correctly enter the password, access to the docking station is prohibited.

摘要翻译： 公开了一种数据处理系统和方法，其包括对接站和能够连接到对接站的便携式计算机，用于固定对接站，便携式计算机，以及用于将对接站的连接固定到便携式计算机。 便携式计算机耦合到对接站。 断开密码建立。 当便携式计算机与对接站断开连接时，提示用户断开连接密码。 响应于无法正确输入断开密码，便携式计算机被禁用，其中便携式计算机在不正确输入断开密码的情况下是不可操作的。 当便携式计算机连接到扩展坞时，需要正确输入连接密码。 响应于无法正确输入连接密码，禁止访问扩展坞。 当对接站从其固定支架物理上移除时，需要正确输入重新定位密码。 为了不正确输入密码，禁止访问扩展坞。

公开(公告)号：US06598032B1

公开(公告)日：2003-07-22

申请号：US09523490

申请日：2000-03-10

申请人： David Carroll Challener ,  Joseph McGovern ,  Hernando Ovies ,  James Peter Ward

发明人： David Carroll Challener ,  Joseph McGovern ,  Hernando Ovies ,  James Peter Ward

IPC分类号： G06F1760

CPC分类号： G07F7/1008 ,  G06Q20/382 ,  G06Q20/401 ,  G06Q20/4012 ,  G07F7/1025

摘要： A system and method for isolating a computer system from entry of a personal identification number (PIN) to a smart card. The system and method includes a computer system that is in communication with an unsecure network to allow a user to engage in a purchase transaction. The system and method also includes a smart card reader in which a smart card is inserted and read. A secure personal-identification-number (PIN) entry device is coupled between the computer system and the smart card reader. The secure PIN entry device is used for entering a correct code for the PIN. Communication between computer system and secure PIN entry device is disconnected until the correct code for the PIN is entered at secure PIN entry device and sent to the smart card in order to authorize use of the smart card for the purchase transaction. In response to the correct code for the PIN being entered and sent to the smart card, communication between computer system and secure PIN entry device is established. The secure PIN entry device has a processor for controlling the disconnection and connection of communication between the computer system and the secure PIN entry device. The secure PIN entry device also has a display for displaying a message request relating to the purchase transaction. The message request prompts a user to provide the PIN to authorize use of the smart card for a purchase transaction.

摘要翻译： 一种用于将计算机系统与个人识别号码（PIN）输入到智能卡的系统和方法。 该系统和方法包括与不安全网络通信以允许用户参与购买交易的计算机系统。 该系统和方法还包括其中插入和读取智能卡的智能卡读卡器。 安全的个人识别号码（PIN）输入设备耦合在计算机系统和智能卡读卡器之间。 安全PIN输入设备用于输入PIN的正确代码。 计算机系统和安全PIN输入设备之间的通信被断开，直到PIN的正确代码被输入到安全的PIN输入设备并被发送到智能卡以授权使用智能卡进行购买交易。 为了响应正在输入的PIN并将其发送到智能卡的正确代码，建立计算机系统和安全PIN输入设备之间的通信。 安全PIN输入设备具有用于控制计算机系统和安全PIN输入设备之间的通信的断开和连接的处理器。 安全PIN输入设备还具有用于显示与购买交易相关的消息请求的显示。 消息请求提示用户提供PIN以授权使用智能卡进行购买交易。

公开(公告)号：US06330624B1

公开(公告)日：2001-12-11

申请号：US09246383

申请日：1999-02-09

申请人： Daryl Carvis Cromer ,  Dhruv Manmohandas Desai ,  Howard Jeffrey Locker ,  James Peter Ward

发明人： Daryl Carvis Cromer ,  Dhruv Manmohandas Desai ,  Howard Jeffrey Locker ,  James Peter Ward

IPC分类号： G06F1214

CPC分类号： G06F21/80 ,  G06F21/6209 ,  G06F2221/2103 ,  G06F2221/2129

摘要： A data processing system and method are disclosed for protecting data stored on a device included within the system. A device key pair is established which identifies a particular device included within the system. The device key pair includes a device public key and a device private key. The device includes data stored on the device which may not be fully accessed initially. A planar key pair is established which identifies a planar board included within the system. The planar key pair includes a planar public key and a planar private key. The particular device is associated with the planar by storing the device public key only within the planar, and by storing the planar public key only within the device. Access to the data stored within the device is limited to only a planar which has the stored device public key.

摘要翻译： 公开了一种用于保护存储在包括在系统内的设备上的数据的数据处理系统和方法。 建立设备密钥对，其识别包括在系统内的特定设备。 设备密钥对包括设备公钥和设备私钥。 该设备包括存储在设备上的数据，其最初可能未被完全访问。 建立了平面密钥对，其标识包括在系统内的平面板。 平面键对包括平面公钥和平面私钥。 通过仅在平面内存储设备公共密钥，并且仅将平面公钥存储在设备内，特定设备与平面相关联。 存储在设备中的数据的访问仅限于具有存储的设备公钥的平面。

公开(公告)号：US06272541B1

公开(公告)日：2001-08-07

申请号：US09169284

申请日：1998-10-08

申请人： Daryl Carvis Cromer ,  Richard Alan Dayan ,  Howard Locker ,  Michael Steinmetz ,  James Peter Ward

发明人： Daryl Carvis Cromer ,  Richard Alan Dayan ,  Howard Locker ,  Michael Steinmetz ,  James Peter Ward

IPC分类号： G06F15173

CPC分类号： H04L29/06 ,  H04L67/16 ,  H04L67/18 ,  H04L69/329

摘要： A method and system are described for determining a physical location of a computer system included within a data processing system. A wireless signal is transmitted to a physical location within which a plurality of computer systems are located. In response to a receipt of the wireless signal, each computer system transmits an indication of its physical location.

摘要翻译： 描述了用于确定包括在数据处理系统内的计算机系统的物理位置的方法和系统。 无线信号被发送到多个计算机系统所在的物理位置。 响应于接收到无线信号，每个计算机系统发送其物理位置的指示。

公开(公告)号：US06249812B1

公开(公告)日：2001-06-19

申请号：US09164658

申请日：1998-10-01

申请人： Daryl Carvis Cromer ,  Gregory William Kilmer ,  Howard Jeffrey Locker ,  Randall Scott Springfield ,  James Peter Ward

发明人： Daryl Carvis Cromer ,  Gregory William Kilmer ,  Howard Jeffrey Locker ,  Randall Scott Springfield ,  James Peter Ward

IPC分类号： G06F1760

CPC分类号： H04L41/24 ,  H04L41/0681

摘要： A client on a network is provided with auxiliary low power logic, at the network adaptor, that is always active and simulates network traffic (e.g., Ethernet format) normally sent under control of the main client system processor(s). This logic collects client status information and reports to the network manager, irrespective of the system's CPU power level, information and provides for interaction between the user and the administration or network manager to exercise broader control and perform repair and upgrades which would otherwise require a dialog with the user and/or limit repair and reconfiguration of the client system to off-hours activity. The auxiliary logic also can receive and interpret commands from the network that conform to a predefined format.

摘要翻译： 在网络上的客户机提供辅助低功率逻辑，在网络适配器处，其始终是活动的并且模拟通常在主客户端系统处理器的控制下发送的网络流量（例如，以太网格式）。 该逻辑收集客户端状态信息并向网络管理员报告，而不管系统的CPU功率级别，信息，并提供用户与管理或网络管理者之间的交互，以执行更广泛的控制并执行维修和升级，否则需要对话 用户和/或限制修复和重新配置客户端系统到非工作活动。 辅助逻辑还可以接收和解释来自网络的符合预定格式的命令。

公开(公告)号：US6046676A

公开(公告)日：2000-04-04

申请号：US971154

申请日：1997-11-14

申请人： James Peter Ward ,  Kerry Maletsky

发明人： James Peter Ward ,  Kerry Maletsky

IPC分类号： G06K19/07 ,  G08B13/14

CPC分类号： G06K19/0701 ,  G06K19/0723

摘要： A tag for use in identifying and communicating with an electronic device such as a computer is disclosed. The tag is self powered from an RF interrogation signal when the electronic device is not operating. The tag is provided with DC power from the electronic device when it is communicating with the electronic device to which it is attached as a portion of memory of the electronic device.

摘要翻译： 公开了一种用于识别和诸如计算机之类的电子设备的通信的标签。 当电子设备不工作时，标签由RF询问信号自动供电。 当电子设备与作为电子设备的存储器的一部分连接的电子设备进行通信时，该标签被提供有来自电子设备的DC电力。

公开(公告)号：US07581097B2

公开(公告)日：2009-08-25

申请号：US10745172

申请日：2003-12-23

申请人： Ryan Charles Catherman ,  Dave Carroll Challener ,  Akira Hino ,  James Patrick Hoff ,  James Peter Ward

发明人： Ryan Charles Catherman ,  Dave Carroll Challener ,  Akira Hino ,  James Patrick Hoff ,  James Peter Ward

IPC分类号： H04L9/00

CPC分类号： G06F21/83 ,  G06F21/606

摘要： An apparatus, system and method of secure communications from a human interface device are provided. The apparatus, system, and method receive input data and calculate encrypted data from the input data using a secure credential. In one embodiment the apparatus, system, and method request and receive a single instance credential and calculate the encrypted data using the secure credential and the single instance credential. The encrypted data may be a secure authorization that may be valid for one use. Communication of the encrypted data through networks and communicating devices is secure. The encrypted data may not be decrypted even if intercepted without the secure credential. The apparatus, system, and method enable secure communications from the human interface device.

摘要翻译： 提供了一种从人机接口设备进行安全通信的装置，系统和方法。 设备，系统和方法使用安全证书从输入数据接收输入数据并计算加密数据。 在一个实施例中，装置，系统和方法请求并接收单个实例凭证并使用安全凭证和单个实例凭证来计算加密的数据。 加密数据可以是对一次使用可能有效的安全授权。 通过网络和通信设备进行加密数据的通信是安全的。 即使在没有安全凭证的情况下被拦截，加密数据也可能不被解密。 该装置，系统和方法能够实现来自人机接口装置的安全通信。

公开(公告)号：US07484105B2

公开(公告)日：2009-01-27

申请号：US09931629

申请日：2001-08-16

申请人： Steven Dale Goodman ,  James Patrick Hoff ,  Randall Scott Springfield ,  James Peter Ward

发明人： Steven Dale Goodman ,  James Patrick Hoff ,  Randall Scott Springfield ,  James Peter Ward

IPC分类号： G06F11/30 ,  H04L9/32 ,  H04L9/00

CPC分类号： G06F21/572

摘要： An update utility requests a signature verification of the utility's signature along with a request to unlock the flash memory stored in the utility. A trusted platform module (“TPM”) performs a signature verification of the utility using a previously stored public key. Upon verification of the signature, the TPM unlocks the flash memory to permit update of the utility. Upon completion of the update, the flash utility issues a lock request to the TPM to relock the flash memory.

摘要翻译： 更新实用程序请求实用程序的签名的签名验证以及解锁存储在该实用程序中的闪存的请求。 可信平台模块（“TPM”）使用先前存储的公钥执行实用程序的签名验证。 在验证签名后，TPM解锁闪存以允许更新实用程序。 完成更新后，闪存实用程序向TPM发出锁定请求以重新锁定闪存。

公开(公告)号：US07412596B2

公开(公告)日：2008-08-12

申请号：US10967760

申请日：2004-10-16

申请人： David Carroll Challener ,  Daryl Carvis Cromer ,  Joseph Wayne Freeman ,  Steven Dale Goodman ,  James Patrick Hoff ,  Howard Jeffrey Locker ,  Randall Scott Springfield ,  James Peter Ward

发明人： David Carroll Challener ,  Daryl Carvis Cromer ,  Joseph Wayne Freeman ,  Steven Dale Goodman ,  James Patrick Hoff ,  Howard Jeffrey Locker ,  Randall Scott Springfield ,  James Peter Ward

IPC分类号： G06F9/00 ,  G06F15/177

CPC分类号： G06F21/575

摘要： A method and system for enabling security attestation for a computing device during a return from an S4 sleep state. When the computing device enters into the S4 state following a successful boot up, the attestation log is appended to the TPM tick count and the log is signed (with a security signature). When the device is awaken from S4 state, the BIOS obtains and verifies the log created during the previous boot. The CRTM maintains a set of virtual PCRs and references these virtual PCRs against the log. If the values do not match, the return from S4 state fails and the device is rebooted.

摘要翻译： 一种用于在从S4睡眠状态返回期间为计算设备提供安全认证的方法和系统。 当计算设备在成功启动后进入S4状态时，认证日志会追加到TPM刻度计数，并且日志被签名（具有安全签名）。 当设备从S4状态唤醒时，BIOS将获取并验证在以前引导过程中创建的日志。 CRTM维护一组虚拟PCR，并将这些虚拟PCR引用到日志中。 如果值不匹配，则S4状态返回失败，设备重启。