公开(公告)号：US10331906B2

公开(公告)日：2019-06-25

申请号：US15650563

申请日：2017-07-14

Applicant: Intel Corporation

Inventor： Ned M. Smith ,  Nathan Heldt-Sheller ,  Thomas G. Willis

IPC: G06Q30/00 ,  G06F21/62 ,  G06Q30/02

Abstract: Embodiments of the present disclosure are directed toward publication and/or removal of attributes in a multi-user computing environment. In some embodiments, a consumer information manager (CIM) associated with a user of a multi-user computing system may receive a notification, from a dimension authority (DA), of a decrease in a population count of users of the computing system who have published an attribute within the computing system, and may determine whether the user has published the attribute. In response to receiving the notification of the decrease and determining that the user has published the attribute, the CIM may determine a likelihood that continued publication of the attribute will enable identification of the user, compare the likelihood to a threshold, and, when the likelihood exceeds the threshold, remove the attribute from publication. Other embodiments may be disclosed and/or claimed.

公开(公告)号：US10237682B2

公开(公告)日：2019-03-19

申请号：US15480058

申请日：2017-04-05

Applicant: INTEL CORPORATION

Inventor： Ned M. Smith ,  Micah J. Sheller ,  Nathan Heldt-Sheller

IPC: H04W4/021 ,  H04W12/08

Abstract: Various embodiments are generally directed to the provision and use of geometric location based security systems that use multiple beacons for determining a location. A beacon transmitted from an ultrasound broadcast as well as one or more different wireless broadcasts can be used to geo-locate a device and provide access controls based on the geo-location.

公开(公告)号：US20190041853A1

公开(公告)日：2019-02-07

申请号：US16023637

申请日：2018-06-29

Applicant: Intel Corporation

Inventor： Siddharth Jain ,  Ned M. Smith ,  Nathan Heldt-Sheller ,  Shantanu Kulkarni

IPC: G05D1/00 ,  G06F9/50 ,  G05D1/02

Abstract: Apparatuses, methods, and systems for performing a distributed compute task by a computer-assisted or autonomous driving (CA/AD) vehicle are disclosed herein. In embodiments, an apparatus may include a communication interface disposed in the CA/AD vehicle to receive the compute task. In embodiments, the compute task is part of a collection of distributed compute tasks that are assigned to the CA/AD vehicle or other compute apparatuses based at least in part on resources available to the CA/AD vehicle and to the other computer apparatuses. In embodiments, a compute engine may perform the compute task using, at least in part, the available resources of the CA/AD vehicle. Other embodiments may be disclosed and claimed.

公开(公告)号：US10083304B2

公开(公告)日：2018-09-25

申请号：US15445298

申请日：2017-02-28

Applicant: Intel Corporation

Inventor： Jasmeet Chhabra ,  Ned M. Smith ,  Micah J. Sheller ,  Nathan Heldt-Sheller

IPC: H04L29/06 ,  G06F21/57 ,  G06F21/31 ,  G06F21/32 ,  G06F21/53 ,  G06N99/00 ,  H04W12/06 ,  H04W12/12

CPC classification number: G06F21/577 ,  G06F21/31 ,  G06F21/316 ,  G06F21/32 ,  G06F21/53 ,  G06F21/57 ,  G06F2221/034 ,  G06F2221/2115 ,  G06N20/00 ,  H04L63/083 ,  H04L63/0861 ,  H04L2463/082 ,  H04W12/06 ,  H04W12/12

Abstract: Technologies for information security include a computing device with one or more sensors. The computing device may authenticate a user and, after successful authentication, analyze sensor data to determine whether it is likely that the user authenticated under duress. If so, the computing device performs a security operation such as generating an alert or presenting false but plausible data to the user. Additionally or alternatively, the computing device, within a trusted execution environment, may monitor sensor data and apply a machine-learning classifier to the sensor data to identify an elevated risk of malicious attack. For example, the classifier may identify potential user identification fraud. The computing device may trigger a security response if elevated risk of attack is detected. For example, the trusted execution environment may trigger increased authentication requirements or increased anti-theft monitoring for the computing device. Other embodiments are described and claimed.

公开(公告)号：US10055556B2

公开(公告)日：2018-08-21

申请号：US14866950

申请日：2015-09-26

Applicant: Intel Corporation

Inventor： Ned M. Smith ,  Nathan Heldt-Sheller ,  Micah J. Sheller ,  Kevin C. Wells ,  Hannah L. Scurfield ,  Nathaniel J. Goss ,  Sindhu Pandian ,  Brad H. Needham

IPC: G06F7/04 ,  G06F21/31 ,  H04W12/06 ,  G06F21/53 ,  H04L9/32 ,  H04W88/02

CPC classification number: G06F21/31 ,  G06F21/41 ,  G06F21/53 ,  G06F21/88 ,  G06F2221/2105 ,  G06F2221/2111 ,  G06F2221/2147 ,  H04L9/3226 ,  H04L63/0815 ,  H04L2209/127 ,  H04L2209/805 ,  H04W12/00503 ,  H04W12/00504 ,  H04W12/00508 ,  H04W12/06 ,  H04W88/02

Abstract: Technologies for authenticating a user of a computing device based on an authentication context state includes generating context state outputs indicative of various context states of a mobile computing device based on sensor data generated by sensors of the mobile computing device. An authentication manager of the computing device implements an authentication state machine to authenticate a user of the computing device. The authentication state machine includes a number of authentication states, and each authentication state includes one or more transitions to another authentication state. Each of the transitions is dependent upon a context state output. The computing device may also include a device security manager, which implements a security state machine that includes a number of security states. Transition between security states is dependent upon the present authentication state of the user. The device security manager may implement a different security function in each security state.

公开(公告)号：US10009359B2

公开(公告)日：2018-06-26

申请号：US14865198

申请日：2015-09-25

Applicant: Intel Corporation

Inventor： Ned M. Smith ,  Nathan Heldt-Sheller ,  Sachin Agrawal ,  Mats G. Agerstam

IPC: H04L29/06

CPC classification number: H04L63/1416 ,  H04L63/06 ,  H04L63/10 ,  H04L63/20 ,  H04W12/003

Abstract: In one embodiment, a method includes receiving, in an on-boarding system for a first network, a request to transfer ownership of a first device to a new owner; receiving, in the on-boarding system, notification information from a spectrum analyzer regarding wireless signal information within the first network; determining if a potential attacker is within a radio range of the first network based on the wireless signal information; responsive to determining that the potential attacker is within the radio range, manipulating a signal strength of the on-boarding system and the first device, to limit an emission range of the on-boarding system and the first device; and performing a native communication protocol to communicate ownership information, and to cause the first device to store the ownership information in a storage of the first device.

公开(公告)号：US20180069855A1

公开(公告)日：2018-03-08

申请号：US15812956

申请日：2017-11-14

Applicant: Intel Corporation

Inventor： Ned M. Smith ,  Hannah L. Scurfield ,  Nathan Heldt-Sheller ,  Micah J. Sheller ,  Nathaniel J. Goss ,  Kevin C. Wells ,  Sindhu Pandian

IPC: H04L29/06 ,  G06F21/31 ,  H04L29/08 ,  G06N99/00

CPC classification number: H04L63/0861 ,  G06F21/31 ,  G06F21/316 ,  G06F2221/2105 ,  G06N20/00 ,  H04L63/0884 ,  H04L67/306

Abstract: In embodiments, apparatuses, methods and storage media (transitory and non-transitory) are described that are associated with user profile selection using contextual authentication. In various embodiments, a first user of a computing device may be authenticated and have an access control state corresponding to a first user profile established, the computing device may select a second user profile based at least in part a changed user characteristic, and the computing device may present a resource based at least in part on the second user profile. In various embodiments, the computing device may include a sensor and a user profile may be selected based at least in part on an output of the sensor and a previously stored template generated by a machine learning classifier.

公开(公告)号：US20170034284A1

公开(公告)日：2017-02-02

申请号：US14757750

申请日：2015-12-23

Applicant: Intel Corporation

Inventor： Ned M. Smith ,  Mats G. Agerstam ,  Nathan Heldt-Sheller

IPC: H04L29/08 ,  H04L9/14 ,  H04L9/32 ,  H04L29/06

CPC classification number: H04L67/141 ,  H04L9/0822 ,  H04L9/0825 ,  H04L9/0833 ,  H04L9/14 ,  H04L9/321 ,  H04L9/3213 ,  H04L9/3247 ,  H04L9/3263 ,  H04L9/3268 ,  H04L9/3297 ,  H04L63/061 ,  H04L63/062 ,  H04L63/0807

Abstract: In one embodiment, a method includes establishing a first session between a first computing device and a second computing device, when the first computing device does not have connectivity to a credential manager; proxying a request to the credential manager from the second computing device on behalf of the first computing device and receive in the second computing device a first keyless ticket encrypted to the first device and a second keyless ticket encrypted to the second device; providing the second keyless ticket from the second computing device to the first computing device; and enabling communication between the first and second computing devices according to the first and second keyless tickets. Other embodiments are described and claimed.

Abstract translation: 在一个实施例中，一种方法包括当第一计算设备不具有连接到证书管理器的连接时，在第一计算设备和第二计算设备之间建立第一会话; 代表所述第一计算设备从所述第二计算设备代理对所述凭证管理器的请求，并在所述第二计算设备中接收加密到所述第一设备的第一无钥匙票和加密到所述第二设备的第二无钥匙票; 将所述第二无钥匙车票从所述第二计算设备提供给所述第一计算设备; 以及根据第一和第二无钥匙门票启用第一和第二计算设备之间的通信。 描述和要求保护其他实施例。

公开(公告)号：US20160364553A1

公开(公告)日：2016-12-15

申请号：US15070215

申请日：2016-03-15

Applicant: Intel Corporation

Inventor： Ned M. Smith ,  Rajesh Poornachandran ,  Nathan Heldt-Sheller

IPC: G06F21/10 ,  H04L29/06

CPC classification number: G06F21/105 ,  G06F21/10 ,  G06F2221/0704 ,  G06F2221/0753 ,  G06F2221/0755 ,  H04L63/0428 ,  H04L63/0435 ,  H04L63/062 ,  H04L63/10 ,  H04L2463/101 ,  H04W4/70 ,  H04W12/02 ,  H04W12/04

Abstract: In one embodiment, a system comprises: a content provider interface logic to receive a content license from a content provider, the content license to indicate that the system may distribute digital content associated with the content license to one or more devices; an attestation logic to attest a state of a first device; and a key management logic to generate a content key for the first device responsive to a request by the first device for the digital content and attestation of the first device state, and provide the content key to the first device. Other embodiments are described and claimed.

Abstract translation: 在一个实施例中，系统包括：内容提供者接口逻辑，用于从内容提供者接收内容许可证，所述内容许可证指示系统可以将与内容许可相关联的数字内容分发到一个或多个设备; 证明第一个设备的状态的证明逻辑; 以及密钥管理逻辑，用于响应于所述第一设备对所述数字内容的请求以及所述第一设备状态的证明来生成所述第一设备的内容密钥，以及向所述第一设备提供所述内容密钥。 描述和要求保护其他实施例。

公开(公告)号：US20160174031A1

公开(公告)日：2016-06-16

申请号：US14572576

申请日：2014-12-16

Applicant: Intel Corporation

Inventor： Ned M. Smith ,  Micah J. Sheller ,  Nathan Heldt-Sheller

IPC: H04W4/02 ,  H04W12/08

CPC classification number: H04W4/021 ,  H04W12/08

Abstract: Various embodiments are generally directed to the provision and use of geometric location based security systems that use multiple beacons for determining a location. A beacon transmitted from an ultrasound broadcast as well as one or more different wireless broadcasts can be used to geo-locate a device and provide access controls based on the geo-location.

Abstract translation: 各种实施例通常涉及提供和使用基于几何位置的安全系统，其使用多个信标来确定位置。 可以使用从超声波广播发送的信标以及一个或多个不同的无线广播来定位设备并基于地理位置提供访问控制。