-
公开(公告)号:US09619671B2
公开(公告)日:2017-04-11
申请号:US13992238
申请日:2011-12-22
申请人: Michael Berger , Mukesh Kataria , Jeffrey M. Tripp , Yasser Rasheed , David Birnbaum , Hung P. Huynh , Eli Kupermann , Mazen G. Gedeon , Joshua M. Resch
发明人: Michael Berger , Mukesh Kataria , Jeffrey M. Tripp , Yasser Rasheed , David Birnbaum , Hung P. Huynh , Eli Kupermann , Mazen G. Gedeon , Joshua M. Resch
摘要: A platform including a security system is described. The security system comprises, in one embodiment, a multi-state system having a plurality of modes, available whenever the platform has a source of power. The modes comprise an unarmed mode, in which the security system is not protecting the platform, an armed mode, in which the platform is protected, the armed mode reached from the unarmed mode, after an arming command, and a suspecting mode, in which the platform is suspecting theft, the suspecting mode reached from the armed mode, when a risk behavior is detected.
-
公开(公告)号:US09069961B2
公开(公告)日:2015-06-30
申请号:US13919609
申请日:2013-06-17
CPC分类号: G06F21/561 , G06F21/51 , G06F21/56 , G06F21/74 , G06F21/85 , G06F2221/034 , G06F2221/2101 , G06F2221/2105
摘要: A platform to support verification of the contents of an input-output device. The platform includes a platform hardware, which may verify the contents of the I/O device. The platform hardware may comprise components such as manageability engine and verification engine that are used to verify the contents of the I/O device even before the contents of the I/O device are exposed to an operating system supported by a host. The platform components may delete the infected portions of the contents of I/O device if the verification process indicates that the contents of the I/O device include the infected portions.
摘要翻译: 支持验证输入输出设备内容的平台。 该平台包括可以验证I / O设备内容的平台硬件。 即使在I / O设备的内容暴露于由主机支持的操作系统之前,平台硬件也可以包括用于验证I / O设备的内容的诸如可管理性引擎和验证引擎的组件。 如果验证过程指示I / O设备的内容包括感染部分,则平台组件可以删除I / O设备的内容的感染部分。
-
公开(公告)号:US20150143071A1
公开(公告)日:2015-05-21
申请号:US13995337
申请日:2011-12-30
申请人: Ravi L. Sahita , Yasser Rasheed , Vedvyas Shanbhogue , David M. Durham , Scott H. Robinson , Paul S. Schmitz
发明人: Ravi L. Sahita , Yasser Rasheed , Vedvyas Shanbhogue , David M. Durham , Scott H. Robinson , Paul S. Schmitz
CPC分类号: G06F12/10 , G06F21/554 , G06F21/6227 , G06F2212/251 , G06F2221/034
摘要: Embodiments of apparatuses and methods for memory event notification are disclosed. In one embodiment, a processor includes address translation hardware and memory event hardware. The address translation hardware is to support translation of a first address, used by software to access a memory, to a second address, used by the processor to access the memory. The memory event hardware is to detect an access to a registered portion of memory.
摘要翻译: 公开了用于存储器事件通知的装置和方法的实施例。 在一个实施例中,处理器包括地址转换硬件和存储器事件硬件。 地址转换硬件是支持由软件使用的访问存储器的第一地址到由处理器使用以访问存储器的第二地址的翻译。 存储器事件硬件是检测对存储器的注册部分的访问。
-
34.发明授权Providing software distribution and update services regardless of the state or physical location of an end point machine 有权提供软件分发和更新服务,而不管端点机器的状态或物理位置公开(公告)号:US08893112B2
公开(公告)日:2014-11-18
申请号:US12642911
申请日:2009-12-21
申请人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Bryan K. Jorgensen , Tracie L. Zenti
发明人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Bryan K. Jorgensen , Tracie L. Zenti
摘要: In accordance with some embodiments, software may be downloaded to an end point, even when that said end point is not fully functional. An indication that software is available for distribution may be stored in a dedicated location within a non-volatile memory. That location may be checked for software to download, for example, on each boot up. The software may then be downloaded and verified. Thereafter, the location is marked to indicate that the software has already been downloaded.
摘要翻译: 根据一些实施例,即使当所述终点没有完全起作用时,也可以将软件下载到终端。 软件可用于分发的指示可以存储在非易失性存储器内的专用位置。 可以检查该位置,例如,在每次启动时软件进行下载。 然后可以下载和验证软件。 此后,该位置被标记为指示该软件已经被下载。
-
35.发明授权Method and apparatus for secure scan of data storage device from remote server 有权从远程服务器安全扫描数据存储设备的方法和装置公开(公告)号:US08856534B2
公开(公告)日:2014-10-07
申请号:US12785146
申请日:2010-05-21
IPC分类号: G06F15/177 , H04L9/32
CPC分类号: G06F21/64 , G06F21/567 , G06F21/606 , G06F21/85 , G06F2213/0038
摘要: A method and device for providing a secure scan of a data storage device from a remote server are disclosed. In some embodiments, a computing device may include an in-band processor configured to execute an operating system and at least one host driver, communication circuitry configured to communicate with a remote server, and an out-of-band (OOB) processor capable of communicating with the remote server using the communication circuitry irrespective of the state of the operating system. The OOB processor may be configured to receive a block read request from the remote server, instruct the at least one host driver to send a storage command to a data storage device, receive data retrieved from the data storage device and authentication metadata generated by the data storage device, and transmit the data and the authentication metadata to the remote server.
摘要翻译: 公开了一种从远程服务器提供数据存储设备的安全扫描的方法和设备。 在一些实施例中,计算设备可以包括带内处理器,其被配置为执行操作系统和至少一个主机驱动器,被配置为与远程服务器通信的通信电路和能够与远程服务器通信的带外(OOB) 使用通信电路与远程服务器通信,而与操作系统的状态无关。 OOB处理器可以被配置为从远程服务器接收块读取请求,指示至少一个主机驱动程序向数据存储设备发送存储命令,接收从数据存储设备检索的数据和由数据生成的认证元数据 存储设备,并将数据和认证元数据传输到远程服务器。
-
公开(公告)号:US08762698B2
公开(公告)日:2014-06-24
申请号:US12636884
申请日:2009-12-14
申请人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Tracie L. Zenti , Bryan K. Jorgensen
发明人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Tracie L. Zenti , Bryan K. Jorgensen
IPC分类号: G06F15/177
CPC分类号: G06F9/4416 , G06F13/105 , G06F13/4027
摘要: A management engine may be used to trap configuration cycles during the boot process and thereafter in response to operating system enumeration. As a result, a virtual bus device can be created. The bus device may be used to provision software to the platform even when the operating system is corrupted or non-functional.
摘要翻译: 管理引擎可用于在引导过程期间以及其后响应于操作系统枚举来捕获配置周期。 结果,可以创建虚拟总线设备。 总线设备可用于将软件提供给平台,即使操作系统损坏或不起作用。
-
37.发明申请公开(公告)号:US20130290978A1
公开(公告)日:2013-10-31
申请号:US13918277
申请日:2013-06-14
申请人: Stephen J. Tolopka , David A. Koufaty , John I. Garney , Yasser Rasheed , Ulhas Warrier , Matthew Hoekstra
发明人: Stephen J. Tolopka , David A. Koufaty , John I. Garney , Yasser Rasheed , Ulhas Warrier , Matthew Hoekstra
IPC分类号: G06F9/50
CPC分类号: G06F9/5077 , G06F8/65 , G06F9/45533 , G06F9/45558 , G06F12/1491 , G06F21/74
摘要: Embodiments of apparatuses, methods for partitioning systems, and partitionable and partitioned systems are disclosed. In one embodiment, a system includes processors and a partition manager. The partition manager is to allocate a subset of the processors to a first partition and another subset of the processors to a second partition. The first partition is to execute first operating system level software and the second partition is to execute second operating system level software. The first operating system level software is to manage the processors in the first partition as resources individually accessible to the first operating system level software, and the second operating system level software is to manage the processors in the second partition as resources individually accessible to the second operating system level software. The partition manager is also to present the second partition, including the second operating system level software, to the first operating system level software as platform level functionality embedded in the system.
摘要翻译: 公开了装置的实施例,分区系统的方法以及可分割和分区的系统。 在一个实施例中,系统包括处理器和分区管理器。 分区管理器将处理器的子集分配给第一分区,另一个处理器子集分配给第二分区。 第一个分区是执行第一个操作系统级软件,第二个分区是执行第二个操作系统级软件。 第一操作系统级软件是将第一分区中的处理器作为第一操作系统级软件单独访问的资源进行管理,而第二操作系统级软件则将第二分区中的处理器作为第二分区可访问的资源进行管理 操作系统级软件。 分区管理器还将第二分区(包括第二操作系统级软件)呈现给第一操作系统级软件,作为嵌入系统中的平台级功能。
-
38.发明申请METHOD AND APPARATUS ALLOWING SCAN OF DATA STORAGE DEVICE FROM REMOTE SERVER 有权从远程服务器允许数据存储设备扫描的方法和设备公开(公告)号:US20110289146A1
公开(公告)日:2011-11-24
申请号:US12785131
申请日:2010-05-21
申请人: Hormuzd Khosravi , David Durham , David A. Edwards , Venkat R. Gokulrangan , Men Long , Yasser Rasheed
发明人: Hormuzd Khosravi , David Durham , David A. Edwards , Venkat R. Gokulrangan , Men Long , Yasser Rasheed
IPC分类号: G06F15/167 , G06F12/00
摘要: A method and device allowing a scan of a data storage device from a remote server are disclosed. In some embodiments, a computing device may include an out-of-band (OOB) configured to compute a first hash value for data stored in one or more sectors of a data storage device at a first time; receive, using communication circuitry, a request to transmit a portion of the data stored in the one or more sectors of the data storage device at a second time, the second time being subsequent to the first time; compute a second hash value for the data stored in the one or more sectors of the data storage device at the second time; and transmit, using the communication circuitry, the requested portion of the data, only if the second hash value does not match the first hash value.
摘要翻译: 公开了允许从远程服务器扫描数据存储设备的方法和设备。 在一些实施例中,计算设备可以包括带外(OOB),其被配置为在第一时间对存储在数据存储设备的一个或多个扇区中的数据计算第一散列值; 接收使用通信电路的请求,以在第二时间之后的第二时间第二时间发送存储在数据存储装置的一个或多个扇区中的数据的一部分的请求; 在第二次计算存储在数据存储设备的一个或多个扇区中的数据的第二哈希值; 并且仅当所述第二散列值与所述第一散列值不匹配时,才使用所述通信电路来发送所请求的数据部分。
-
39.发明申请Providing Software Distribution and Update Services Regardless of the State or Physical Location of an End Point Machine 有权提供软件分发和更新服务,无论终点机器的状态或物理位置如何公开(公告)号:US20110154316A1
公开(公告)日:2011-06-23
申请号:US12642911
申请日:2009-12-21
申请人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Bryan K. Jorgensen , Tracie L. Zenti
发明人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Bryan K. Jorgensen , Tracie L. Zenti
摘要: In accordance with some embodiments, software may be downloaded to an end point, even when that said end point is not fully functional. An indication that software is available for distribution may be stored in a dedicated location within a non-volatile memory. That location may be checked for software to download, for example, on each boot up. The software may then be downloaded and verified. Thereafter, the location is marked to indicate that the software has already been downloaded.
摘要翻译: 根据一些实施例,即使当所述终点没有完全起作用时,也可以将软件下载到终端。 软件可用于分发的指示可以存储在非易失性存储器内的专用位置。 可以检查该位置,例如,在每次启动时软件进行下载。 然后可以下载和验证软件。 此后,该位置被标记为指示该软件已经被下载。
-
公开(公告)号:US20070146373A1
公开(公告)日:2007-06-28
申请号:US11317829
申请日:2005-12-23
申请人: Lyle Cool , Yasser Rasheed
发明人: Lyle Cool , Yasser Rasheed
IPC分类号: G06F15/16
CPC分类号: G06F9/5044
摘要: In a many core system, receiving a call to a graphics driver; translating the call into a command executable on a core of the many core system; and executing the translated call on the core.
摘要翻译: 在许多核心系统中,接收对图形驱动程序的调用; 将呼叫转换成许多核心系统的核心上的命令可执行文件; 并在核心上执行转换的呼叫。
-
-
-
-
-
-
-
-
-
搜索结果
40 条记录 (耗时 0.026 秒)