-
31.发明授权公开(公告)号:US06892305B1
公开(公告)日:2005-05-10
申请号:US09689460
申请日:2000-10-12
申请人: Richard Alan Dayan , Steven Dale Goodman , Joseph Michael Pennisi , Randall Scott Springfield , James Peter Ward , Joseph Wayne Freeman
发明人: Richard Alan Dayan , Steven Dale Goodman , Joseph Michael Pennisi , Randall Scott Springfield , James Peter Ward , Joseph Wayne Freeman
CPC分类号: G06F21/575
摘要: A method and system for booting up a computer system in a secure fashion is disclosed. The method and system comprise determining the presence of a security feature element during an initialization of the computer system wherein the security feature element includes a public key and a corresponding private key, storing a portion of the public key in a nonvolatile memory within the computer system if the security feature element is present and utilizing an algorithm to determine the presence of the security feature element prior to a subsequent boot-up of the computer system. Through the use of the present invention, a computer system is capable of being booted up whereby the computer system determines if a security feature element was previously present in the system. If a security feature element was previously present in the computer system, any stored keys, along with the secrets that they protect, are prevented from being compromised. It is also an object of the present invention to preclude the system from compromising any keys and associated secrets if a security feature element in the system was not previously present in the system.
摘要翻译: 公开了一种以安全方式引导计算机系统的方法和系统。 该方法和系统包括在计算机系统的初始化期间确定安全特征元素的存在,其中安全特征元素包括公共密钥和相应的私钥,将公钥的一部分存储在计算机系统内的非易失性存储器中 如果存在安全特征元素并且利用算法来确定在计算机系统的后续引导之前的安全特征元素的存在。 通过使用本发明,计算机系统能够被启动,由此计算机系统确定安全特征元素是否先前存在于系统中。 如果安全特征元素以前存在于计算机系统中,则防止任何存储的密钥以及它们保护的秘密被泄露。 如果系统中的安全特征元素先前不存在于系统中,则本发明的另一个目的是排除系统损害任何密钥和相关联的秘密。
-
公开(公告)号:US06772264B1
公开(公告)日:2004-08-03
申请号:US09575592
申请日:2000-05-22
IPC分类号: G06F1300
CPC分类号: G06F1/1632
摘要: A docking station system for use with a computer system which includes an externally accessible PC Card interface for transferring signals conforming to the PC Card standard to a docking station enclosure. The docking station enclosure includes a PC Card connector that connects to and passes interface signals between the PC Card interface of the computer system and the docking station enclosure. The docking station enclosure further includes an ISA bus structure conforming to the ISA bus standard. Additionally, the docking station enclosure incorporates conversion logic which is connected to receive signals from the computer system via the PC Card connector, and converts these received signals to signals for operating the ISA bus structure. The computer system includes conversion logic which is connected to receive signals from the docking station enclosure via the PC Card connector, and to convert these signals to system interrupt requests. In this manner, one or more ISA adapters can be utilized in the docking station enclosure to emulate one or more PC Card functions at the PC Card interface.
摘要翻译: 用于计算机系统的对接站系统,其包括可外部访问的PC卡接口,用于将符合PC卡标准的信号传送到坞站机箱。 对接站机箱包括一个PC卡连接器,它连接到计算机系统的PC卡接口和扩展坞机箱之间的接口信号。 坞站外壳还包括符合ISA总线标准的ISA总线结构。 此外,对接站机箱包含转换逻辑,其连接以经由PC卡连接器从计算机系统接收信号,并将这些接收的信号转换为用于操作ISA总线结构的信号。 计算机系统包括转换逻辑,其连接以经由PC卡连接器从对接站机箱接收信号,并将这些信号转换为系统中断请求。 以这种方式,可以在坞站机箱中使用一个或多个ISA适配器来模拟PC卡接口处的一个或多个PC卡功能。
-
公开(公告)号:US07069431B2
公开(公告)日:2006-06-27
申请号:US09919081
申请日:2001-07-31
IPC分类号: H04L9/32
CPC分类号: G06F11/1433
摘要: A hard drive having a protected partition is used in the recovery of a BIOS image for a computer system. An EEPROM is used to store a first BIOS image that is used to boot-up the system and recovery code is used to recover a new BIOS image if the first BIOS image has been corrupted. The new BIOS image is stored in the protected partition of the drive. A recover BIOS command is issued whenever the first BIOS image has been corrupted or a remote or local recover BIOS request is received. When the first BIOS is corrupted, the EEPROM is rewritten with the second BIOS image and the system boots with the rewritten first BIOS image. When a recover BIOS request is received in a data packet sent over a communication link, the data packet is authenticated before the first BIOS image is rewritten.
-
公开(公告)号:US07065627B2
公开(公告)日:2006-06-20
申请号:US10105688
申请日:2002-03-25
IPC分类号: G06F12/00
CPC分类号: G06F3/0601 , G06F9/4406 , G06F2003/0697
摘要: A method and system for providing an event driven hardfile image in a computer system is disclosed. The computer system includes a hardfile, a hardfile adapter, a master boot record and an operating system. The method and system include providing an extended physical partition table describing a plurality of partitions on the hardfile and defining at least one image using a utility. Each image corresponds to at least a portion of the plurality of partitions and to a corresponding event. An image is to be mapped to the master boot record in response to an occurrence of the corresponding event. The method and system also include providing an event driven table including each of the at least one image.
-
公开(公告)号:US06934742B2
公开(公告)日:2005-08-23
申请号:US10093271
申请日:2002-03-07
申请人: Simon Chu , Richard Alan Dayan
发明人: Simon Chu , Richard Alan Dayan
CPC分类号: H04L67/02
摘要: A method, system and computer program product for efficiently handling client requests in a server farm. A server in the server farm may comprise a hardfile constrained to activate a limited number of logical partitions. The hardfile may store a partition table that defines the logical partitions activated. An image may refer to a collection of the limited number of logical partitions. Each image may be associated with a web site. Hence, the server may host a web site associated with the image currently active. The server may further store an image definition table storing a listing of images. An image associated with a different web site than the web site hosted may be selected. The logical partitions of the image selected may substitute the logical partitions defined in the partition table. Consequently, the server hosts a different web site without copying the old image or installing the new image.
摘要翻译: 一种用于在服务器场中有效处理客户端请求的方法,系统和计算机程序产品。 服务器场中的服务器可以包括被限制为激活有限数量的逻辑分区的硬文件。 硬文件可以存储定义激活的逻辑分区的分区表。 图像可以指代有限数量的逻辑分区的集合。 每个图像可以与网站相关联。 因此,服务器可以托管与当前活动的图像相关联的网站。 服务器还可以存储存储图像列表的图像定义表。 可以选择与托管的网站不同的网站相关联的图像。 所选图像的逻辑分区可以替代分区表中定义的逻辑分区。 因此,服务器托管不同的网站,而不复制旧映像或安装新映像。
-
36.发明授权Secure write blocking circuit and method for preventing unauthorized write access to nonvolatile memory 失效安全写阻塞电路和防止非易失性存储器的非法写入访问的方法公开(公告)号:US06711690B2
公开(公告)日:2004-03-23
申请号:US09953775
申请日:2001-09-17
IPC分类号: G06F900
CPC分类号: G06F21/79
摘要: A secure write blocking circuit and method of operation thereof. The secure write blocking circuit includes enable and disable block input terminals coupled to a blocking circuit. The blocking circuit, such as a set/reset latch in a preferred embodiment, generates a block signal to prevent write access to a nonvolatile memory device, such as flash memory, in response to signals provided to the enable and disable input terminals. The secure write blocking circuit also includes an interrupt generator, coupled to the disable block input terminal, that generates an interrupt signal in response to a signal at the disable input terminal. In a related embodiment the secure write blocking circuit also includes a logic circuit, coupled to the blocking circuit, that receives the block signal and a write enable signal and in response thereto generates a control signal to a write enable input of the nonvolatile memory device.
摘要翻译: 一种安全的写阻塞电路及其操作方法。 安全写阻断电路包括耦合到阻塞电路的使能和禁止块输入端。 阻塞电路,例如在优选实施例中的设置/复位锁存器,响应于提供给使能和禁止输入端子的信号,产生阻塞信号以防止对非易失性存储器件(例如闪速存储器)的写访问。 安全写阻断电路还包括耦合到禁用块输入端的中断发生器,其响应于禁用输入端的信号而产生中断信号。 在相关实施例中,安全写入分块电路还包括耦合到分块电路的逻辑电路,其接收块信号和写使能信号,并响应于此产生对非易失性存储器件的写使能输入的控制信号。
-
37.发明授权Appliance server with a drive partitioning scheme that accommodates application growth in size 有权具有驱动器分区方案的设备服务器,可适应应用程序增长的大小公开(公告)号:US06636958B2
公开(公告)日:2003-10-21
申请号:US09907075
申请日:2001-07-17
申请人: Akram Abboud , John Michael Brantly , William W. Buchanan, Jr. , Peter Gerard Chin , Simon Chu , Richard Alan Dayan , Peter Thomas Donovan , David Michael Green , Timothy J. Green , Frank C. Harwood , Thomas William Lange , Karl Ross Shultz , Paul Brian Tippett , William Paul Zeggert
发明人: Akram Abboud , John Michael Brantly , William W. Buchanan, Jr. , Peter Gerard Chin , Simon Chu , Richard Alan Dayan , Peter Thomas Donovan , David Michael Green , Timothy J. Green , Frank C. Harwood , Thomas William Lange , Karl Ross Shultz , Paul Brian Tippett , William Paul Zeggert
IPC分类号: G06F1300
CPC分类号: G06F3/0601 , G06F2003/0697
摘要: Disclosed is a method and hard disk configuration for accommodating different sizes of applications during an automatic re-provisioning of an appliance server. The disk drive of the appliance server is partitioned with a system partition, a network operating system (NOS) partition, a float partition, and an images partition. The float partition is utilized to provide additional space to the NOS partition and the images partition, when required. A re-provisioning utility is provided, which initiates both a create image utility and an apply image utility, whereby an image file of a current application and associated operating system is created and a stored image file of a second application is installed on the appliance server. When the apply image utility is initiated, the NOS partition is dynamically extended into the float partition server if the second application requires more space than is provided in the NOS partition. Similarly, when an image file is stored in the images partition and the image file requires more space than is available in the images partition, the images partition is dynamically extended into the float partition.
摘要翻译: 公开了一种用于在设备服务器的自动重新供应期间适应不同大小的应用的方法和硬盘配置。 设备服务器的磁盘驱动器使用系统分区,网络操作系统(NOS)分区,浮动分区和映像分区进行分区。 当需要时,浮动分区用于向NOS分区和映像分区提供额外的空间。 提供重新配置实用程序,其启动创建映像实用程序和应用映像实用程序,由此创建当前应用程序和关联操作系统的映像文件,并且将第二应用程序的存储映像文件安装在设备服务器上 。 当应用映像实用程序启动时,如果第二个应用程序需要比NOS分区中提供的空间更多的空间,则NOS分区将动态扩展到浮动分区服务器。 类似地,当图像文件存储在图像分区中并且图像文件需要比图像分区中可用的更多的空间时,图像分区被动态地扩展到浮动分区。
-
38.发明授权公开(公告)号:US06630926B2
公开(公告)日:2003-10-07
申请号:US09732351
申请日:2000-12-07
IPC分类号: G09G500
摘要: A computing system includes a security register, in which a flag bit is set whenever a clock pulse and scan code are transmitted from the microcontroller in the system keyboard. The presence of this flag bit indicates that an associated code, which is stored in an output buffer of the keyboard/auxiliary device controller of the system has been sent by the keyboard, as a result of a keystroke, instead of by a program executing within the CPU of the system. The security register is read and reset as the associated code is read from the output buffer. An application program can use the data from the security register to determine if data has come from the surreptitious entry of data through keystroke emulation.
摘要翻译: 计算系统包括安全寄存器,其中每当从系统键盘中的微控制器发送时钟脉冲和扫描码时,标志位被置位。 该标志位的存在表示存储在系统的键盘/辅助设备控制器的输出缓冲器中的相关代码已经由键盘发送,作为按键的结果,而不是通过在内部执行的程序 系统的CPU。 从输出缓冲区读取相关代码时,读取和复位安全寄存器。 应用程序可以使用来自安全寄存器的数据来确定数据是否来自通过击键仿真的秘密输入数据。
-
公开(公告)号:US06487465B1
公开(公告)日:2002-11-26
申请号:US09431728
申请日:1999-11-01
IPC分类号: G05B902
CPC分类号: G06F21/575 , G06F2211/1097
摘要: A system and method of improving security during power-on-self-test (POST), particularly the ROM scan portion identifying ROM adapters, while selectively allowing user input. While a user input during ROM scan may be normally locked out to prevent the user from making changes to the configuration of the system, when the ROM scan during POST detects a ROM adapter which uses an input from the user, the system can override the lockout and allows for a user input. An optional control, such as a password or other personal identifier, can provide security, allowing the user input only when the user is authorized to provide the input (in response to an appropriate password or personal identifier such as a biometric identifier).
摘要翻译: 一种提高上电自检(POST)中的安全性的系统和方法,特别是识别ROM适配器的ROM扫描部分,同时有选择地允许用户输入。 当ROM扫描期间的用户输入可能被正常地锁定以防止用户改变系统的配置,当POST期间的ROM扫描检测到使用来自用户的输入的ROM适配器时,系统可以覆盖锁定 并允许用户输入。 诸如密码或其他个人标识符的可选控制可以提供安全性,仅当用户被授权提供输入(响应于适当的密码或个人识别符,例如生物识别符)时才允许用户输入)。
-
公开(公告)号:US6009486A
公开(公告)日:1999-12-28
申请号:US069407
申请日:1998-04-29
CPC分类号: G06F1/1632
摘要: A computer system with a PC Card external connector sends signals to PCI devices as if respective PC Card functions. A cooperating docking station connects to the PC Card connector and so processes the PC Card signals that a set of signals for supporting PCI bus standard are made available at a PCI bus of the docking station. The docking station is hence able to connect to a bus commonly available on computers, particularly laptop computers, for direct plug-in connection and yet supports connection of PCI adapters that otherwise tend to be supported only within a main computer at an internal PCI bus.
摘要翻译: 具有PC卡外部连接器的计算机系统将信号发送到PCI设备,就像各个PC卡的功能一样。 协作坞站连接到PC卡连接器,因此处理PC卡信号,一组用于支持PCI总线标准的信号在坞站的PCI总线上可用。 因此,对接站能够连接到计算机,特别是笔记本电脑上通常可用的总线,用于直接插入连接,并且还支持PCI适配器的连接,否则PCI适配器仅在内部PCI总线的主计算机内才被支持。
-
-
-
-
-
-
-
-
-
搜索结果
51 条记录 (耗时 0.041 秒)
