公开(公告)号：US07484241B2

公开(公告)日：2009-01-27

申请号：US10994620

申请日：2004-11-22

Applicant: David Carroll Challener ,  Steven Dale Goodman ,  James Patrick Hoff ,  David Rivera ,  Randall Scott Springfield

Inventor： David Carroll Challener ,  Steven Dale Goodman ,  James Patrick Hoff ,  David Rivera ,  Randall Scott Springfield

IPC: G06F7/04 ,  H04L9/32

CPC classification number: G06F21/41

Abstract: Methods and arrangements are disclosed for secure single sign on to an operating system using only a power-on password. In many embodiments modified BIOS code prompts for, receives and verifies the power-on password. The power-on password is hashed and stored in a Platform Configuration Register of the Trusted Platform Module. In a setup mode, the trusted platform module encrypts the operating system password using the hashed power-on password. In a logon mode, the trusted platform module decrypts the operating system password using the hashed power-on password.

Abstract translation: 公开了仅使用开机密码的安全单点登录到操作系统的方法和布置。 在许多实施例中，修改的BIOS代码提示，接收和验证开机密码。 开机密码被散列并存储在可信平台模块的平台配置寄存器中。 在设置模式下，可信平台模块使用散列开机密码对操作系统密码进行加密。 在登录模式下，可信平台模块使用散列开机密码解密操作系统密码。

公开(公告)号：US20080025513A1

公开(公告)日：2008-01-31

申请号：US11461429

申请日：2006-07-31

Applicant: Matthew P. Lietzke ,  James P. Hoff ,  David Rivera

Inventor： Matthew P. Lietzke ,  James P. Hoff ,  David Rivera

IPC: H04L9/00

CPC classification number: H04L9/0897 ,  G06F21/57

Abstract: A trusted platform module (TPM) is a silicon chip that constitutes a secure encryption key-pair generator and key management device. A TPM provides a hardware-based root-of-trust contingent on the generation of the first key-pair that the device creates: the SRK (storage root key). Each SRK is unique, making each TPM unique, and an SRK is never exported from a TPM. Broadly contemplated herein is an arrangement for determining automatically whether a TPM has been replaced or cleared via loading a TPM blob into the TPM prior to the first time it is to be used (e.g. when a security-related software application runs). If the TPM blob loads successfully, then it can be concluded that the TPM is the same TPM that was used previously. If the TPM blob cannot be loaded, then corrective action will preferably take place automatically to configure the new TPM.

Abstract translation: 可信平台模块（TPM）是构成安全加密密钥对生成器和密钥管理设备的硅芯片。 TPM提供基于硬件的根本信任依赖于生成设备创建的第一个密钥对：SRK（存储根密钥）。 每个SRK是唯一的，使得每个TPM是唯一的，并且SRK从不从TPM导出。 这里广泛考虑的是用于在第一次使用TPM之前（例如当安全相关的软件应用运行时）自动确定TPM是否被替换或清除的装置。 如果TPM blob成功加载，则可以得出结论，TPM与之前使用的TPM相同。 如果无法加载TPM blob，则自动执行纠正措施来配置新的TPM。

公开(公告)号：US07267120B2

公开(公告)日：2007-09-11

申请号：US10223394

申请日：2002-08-19

Applicant: Andre Rustad ,  David Rivera ,  Charlie Atlas

Inventor： Andre Rustad ,  David Rivera ,  Charlie Atlas

IPC: A61M1/02 ,  A61M15/00

CPC classification number: A61M11/00 ,  A61M11/002 ,  A61M11/06 ,  A61M15/00 ,  B05B7/0012 ,  Y10S261/65

Abstract: An atomizing nebulizer for dispensing a substance or medicament is described. The nebulizer is formed with a reservoir base releasably secured to an effluent vent cap that together capture a diffuser and integral dispersing baffle that are further formed with an uptake lumen or channel terminating with a nozzle jet. The diffuser dispersing baffle is positioned relative to the jet nozzle to optimize atomization of any of a number of such substances so as to maximize disbursement of the substance. The reservoir base also incorporates a pressurized fluid-accelerating inlet tube terminated with a metering orifice that cooperates with the nozzle jet when the inlet tube is received within the diffuser uptake lumen or channel. When so received, the nozzle jet axially registers proximate and superior to the orifice to establish a vacuum space that is in fluid communication with a capillary interstice established between the walls of the exterior of the inlet tube and the confronting interior surface of the diffuser lumen or channel. When a pressurized fluid is communicated through the lumen, the orifice, and into the vacuum space towards the nozzle jet, a vacuum develops in the vacuum space that, in combination with the capillary action of the interstice, draws the fluid proximate to the orifice and disperses it into droplets that are then entrained into a fluid stream to be further atomized upon impact with the baffle and then dispensed.

Abstract translation: 描述了用于分配物质或药物的雾化雾化器。 喷雾器形成有可释放地固定到流出物通气盖的储存器基座，其一起捕获漫射器和整体分散挡板，其进一步形成有吸收腔或者以喷嘴射流终止的通道。 扩散器分散挡板相对于喷嘴定位，以优化多种这种物质中的任何一种的雾化，以便最大限度地发送物质。 储存器底座还包括加压的流体加速入口管，其端接有计量孔口，当入口管被容纳在扩散器吸入腔或通道内时，其与喷嘴射流协作。 当如此接收时，喷嘴射流轴向地注入到孔口附近并且高于孔口以建立真空空间，其与在入口管的外部的壁和扩散器腔的相对的内表面之间建立的毛细管间隙流体连通，或 渠道。 当加压流体通过管腔，孔口并且朝向喷嘴射流进入真空空间时，在真空空间中形成真空，其与空隙的毛细管作用相结合，将流体拉近孔口附近， 将其分散成液滴，然后将其夹带到流体流中，以在与挡板碰撞时进一步雾化，然后分配。

公开(公告)号：US07107460B2

公开(公告)日：2006-09-12

申请号：US10077135

申请日：2002-02-15

Applicant: Daryl Carvis Cromer ,  Scott Thomas Elliott ,  James Patrick Hoff ,  Howard Jeffrey Locker ,  David Rivera ,  Randall Scott Springfield ,  James Peter Ward

Inventor： Daryl Carvis Cromer ,  Scott Thomas Elliott ,  James Patrick Hoff ,  Howard Jeffrey Locker ,  David Rivera ,  Randall Scott Springfield ,  James Peter Ward

IPC: H04L29/02 ,  H04L29/18 ,  H04L9/34

CPC classification number: G06F21/70 ,  G06F21/57

Abstract: An embedded security subsystem, and method for implementing the same, which provide secure controllability of a data security device within a data processing system. The embedded security subsystem of the present invention includes a persistent enable flag for providing control access to the data security device, wherein the persistent enable flag is accessible only in response to a power-on reset cycle of the data processing system. The persistent enable flag is read-only accessible to runtime program instructions. A pending state change flag that is write accessible by runtime program instructions is utilized for setting an intended next state of the persistent enable flag such that control access to the data security device is enabled only during a subsequent power-on reset of said data processing system.

公开(公告)号：US5634045A

公开(公告)日：1997-05-27

申请号：US555456

申请日：1995-11-13

Applicant: Vernon B. Goler ,  Gary L. Miller ,  David Rivera

Inventor： Vernon B. Goler ,  Gary L. Miller ,  David Rivera

IPC: G06F13/12 ,  G06F1/14 ,  G06F9/48 ,  G06F15/78 ,  G06F13/40 ,  G06F1/04

CPC classification number: G06F15/78

Abstract: Referring to FIGS. 1 and 2, I/O control modules (IOCMs 25-29) have channels which communicate by way of timer buses (71, 72) and pin/status buses (75-77). Channels (86, 87) are partitioned by each timer bus (71, 72) into separate blocks of channels (86, 87) which are provided with access to different timebase values from timebase channels (80, 81) by their respective timer bus (71, 72), so there is no loss of resolution because each channel in a timer bus block (e.g. 86) can concurrently receive the same timebase value from its corresponding timer bus (71). Pin/status buses (75-77) allow simultaneity of control among the channels (e.g. 58) coupled to the same pin/status bus (e.g. 76). Pin/status buses (75-77) and timer buses (71, 72) can be independently partitioned.

Abstract translation: 参见图 如图1和图2所示，I / O控制模块（IOCM 25-29）具有通过定时器总线（71,72）和引脚/状态总线（75-77）进行通信的通道。 信道（86,87）被每个定时器总线（71,72）划分成分离的信道块（86,87），它们通过它们各自的定时器总线（时钟基准信道（80,81））提供对不同时基值的访问 71，72），所以没有分辨率的损失，因为定时器总线块（例如86）中的每个通道可以从其对应的定时器总线（71）同时接收相同的时基值。 引脚/状态总线（75-77）允许在耦合到相同引脚/状态总线（例如76）的通道（例如58）之间同时进行控制。 引脚/状态总线（75-77）和定时器总线（71,72）可以独立分区。