公开(公告)号：US10083332B2

公开(公告)日：2018-09-25

申请号：US15325347

申请日：2014-08-08

Applicant: Intel Corporation

Inventor： Oleg Pogorelik ,  Alex Nayshtut ,  Hong Li ,  Justin Lipman

IPC: G06K7/10 ,  G06K7/14 ,  H04L9/32

CPC classification number: G06K7/1417 ,  G06K7/10722 ,  G06K7/1443 ,  H04L9/32

Abstract: In embodiments, apparatuses, methods, and storage media may be described for identifying a quick response (QR) image. A QR control code (QRCC) may be identified in the QR image based on a QR tag in the image. Based on the QRCC, a control command of an apparatus may be identified. Other embodiments may be described and/or claimed.

公开(公告)号：US10055562B2

公开(公告)日：2018-08-21

申请号：US14060927

申请日：2013-10-23

Applicant: Intel Corporation

Inventor： Anna Lerner ,  Alex Nayshtut ,  Tomer Rider

IPC: G06F21/32 ,  G06F21/53 ,  H04W12/06

CPC classification number: G06F21/32 ,  G06F21/53 ,  H04W12/06

Abstract: Various embodiments are generally directed to an apparatus, method and other techniques for detecting an input comprising an object contacting a surface of an apparatus, determining object characteristics based on the detected input and selecting a user profile based on the determined object characteristics.

公开(公告)号：US20180096147A1

公开(公告)日：2018-04-05

申请号：US15281825

申请日：2016-09-30

Applicant: Intel Corporation

Inventor： Tugrul Ince ,  Koichi Yamada ,  Ajay Harikumar ,  Alex Nayshtut

IPC: G06F21/56 ,  G06F11/36 ,  G06F21/52

CPC classification number: G06F21/566 ,  G06F11/3604 ,  G06F21/52 ,  G06F2221/033

Abstract: In one embodiment, a binary translator to perform binary translation of code is to: perform a first binary analysis of a first code block to determine whether a second control transfer instruction is included in the first code block, where the first code block includes a return target of a first control transfer instruction; perform a second binary analysis of a second code block to determine whether the second code block includes the first control transfer instruction, where the second code block includes a call target of the second control transfer instruction; and store an address pair associated with the first control transfer instruction in a whitelist if the second control transfer instruction is included in the first code block and the first control transfer instruction is included in the second code block. Other embodiments are described and claimed.

公开(公告)号：US20170324743A1

公开(公告)日：2017-11-09

申请号：US15477867

申请日：2017-04-03

Applicant: Intel Corporation

Inventor： Alex Nayshtut ,  Omer Ben-Shalom ,  Hong Li

IPC: H04L29/06 ,  H04L29/08 ,  G06F21/55 ,  G06F21/62

CPC classification number: H04L63/102 ,  G06F21/554 ,  G06F21/629 ,  G06F2221/2137 ,  G06F2221/2149 ,  H04L63/083 ,  H04L63/101 ,  H04L63/105 ,  H04L63/20 ,  H04L63/205 ,  H04L67/22 ,  H04L67/306 ,  H04W12/0027

Abstract: Technologies to facilitate supervision of an online identify include a gateway server to facilitate and monitor access to an online service by a user of a “child” client computer device. The gateway server may include an identity manager to receive a request for access to the online service from the client computing device, retrieve access information to the online service, and facilitate access to the online service for the client computing device using the access information. The access information is kept confidential from the user. The gateway server may also include an activity monitor module to control activity between the client computing device and the online service based on the set of policy rules of a policy database. The gateway server may transmit notifications of such activity to a “parental” client computing device for review and/or approval, which also may be used to update the policy database.

公开(公告)号：US09654903B2

公开(公告)日：2017-05-16

申请号：US14580627

申请日：2014-12-23

Applicant: Intel Corporation

Inventor： Oleg Olegp Pogorelik ,  Alex Nayshtut ,  Avi Apriev Priev ,  Shahar Porat ,  Michael Raziel

IPC: H04B5/00 ,  H04W4/00 ,  H04W12/04 ,  H04W12/06

CPC classification number: H04W4/008 ,  H04W4/80 ,  H04W12/04 ,  H04W12/06

Abstract: Techniques for connecting using NFC communications are provided. Specifically, methods are presented, that when taken alone or together, provide a device or group of devices with a secure way of transferring data from a wireless device to a reader. The present disclosure includes a method that provides a wireless device with network connectivity options that enable a more secure means for using NFC communications for completing a secure transaction using a secondary code.

公开(公告)号：US20160315917A1

公开(公告)日：2016-10-27

申请号：US15198508

申请日：2016-06-30

Applicant: Intel Corporation

Inventor： Ned M. Smith ,  Omer Ben-Shalom ,  Alex Nayshtut

IPC: H04L29/06 ,  H04L9/30

CPC classification number: H04L63/0428 ,  G06F21/6218 ,  H04L9/30 ,  H04L63/083 ,  H04L63/10 ,  H04L67/10 ,  H04L67/12 ,  H04L69/22

Abstract: Methods and apparatus to securely share data are disclosed. An example includes retrieving, by executing an instruction with a processor at a first computing device associated with a first user of a cloud service, an encrypted archive file and a wrapped encryption key from a second computing device associated with a second user of the cloud service, the wrapped encryption key wrapped with key data associated with the first user of the cloud service at the second computing device, unwrapping the wrapped encryption key with the key data to obtain an unwrapped encryption key, and decrypting the encrypted archive file with the unwrapped encryption key to obtain a decrypted archive file.

Abstract translation: 公开了安全地共享数据的方法和装置。 一个示例包括通过在与云服务的第一用户相关联的第一计算设备处执行指令，从与云服务的第二用户相关联的第二计算设备的加密归档文件和包裹的加密密钥来检索 包裹在与第二计算设备的云服务的第一用户相关联的密钥数据的包裹的加密密钥，用密钥数据解包裹包裹的加密密钥以获取未打包的加密密钥，以及用解封装的加密解密加密的归档文件 密钥来获取解密的归档文件。

公开(公告)号：US09411975B2

公开(公告)日：2016-08-09

申请号：US14230618

申请日：2014-03-31

Applicant: Intel Corporation

Inventor： Ned M. Smith ,  Omer Ben-Shalom ,  Alex Nayshtut

IPC: H04L9/08 ,  G06F21/62 ,  H04L29/06

CPC classification number: H04L63/0428 ,  G06F21/6218 ,  H04L9/30 ,  H04L63/083 ,  H04L63/10 ,  H04L67/10 ,  H04L67/12 ,  H04L69/22

Abstract: Methods and apparatus to securely share data are disclosed. An example includes generating, at a first device of a first user of cloud services, an archive file representative of a drive of the first device; encrypting, via a processor, the archive file to form an encrypted archive file; and conveying the encrypted archive file to a cloud service provider, the encrypted archive file to be decrypted by a second device of a second user of the cloud services, the decrypted archive file to be mounted to an operating system of the second device.

Abstract translation: 公开了安全地共享数据的方法和装置。 一个示例包括在云服务的第一用户的第一设备处生成代表第一设备的驱动器的归档文件; 通过处理器加密存档文件以形成加密的存档文件; 以及将加密的存档文件传送到云服务提供商，由云服务的第二用户的第二设备解密的加密存档文件，将被安装到第二设备的操作系统的解密归档文件。

公开(公告)号：US20160066184A1

公开(公告)日：2016-03-03

申请号：US14472645

申请日：2014-08-29

Applicant: Intel Corporation

Inventor： Abhilasha Bhargav-Spantzel ,  Ned M. Smith ,  Hormuzd M. Khosravi ,  Michael Raziel ,  Alex Nayshtut

IPC: H04W12/08 ,  H04W12/06 ,  G06F21/35 ,  H04W12/02 ,  G06F21/40 ,  G06F21/34

CPC classification number: H04W12/06 ,  G06F21/32 ,  G06F21/34 ,  G06F21/35 ,  G06F21/445 ,  H04L63/065 ,  H04L63/0869 ,  H04L63/105 ,  H04W12/003 ,  H04W88/14

Abstract: In an embodiment, an apparatus includes a security engine to operate in a trusted execution environment to perform security operations and to authenticate a user of the apparatus, and a pairing logic to receive an indication of discovery of a peer device and to determine whether the user of the apparatus corresponds to a user of the peer device, and if so to enable a pairing with the peer device according to a first security ring if the correspondence is determined, and to enable the pairing with the peer device according to a second security ring if no correspondence is detected and the user of the apparatus is authenticated. Other embodiments are described and claimed.

Abstract translation: 在一个实施例中，一种装置包括在可信执行环境中操作以执行安全操作并对该设备的用户进行认证的安全引擎以及用于接收对等设备的发现的指示的配对逻辑，并且确定用户是否 所述设备对应于所述对等体设备的用户，如果是，则如果确定了所述对应关系，则能够根据第一安全环配对对等设备，并且使得能够根据第二安全环与所述对等设备配对 如果没有检测到对应关系，并且设备的用户被认证。 描述和要求保护其他实施例。

公开(公告)号：US20160057142A1

公开(公告)日：2016-02-25

申请号：US14810033

申请日：2015-07-27

Applicant: Intel Corporation

Inventor： Alex Nayshtut ,  Omer Ben-Shalom ,  Terry H. Yoshii

IPC: H04L29/06

CPC classification number: G06F21/60 ,  G06F11/1453 ,  G06F21/6227 ,  H04L9/083 ,  H04L9/0894 ,  H04L9/14 ,  H04L9/3242 ,  H04L63/0435 ,  H04L63/061 ,  H04L63/062 ,  H04L63/0876 ,  H04L2209/60

Abstract: Technologies for de-duplicating encrypted content include fragmenting a file into blocks on a computing device, encrypting each block, and storing each encrypted block on a content data server with associated keyed hashes and member identifications. The computing device additionally transmits each encrypted block with an associated member encryption key and member identification to a key server. As part of the de-duplication process, the content data server stores only one copy of the encrypted data for a particular associated keyed hash, and the key server similarly associates a single member encryption key with the keyed hash. To retrieve the file, the computing device receives the encrypted blocks with their associated keyed hashes and member identifications from the content data server and receives the corresponding member decryption key from the key server. The computing device decrypts each block using the member decryption keys and combines to blocks to generate the file.

Abstract translation: 用于解密加密内容的技术包括将文件分解成计算设备上的块，加密每个块，以及将每个加密的块存储在具有相关联的密钥哈希和成员标识的内容数据服务器上。 计算设备另外向密钥服务器发送具有相关联的成员加密密钥和成员标识的每个加密块。 作为重复数据删除过程的一部分，内容数据服务器仅存储用于特定关联密钥哈希的加密数据的一个副本，并且密钥服务器类似地将单个成员加密密钥与密钥哈希相关联。 为了检索文件，计算设备从内容数据服务器接收具有相关联的密钥哈希和成员标识的加密块，并从密钥服务器接收相应的成员解密密钥。 计算设备使用成员解密密钥对每个块进行解密，并组合到块以生成该文件。

公开(公告)号：US09246678B2

公开(公告)日：2016-01-26

申请号：US13803633

申请日：2013-03-14

Applicant: Intel Corporation

Inventor： Alex Nayshtut ,  Edward V. Jimison ,  Omer Ben-Shalom ,  Michael Raziel

IPC: H04L29/06 ,  H04L9/08 ,  G06F21/62 ,  H04L29/08

CPC classification number: H04L9/0825 ,  G06F21/6209 ,  H04L63/045 ,  H04L63/0823 ,  H04L67/02

Abstract: An embodiment of the invention allows a user to back-up/store data to a cloud-based storage system and synchronize that data on the user's devices coupled to the storage system. The devices have secure out-of-band cryptoprocessors that conceal a private key. The private key corresponds to a public key that is used to encrypt a session key and information, both of which are passed to and through cloud based storage, all while remaining encrypted. The encrypted material is communicated from the cloud to another of the user's devices where the encrypted material is decrypted within a secure out-of-band cryptoprocessor (using the private key that corresponds to the aforementioned public key) located within the device. The embodiment allows for secure provisioning of the private key to the devices. The private key is only decrypted within the cryptoprocessor so the private key is not “in the open”. Other embodiments are described herein.

Abstract translation: 本发明的一个实施例允许用户将数据备份/存储到基于云的存储系统，并且将数据同步在耦合到存储系统的用户设备上。 这些设备具有隐藏私钥的安全带外密码处理器。 私钥对应于用于加密会话密钥和信息的公钥，这两个密钥和信息都被传递到基于云的存储，并保持加密。 将加密的材料从云端传送到用户设备中的其他加密材料在位于设备内的安全带外密码处理器（使用与上述公开密钥相对应的专用密钥）内解密的设备。 该实施例允许私有密钥对设备的安全供应。 私钥只能在密码处理器中解密，所以私钥不会“打开”。 本文描述了其它实施例。