公开(公告)号：US20160283717A1

公开(公告)日：2016-09-29

申请号：US14671764

申请日：2015-03-27

Applicant: Intel Corporation

Inventor： Michael LeMay ,  David M. Durham ,  Men Long

IPC: G06F21/56 ,  G06F12/10 ,  G06F12/08

CPC classification number: G06F21/567 ,  G06F12/0802 ,  G06F12/1009 ,  G06F21/564

Abstract: Memory scanning methods and apparatus are disclosed. An example apparatus includes a walker to traverse a paging structure of an address translation system; a bit analyzer to determine whether a bit associated with an entry of the paging structure is indicative of the entry being recently accessed; an address identifier to, when the bit analyzer determines that the bit associated with the entry of the paging structure is indicative of the entry being recently accessed, determine an address associated with the entry; and an outputter to provide the determined address to a memory scanner.

Abstract translation: 公开了存储器扫描方法和装置。 示例性装置包括：行走者，用于遍历地址转换系统的寻呼结构; 位分析器，用于确定与寻呼结构的条目相关联的位是否指示最近访问的条目; 地址标识符，当位分析器确定与寻呼结构的条目相关联的位指示最近被访问的条目时，确定与条目相关联的地址; 以及输出器，用于将确定的地址提供给存储器扫描器。

公开(公告)号：US09442864B2

公开(公告)日：2016-09-13

申请号：US14142117

申请日：2013-12-27

Applicant: Intel Corporation

Inventor： Uday R. Savagaonkar ,  Siddhartha Chhabra ,  Men Long ,  Alpa T. Narendra Trivedi ,  Carlos Ornelas ,  Edgar Borrayo ,  Ramadass Nagarajan ,  Stanley S. Kulick

IPC: G06F12/14 ,  G06F21/74

CPC classification number: G06F12/1408 ,  G06F12/1441 ,  G06F21/74 ,  G06F2212/1052

Abstract: A processor is described that includes one or more processing cores. The processor includes a memory controller to interface with a system memory having a protected region and a non protected region. The processor includes a protection engine to protect against active and passive attacks. The processor includes an encryption/decryption engine to protect against passive attacks. The protection engine includes bridge circuitry coupled between the memory controller and the one or more processing cores. The bridge circuitry is also coupled to the protection engine and the encryption/decryption engine. The bridge circuitry is to route first requests directed to the protected region to the protection engine and to route second requests directed to the non protected region to the encryption/decryption engine.

Abstract translation: 描述了包括一个或多个处理核心的处理器。 处理器包括与具有受保护区域和非保护区域的系统存储器接口的存储器控​​制器。 该处理器包括保护引擎，以防止主动和被动攻击。 该处理器包括一个加密/解密引擎，以防止被动攻击。 保护引擎包括耦合在存储器控制器和一个或多个处理核心之间的桥接电路。 桥接电路还耦合到保护引擎和加密/解密引擎。 桥接电路是将定向到保护区域的第一请求路由到保护引擎，并将定向到非保护区域的第二请求路由到加密/解密引擎。

公开(公告)号：US09307409B2

公开(公告)日：2016-04-05

申请号：US14141477

申请日：2013-12-27

Applicant: Intel Corporation

Inventor： Farhana Asrar Sheikh ,  Patrick Koeberl ,  Jesse Walker ,  Hossein Alavi ,  Men Long ,  Ram Kumar Krishnamurthy ,  Alpa T. Narendra Trivedi

IPC: H04L29/06 ,  H04W12/08 ,  H04W24/04 ,  H04W88/06

CPC classification number: H04W12/08 ,  H04L63/10 ,  H04L67/025 ,  H04L67/04 ,  H04W24/04 ,  H04W88/06

Abstract: Some demonstrative embodiments include apparatuses, systems and/or methods of protecting domains of a multimode wireless radio transceiver. For example, an apparatus may include a protection domain controller (PDC) to restrict access of a configuration software to a protection domain of a plurality of protection domains of a multimode wireless radio transceiver based on a security level of the configuration software, wherein the protection domain includes one or more radio configuration parameters of the multimode wireless radio transceiver.

Abstract translation: 一些演示实施例包括保护多模无线电收发机的域的设备，系统和/或方法。 例如，设备可以包括保护域控制器（PDC），其基于配置软件的安全级别来限制配置软件到多模无线无线电收发器的多个保护域的保护域的访问，其中保护 域包括多模无线收发器的一个或多个无线电配置参数。

公开(公告)号：US20150304286A1

公开(公告)日：2015-10-22

申请号：US14691203

申请日：2015-04-20

Applicant: Intel Corporation

Inventor： Divya Naidu Kolar Sundar ,  Prashant Dewan ,  Men Long

IPC: H04L29/06

CPC classification number: H04L63/0435 ,  H04L9/083 ,  H04L63/0428 ,  H04L63/062 ,  H04L63/20

Abstract: A method, device, and system are disclosed. In one embodiment the method includes receiving measured health information from a client on a key distribution server. Once the measured health information is received the server is capable of validating the measured health information to see if it is authentic. The server is also capable of sending a session key to the client when the measured health information is validated. When the client receives the session key, the client is capable of initiating an encrypted and authenticated connection with an application server in the domain using the session key.