公开(公告)号：US20130055377A1

公开(公告)日：2013-02-28

申请号：US13222033

申请日：2011-08-31

Applicant: Liang Chen ,  Joshua N. Novak ,  Rod D. Waltermann ,  David Rivera ,  Jun Li

Inventor： Liang Chen ,  Joshua N. Novak ,  Rod D. Waltermann ,  David Rivera ,  Jun Li

IPC: G06F21/00

CPC classification number: G06F21/54

Abstract: Devices, methods and products are described that provide for selective system or root level access for applications on an information handling device. One aspect provides a method comprising determining whether an application has system privileges on an information handling device; and executing privileged code from the application on said information handling device responsive to determining that the application has system privileges through one or more native services operating on said information handling device. Other aspects and embodiments are also described herein.

Abstract translation: 描述了为信息处理设备上的应用提供选择性系统或根级访问的设备，方法和产品。 一方面提供了一种方法，包括确定应用是否具有对信息处理设备的系统特权; 以及响应于通过在所述信息处理设备上操作的一个或多个本地服务来确定所述应用具有系统特权，在所述信息处理设备上执行来自所述应用的特权代码。 本文还描述了其它方面和实施例。

公开(公告)号：US08381304B2

公开(公告)日：2013-02-19

申请号：US11493952

申请日：2006-07-27

Applicant: Daryl Cromer ,  Howard Jeffrey Locker ,  Randall S. Springfield ,  Rod D. Waltermann

Inventor： Daryl Cromer ,  Howard Jeffrey Locker ,  Randall S. Springfield ,  Rod D. Waltermann

IPC: G06F21/00

CPC classification number: G06F21/805 ,  G06F2221/2143

Abstract: A hard disk drive unit includes a microprocessor programmed to erase data stored within the drive unit if it is determined that a process potentially leading to a misuse of the data stored within the drive unit, and if secure disposal configuration data stored in nonvolatile storage within the drive indicates that the data is to be erased. Such a process includes initializing the drive unit for operation without providing a password matching a password stored in the drive unit, initializing the drive unit in a system not having CMOS configuration data matching the drive unit, and determining that a failure rate within the drive unit exceeds a threshold level.

Abstract translation: 如果确定可能导致误用存储在驱动单元内的数据的过程，以及如果存储在驱动单元内的非易失性存储器中的安全处理配置数据，则硬盘驱动器单元包括被编程为擦除存储在驱动单元内的数据的微处理器 驱动器指示要擦除的数据。 这样的处理包括初始化用于操作的驱动单元，而不提供与存储在驱动单元中的密码匹配的密码，在不具有与驱动单元匹配的CMOS配置数据的系统中初始化驱动单元，以及确定驱动单元内的故障率 超过阈值水平。

公开(公告)号：US08285821B2

公开(公告)日：2012-10-09

申请号：US12368882

申请日：2009-02-10

Applicant: David Carroll Challener ,  Richard Wayne Cheston ,  Howard Locker ,  Randall Scott Springrield ,  Rod D. Waltermann

Inventor： David Carroll Challener ,  Richard Wayne Cheston ,  Howard Locker ,  Randall Scott Springrield ,  Rod D. Waltermann

IPC: G06F15/177

CPC classification number: G06F12/0868 ,  G06F2212/263 ,  G06F2212/314 ,  H04L29/08846 ,  H04L67/1097 ,  H04L67/2842

Abstract: A method, apparatus, and system are disclosed of forward caching for a managed client. A storage module stores a software image on a storage device of a backend server. The backend server provides virtual disk storage on the storage device through a first intermediate network point for a plurality of diskless data processing devices. Each diskless data processing device communicates directly with the first intermediate network point. The storage module caches an image instance of the software image at the first intermediate network point. A tracking module detects an update to the software image on the storage device. The storage module copies the updated software image to the first intermediate network point as an updated image instance.

Abstract translation: 公开了一种用于被管理客户端的前向缓存的方法，装置和系统。 存储模块将软件映像存储在后端服务器的存储设备上。 后端服务器通过用于多个无盘数据处理设备的第一中间网络点在存储设备上提供虚拟磁盘存储。 每个无盘数据处理装置与第一中间网络点直接通信。 存储模块在第一中间网络点高速缓存软件映像的图像实例。 跟踪模块检测对存储设备上的软件映像的更新。 存储模块将更新的软件映像作为更新的图像实例复制到第一中间网络点。

公开(公告)号：US08239860B2

公开(公告)日：2012-08-07

申请号：US11394654

申请日：2006-03-31

Applicant: Howard J. Locker ,  Daryl Cromer ,  Randall S. Springfield ,  Rod D. Waltermann

Inventor： Howard J. Locker ,  Daryl Cromer ,  Randall S. Springfield ,  Rod D. Waltermann

IPC: G06F9/46 ,  G06F1/00 ,  H03B29/00

CPC classification number: G06F11/3058 ,  G06F1/206 ,  G06F1/3203 ,  G06F11/301

Abstract: Hypervisors are a new technology in the industry that enable multiple Operating Systems to co-exist on a single client. The use of a hypervisor provides a novel approach to thermal fan control. The hypervisor is able to fire up a maintenance Operating System on demand or have it running from the powering of the computer. The maintenance Operating System continuously monitors the status of the user Operating System and determines if the system is within the desired fan noise profile by measuring noise levels using means well known in the art. If the system seems to be drifting out of the desired profile, the maintenance Operating System will determine what type of action is required and choose the most appropriate course of action. These actions can be performed by either the maintenance Operating System or the hypervisor, as appropriate.

Abstract translation: 管理程序是行业中的一项新技术，可使多个操作系统在单个客户端上共存。 使用管理程序提供了一种新型的风扇控制方法。 管理程序能够根据需要启动维护操作系统，或者从计算机的电源运行。 维护操作系统通过使用本领域熟知的手段测量噪声水平来连续地监视用户操作系统的状态并确定系统是否在期望的风扇噪声分布内。 如果系统似乎从所需的配置文件中漂移出来，维护操作系统将确定需要哪种类型的操作，并选择最合适的操作步骤。 这些操作可以由维护操作系统或管理程序根据需要执行。

公开(公告)号：US20120176946A1

公开(公告)日：2012-07-12

申请号：US12987846

申请日：2011-01-10

Applicant: James Anthony Hunt ,  Joshua Neil Novak ,  Rod D. Waltermann

Inventor： James Anthony Hunt ,  Joshua Neil Novak ,  Rod D. Waltermann

IPC: H04W52/02

CPC classification number: H04W52/0229 ,  H04M2250/10 ,  H04W52/0258 ,  Y02D70/142 ,  Y02D70/144 ,  Y02D70/164 ,  Y02D70/23

Abstract: A computing apparatus receives data that corresponds to a wireless network connection established with an access point. The computing apparatus determines whether the access point corresponds to a predetermined access point type, and also determines that a device is to transition to a reduced power state. When the access point corresponds to the predetermined access point type and the determines that the device is to transition to the reduced power state, the computing apparatus transitions the device from a first power state to a reduced power state, and maintains the wireless network connection by using at least a subset of wireless functionality operatively coupled to the device.

Abstract translation: 计算装置接收对应于与接入点建立的无线网络连接的数据。 计算装置确定接入点是否对应于预定的接入点类型，并且还确定设备要转换到降低功率状态。 当接入点对应于预定接入点类型并且确定设备要转换到降低功率状态时，计算设备将设备从第一功率状态转换到降低功率状态，并且通过以下方式维持无线网络连接： 使用可操作地耦合到所述设备的无线功能的至少一个子集。

公开(公告)号：US08086873B2

公开(公告)日：2011-12-27

申请号：US11446737

申请日：2006-06-05

Applicant: Howard J. Locker ,  Daryl C. Cromer ,  Randall S. Springfield ,  Rod D. Waltermann

Inventor： Howard J. Locker ,  Daryl C. Cromer ,  Randall S. Springfield ,  Rod D. Waltermann

IPC: G06F12/14

CPC classification number: G06F12/1475 ,  G06F21/78

Abstract: A method for controlling file access on computer systems is disclosed. Initially, a virtual machine manager (VMM) is provided in a computer system. In response to a write request, the VMM determines whether or not a location field is valid. If the location field is not valid, then the VMM writes the write request information to a storage device; but if the location field is valid, then the VMM encrypts the write request information before writing the write request information to the storage device. In response to a read request, the VMM again determines whether or not a location field is valid. If the location field is not valid, then the VMM sends the read request information to a read requester; but, if the location field is valid, then the VMM decrypts the read request information before sending the read request information to the read requester.

Abstract translation: 公开了一种用于控制计算机系统上的文件访问的方法。 最初，在计算机系统中提供虚拟机管理器（VMM）。 响应于写入请求，VMM确定位置字段是否有效。 如果位置字段无效，则VMM将写请求信息写入存储设备; 但是如果位置字段有效，则VMM在将写入请求信息写入存储设备之前对写入请求信息进行加密。 响应于读取请求，VMM再次确定位置字段是否有效。 如果位置字段无效，则VMM将读取请求信息发送给读取请求者; 但是，如果位置字段有效，则VMM在将读取请求信息发送给读取请求者之前解密读取请求信息。

公开(公告)号：US20110246626A1

公开(公告)日：2011-10-06

申请号：US12750245

申请日：2010-03-30

Applicant: Nathan J. Peterson ,  Liang Chen ,  Jonathan G. Knox ,  Yi Zhou ,  Rod D. Waltermann

Inventor： Nathan J. Peterson ,  Liang Chen ,  Jonathan G. Knox ,  Yi Zhou ,  Rod D. Waltermann

IPC: G06F15/177

CPC classification number: G06F9/4416

Abstract: Alternative desktop computing solutions provide client devices configured with a local boot image and a connection to a remote storage device having a boot image. The clients are configured to boot either locally or remotely, and furthermore to determine from which image (local or remote) they have booted.

Abstract translation: 替代的桌面计算解决方案为配置有本地引导映像的客户端设备和与具有引导映像的远程存储设备的连接提供了依据。 客户端被配置为在本地或远程引导，并且还确定从哪个映像（本地或远程）引导。

公开(公告)号：US20110196520A1

公开(公告)日：2011-08-11

申请号：US12703277

申请日：2010-02-10

Applicant: Nathan J. Peterson ,  Arnold S. Weksler ,  Rod D. Waltermann ,  Scott E. Kelso ,  John C. Mese

Inventor： Nathan J. Peterson ,  Arnold S. Weksler ,  Rod D. Waltermann ,  Scott E. Kelso ,  John C. Mese

IPC: G06F17/00

CPC classification number: G06F3/165

Abstract: Embodiments of the invention provide systems, methods, apparatuses and program products configured to intelligently manage sound options for applications of a computer system based on display device characteristics. Various embodiments of the invention are particularly well suited for optimizing the sound options of two or more applications running on two or more display screens of the computer system simultaneously.

Abstract translation: 本发明的实施例提供了被配置为智能地管理基于显示装置特性的计算机系统的应用的声音选项的系统，方法，装置和程序产品。 本发明的各种实施例特别适用于同时优化在计算机系统的两个或更多个显示屏上运行的两个或多个应用的​​声音选项。

公开(公告)号：US20110154010A1

公开(公告)日：2011-06-23

申请号：US12641029

申请日：2009-12-17

Applicant: Randall S. Springfield ,  Howard J. Locker ,  David Rivera ,  Joseph M. Pennisi ,  Rod D. Waltermann

Inventor： Randall S. Springfield ,  Howard J. Locker ,  David Rivera ,  Joseph M. Pennisi ,  Rod D. Waltermann

IPC: H04L9/00 ,  G06F1/24

CPC classification number: H04L9/3234 ,  G06F21/57 ,  H04L9/3236 ,  H04L9/3263 ,  H04L2209/127

Abstract: An exemplary apparatus includes one or more processors; memory; circuitry configured to hash a value associated with core root of trust measurement code and system management code; store the hash in a secure register; load an operating system; validate a certificate associated with the core root of trust measurement code and validate a certificate associated with the system management code; based on the validated certificates, provide an expected hash associated with the core root of trust measurement code and the system management code; decide if the expected hash matches the hash stored in the register; and, if the expected hash matches the hash stored in the register, commence a dynamic root of trust measurement session. Various other apparatuses, systems, methods, etc., are also disclosed.

Abstract translation: 示例性装置包括一个或多个处理器; 记忆; 配置为对与信任测度代码的核心根和系统管理代码相关联的值进行散列的电路; 将哈希存储在安全寄存器中; 加载操作系统; 验证与信任测度代码的核心根相关联的证书，并验证与系统管理代码相关联的证书; 基于验证的证书，提供与信任测度代码的核心根和系统管理代码相关联的预期散列; 确定预期哈希是否与存储在寄存器中的哈希匹配; 并且如果期望的哈希与存储在寄存器中的哈希匹配，则启动信任测量会话的动态根。 还公开了各种其它装置，系统，方法等。

公开(公告)号：US07934214B2

公开(公告)日：2011-04-26

申请号：US11394792

申请日：2006-03-31

Applicant: Scott Edwards Kelso ,  Masahiko Nomura ,  David Andrew Sawin ,  Randall Scott Springfield ,  Rod D. Waltermann

Inventor： Scott Edwards Kelso ,  Masahiko Nomura ,  David Andrew Sawin ,  Randall Scott Springfield ,  Rod D. Waltermann

IPC: G06F9/445 ,  H04L29/06

CPC classification number: G06F8/61

Abstract: Computer implemented method, system and computer program product for controlling software entitlement. A computer implemented method for controlling software entitlement includes receiving a request to install a software item on a designated machine. A determination is made if the designated machine is of a machine type authorized for installation of the software item. If the designated machine is of a machine type authorized for installation of the software item, a determination is made, using stored configuration data, if at least one additional criterion specified for entitlement to install the software item on the designated machine is satisfied using stored configuration data. If the at least one additional criterion specified for entitlement to install the software item on the designated machine is satisfied, installation of the software item on the designated machine is enabled in accordance with the at least one additional criterion.

Abstract translation: 计算机实现方法，系统和计算机程序产品，用于控制软件授权。 用于控制软件授权的计算机实现的方法包括在指定的机器上接收安装软件项目的请求。 如果指定的机器是被授权安装软件项目的机器类型，则确定。 如果指定的机器是被授权安装软件项目的机器类型，则使用存储的配置数据确定如果使用存储的配置满足在指定机器上安装软件项目的权利所指定的至少一个附加标准 数据。 如果满足指定用于在指定机器上安装软件项目的权利的至少一个附加标准，则根据至少一个附加标准启用软件项目在指定机器上的安装。