-
公开(公告)号:US07484105B2
公开(公告)日:2009-01-27
申请号:US09931629
申请日:2001-08-16
CPC分类号: G06F21/572
摘要: An update utility requests a signature verification of the utility's signature along with a request to unlock the flash memory stored in the utility. A trusted platform module (“TPM”) performs a signature verification of the utility using a previously stored public key. Upon verification of the signature, the TPM unlocks the flash memory to permit update of the utility. Upon completion of the update, the flash utility issues a lock request to the TPM to relock the flash memory.
摘要翻译: 更新实用程序请求实用程序的签名的签名验证以及解锁存储在该实用程序中的闪存的请求。 可信平台模块(“TPM”)使用先前存储的公钥执行实用程序的签名验证。 在验证签名后,TPM解锁闪存以允许更新实用程序。 完成更新后,闪存实用程序向TPM发出锁定请求以重新锁定闪存。
-
公开(公告)号:US07269747B2
公开(公告)日:2007-09-11
申请号:US10411408
申请日:2003-04-10
申请人: Ryan Charles Catherman , Steven Dale Goodman , James Patrick Hoff , Randall Scott Springfield , James Peter Ward
发明人: Ryan Charles Catherman , Steven Dale Goodman , James Patrick Hoff , Randall Scott Springfield , James Peter Ward
IPC分类号: G06F1/28
CPC分类号: G06F21/57 , G06F21/575
摘要: A computer system is presented which provides a trusted platform by which operations can be performed with an increased level trust and confidence. The basis of trust for the computer system is established by an encryption coprocessor and by code which interfaces with the encryption coprocessor and establishes root of trust metrics for the platform. The encryption coprocessor is built such that certain critical operations are allowed only if physical presence of an operator has been detected. Physical presence is determined by inference based upon the status of registers in the core chipset.
摘要翻译: 提出了一种计算机系统,其提供可信赖的平台,通过该平台可以以更高级别的信任和置信度执行操作。 计算机系统的信任基础由加密协处理器和与加密协处理器接口的代码建立,并为平台建立信任度量的根。 构建加密协处理器,使得仅当检测到操作者的物理存在时才允许某些关键操作。 基于核心芯片组中寄存器的状态的推理确定物理存在。
-
公开(公告)号:US06889298B2
公开(公告)日:2005-05-03
申请号:US10015814
申请日:2001-11-02
CPC分类号: G06F21/81 , G06F21/6218
摘要: An apparatus and method for exclusively binding data to a data processing system. The logical binding apparatus of the present invention includes a detachable circuit device mounted within a system planar. Data to be bound within the system planar is stored in a memory device within the detachable circuit device. A battery signal is applied from the system planar to a binding pin on the detachable circuit device, wherein the binding pin is applied to the input of a binding latch. The binding latch remains in a reset state while the battery signal is applied. Upon removal of said binding signal from the binding pin, the binding latch is set thus signaling a processing unit within the detachable circuit device to remove the data from the memory device.
摘要翻译: 一种用于将数据独占于数据处理系统的装置和方法。 本发明的逻辑装订装置包括安装在系统平面内的可拆卸电路装置。 在系统平面内绑定的数据被存储在可拆卸电路装置内的存储装置中。 电池信号从系统平面施加到可拆卸电路装置上的装订销上,其中装订销被施加到装订闩锁的输入。 当施加电池信号时,装订锁定器保持复位状态。 在从绑定销移除所述绑定信号之后,设置绑定锁存器,从而向可拆卸电路装置内的处理单元发出信号,以从存储器装置移除数据。
-
公开(公告)号:US06778096B1
公开(公告)日:2004-08-17
申请号:US08971386
申请日:1997-11-17
申请人: James Peter Ward , Kerry Maletsky
发明人: James Peter Ward , Kerry Maletsky
IPC分类号: H04Q100
CPC分类号: G06K19/07769 , G06F9/44505 , G06K19/07
摘要: A method of asset control and workstation computer deployment that utilizes a dual port electronic memory identification RFID tag to hold serial number and hardware and software configuration profiles as well as user information. The RFID tag is mapped into the workstation computer memory space and can also be read and written by wireless radio frequency signalling. Serial numbers and MAC address is stored on the tag by the manufacturer. User information, workstation profile and software image information is stored onto the tag while the computer is being received for forwarding to the final workstation destination without the need to unpack and power up the computer. The information stored on the tag is used to allow automated system configuration and software downloading to the computer.
摘要翻译: 一种资产控制和工作站计算机部署的方法,利用双端口电子存储器识别RFID标签来保存序列号和硬件和软件配置简档以及用户信息。 RFID标签被映射到工作站计算机存储器空间中,并且还可以通过无线射频信号读取和写入。 序列号和MAC地址由制造商存储在标签上。 用户信息,工作站配置文件和软件映像信息存储在标签上,同时接收计算机以转发到最终的工作站目的地,而不需要打开和打开计算机的电源。 存储在标签上的信息用于允许自动系统配置和软件下载到计算机。
-
公开(公告)号:US06249227B1
公开(公告)日:2001-06-19
申请号:US09185858
申请日:1998-11-04
申请人: Michael John Brady , Paul W. Coteus , Dah-Weih Duan , Venkata S. R. Kodukula , Paul Andrew Moskowitz , Alejandro Gabriel Schrott , Robert Jacob Von Gutfeld , James Peter Ward
发明人: Michael John Brady , Paul W. Coteus , Dah-Weih Duan , Venkata S. R. Kodukula , Paul Andrew Moskowitz , Alejandro Gabriel Schrott , Robert Jacob Von Gutfeld , James Peter Ward
IPC分类号: G08B1314
CPC分类号: G08B13/14 , G06K19/0723 , G06K19/07749 , G06K19/07758 , G08B13/2417 , G08B13/2431 , G08B13/2445 , G08B13/2462 , G08B15/001 , H05K1/0266 , H05K1/18 , H05K1/181 , H05K2201/10098
摘要: Methods and apparatus applying RFID technology to identify electronic components, devices, and systems to provide functions such as, for example, security of the assets, inventory tracking of the assets, identification of the assets, and short distance communication between the assets are disclosed. RFID transponders are integrated into electronic components, devices and systems at the component level (i.e., circuit chip, circuit board, etc.), the asset level (i.e., box, computer, etc.), or system level (i.e., network system, computer system, etc.).
摘要翻译: 公开了应用RFID技术识别电子元件,设备和系统以提供诸如资产安全性,资产库存跟踪,资产识别以及资产之间的短距离通信等功能的方法和设备。 RFID应答器集成到组件级(即电路芯片,电路板等)的电子组件,设备和系统,资产级(即,盒,计算机等)或系统级(即网络系统 ,计算机系统等)。
-
公开(公告)号:US07590870B2
公开(公告)日:2009-09-15
申请号:US10411454
申请日:2003-04-10
申请人: Ryan Charles Catherman , Steven Dale Goodman , James Patrick Hoff , Randall Scott Springfield , James Peter Ward
发明人: Ryan Charles Catherman , Steven Dale Goodman , James Patrick Hoff , Randall Scott Springfield , James Peter Ward
IPC分类号: G06F1/28
CPC分类号: G06F21/57 , G06F21/575
摘要: A computer system is presented which provides a trusted platform by which operations can be performed with an increased level trust and confidence. The basis of trust for the computer system is established by an encryption coprocessor and by code which interfaces with the encryption coprocessor and establishes root of trust metrics for the platform. The encryption coprocessor is built such that certain critical operations are allowed only if physical presence of an operator has been detected. Physical presence is determined by inference based upon the status of registers in the core chipset.
摘要翻译: 提出了一种计算机系统,其提供可信赖的平台,通过该平台可以以更高级别的信任和置信度执行操作。 计算机系统的信任基础由加密协处理器和与加密协处理器接口的代码建立,并为平台建立信任度量的根。 构建加密协处理器,使得仅当检测到操作者的物理存在时才允许某些关键操作。 基于核心芯片组中寄存器的状态的推理确定物理存在。
-
77.发明授权公开(公告)号:US06892305B1
公开(公告)日:2005-05-10
申请号:US09689460
申请日:2000-10-12
申请人: Richard Alan Dayan , Steven Dale Goodman , Joseph Michael Pennisi , Randall Scott Springfield , James Peter Ward , Joseph Wayne Freeman
发明人: Richard Alan Dayan , Steven Dale Goodman , Joseph Michael Pennisi , Randall Scott Springfield , James Peter Ward , Joseph Wayne Freeman
CPC分类号: G06F21/575
摘要: A method and system for booting up a computer system in a secure fashion is disclosed. The method and system comprise determining the presence of a security feature element during an initialization of the computer system wherein the security feature element includes a public key and a corresponding private key, storing a portion of the public key in a nonvolatile memory within the computer system if the security feature element is present and utilizing an algorithm to determine the presence of the security feature element prior to a subsequent boot-up of the computer system. Through the use of the present invention, a computer system is capable of being booted up whereby the computer system determines if a security feature element was previously present in the system. If a security feature element was previously present in the computer system, any stored keys, along with the secrets that they protect, are prevented from being compromised. It is also an object of the present invention to preclude the system from compromising any keys and associated secrets if a security feature element in the system was not previously present in the system.
摘要翻译: 公开了一种以安全方式引导计算机系统的方法和系统。 该方法和系统包括在计算机系统的初始化期间确定安全特征元素的存在,其中安全特征元素包括公共密钥和相应的私钥,将公钥的一部分存储在计算机系统内的非易失性存储器中 如果存在安全特征元素并且利用算法来确定在计算机系统的后续引导之前的安全特征元素的存在。 通过使用本发明,计算机系统能够被启动,由此计算机系统确定安全特征元素是否先前存在于系统中。 如果安全特征元素以前存在于计算机系统中,则防止任何存储的密钥以及它们保护的秘密被泄露。 如果系统中的安全特征元素先前不存在于系统中,则本发明的另一个目的是排除系统损害任何密钥和相关联的秘密。
-
公开(公告)号:US06175927B1
公开(公告)日:2001-01-16
申请号:US09167211
申请日:1998-10-06
IPC分类号: G06F126
CPC分类号: G06F1/30 , G06F1/28 , Y10S707/99931 , Y10S707/99944 , Y10S707/99953
摘要: A method of monitoring a computer system, by detecting a power interruption to the computer system, using power down sense logic, and generating an alert associated with the power interruption. When the computer system is networked, the alert is transmitted to a remote server. The power down sense logic sends a message to an auxiliary processor (which may be an application-specific integrated circuit, or ASIC), and the auxiliary processor creates a network transmission packet indicating that the computer system is losing power. The auxiliary processor may allow selection of a transmission mode such as uni-cast transmission, multi-cast transmission, or broadcast transmission. A common power supply provides a first power signal to the computer system, and a second power signal to the power down sense logic and auxiliary processor, and maintains the second power signal for a longer duration than the first power signal upon removal of a power source for the power supply, sufficient to carry out the sending of the message from the power down sense logic and the creating of the network alert.
摘要翻译: 一种监视计算机系统的方法,通过使用掉电检测逻辑检测计算机系统的电力中断,并产生与电力中断相关联的警报。 当计算机系统联网时,该警报被传送到远程服务器。 断电检测逻辑向辅助处理器(其可以是专用集成电路或ASIC)发送消息,并且辅助处理器创建指示计算机系统正在失去电力的网络传输分组。 辅助处理器可以允许选择诸如单播传输,多播传输或广播传输之类的传输模式。 公共电源向计算机系统提供第一功率信号,以及向掉电检测逻辑和辅助处理器提供第二功率信号,并且在去除电源时将第二功率信号保持比第一功率信号更长的持续时间 用于电源,足以执行从断电检测逻辑发送消息并创建网络警报。
-
公开(公告)号:US06170059A
公开(公告)日:2001-01-02
申请号:US09113831
申请日:1998-07-10
IPC分类号: G06F1100
CPC分类号: G06F21/88 , G06F21/79 , G06K7/0008 , G06K19/0723 , G06K19/073
摘要: The present invention is directed toward a method, system and computer readable medium (the present invention) for tracking memory modules in a computer system. The present invention includes identifying each of the memory modules based upon identification information added to each of the memory modules by their manufacturer to provide a unique serial number by each of the memory modules; and providing the unique serial number to a display via a browser. The identification information comprises electronically readable information which is preferably stored in an electronically erasable programmable read only memory (EEPROM) and from which the unique serial numbers are generated for identifying the memory modules. One aspect of the present invention further includes comparing the unique serial numbers with corresponding last known serial numbers, wherein a mismatch in the serial numbers indicates that the corresponding memory modules have been replaced. Another aspect of the present invention further includes copying the unique serial numbers to a radio frequency (RF) enabled memory, wherein the unique serial numbers can be logged utilizing an RF reader means. The RF reader may be included in an RF gate and/or a hand held device. Computer systems with Radio Frequency Identification (RFID) technology configured in accordance with the present invention enable automated electronic tracking of computer assets such as the memory modules as they pass through the RF gate in or out of a portal.
摘要翻译: 本发明涉及用于跟踪计算机系统中的存储器模块的方法,系统和计算机可读介质(本发明)。 本发明包括基于由其制造商添加到每个存储器模块的识别信息来识别每个存储器模块,以通过每个存储器模块提供唯一的序列号; 并通过浏览器向显示器提供唯一的序列号。 识别信息包括优选地存储在电可擦除可编程只读存储器(EEPROM)中的电子可读信息,并且从其生成用于识别存储器模块的唯一序列号。 本发明的一个方面还包括将唯一的序列号与对应的最后已知的序列号进行比较,其中序列号的不匹配指示对应的存储器模块已被替换。 本发明的另一方面还包括将唯一的序列号复制到支持射频(RF)的存储器中,其中使用RF读取器装置可以记录唯一的序列号。 RF读取器可以包括在RF门和/或手持设备中。 根据本发明配置的具有射频识别(RFID)技术的计算机系统使得当诸如存储器模块的计算机资产通过门禁进入或离开门户时自动电子跟踪计算机资产。
-
80.发明授权System and method for detecting when a computer system is removed from a network 失效用于检测计算机系统何时从网络中移除的系统和方法
公开(公告)号:US6021493A
公开(公告)日:2000-02-01
申请号:US965550
申请日:1997-11-06
摘要: Described is a system which includes at least one computer system connected to a main computer system via a data transmission network. The at least one computer system has a network connector for communicating data with the main computer. The network connector is supplied with auxiliary power and is operative to communicate with the main computer regardless of whether the at least one computer system is in a normal operating state. The main computer includes a program for detecting when the at least one computer system has been disconnected from the data transmission network. The program sends a first packet to the at least one computer system via the network. The at least one computer system is operative to receive the first packet and respond by sending a second packet to the main computer. The second packet includes data which specifically identifies the at least one computer system.
摘要翻译: 描述了包括经由数据传输网络连接到主计算机系统的至少一个计算机系统的系统。 至少一个计算机系统具有用于与主计算机通信数据的网络连接器。 网络连接器具有辅助电源,并且可操作以与主计算机进行通信,而不管至少一个计算机系统是否处于正常工作状态。 主计算机包括用于检测至少一个计算机系统何时已经从数据传输网络断开的程序。 程序经由网络向第一个计算机系统发送第一个分组。 至少一个计算机系统可操作以接收第一分组,并通过向主计算机发送第二分组来进行响应。 第二分组包括专门识别至少一个计算机系统的数据。
-
-
-
-
-
-
-
-
-
搜索结果
85 条记录 (耗时 0.072 秒)
