公开(公告)号：US07158977B2

公开(公告)日：2007-01-02

申请号：US10718940

申请日：2003-11-21

申请人： David Carroll Challener ,  Jeffrey Vernon Ford

发明人： David Carroll Challener ,  Jeffrey Vernon Ford

IPC分类号： G06F17/30 ,  G06F17/00 ,  G06F15/16

CPC分类号： G06F17/3056 ,  Y10S707/99945

摘要： A system and method to allow valid profiles in autonomic computing discover is presented. A client accesses a network and sends a profile information request to a central computing device, such as a server. The server identifies client properties, such as the client's location and a user functionality description which corresponds to the client's user. The server uses the identified client properties to select an appropriate master profile from a master profile look-up table. The server sends master profile information, such as the master profile's pathname and revision time, to the client. In turn, the client determines whether it already has a valid profile or whether it should download an up-to-date version. If the client requires an up-to-date profile version, the client downloads the master profile from the server and uses the downloaded profile for various computing tasks.

摘要翻译： 提出了一种在自主计算发现中允许有效配置文件的系统和方法。 客户端访问网络并向诸如服务器的中央计算设备发送简档信息请求。 服务器识别客户端属性，例如客户端的位置和与客户端用户对应的用户功能描述。 服务器使用标识的客户端属性从主配置文件查找表中选择适当的主配置文件。 服务器向客户端发送主配置文件信息，如主配置文件的路径名和修订时间。 反过来，客户端确定它是否已经具有有效的配置文件，或者是否应该下载最新版本。 如果客户端需要最新的配置文件版本，客户端将从服务器下载主配置文件，并使用下载的配置文件进行各种计算任务。

公开(公告)号：US06687825B1

公开(公告)日：2004-02-03

申请号：US09527367

申请日：2000-03-17

申请人： David Carroll Challener ,  Daryl Carvis Cromer ,  Mark Charles Davis ,  Dhruv Manmohandas Desai ,  Charles William Kaufman ,  Hernando Ovies ,  James Peter Ward

发明人： David Carroll Challener ,  Daryl Carvis Cromer ,  Mark Charles Davis ,  Dhruv Manmohandas Desai ,  Charles William Kaufman ,  Hernando Ovies ,  James Peter Ward

IPC分类号： G06F1130

CPC分类号： G06F21/80 ,  G06F21/6209

摘要： A data processing system and method are disclosed for protecting data within a hard disk drive included within a data processing system. Data is generated. A signature value is provided which is stored in a signature device. The signature device is capable of being inserted into and removed from a computer system. A textual description of the data is created. The data is encrypted utilizing both the signature value stored on the device and the textual description. The encrypted data is then stored on the hard disk drive. The data processing system does not permanently store encryption keys.

摘要翻译： 公开了一种用于保护包含在数据处理系统内的硬盘驱动器内的数据的数据处理系统和方法。 生成数据。 提供签名值，其被存储在签名设备中。 签名装置能够插入计算机系统和从计算机系统中移除。 创建数据的文本描述。 使用存储在设备上的签名值和文本描述来加密数据。 然后将加密的数据存储在硬盘驱动器上。 数据处理系统不会永久存储加密密钥。

公开(公告)号：US06630926B2

公开(公告)日：2003-10-07

申请号：US09732351

申请日：2000-12-07

申请人： David Carroll Challener ,  Richard Alan Dayan

发明人： David Carroll Challener ,  Richard Alan Dayan

IPC分类号： G09G500

CPC分类号： G06F21/83 ,  G06F3/023

摘要： A computing system includes a security register, in which a flag bit is set whenever a clock pulse and scan code are transmitted from the microcontroller in the system keyboard. The presence of this flag bit indicates that an associated code, which is stored in an output buffer of the keyboard/auxiliary device controller of the system has been sent by the keyboard, as a result of a keystroke, instead of by a program executing within the CPU of the system. The security register is read and reset as the associated code is read from the output buffer. An application program can use the data from the security register to determine if data has come from the surreptitious entry of data through keystroke emulation.

摘要翻译： 计算系统包括安全寄存器，其中每当从系统键盘中的微控制器发送时钟脉冲和扫描码时，标志位被置位。 该标志位的存在表示存储在系统的键盘/辅助设备控制器的输出缓冲器中的相关代码已经由键盘发送，作为按键的结果，而不是通过在内部执行的程序 系统的CPU。 从输出缓冲区读取相关代码时，读取和复位安全寄存器。 应用程序可以使用来自安全寄存器的数据来确定数据是否来自通过击键仿真的秘密输入数据。

公开(公告)号：US06601175B1

公开(公告)日：2003-07-29

申请号：US09270418

申请日：1999-03-16

申请人： Todd Weston Arnold ,  David Carroll Challener

发明人： Todd Weston Arnold ,  David Carroll Challener

IPC分类号： G06F15177

CPC分类号： G06F21/31

摘要： Features of a data processing system, such as its configuration, are protected utilizing a machine-specific limited-life password. The data processing system includes execution resources for executing a watchdog program, a limited-life value generator, and non-volatile storage that stores a machine-specific value at least partially derived from relatively unique information associated with the data processing system (and preferably also derived from a secret control password). In response to each attempted access to the protected features of the data processing system, the watchdog program generates at least one machine-specific limited-life password from the machine-specific value and a limited-life value generated by the limited-life value generator. The watchdog program allows access to the protected features in response to entry of the machine-specific limited-life password and otherwise denies access. Depending upon implementation, the limited-life value can represent a timestamp that limits the duration that the machine-specific limited-life value is valid or a nonce that limits the number of times that the machine-specific limited-life value can be used.

摘要翻译： 数据处理系统的特征，例如其配置，使用机器特定的有限生命密码进行保护。 数据处理系统包括用于执行看门狗程序的执行资源，有限寿命的价值发生器和存储至少部分地从与数据处理系统相关联的相对独特的信息导出的机器特定值的非易失性存储器（并且还优选地， 衍生自秘密控制密码）。 响应于每次尝试访问数据处理系统的受保护特征，看门狗程序根据机器特定值和由有限寿命值生成器产生的有限寿命值产生至少一个特定于机器的有限寿命密码 。 看门狗程序允许访问受保护的功能以响应机器特定限制密码的输入，否则拒绝访问。 根据实施情况，有限寿命值可以表示限制机器特定有限寿命值有效期的持续时间的时间戳或限制机器特定限制寿命值可以使用的次数的随机数。

公开(公告)号：US06598032B1

公开(公告)日：2003-07-22

申请号：US09523490

申请日：2000-03-10

申请人： David Carroll Challener ,  Joseph McGovern ,  Hernando Ovies ,  James Peter Ward

发明人： David Carroll Challener ,  Joseph McGovern ,  Hernando Ovies ,  James Peter Ward

IPC分类号： G06F1760

CPC分类号： G07F7/1008 ,  G06Q20/382 ,  G06Q20/401 ,  G06Q20/4012 ,  G07F7/1025

摘要： A system and method for isolating a computer system from entry of a personal identification number (PIN) to a smart card. The system and method includes a computer system that is in communication with an unsecure network to allow a user to engage in a purchase transaction. The system and method also includes a smart card reader in which a smart card is inserted and read. A secure personal-identification-number (PIN) entry device is coupled between the computer system and the smart card reader. The secure PIN entry device is used for entering a correct code for the PIN. Communication between computer system and secure PIN entry device is disconnected until the correct code for the PIN is entered at secure PIN entry device and sent to the smart card in order to authorize use of the smart card for the purchase transaction. In response to the correct code for the PIN being entered and sent to the smart card, communication between computer system and secure PIN entry device is established. The secure PIN entry device has a processor for controlling the disconnection and connection of communication between the computer system and the secure PIN entry device. The secure PIN entry device also has a display for displaying a message request relating to the purchase transaction. The message request prompts a user to provide the PIN to authorize use of the smart card for a purchase transaction.

摘要翻译： 一种用于将计算机系统与个人识别号码（PIN）输入到智能卡的系统和方法。 该系统和方法包括与不安全网络通信以允许用户参与购买交易的计算机系统。 该系统和方法还包括其中插入和读取智能卡的智能卡读卡器。 安全的个人识别号码（PIN）输入设备耦合在计算机系统和智能卡读卡器之间。 安全PIN输入设备用于输入PIN的正确代码。 计算机系统和安全PIN输入设备之间的通信被断开，直到PIN的正确代码被输入到安全的PIN输入设备并被发送到智能卡以授权使用智能卡进行购买交易。 为了响应正在输入的PIN并将其发送到智能卡的正确代码，建立计算机系统和安全PIN输入设备之间的通信。 安全PIN输入设备具有用于控制计算机系统和安全PIN输入设备之间的通信的断开和连接的处理器。 安全PIN输入设备还具有用于显示与购买交易相关的消息请求的显示。 消息请求提示用户提供PIN以授权使用智能卡进行购买交易。

公开(公告)号：US06529299B1

公开(公告)日：2003-03-04

申请号：US09282839

申请日：1999-03-31

申请人： Carlos Munoz-Bustamante ,  David Carroll Challener ,  Daniel McConnell

发明人： Carlos Munoz-Bustamante ,  David Carroll Challener ,  Daniel McConnell

IPC分类号： H04B1020

CPC分类号： H04L12/44 ,  G02B6/3518 ,  G02B6/3556 ,  G02B6/357 ,  G02B26/0841

摘要： An apparatus for broadcasting optical signals within an optoelectric computer network is disclosed. The optoelectric computer network includes multiple computers. Each of the computers includes a first fiber optic cable for sending optical signal beams and a second fiber optic cable for receiving optical signal beams. The apparatus for broadcasting optical signals within the optoelectric computer network includes a lens and a mirror array. The lens is capable of splitting an optical signal beam received from a first fiber optic cable of one of the computers into multiple optical signal beams. The mirror array, which is formed by an array of deformable mirrors, then individually directs each of the split optical signal beams to a respective second fiber optic cable of the selected remaining computers within the optoelectric computer network.

摘要翻译： 公开了一种在光电计算机网络内广播光信号的装置。 光电计算机网络包括多台计算机。 每个计算机包括用于发送光信号光束的第一光纤电缆和用于接收光信号光束的第二光纤电缆。 用于在光电计算机网络内广播光信号的装置包括透镜和反射镜阵列。 透镜能够将从计算机之一的第一光纤电缆接收的光信号光束分成多个光信号光束。 由可变形反射镜阵列形成的反射镜阵列然后将每个分离的光信号光束单独地引导到光电计算机网络内所选择的剩余计算机的相应的第二光纤电缆。

公开(公告)号：US6154200A

公开(公告)日：2000-11-28

申请号：US997024

申请日：1997-12-23

申请人： David Carroll Challener ,  James L. Levine ,  Michael Alan Schappert

发明人： David Carroll Challener ,  James L. Levine ,  Michael Alan Schappert

IPC分类号： G06F3/033 ,  G09G5/00 ,  G09G1/00 ,  G09G3/22 ,  G09G3/28

CPC分类号： G06F3/03545

摘要： A computer-input stylus which provides visual color feedback when utilized in conjunction with a computer-implemented software-based drawing application. The input stylus includes a cylindrical body in a conical tip. A color display within the stylus is utilized to illuminate the conical tip with a color indicative of a currently selected color within the software-based drawing application, providing visual color feedback. The color display is implemented utilizing multiple light-emitting diodes or an active matrix liquid crystal display mounted within an optically transparent portion of the conical tip.

摘要翻译： 与计算机实现的基于软件的绘图应用程序结合使用时提供视觉色彩反馈的计算机输入笔。 输入触针包括圆锥形端头的圆柱体。 使用触控笔内的彩色显示器以在基于软件的绘图应用程序内的指示当前所选颜色的颜色照亮锥形尖端，从而提供视觉颜色反馈。 使用多个发光二极管或安装在锥形尖端的光学透明部分内的有源矩阵液晶显示器来实现彩色显示。

公开(公告)号：US6009486A

公开(公告)日：1999-12-28

申请号：US069407

申请日：1998-04-29

申请人： Richard Alan Dayan ,  David Carroll Challener ,  John M. Elmore ,  Richard Allen Kelley

发明人： Richard Alan Dayan ,  David Carroll Challener ,  John M. Elmore ,  Richard Allen Kelley

IPC分类号： G06F1/16 ,  G06F13/00

CPC分类号： G06F1/1632

摘要： A computer system with a PC Card external connector sends signals to PCI devices as if respective PC Card functions. A cooperating docking station connects to the PC Card connector and so processes the PC Card signals that a set of signals for supporting PCI bus standard are made available at a PCI bus of the docking station. The docking station is hence able to connect to a bus commonly available on computers, particularly laptop computers, for direct plug-in connection and yet supports connection of PCI adapters that otherwise tend to be supported only within a main computer at an internal PCI bus.

摘要翻译： 具有PC卡外部连接器的计算机系统将信号发送到PCI设备，就像各个PC卡的功能一样。 协作坞站连接到PC卡连接器，因此处理PC卡信号，一组用于支持PCI总线标准的信号在坞站的PCI总线上可用。 因此，对接站能够连接到计算机，特别是笔记本电脑上通常可用的总线，用于直接插入连接，并且还支持PCI适配器的连接，否则PCI适配器仅在内部PCI总线的主计算机内才被支持。

公开(公告)号：US08495728B2

公开(公告)日：2013-07-23

申请号：US09758927

申请日：2001-01-11

申请人： David Carroll Challener ,  Peter Alexander Manson ,  Douglas Morgan Trent

发明人： David Carroll Challener ,  Peter Alexander Manson ,  Douglas Morgan Trent

IPC分类号： G06F7/04

CPC分类号： H04L9/3226 ,  H04L9/3231 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/30

摘要： An Internet appliance has added hardware and software functionality to allow communication where a dialing action request is authorization is verified using a personal identification means (PIM). A user first selects a communication access number by requesting a dialing action on a actual or a virtual keypad or by clicking a “hot spot” on a Web page. Selecting an access number (e.g., dialing of a telephone number), alerts the user of the Internet appliance of the selection process whether the user instigates or the selection is attempted from a remote device using the Internet appliance facilities. Either method will trigger software commands that prompt the user to enter a PIM either to authorize his own use or another one's use of the Internet appliance. The PIM may comprise, but is not limited to, keying in a personal identification number (PIN), a biometric identification, or a smart card stored number. The PIM is correlated to an authorization means that verifies that the user so identified is authorized to make or allow the prescribed connection. The Internet appliance has a security protocol that is used to encrypt and decrypt the PIM data. Also the device drivers used to execute a dialing action are also encrypted by the security protocol and are only decrypted on granting of authorized use of the Internet appliance. If the user so requests and is authorized, they may also select to use the security protocol to execute secure communication. The security protocol includes but is not limited to a Public/Private symmetric key technology.

公开(公告)号：US08307098B1

公开(公告)日：2012-11-06

申请号：US09651548

申请日：2000-08-29

申请人： Barry Atkins ,  David Carroll Challener ,  Frank Novak ,  Joseph Gary Rusnak ,  Kenneth D. Timmons ,  William W. Vetter

发明人： Barry Atkins ,  David Carroll Challener ,  Frank Novak ,  Joseph Gary Rusnak ,  Kenneth D. Timmons ,  William W. Vetter

IPC分类号： G06F15/16

CPC分类号： H04L9/0822 ,  H04L9/0891 ,  H04L9/3268

摘要： A system, method, and program for managing a user key used to sign a message for a data processing system having an encryption chip are disclosed. A user is assigned a user key. In order to encrypt and send messages to a recipient(s), the messages are encrypted with the user key. The user key, in turn, is encrypted with an associated key. The associated key is further encrypted using an encryption chip key stored on the encryption chip. The encrypted messages are communicated to a recipient to validate an association of the user with the encrypted messages. The associated key is decrypted with the encryption chip key. The user key is decrypted with the associated key, and the messages are decrypted with the user key. Thereafter, validation of the association of messages with the user is removed by revoking the associated key. In a preferred embodiment, encryption resources are centralized in a server system having the encryption chip. The server system is coupled to and provides encryption services to a plurality of client systems. Messages to be encrypted are sent from a user's client system to the server system, which encrypts the messages using the encryption chip. The encrypted messages are sent from the server system to the client system, which then transmits the encrypted messages to their intended recipient(s). All data relating to the encrypted messages are erased from the server system after the encrypted messages are sent from the server system to the client system.

摘要翻译： 公开了一种用于管理用于签署具有加密芯片的数据处理系统的消息的用户密钥的系统，方法和程序。 给用户分配一个用户密钥。 为了加密和发送消息给收件人，消息用用户密钥加密。 用户密钥依次用相关密钥加密。 使用存储在加密芯片上的加密芯片密钥进一步加密相关密钥。 将加密的消息传送到接收者以验证用户与加密消息的关联。 相关密钥用加密芯片密钥解密。 用关键字解密用户密钥，用用户密钥对消息进行解密。 此后，通过撤消关联的密钥来消除与用户的消息关联的验证。 在优选实施例中，加密资源集中在具有加密芯片的服务器系统中。 服务器系统耦合到并向多个客户端系统提供加密服务。 要加密的消息从用户的客户端系统发送到服务器系统，服务器系统使用加密芯片加密消息。 加密的消息从服务器系统发送到客户端系统，然后客户端系统将加密的消息发送到其预期的接收者。 在将加密的消息从服务器系统发送到客户端系统之后，与加密消息相关的所有数据从服务器系统中被擦除。