公开(公告)号：US09734100B2

公开(公告)日：2017-08-15

申请号：US14204704

申请日：2014-03-11

申请人： Insyde Software Corp.

发明人： Timothy Andrew Lewis

IPC分类号： G06F3/00 ,  G06F13/38 ,  G06F13/24 ,  G06F13/00

CPC分类号： G06F13/24

摘要： A mechanism for reducing the cost of providing network-based remote platform management by allowing system firmware to communicate with a remote platform administrator or process by sharing a NIC that is also used for normal network traffic is discussed. The dual use of the NIC reduces the cost of remote platform management by removing the need for a secondary controller or CPU core on the computing device that is dedicated to remote management tasks. Additionally, performance in the computing device improves as a byproduct of a CPU core or thread not being dedicated to the management task and instead being available for handling of other tasks.

公开(公告)号：US09660807B2

公开(公告)日：2017-05-23

申请号：US14492916

申请日：2014-09-22

申请人： Insyde Software Corp.

发明人： Timothy Andrew Lewis

IPC分类号： H04L29/06 ,  H04L9/08 ,  G06F21/44 ,  G06F21/57 ,  H04L9/32

CPC分类号： H04L9/0891 ,  G06F21/44 ,  G06F21/572 ,  H04L9/3226 ,  H04L9/3236 ,  H04L9/3297

摘要： A mechanism for certifying that an operating system-based application has authorization to change a UEFI authenticated variable held in the system firmware is discussed. Embodiments of the present invention receive with the system firmware a request from an operating system-based application to change a UEFI authenticated variable. The request includes an authentication descriptor header with a timestamp and pre-determined GUID. The request also includes a hash calculated using a password known to the firmware. The system firmware certifies that the caller has authorization to change an authenticated variable by first verifying the information in the header and then creating a new hash using the password. The new hash is compared to the received hash and must match in order for the system firmware to allow the alteration of the UEFI authenticated variable. In one embodiment, the password is the system firmware password.

公开(公告)号：US09535712B2

公开(公告)日：2017-01-03

申请号：US14560559

申请日：2014-12-04

申请人： Insyde Software Corp.

发明人： Timothy Andrew Lewis

IPC分类号： G06F9/00 ,  G06F9/44 ,  G06F21/57 ,  G06F21/62

CPC分类号： G06F9/4406 ,  G06F21/575 ,  G06F21/6209

摘要： Embodiments of the present invention store data in read-protected storage for use by firmware and then transfer the data or data related to that stored data into a secure execution environment for use during normal platform operation. The read-protected storage is readable only between a time period after platform reset but before the read-protected storage is locked prior to the operating system being loaded. This read-protected storage is locked prior to executing any untrusted code in normal system memory so that the data in the read-protected storage is not exposed to malicious code execution.

摘要翻译： 本发明的实施例将数据存储在由固件使用的读保护存储器中，然后将与该存储数据相关的数据或数据传送到安全执行环境中，以便在正常平台操作期间使用。 读取保护的存储器只能在平台重置之后的时间段之间，但在读取保护的存储器在加载操作系统之前被锁定。 在正常系统存储器中执行任何不受信任的代码之前，该受保护存储器被锁定，使得读保护存储器中的数据不会暴露于恶意代码执行。

公开(公告)号：US09477848B2

公开(公告)日：2016-10-25

申请号：US14204413

申请日：2014-03-11

申请人： Insyde Software Corp.

发明人： Martin O. Nicholes

IPC分类号： G06F21/71 ,  G06F21/85

CPC分类号： G06F21/71 ,  G06F21/85

摘要： A computing device equipped with UEFI-compliant firmware is provided with added functionality via an extended firmware interface. The variable interface is called with special parameters, which redirect handling of firmware service calls. Embodiments use authenticated variables to provide security properties to the special interface, use the firmware interface to provide access to diagnostics, and use the firmware interface to provide access to system management.

摘要翻译： 配备有UEFI兼容固件的计算设备通过扩展固件接口提供附加功能。 使用特殊参数调用变量接口，这将重定向处理固件服务调用。 实施例使用经认证的变量为特殊接口提供安全属性，使用固件接口提供对诊断的访问，并使用固件接口提供对系统管理的访问。

公开(公告)号：US09298524B2

公开(公告)日：2016-03-29

申请号：US14221544

申请日：2014-03-21

申请人： Insyde Software Corp.

发明人： Timothy Andrew Lewis

IPC分类号： G06F11/30 ,  G06F11/07 ,  G06F11/34

CPC分类号： G06F11/07 ,  G06F11/0706 ,  G06F11/0757 ,  G06F11/3006 ,  G06F11/3055 ,  G06F11/3089 ,  G06F11/3476 ,  G06F2201/815 ,  G06F2213/0058

摘要： A system firmware agent providing the capabilities of a Baseboard Management Controller (BMC) from within System Management Mode (SMM) is discussed. A virtual BMC provides dedicated communication channels for system firmware, other BMCs in the platform and remote management agents. The virtual BMC may monitor the status of the system, record system events, and control the system state.

摘要翻译： 讨论了从系统管理模式（SMM）中提供基板管理控制器（BMC）功能的系统固件代理。 虚拟BMC为系统固件，平台中的其他BMC和远程管理代理提供专用通信通道。 虚拟BMC可以监控系统的状态，记录系统事件，并控制系统状态。

公开(公告)号：US20150339481A1

公开(公告)日：2015-11-26

申请号：US14714632

申请日：2015-05-18

申请人： INSYDE SOFTWARE CORP.

发明人： Wen-Ming LIN

IPC分类号： G06F21/57 ,  G06F21/35 ,  G06F9/44

CPC分类号： G06F21/575 ,  G06F9/4418 ,  G06F21/35

摘要： An electronic system having wake up verification comprises an electronic device and a mobile device. The electronic device wirelessly connects to the mobile device. When the mobile device executes a verification program, the mobile device provides a sampling signal input interface on which a user can input a sampling signal. When the sampling signal is input, the mobile device transforms the sampling signal into sampling data and transmits the sampling data to the electronic device. The electronic device verifies the sampling data. When the sampling data are correct, the electronic device executes an operation system. When the sampling data are incorrect, the electronic device cannot execute the operation system. Therefore, information stored in the electronic device can be protected by two factor authentication to increase reliability for safeguarding information.

摘要翻译： 具有唤醒验证的电子系统包括电子设备和移动设备。 电子设备无线连接到移动设备。 当移动设备执行验证程序时，移动设备提供用户可以在其上输入采样信号的采样信号输入接口。 当输入采样信号时，移动设备将采样信号转换为采样数据，并将采样数据发送到电子设备。 电子设备验证采样数据。 当采样数据正确时，电子设备执行操作系统。 当采样数据不正确时，电子设备无法执行操作系统。 因此，可以通过双因素认证来保护存储在电子设备中的信息，以增加用于保护信息的可靠性。

公开(公告)号：US09189248B2

公开(公告)日：2015-11-17

申请号：US14016995

申请日：2013-09-03

申请人： Insyde Software Corp.

发明人： Timothy A. Lewis ,  Jinson Tsai ,  Derek Hsu

IPC分类号： G06F1/00 ,  G06F9/00 ,  G06F9/24 ,  G06F15/177 ,  G06F9/44

CPC分类号： G06F9/4418

摘要： A specialized boot path for speeding up resume from a sleep state is discussed. In a UEFI-compliant system, a specially constructed alternate firmware volume is created which contains only the code modules used during resumption from an S3 sleep state. This alternate firmware volume is copied into Random Access Memory (RAM) during a normal boot. When the system subsequently enters the S3 sleep state and then begins the resume boot process, code in the boot sequence detects it is a resume from an S3 sleep state, restores a RAM configuration and jumps execution to a Pre-EFI Initialization (PEI) core entry point in the alternate firmware volume in RAM instead of to a firmware volume in ROM. This alternate firmware volume performs specified S3 resume tasks and then returns control to the operating system.

摘要翻译： 讨论了一种用于从睡眠状态加速恢复的专用启动路径。 在符合UEFI标准的系统中，创建了一个专门构建的备用固件卷，仅包含从S3休眠状态恢复期间使用的代码模块。 在常规引导期间，此替代固件卷被复制到随机存取存储器（RAM）中。 当系统随后进入S3休眠状态，然后开始恢复引导过程时，引导顺序中的代码检测到它是从S3休眠状态的恢复，恢复RAM配置并跳转执行到EFI初始化（PEI）内核 RAM中的备用固件卷中的入口点，而不是ROM中的固件卷。 此备用固件卷执行指定的S3恢复任务，然后将控制权返回给操作系统。

公开(公告)号：US09021244B2

公开(公告)日：2015-04-28

申请号：US13668757

申请日：2012-11-05

申请人： Insyde Software Corp.

发明人： Jeffery Jay Bobzin

IPC分类号： G06F15/177 ,  G06F21/57

CPC分类号： G06F21/575 ,  G06F9/4401 ,  G06F15/177 ,  G06F2221/034 ,  G06F2221/2105

摘要： Firmware in a UEFI-compliant computing device is used to administer and alter a Secure Boot process for the computing device while continuing to provide protection from unauthorized third-party code.

摘要翻译： UEFI兼容计算设备中的固件用于管理和更改计算设备的安全引导过程，同时继续提供防止未经授权的第三方代码的保护。

公开(公告)号：US20140115364A1

公开(公告)日：2014-04-24

申请号：US13659353

申请日：2012-10-24

申请人： INSYDE SOFTWARE CORP.

发明人： Timothy A. Lewis

IPC分类号： G06F1/32

CPC分类号： G06F1/3246 ,  G06F1/32 ,  G06F9/4418 ,  Y02D50/20

摘要： A mechanism for firmware to gain control from the operating system of an Advanced Configuration and Power Interface (ACPI)-compliant computing device during sleep-state transitions even if the computing device lacks a dedicated means for such a change to occur is discussed. Embodiments of the present invention report a CPU-only reset register in place of a sleep control register for an ACPI-compliant computing device in which an operating system is attempting a sleep-state transition. A CPU reset value is substituted for a sleep type value in a sleep-state object and written to the CPU-only reset register that was reported instead of the sleep control register thereby triggering a CPU-only reset. Firmware code operating at a known CPU reset vector may perform specified processing and then authorize a transition to the originally requested sleep-state.

摘要翻译： 讨论了固件在休眠状态转换期间从高级配置和电源接口（ACPI）兼容的计算设备的操作系统获得控制的机制，即使计​​算设备缺少用于发生这种改变的专用装置。 本发明的实施例报告CPU仅重置寄存器，代替用于符合ACPI的计算设备的睡眠控制寄存器，其中操作系统正在尝试睡眠状态转换。 CPU复位值代替睡眠状态对象中的睡眠类型值，并将其写入仅报告的CPU专用复位寄存器，而不是休眠控制寄存器，从而触发仅CPU复位。 在已知的CPU复位向量操作的固件代码可以执行指定的处理，然后授权转换到最初请求的休眠状态。

公开(公告)号：US20130283260A1

公开(公告)日：2013-10-24

申请号：US13859033

申请日：2013-04-09

申请人： INSYDE SOFTWARE CORP.

发明人： I-Te CHEN

IPC分类号： G06F9/445

CPC分类号： G06F8/63 ,  G06F8/61 ,  G06F9/451 ,  H04M1/72525 ,  H04M2250/52

摘要： An image guided method for installing application software has the steps of using an electronic device to capture an image associated with an application software (App), comparing the captured image with data in an image database, generating installing information of the App based on the comparison result, and displaying the installing information on the electronic device to guide a user to install the App in the electronic device. Therefore, when the user takes the electronic device to capture an image or an icon associated with the App, the user receives the installing information of the App through the image comparison process and installs the App in the electronic device conveniently.

摘要翻译： 用于安装应用软件的图像引导方法具有使用电子设备捕获与应用软件（App）相关联的图像的步骤，将所捕获的图像与图像数据库中的数据进行比较，基于比较生成应用的安装信息 结果，并在电子设备上显示安装信息，以引导用户将该App安装在电子设备中。 因此，当用户将电子设备拍摄到与App相关联的图像或图标时，用户通过图像比较处理接收到App的安装信息，并且方便地将App安装在电子设备中。