公开(公告)号：US5022077A

公开(公告)日：1991-06-04

申请号：US398820

申请日：1989-08-25

申请人： Richard Bealkowski ,  John W. Blackledge, Jr. ,  Doyle S. Cronk ,  Richard A. Dayan ,  Jerry D. Dixon ,  Scott G. Kinnear ,  George D. Kovach ,  Andrew B. McNeill ,  Matthew S. Palka, Jr. ,  Robert Sachsenmaier ,  Edward I. Wachtel ,  Kevin M. Zyvoloski

发明人： Richard Bealkowski ,  John W. Blackledge, Jr. ,  Doyle S. Cronk ,  Richard A. Dayan ,  Jerry D. Dixon ,  Scott G. Kinnear ,  George D. Kovach ,  Andrew B. McNeill ,  Matthew S. Palka, Jr. ,  Robert Sachsenmaier ,  Edward I. Wachtel ,  Kevin M. Zyvoloski

IPC分类号： G06F13/10 ,  G06F9/445 ,  G06F12/14 ,  G06F21/22

CPC分类号： G06F9/4406

摘要： An apparatus and method for protecting BIOS stored on a direct access storage device into a personnal computer system. The personal computer system comprises a system processor, a system planar, a random access main memory, a read only memory, a protection means and at least one direct access storage device. The read only memory includes a first portion of BIOS and data representing the type of system processor and system planar I/O configuration. The first portion of BIOS initializes the system and the direct access storage device, and resets the protection means in order to read in a master boot record into the random access memory from a protectable partition on the direct access storage device.

公开(公告)号：US5533205A

公开(公告)日：1996-07-02

申请号：US220326

申请日：1994-03-30

申请人： John W. Blackledge, Jr. ,  Bradly G. Frey

发明人： John W. Blackledge, Jr. ,  Bradly G. Frey

IPC分类号： G06F15/16 ,  G06F9/52 ,  G06F13/362 ,  G06F15/177 ,  G06F13/00

CPC分类号： G06F13/3625

摘要： A method and system for efficient bus allocation in a multimedia computer system which includes a processor, a memory and multiple input/output devices which are coupled together via a bus which has a maximum data transfer rate. The transfer of audio, video, or other time sensitive data within the computer system to various presentation devices must be accomplished at certain predetermined rates in order to support selected applications. An arbitration level indicator which may be utilized to indicate a priority of bus access is associated with each presentation device which may contend for bus access. The bus access is then divided into a series of time frames which are subdivided into smaller time intervals. During selected time intervals the arbitration level indicators associated with a particular presentation devices are temporarily reordered to guarantee bus access at the required data rate.

摘要翻译： 一种用于多媒体计算机系统中有效总线分配的方法和系统，其包括处理器，存储器以及通过具有最大数据传输速率的总线耦合在一起的多个输入/输出设备。 音频，视频或计算机系统内的其他时间敏感数据传输到各种显示设备必须以某些预定速率完成，以便支持所选择的应用。 可以用于指示总线访问的优先级的仲裁级指示符与可能争取总线访问的每个呈现设备相关联。 然后，总线访问被分成一系列时间间隔，其被细分为较小的时间间隔。 在选定的时间间隔期间，与特定表现设备相关联的仲裁级别指示器被暂时重新排序，以保证所需数据速率下的总线访问。

公开(公告)号：US5388156A

公开(公告)日：1995-02-07

申请号：US840965

申请日：1992-02-26

申请人： John W. Blackledge, Jr. ,  Grant L. Clarke, Jr. ,  Richard A. Dayan ,  Kimthanh D. Le ,  Patrick E. McCourt ,  Matthew T. Mittelstedt ,  Dennis L. Moeller ,  Palmer E. Newman ,  David L. Randall ,  JoAnna B. Yoder

发明人： John W. Blackledge, Jr. ,  Grant L. Clarke, Jr. ,  Richard A. Dayan ,  Kimthanh D. Le ,  Patrick E. McCourt ,  Matthew T. Mittelstedt ,  Dennis L. Moeller ,  Palmer E. Newman ,  David L. Randall ,  JoAnna B. Yoder

IPC分类号： G06F11/00 ,  G06F9/06 ,  G06F12/14 ,  G06F21/00 ,  G06F21/06 ,  G06F21/22 ,  G06F21/24 ,  H04L9/00

CPC分类号： G06F21/86 ,  G06F2211/009 ,  G06F2221/2143

摘要： This invention relates to personal computer systems and, more particularly, to such a system having security features enabling control over access to data retained in such a system. In particular, a personal computer system in accordance with this invention has a normally closed enclosure, at least one erasable memory element for selective activation to active and inactive states and for receiving and storing a privileged access password when in the active state, an option switch operatively connected with the erasable memory element for setting the erasable memory element to the active and inactive states, a tamper detection switch operatively connected with the erasable memory element for detecting opening of the enclosure and for invalidating any privileged access password stored in the erasable memory element in response to any switching of the tamper switch, and a system processor operatively connected with the erasable memory element for controlling access to at least certain levels of data stored within the system by distinguishing between the active and inactive states of the memory element and between entry and non-entry of any stored privileged access password. In the presently preferred form of the invention, two non-volatile erasable memory elements are provided, one an EEPROM and the other battery backed CMOS RAM.

摘要翻译： 本发明涉及个人计算机系统，更具体地说，涉及具有能够控制对这种系统中保留的数据的访问的安全特征的这种系统。 特别地，根据本发明的个人计算机系统具有常闭壳体，至少一个可擦除存储器元件，用于选择性地激活到主动和非活动状态，并且在处于活动状态时接收和存储特权访问密码，选项开关 与可擦除存储器元件可操作地连接，用于将可擦除存储器元件设置为活动和非活动状态;篡改检测开关，其可操作地与可擦除存储元件连接，用于检测外壳的打开并使存储在可擦除存储器元件中的任何特权访问密码无效 响应于所述篡改开关的任何切换，以及与所述可擦除存储器元件可操作地连接的系统处理器，用于通过区分所述存储元件的有效和非活动状态以及在进入之间来控制对存储在所述系统内的至少某一级别的数据的访问 并且不输入任何存储的特权访问权限 ss字。 在本发明的当前优选形式中，提供了两个非易失性可擦除存储器元件，一个是EEPROM和另一个电池支持的CMOS RAM。

公开(公告)号：US5210875A

公开(公告)日：1993-05-11

申请号：US398865

申请日：1989-08-25

申请人： Richard Bealkowski ,  John W. Blackledge, Jr. ,  Doyle S. Cronk ,  Richard A. Dayan ,  Scott G. Kinnear ,  George D. Kovach ,  Matthew S. Palka, Jr. ,  Robert Sachsenmaier ,  Kevin M. Zyvoloski

发明人： Richard Bealkowski ,  John W. Blackledge, Jr. ,  Doyle S. Cronk ,  Richard A. Dayan ,  Scott G. Kinnear ,  George D. Kovach ,  Matthew S. Palka, Jr. ,  Robert Sachsenmaier ,  Kevin M. Zyvoloski

IPC分类号： G06F9/06

CPC分类号： G06F9/4406

摘要： An apparatus and method for loading BIOS stored on a direct access storage device into a personal computer system. The personal computer system comprises a system processor, a system planar, a random access main memory, a read only memory, and at least one direct access storage device. The first portion of BIOS initializes the system and the direct access storage device to read in a master boot record into the system from the direct access storage device. The master boot record includes a data segment and an executable code segment. The first BIOS portion vectors the system processor to execute the executable code segment of the master boot record. The executable code segment loads in the remaining BIOS portion from the direct access storage device into random access memory.

公开(公告)号：US5136713A

公开(公告)日：1992-08-04

申请号：US398860

申请日：1989-08-25

申请人： Richard Bealkowski ,  John W. Blackledge, Jr. ,  Doyle S. Cronk ,  Richard A. Dayan ,  Scott G. Kinnear ,  George D. Kovach ,  Matthew S. Palka, Jr. ,  Robert Sachsenmaier ,  Kevin M. Zyvoloski

发明人： Richard Bealkowski ,  John W. Blackledge, Jr. ,  Doyle S. Cronk ,  Richard A. Dayan ,  Scott G. Kinnear ,  George D. Kovach ,  Matthew S. Palka, Jr. ,  Robert Sachsenmaier ,  Kevin M. Zyvoloski

IPC分类号： G06F13/10 ,  G06F9/445

CPC分类号： G06F9/4406

摘要： An apparatus and method for decreasing the memory requirements of BIOS in a personal computer system includes storing a first portion of BIOS in memory and a second portion on a direct storage access device. The personal computer system comprises a system processor, a random access main memory, a read only memory, and at least one direct access storage device. The first portion of BIOS only includes routines for initializing the system and the direct access storage device to read in a master boot record into the system from the direct access storage device. The master boot record includes a data segment and an executable code segment. The first BIOS portion vectors the system processor to execute the executable code segment of the master boot record. The executable code segment loads in the remaining BIOS portion from the direct access storage device into random access memory superseding the first BIOS portion.

公开(公告)号：US5128995A

公开(公告)日：1992-07-07

申请号：US557334

申请日：1990-07-23

申请人： Lisa R. Arnold ,  Richard Bealkowski ,  John W. Blackledge, Jr. ,  Doyle S. Cronk ,  Richard A. Dayan ,  Douglas R. Geisler ,  Matthew T. Mittelstedt ,  Matthew S. Palka, Jr. ,  John D. Paul ,  Robert Sachsenmaier ,  Kenneth D. Smeltzer ,  Peter A. Woytovech ,  Kevin M. Zyvoloski

发明人： Lisa R. Arnold ,  Richard Bealkowski ,  John W. Blackledge, Jr. ,  Doyle S. Cronk ,  Richard A. Dayan ,  Douglas R. Geisler ,  Matthew T. Mittelstedt ,  Matthew S. Palka, Jr. ,  John D. Paul ,  Robert Sachsenmaier ,  Kenneth D. Smeltzer ,  Peter A. Woytovech ,  Kevin M. Zyvoloski

IPC分类号： G06F3/06 ,  G06F9/445 ,  G06F11/08 ,  G06F11/22 ,  G06F13/10

CPC分类号： G06F9/4406 ,  G06F11/08 ,  G06F11/22

摘要： A personal computer system according to the present invention comprises a system processor, a random access memory, a read only memory, and at least one direct access storage device. A direct access storage device controller coupled between the system processor and direct access storage device includes a protection mechanism for protecting a region of the storage device. The protected region of the storage device includes a master boot record, a BIOS image and a system reference diskette image. The BIOS image includes a section known as Power on Self Test (POST). POST is used to test and initialize a system. Upon detecting any configuration error, system utilities from the system reference diskette image, such as set configuration programs, diagnostic programs and utility programs can be automatically activated from the direct access storage device.

公开(公告)号：US5410699A

公开(公告)日：1995-04-25

申请号：US609043

申请日：1990-11-02

申请人： Richard Bealkowski ,  John W. Blackledge, Jr. ,  Doyle S. Cronk ,  Richard A. Dayan ,  Scott G. Kinnear ,  George D. Kovach ,  Matthew S. Palka, Jr. ,  Robert Sachsenmaier ,  Kevin M. Zyvoloski

发明人： Richard Bealkowski ,  John W. Blackledge, Jr. ,  Doyle S. Cronk ,  Richard A. Dayan ,  Scott G. Kinnear ,  George D. Kovach ,  Matthew S. Palka, Jr. ,  Robert Sachsenmaier ,  Kevin M. Zyvoloski

IPC分类号： G06F13/10 ,  G06F9/445 ,  G06F9/06

CPC分类号： G06F9/4406

摘要： An apparatus and method for loading BIOS from a diskette drive into a personal computer system normally connected to a hardfile, such as a fixed disk. The personal computer system further includes a system processor, a random access main memory, a read only memory and a switching means. The switching means generates a signal to indicate a mode for whether BIOS loads from either diskette or disk. In a priority mode, BIOS loads immediately from diskette. In a recovery mode, BIOS loads from diskette after testing the disk subsystem.

摘要翻译： 一种用于将BIOS从软盘驱动器加载到通常连接到诸如固定盘之类的硬文件的个人计算机系统的装置和方法。 个人计算机系统还包括系统处理器，随机存取主存储器，只读存储器和切换装置。 切换装置产生一个信号，指示是否从软盘或磁盘加载BIOS的模式。 在优先模式下，BIOS会立即从软盘加载。 在恢复模式下，BIOS在测试磁盘子系统后从磁盘加载。

公开(公告)号：US5341422A

公开(公告)日：1994-08-23

申请号：US947014

申请日：1992-09-17

申请人： John W. Blackledge, Jr. ,  Richard A. Dayan ,  Dennis L. Moeller ,  Palmer E. Newman ,  Kenneth J. P. Zubay

发明人： John W. Blackledge, Jr. ,  Richard A. Dayan ,  Dennis L. Moeller ,  Palmer E. Newman ,  Kenneth J. P. Zubay

IPC分类号： G06F12/14 ,  G06F1/00 ,  G06F21/02 ,  G06F21/24 ,  H04L9/00

CPC分类号： G06F21/82 ,  G06F21/86 ,  G06F2211/007 ,  G06F2211/009

摘要： This invention relates to personal computer systems and, more particularly, to such a system having security features enabling control over access to data retained in such a system. This invention contemplates protecting a personal computer system which has the capability of becoming a secure system from being placed into that condition by an attack on an unsecured machine. Additionally, in a network environment, it is important to maintaining network security that any given particular system be uniquely identified to the network, in order to guard against the substitution of an insecure "alternate" which would open the network to attack through an insecure system. This invention contemplates provision for such identification in a secure manner.

摘要翻译： 本发明涉及个人计算机系统，更具体地说，涉及具有能够控制对这种系统中保留的数据的访问的安全特征的这种系统。 本发明考虑到保护具有成为安全系统的能力的个人计算机系统，以免受到不安全机器的攻击而被置于该状态。 另外，在网络环境中，保持网络安全性至关重要，任何给定的特定系统可以被唯一地标识到网络，以防止替代不安全的“备用”，这将打开网络以通过不安全的系统进行攻击 。 本发明考虑以安全的方式提供这种识别。

公开(公告)号：US5495611A

公开(公告)日：1996-02-27

申请号：US902311

申请日：1992-06-22

申请人： Richard Bealkowski ,  John W. Blackledge, Jr. ,  Douglas R. Geisler ,  Michael R. Turner

发明人： Richard Bealkowski ,  John W. Blackledge, Jr. ,  Douglas R. Geisler ,  Michael R. Turner

IPC分类号： G06F9/445 ,  G06F9/00

CPC分类号： G06F9/4403

摘要： A personal computer system is disclosed which is compatible with application programs and operating system software. The personal computer system includes a microprocessor electrically coupled to a data bus, non-volatile memory electrically coupled to the data bus, volatile memory electrically responsive to the data bus, a memory controller electrically coupled to the microprocessor, the volatile memory and the non-volatile memory, and a direct access storage device electrically responsive to the data bus. The non-volatile memory stores a first portion of operating system microcode and the volatile memory includes a volatile operating system portion intended for use by the first portion of the operating system microcode. The memory controller regulates communications between the volatile memory, the non-volatile memory and the high speed microprocessor. The direct access storage device stores a second portion of operating system microcode which is accessed by the microprocessor as needed.

摘要翻译： 公开了一种与应用程序和操作系统软件兼容的个人计算机系统。 个人计算机系统包括电耦合到数据总线的微处理器，电耦合到数据总线的非易失性存储器，电响应于数据总线的易失性存储器，电耦合到微处理器的存储器控​​制器，易失性存储器和非易失性存储器， 易失性存储器，以及对数据总线电气响应的直接存取存储装置。 非易失性存储器存储操作系统微代码的第一部分，并且易失性存储器包括旨在由操作系统微代码的第一部分使用的易失性操作系统部分。 存储器控制器调节易失性存储器，非易失性存储器和高速微处理器之间的通信。 直接存取存储装置存储由微处理器根据需要访问的操作系统微代码的第二部分。

公开(公告)号：US5432939A

公开(公告)日：1995-07-11

申请号：US889324

申请日：1992-05-27

申请人： John W. Blackledge, Jr. ,  Richard A. Dayan ,  Dennis L. Moeller ,  Palmer E. Newman ,  Kenneth J. P. Zubay

发明人： John W. Blackledge, Jr. ,  Richard A. Dayan ,  Dennis L. Moeller ,  Palmer E. Newman ,  Kenneth J. P. Zubay

IPC分类号： G06F1/00 ,  G06F9/06 ,  G06F9/445 ,  G06F12/14 ,  G06F21/00 ,  G06F21/06 ,  G06F21/20 ,  G06F21/22 ,  G06F21/24 ,  G06F9/44

CPC分类号： G06F21/85 ,  G06F9/4401 ,  G06F12/1408

摘要： This invention relates to personal computer systems and, more particularly, to such a system having security features enabling control over access to data retained in such a system. The features here described include a prioritized initial loading program for enabling initial loading of an operating system from a selected one of a plurality of sources, the prioritized initial loading program normally designating an interpreter program as a final option default in the event of failure of access to an operating system from any other one of the plurality of sources; a security utility program for enabling a designated user to (a) selectively modify the initial loading program by specifying the number and priority order of the plurality of sources and (b) selectively modify the initial loading program by deleting the interpreter program from the plurality of sources; a master cryptographic key for use in encrypting and decrypting data processed by the system CPU; and a second security utility program for enabling a designated user to modify the master cryptographic key.

摘要翻译： 本发明涉及个人计算机系统，更具体地说，涉及具有能够控制对这种系统中保留的数据的访问的安全特征的这种系统。 这里描述的特征包括优先的初始加载程序，用于使得能够从多个源中的所选的一个源初始加载操作系统，优先化的初始加载程序通常将解释程序指定为在访问失败的情况下的最终选项默认值 涉及来自所述多个源中的任何另一个的操作系统; 一种用于使指定用户能够（a）通过指定所述多个源的数量和优先级顺序来选择性地修改所述初始加载程序的安全实用程序，以及（b）通过从所述多个源中删除所述解释程序来选择性地修改所述初始加载程序 来源 用于加密和解密由系统CPU处理的数据的主密码密钥; 以及用于使指定用户能够修改主加密密钥的第二安全实用程序。