-
公开(公告)号:US08073442B2
公开(公告)日:2011-12-06
申请号:US11244217
申请日:2005-10-05
申请人: Alexander Frank , Bohdan Raciborski , James S. Duffus , Jeffrey A. Herold , Martin H. Hall , Paul C. Sutton , Thomas G. Phillips
发明人: Alexander Frank , Bohdan Raciborski , James S. Duffus , Jeffrey A. Herold , Martin H. Hall , Paul C. Sutton , Thomas G. Phillips
IPC分类号: G06F7/04
CPC分类号: G06Q30/04 , H04L9/3247 , H04L2209/56
摘要: A pay-per-use or pay-as-you-go computer uses a secure memory to store individual unique program identifiers. Each unique program identifier is associated with a particular hardware or software component, or service, or the entire computer available to a user. By combining the unique program identifier with a computer hardware identifier uniquely identified transactions may be tracked for both billing and reconciliation. Certificates associated with each unique program identifier, and coupled to the hardware identifier, provide a cryptographic basis for mutual verification of messages, requests, configuration instructions, and provisioning.
摘要翻译: 按使用付费或即付即用的计算机使用安全内存来存储单独的唯一程序标识符。 每个唯一的程序标识符与特定的硬件或软件组件或服务或用户可用的整个计算机相关联。 通过将唯一程序标识符与计算机硬件标识符组合,唯一标识的事务可以跟踪计费和对帐。 与每个唯一程序标识符相关联并与硬件标识符相关联的证书为消息,请求,配置指令和配置的相互验证提供了密码基础。
-
公开(公告)号:US20120005721A1
公开(公告)日:2012-01-05
申请号:US13171993
申请日:2011-06-29
申请人: Zhangwei Xu , Thomas G. Phillips , Alexander Frank , Curt A. Steeb , Isaac P. Ahdout , Martin H. Hall , James S. Duffus
发明人: Zhangwei Xu , Thomas G. Phillips , Alexander Frank , Curt A. Steeb , Isaac P. Ahdout , Martin H. Hall , James S. Duffus
IPC分类号: G06F21/00
摘要: A processing unit for use in an electronic device includes standard instruction processing and communication interfaces and also includes functional capability in addition to or in place of those found in an operating system. A secure memory within the processing unit may contain a hardware identifier, policy data, and subsystem functions such as a secure clock, policy management, and policy enforcement. Data in functions within the secure memory are not accessible from outside the processing unit.
摘要翻译: 用于电子设备的处理单元包括标准指令处理和通信接口,并且还包括在操作系统中发现的或替代操作系统中的功能能力。 处理单元内的安全存储器可以包含硬件标识符,策略数据和诸如安全时钟,策略管理和策略实施之类的子系统功能。 安全存储器内的功能中的数据不能从处理单元外部访问。
-
公开(公告)号:US20080319925A1
公开(公告)日:2008-12-25
申请号:US11766595
申请日:2007-06-21
申请人: Jeffrey Alan Herold , James S. Duffus , Curt Andrew Steeb , Thomas G. Phillips , William J. Westerinen , Martin H. Hall , Todd L. Carpenter , Daniel Makoski , Shon Schmidt
发明人: Jeffrey Alan Herold , James S. Duffus , Curt Andrew Steeb , Thomas G. Phillips , William J. Westerinen , Martin H. Hall , Todd L. Carpenter , Daniel Makoski , Shon Schmidt
CPC分类号: G06F21/123 , G06F2221/0797 , G06F2221/2135 , G06Q30/0283
摘要: A computer or other electronic device may be used in one of several selectable modes of operation. Computer resources, such as a processor, memory, or a graphics controller, are individually settable for operation at different levels of performance. A mode of operation or performance level is determined by the combination of individual settings for the various resources. Pay-per-use operation is charged at a rate determined by the mode of operation or performance level. Operation in a gaming mode may be charged at a higher rate than operation in web-browsing mode. A metering agent may be associated with each scalable use resource to securely set the performance level and to securely report on metered operation of the resource.
摘要翻译: 计算机或其他电子设备可以用于几种可选操作模式之一。 诸如处理器,存储器或图形控制器的计算机资源可以单独设置,以在不同的性能水平下进行操作。 操作模式或性能水平由各种资源的各个设置的组合决定。 每次使用费用操作按照操作模式或性能水平确定的费率收费。 可以以比网络浏览模式下的操作更高的速率对游戏模式进行操作。 测量代理可以与每个可伸缩的使用资源相关联,以安全地设置性能级别并安全地报告资源的计量操作。
-
公开(公告)号:US08522043B2
公开(公告)日:2013-08-27
申请号:US11766602
申请日:2007-06-21
申请人: James S. Duffus , Curt Andrew Steeb , Thomas G. Phillips , Jeffrey Alan Herold , William Poole , William J. Westerinen , Martin H. Hall
发明人: James S. Duffus , Curt Andrew Steeb , Thomas G. Phillips , Jeffrey Alan Herold , William Poole , William J. Westerinen , Martin H. Hall
IPC分类号: G06F11/30
CPC分类号: G08B13/1418 , G06F21/88
摘要: A hardware-based security module is used to protect an electronic device, especially a portable electronic device. The security module may determine either via timeout of a watchdog timer or via an explicit message to encrypt selected data on the electronic device. In addition, the electronic device may enter a limited function mode that only allows display of simplistic messages and supports network traffic with a recovery service. The recovery service may be able to use the network traffic to locate the electronic device. The security module may include a secure memory, a cryptographic function, a timer, and support for direct display of data on a monitor.
摘要翻译: 基于硬件的安全模块用于保护电子设备,特别是便携式电子设备。 安全模块可以通过看门狗定时器的超时或者通过显式消息来确定来加密电子设备上的所选数据。 此外,电子设备可以进入有限功能模式,其仅允许显示简单的消息并且利用恢复服务支持网络流量。 恢复服务可能能够使用网络流量来定位电子设备。 安全模块可以包括安全存储器,加密功能,定时器和用于在监视器上直接显示数据的支持。
-
公开(公告)号:US20080319910A1
公开(公告)日:2008-12-25
申请号:US11766613
申请日:2007-06-21
申请人: James S. Duffus , Curt Andrew Steeb , Thomas G. Phillips , Todd L. Carpenter , Martin H. Hall , Ricardo Lopez-Barquilla , Judy Tandog , Katie Ann Aldrich , Daniel Makoski , David James Foster , Krista L. Johnson
发明人: James S. Duffus , Curt Andrew Steeb , Thomas G. Phillips , Todd L. Carpenter , Martin H. Hall , Ricardo Lopez-Barquilla , Judy Tandog , Katie Ann Aldrich , Daniel Makoski , David James Foster , Krista L. Johnson
IPC分类号: H04L9/00
CPC分类号: G06Q30/06 , G06F21/123 , G06F2221/0742 , G06F2221/0797
摘要: A computer with scalable performance level components and selectable software and service options has a user interface that allows individual performance levels to be selected. The scalable performance level components may include a processor, memory, graphics controller, etc. Software and services may include word processing, email, browsing, database access, etc. To support a pay-per-use business model, each selectable item may have a cost associated with it, allowing a user to pay for the services actually selected and that presumably correspond to the task or tasks being performed. An administrator may use a similar user interface to set performance levels for each computer in a network, allowing performance and cost to be set according to a user's requirements.
摘要翻译: 具有可扩展性能级别组件和可选软件和服务选项的计算机具有允许选择单独性能级别的用户界面。 可扩展的性能级组件可以包括处理器,存储器,图形控制器等。软件和服务可以包括文字处理,电子邮件,浏览,数据库访问等。为了支持按需付费的商业模式,每个可选项目可以具有 与其相关联的成本,允许用户支付实际选择的服务,并且大概对应于正在执行的任务或任务。 管理员可以使用类似的用户界面来设置网络中每台计算机的性能等级,从而允许根据用户要求设置性能和成本。
-
公开(公告)号:US20080320312A1
公开(公告)日:2008-12-25
申请号:US11766602
申请日:2007-06-21
申请人: James S. Duffus , Curt Andrew Steeb , Thomas G. Phillips , Jeffrey Alan Herold , William Poole , William J. Westerinen , Martin H. Hall
发明人: James S. Duffus , Curt Andrew Steeb , Thomas G. Phillips , Jeffrey Alan Herold , William Poole , William J. Westerinen , Martin H. Hall
CPC分类号: G08B13/1418 , G06F21/88
摘要: A hardware-based security module is used to protect an electronic device, especially a portable electronic device. The security module may determine either via timeout of a watchdog timer or via an explicit message to encrypt selected data on the electronic device. In addition, the electronic device may enter a limited function mode that only allows display of simplistic messages and supports network traffic with a recovery service. The recovery service may be able to use the network traffic to locate the electronic device. The security module may include a secure memory, a cryptographic function, a timer, and support for direct display of data on a monitor.
摘要翻译: 基于硬件的安全模块用于保护电子设备,特别是便携式电子设备。 安全模块可以通过看门狗定时器的超时或者通过显式消息来确定来加密电子设备上的所选数据。 此外,电子设备可以进入有限功能模式,其仅允许显示简单的消息并且利用恢复服务支持网络流量。 恢复服务可能能够使用网络流量来定位电子设备。 安全模块可以包括安全存储器,加密功能,定时器和用于在监视器上直接显示数据的支持。
-
公开(公告)号:US08464348B2
公开(公告)日:2013-06-11
申请号:US11022493
申请日:2004-12-22
CPC分类号: G06F21/10 , G06F21/123 , G06F21/50 , G06F21/725 , G06F2221/2135 , G06F2221/2137 , G06F2221/2153 , G06Q20/145 , G06Q20/341 , G06Q20/3552 , G07F7/082 , G07F7/1008 , G07F7/1016 , H04L9/3247 , H04L63/0823 , H04L67/125 , H04L67/34 , H04L2209/12 , H04L2209/56
摘要: A computer is adapted for pay-for-use operation by adding a isolated computing environment to a standard computer. The isolated computing environment may include a trusted non-volatile memory, a digital signature verification capability, a clock or timer and a logic circuit for triggering execution of a validation program responsive to the clock or timer. The isolated computing environment may be protected from tampering by physical or cryptographic mechanisms, or both. The validation program measures or monitors for non-compliant states of the computer and may enforce sanctions when non-compliant states of the computer are detected.
摘要翻译: 计算机适用于通过向标准计算机添加隔离的计算环境进行付费用途操作。 隔离的计算环境可以包括可信非易失性存储器,数字签名验证能力,时钟或定时器以及用于响应于时钟或定时器触发执行验证程序的逻辑电路。 孤立的计算环境可以通过物理或加密机制或两者来保护免受篡改。 验证程序测量或监视计算机的不符合条件的状态,并且可以在检测到计算机的非符合状态时执行制裁。
-
公开(公告)号:US20080183712A1
公开(公告)日:2008-07-31
申请号:US11668444
申请日:2007-01-29
IPC分类号: G06F17/30
CPC分类号: G06F21/6218 , G06F21/121 , G06F2221/2141 , G06F2221/2151
摘要: A security module manages authorization of additional computing resources, either additional processing power in a server, or additional servers in a server enclosure responsive to an authorized message. The authorized message may be generated at a management node and may include a provisioning license for use by the security module to set a duration for use of the additional computing resources. A baseboard management controller may be house the security module or each controllable resource may house an associated security module. The baseboard management controller may store the authorized message when the security module is not active and forward the message after the security module has been activated.
摘要翻译: 安全模块管理附加计算资源的授权,服务器中的附加处理能力或响应于授权消息的服务器机箱中的附加服务器。 授权消息可以在管理节点处生成,并且可以包括供安全许可证供安全模块使用以设置使用附加计算资源的持续时间。 基板管理控制器可以容纳安全模块,或者每个可控资源可以容纳相关联的安全模块。 当安全模块未激活时,基板管理控制器可以存储授权消息,并且在安全模块被激活之后转发该消息。
-
公开(公告)号:US07359807B2
公开(公告)日:2008-04-15
申请号:US11057266
申请日:2005-02-14
申请人: Alexander Frank , Mark C. Light , Martin H. Hall
发明人: Alexander Frank , Mark C. Light , Martin H. Hall
IPC分类号: G06F19/00
CPC分类号: G06Q20/127 , G06Q50/06 , G07F17/0014
摘要: A method and apparatus for saving, retrieving, and adjusting metering data uses information about the period between saves of the metering data to non-volatile memory and other information, for example, a number of recovery events experienced by the computer. The retrieved metering data may be adjusted according to the number of recovery events so that more frequent power interruptions cause metering data adjustments to favor a service provider. The time between data saves may be altered to increase the difficulty of timing attacks. Information about the time between saves, or the period of the save cycle, may also be stored with the metering data for use in the metering data restoration process.
摘要翻译: 用于保存,检索和调整计量数据的方法和装置使用关于计量数据保存到非易失性存储器和其他信息(例如计算机经历的许多恢复事件)之间的周期的信息。 可以根据恢复事件的数量来调整检索的测量数据,使得更频繁的电力中断导致计量数据调整以有利于服务提供商。 可以改变数据保存之间的时间,以增加定时攻击的难度。 关于保存之间的时间或保存周期的时间的信息也可以与计量数据一起存储以用于计量数据恢复处理。
-
公开(公告)号:US08781870B2
公开(公告)日:2014-07-15
申请号:US12464018
申请日:2009-05-11
申请人: Bradley W. Ward , David Lee , Martin H. Hall , Mark McNulty
发明人: Bradley W. Ward , David Lee , Martin H. Hall , Mark McNulty
IPC分类号: G06Q10/00
CPC分类号: G01C21/26 , G06Q10/063114 , G06Q10/109
摘要: A method is provided for prompting a user to perform PIM-related acts based on dynamic location data. The user's current location is received and a PIM item is selected from the user's PIM system. The user's current location is compared to the location of the selected PIM item. Based on the comparison, a suggested user fulfillment action for the PIM item is suggested to the user.
摘要翻译: 提供了一种提示用户基于动态位置数据执行PIM相关动作的方法。 接收用户的当前位置,并从用户的PIM系统中选择一个PIM项目。 将用户的当前位置与所选PIM项目的位置进行比较。 基于比较,向用户建议PIM项目的建议用户履行动作。
-
-
-
-
-
-
-
-
-