公开(公告)号：US09575903B2

公开(公告)日：2017-02-21

申请号：US13136666

申请日：2011-08-04

Applicant: Daniel A. Gerrity ,  Clarence T. Tegreene

Inventor： Andrew F. Glew ,  Daniel A. Gerrity ,  Clarence T. Tegreene

IPC: G06F21/00 ,  G06F12/14 ,  G06F21/60 ,  G06F21/71 ,  G06F21/78 ,  G06F21/79 ,  G06F21/86

CPC classification number: G06F12/1408 ,  G06F21/602 ,  G06F21/71 ,  G06F21/78 ,  G06F21/79 ,  G06F21/86 ,  G06F2221/2149

Abstract: Embodiments of memory devices, computer systems, security apparatus, data handling systems, and the like, and associated methods facilitate security in a system incorporating the concept of a security perimeter which combines cryptographic and physical security. The memory device can comprise a memory operable to store information communicated with a processor, and a logic operable to create at least one cryptographic security perimeter enclosing at least one selected region of the memory and operable to manage information communication between the processor and the at least one selected region of the memory.

Abstract translation: 存储设备，计算机系统，安全设备，数据处理系统等的实施例以及相关联的方法有助于系统中的安全性，该系统结合了加密和物理安全性的安全周界的概念。 存储器设备可以包括可操作以存储与处理器通信的信息的存储器，以及可操作用于创建至少一个包围存储器的至少一个选定区域的密码安全周界的逻辑，并可操作以管理处理器与至少 一个选择的记忆区域。

公开(公告)号：US09443085B2

公开(公告)日：2016-09-13

申请号：US13199368

申请日：2011-08-26

Applicant: Daniel A. Gerrity ,  Clarence T. Tegreene

Inventor： Andrew F. Glew ,  Daniel A. Gerrity ,  Clarence T. Tegreene

IPC: G06F21/00 ,  H04L12/00 ,  G06F21/57 ,  H04L29/06

CPC classification number: G06F21/577 ,  H04L63/14

Abstract: A method operable in a computing device adapted for handling security risk can use taint accumulation to detect intrusion. The method can comprise receiving a plurality of taint indicators indicative of potential security risk from a plurality of distinct sources at distinct times, and accumulating the plurality of taint indicators independently using a corresponding plurality of distinct accumulation functions. Security risk can be assessed according to a risk assessment function that is cumulative of the plurality of taint indicators.

公开(公告)号：US09348985B2

公开(公告)日：2016-05-24

申请号：US13373684

申请日：2011-11-23

Applicant: Marc E. Davis ,  Matthew G. Dyor ,  Daniel A. Gerrity ,  Xuedong Huang ,  Roderick A. Hyde ,  Royce A. Levien ,  Richard T. Lord ,  Robert W. Lord ,  Mark A. Malamud ,  Nathan P. Myhrvold ,  Clarence T. Tegreene

Inventor： Marc E. Davis ,  Matthew G. Dyor ,  Daniel A. Gerrity ,  Xuedong Huang ,  Roderick A. Hyde ,  Royce A. Levien ,  Richard T. Lord ,  Robert W. Lord ,  Mark A. Malamud ,  Nathan P. Myhrvold ,  Clarence T. Tegreene

IPC: G06F21/31

CPC classification number: G06F21/316

Abstract: A computationally implemented method includes, but is not limited to: determining a behavioral fingerprint associated with a network-accessible user, the behavioral fingerprint providing a current status of the network-accessible user; and controlling one or more devices automatically as a function of the determined behavioral fingerprint and a direction received from the network-accessible user. In addition to the foregoing, other method aspects are described in the claims, drawings, and text forming a part of the present disclosure.

公开(公告)号：US09230261B2

公开(公告)日：2016-01-05

申请号：US13410151

申请日：2012-03-01

Applicant: William Gates ,  Daniel A. Gerrity ,  Paul Holman ,  Roderick A. Hyde ,  Muriel Y. Ishikawa ,  Edward K. Y. Jung ,  Jordin T. Kare ,  Royce A. Levien ,  Richard T. Lord ,  Robert W. Lord ,  Mark A. Malamud ,  Nathan P. Myhrvold ,  John D. Rinaldo, Jr. ,  Keith D. Rosema ,  Clarence T. Tegreene ,  Thomas A. Weaver ,  Lowell L. Wood, Jr.

Inventor： William Gates ,  Daniel A. Gerrity ,  Paul Holman ,  Roderick A. Hyde ,  Muriel Y. Ishikawa ,  Edward K. Y. Jung ,  Jordin T. Kare ,  Royce A. Levien ,  Richard T. Lord ,  Robert W. Lord ,  Mark A. Malamud ,  Nathan P. Myhrvold ,  John D. Rinaldo, Jr. ,  Keith D. Rosema ,  Clarence T. Tegreene ,  Thomas A. Weaver ,  Lowell L. Wood, Jr.

IPC: G06Q30/02 ,  H04R1/02

CPC classification number: G06Q30/02 ,  H04R1/028 ,  H04R2430/23

Abstract: According to various embodiments, a mobile device continuously and/or automatically scans a user environment for containing non-human-readable data. The mobile device may continuously and/or automatically scan the environment for tags without being specifically directed at a particular tag. The mobile device may be adapted to scan for audio tags, radio frequency tags, and/or image tags. The mobile device may be configured to scan for and identify tags within the user environment that satisfy a user preference. The mobile device may perform an action in response to identifying a tag that satisfies a user preference. The mobile device may be configured to scan for a wide variety of tags, including tags in the form of quick response codes, steganographic content, audio watermarks, audio outside of a human audible range, radio frequency identification tags, long wavelength identification tags, near field communication tags, and/or a Memory Spot device.

Abstract translation: 根据各种实施例，移动设备连续地和/或自动扫描用户环境以包含非人可读数据。 移动设备可以连续地和/或自动扫描环境而不特别指向特定的标签。 移动设备可以适于扫描音频标签，射频标签和/或图像标签。 移动设备可以被配置为扫描并识别满足用户偏好的用户环境内的标签。 移动设备可以响应于识别满足用户偏好的标签来执行动作。 移动设备可以被配置为扫描各种标签，包括快速响应代码，隐写内容，音频水印，人类可听范围外的音频，射频识别标签，长波长识别标签 现场通信标签和/或存储点设备。

公开(公告)号：US08955111B2

公开(公告)日：2015-02-10

申请号：US13200547

申请日：2011-09-24

Applicant: Andrew F. Glew ,  Daniel A. Gerrity ,  Clarence T. Tegreene

Inventor： Andrew F. Glew ,  Daniel A. Gerrity ,  Clarence T. Tegreene

IPC: G06F21/00 ,  G06F21/57 ,  G06F21/55

CPC classification number: G06F21/577 ,  G06F21/552

Abstract: A processor is adapted to manage security risk by updating and monitoring a taint storage element in response to receipt of taint indicators, and responding to predetermined taint conditions detecting by the monitoring. The processor can be operable to execute instructions of a defined instruction set architecture and comprises an instruction of the instruction set architecture operable to access data from a source and operable to receive a taint indicator indicative of potential security risk associated with the data. The processor can further comprise a taint storage element operable for updating in response to receipt of the taint indicator and logic. The logic can be operable to update the taint storage element, process the taint storage element, determine a security risk condition based on the processing of the taint storage element, and respond to the security risk condition.

Abstract translation: 处理器适于通过响应于接收到污点指示器而更新和监视污染存储元件以及响应由监视检测到的预定污点状况来管理安全风险。 处理器可操作以执行定义的指令集架构的指令，并且包括可操作以从源访问数据并且可操作以接收指示与数据相关联的潜在安全风险的污点指示符的指令集结构的指令。 该处理器可以进一步包括一个可用于响应于接收到该污点指示符和逻辑而进行更新的污物存储元件。 逻辑可以用于更新污染存储元件，处理污染存储元件，基于污染存储元件的处理来确定安全风险状况，并响应安全风险状况。

公开(公告)号：US08813085B2

公开(公告)日：2014-08-19

申请号：US13317826

申请日：2011-10-28

Applicant: Andrew F. Glew ,  Daniel A. Gerrity ,  Clarence T. Tegreene

Inventor： Andrew F. Glew ,  Daniel A. Gerrity ,  Clarence T. Tegreene

IPC: G06F9/46 ,  G06F9/455

CPC classification number: G06F9/4881 ,  G06F2209/485

Abstract: An embodiment or embodiments of an information handling apparatus can use an entitlement vector to simultaneously manage and activate entitlement of objects and processes to various resources independently from one another. An information handling apparatus can comprise an entitlement vector operable to specify resources used by at least one object of a plurality of object. The information handling apparatus can further comprise a scheduler operable to schedule a plurality of threads based at least partly on entitlement as specified by the entitlement vector.

Abstract translation: 信息处理设备的一个或多个实施例可以使用授权向量来独立地彼此管理和激活对象和过程对各种资源的授权。 信息处理装置可以包括可用于指定由多个对象的至少一个对象使用的资源的授权向量。 信息处理装置还可以包括调度器，其可操作以至少部分地基于授权向量所指定的授权来调度多个线程。

公开(公告)号：US08708223B2

公开(公告)日：2014-04-29

申请号：US13410146

申请日：2012-03-01

Applicant: William Gates ,  Daniel A. Gerrity ,  Paul Holman ,  Roderick A. Hyde ,  Muriel Y. Ishikawa ,  Edward K. Y. Jung ,  Jordin T. Kare ,  Royce A. Levien ,  Richard T. Lord ,  Robert W. Lord ,  Mark A. Malamud ,  Nathan P. Myhrvold ,  John D. Rinaldo, Jr. ,  Keith D. Rosema ,  Clarence T. Tegreene ,  Thomas A. Weaver ,  Lowell L. Wood, Jr.

Inventor： William Gates ,  Daniel A. Gerrity ,  Paul Holman ,  Roderick A. Hyde ,  Muriel Y. Ishikawa ,  Edward K. Y. Jung ,  Jordin T. Kare ,  Royce A. Levien ,  Richard T. Lord ,  Robert W. Lord ,  Mark A. Malamud ,  Nathan P. Myhrvold ,  John D. Rinaldo, Jr. ,  Keith D. Rosema ,  Clarence T. Tegreene ,  Thomas A. Weaver ,  Lowell L. Wood, Jr.

IPC: G06F17/00 ,  G06K7/00 ,  G06K7/10 ,  G06K19/00 ,  G06K19/06

CPC classification number: G06F17/30 ,  G06F3/002 ,  G06F3/011 ,  G06K7/10386

Abstract: According to various embodiments, a mobile device continuously and/or automatically scans a user environment for tags containing non-human-readable data. The mobile device may continuously and/or automatically scan the environment for tags without being specifically directed at a particular tag. The mobile device may be adapted to scan for audio tags, radio frequency tags, and/or image tags. The mobile device may be configured to scan for and identify tags within the user environment that satisfy a user preference. The mobile device may perform an action in response to identifying a tag that satisfies a user preference. The mobile device may be configured to scan for a wide variety of tags, including tags in the form of quick response codes, steganographic content, audio watermarks, audio outside of a human audible range, radio frequency identification tags, long wavelength identification tags, near field communication tags, and/or a Memory Spot device.

Abstract translation: 根据各种实施例，移动设备连续地和/或自动地扫描用户环境，用于包含非人可读数据的标签。 移动设备可以连续地和/或自动扫描环境而不特别指向特定的标签。 移动设备可以适于扫描音频标签，射频标签和/或图像标签。 移动设备可以被配置为扫描并识别满足用户偏好的用户环境内的标签。 移动设备可以响应于识别满足用户偏好的标签来执行动作。 移动设备可以被配置为扫描各种标签，包括快速响应代码，隐写内容，音频水印，人类可听范围外的音频，射频识别标签，长波长识别标签 现场通信标签和/或存储点设备。

公开(公告)号：US08689350B2

公开(公告)日：2014-04-01

申请号：US13373680

申请日：2011-11-23

Applicant: Marc E. Davis ,  Matthew G. Dyor ,  Daniel A. Gerrity ,  Xuedong Huang ,  Roderick A. Hyde ,  Royce A. Levien ,  Richard T. Lord ,  Robert W. Lord ,  Mark A. Malamud ,  Nathan P. Myhrvold ,  Clarence T. Tegreene

Inventor： Marc E. Davis ,  Matthew G. Dyor ,  Daniel A. Gerrity ,  Xuedong Huang ,  Roderick A. Hyde ,  Royce A. Levien ,  Richard T. Lord ,  Robert W. Lord ,  Mark A. Malamud ,  Nathan P. Myhrvold ,  Clarence T. Tegreene

IPC: G06F12/14 ,  H04L12/22

CPC classification number: G06F21/316 ,  G06F21/88

Abstract: A computationally implemented method includes, but is not limited to: determining a behavioral fingerprint associated with a network accessible user of one or more devices, the behavioral fingerprint providing a current status of the network accessible user; and disabling the one or more devices automatically as a function of the determined behavioral fingerprint. In addition to the foregoing, other method aspects are described in the claims, drawings, and text forming a part of the present disclosure.

Abstract translation: 计算实现的方法包括但不限于：确定与一个或多个设备的网络可访问用户相关联的行为指纹，所述行为指纹提供所述网络可访问用户的当前状态; 以及根据确定的行为指纹自动禁用一个或多个设备。 除了上述之外，在权利要求，附图和形成本公开的一部分的文本中描述了其它方法方面。

公开(公告)号：US20130111491A1

公开(公告)日：2013-05-02

申请号：US13317834

申请日：2011-10-28

Applicant: Daniel A. Gerrity ,  Clarence T. Tegreene

Inventor： Andrew F. Glew ,  Daniel A. Gerrity ,  Clarence T. Tegreene

IPC: G06F9/50 ,  G06F11/30

CPC classification number: G06F11/3409 ,  G06F9/5005 ,  G06F11/30 ,  G06F11/3058 ,  G06F2209/508

Abstract: An embodiment or embodiments of an information handling apparatus are adapted to facilitate resource allocation using an entitlement vector comprising multiple fields that are respectively directed to multiple different resources or capabilities. In illustrative embodiments, an information handling apparatus can comprise an entitlement vector configured with a plurality of bit fields at least partly corresponding to a plurality of resources and operable to specify the resources used by at least one object of a plurality of a plurality of objects. The information handling apparatus can further comprise logic operable to allocate the resources to the at least one object based on entitlement as specified by the entitlement vector.

Abstract translation: 信息处理装置的实施例或实施例适于使用包括分别针对多个不同资源或能力的多个字段的授权向量促进资源分配。 在说明性实施例中，信息处理设备可以包括配置有至少部分对应于多个资源的多个位域的授权向量，并且可操作以指定由多个对象中的至少一个对象使用的资源。 信息处理装置还可以包括可操作以基于授权向量所指定的授权将资源分配给至少一个对象的逻辑。

公开(公告)号：US20130104203A1

公开(公告)日：2013-04-25

申请号：US13475564

申请日：2012-05-18

Applicant: Marc E. Davis ,  Matthew G. Dyor ,  Daniel A. Gerrity ,  Xuedong Huang ,  Roderick A. Hyde ,  Royce A. Levien ,  Richard T. Lord ,  Robert W. Lord ,  Mark A. Malamud ,  Nathan P. Myhrvold ,  Clarence T. Tegreene

Inventor： Marc E. Davis ,  Matthew G. Dyor ,  Daniel A. Gerrity ,  Xuedong Huang ,  Roderick A. Hyde ,  Royce A. Levien ,  Richard T. Lord ,  Robert W. Lord ,  Mark A. Malamud ,  Nathan P. Myhrvold ,  Clarence T. Tegreene

IPC: H04L29/06 ,  H04L9/32

CPC classification number: G06F21/62 ,  G06F21/316 ,  G06F21/32 ,  G06F21/554 ,  G06F2221/2113 ,  H04L9/3231 ,  H04L9/3263 ,  H04L63/08 ,  H04L63/0861 ,  H04L63/102 ,  H04L63/105

Abstract: A computationally-implemented method, for certain example embodiments, may include, but is not limited to: determining that a first user of a computing device is associated with the computing device; and determining a level of authentication associated with the first user via the computing device, the level of authentication at least partially based on a behavioral fingerprint. In addition to the foregoing, other example aspects are described in the claims, drawings, and written description forming a part of the present disclosure.

Abstract translation: 对于某些示例性实施例，计算实现的方法可以包括但不限于：确定计算设备的第一用户与计算设备相关联; 以及经由所述计算设备确定与所述第一用户相关联的认证级别，所述认证级别至少部分地基于行为指纹。 除了上述之外，在构成本公开的一部分的权利要求，附图和书面描述中描述了其它示例方面。