公开(公告)号：US20130346669A1

公开(公告)日：2013-12-26

申请号：US13528329

申请日：2012-06-20

申请人： Edmund B. Nightingale ,  Brian LaMacchia ,  Paul Barham

发明人： Edmund B. Nightingale ,  Brian LaMacchia ,  Paul Barham

IPC分类号： G06F12/02

CPC分类号： G06F8/65 ,  G06F9/44521 ,  G06F15/7871

摘要： A computer system includes one or more field programmable gate arrays as a coprocessor that can be shared among processes and programmed using hardware libraries. Given a set of hardware libraries, an update process periodically updates the libraries and/or adds new libraries. One or more update servers can provide information about libraries available for download, either in response to a request or by notifying systems using such libraries. New available libraries can be presented to a user for selection and download. Requests for updated libraries can arise in several ways, such as through polling for updates, exceptions from applications attempting to use libraries, and upon compilation of application code.

摘要翻译： 计算机系统包括作为协处理器的一个或多个现场可编程门阵列，其可以在进程之间共享并且使用硬件库进行编程。 给定一组硬件库，更新过程定期更新库和/或添加新库。 一个或多个更新服务器可以提供有关可供下载的库的信息，无论是响应请求还是通知使用此类库的系统。 可以将新的可用库呈现给用户进行选择和下载。 更新库的请求可以通过几种方式出现，例如通过轮询更新，尝试使用库的应用程序的异常以及编译应用程序代码。

公开(公告)号：US09424019B2

公开(公告)日：2016-08-23

申请号：US13528329

申请日：2012-06-20

申请人： Edmund B. Nightingale ,  Brian LaMacchia ,  Paul Barham

发明人： Edmund B. Nightingale ,  Brian LaMacchia ,  Paul Barham

IPC分类号： G06F9/445 ,  G06F15/78

CPC分类号： G06F8/65 ,  G06F9/44521 ,  G06F15/7871

摘要： A computer system includes one or more field programmable gate arrays as a coprocessor that can be shared among processes and programmed using hardware libraries. Given a set of hardware libraries, an update process periodically updates the libraries and/or adds new libraries. One or more update servers can provide information about libraries available for download, either in response to a request or by notifying systems using such libraries. New available libraries can be presented to a user for selection and download. Requests for updated libraries can arise in several ways, such as through polling for updates, exceptions from applications attempting to use libraries, and upon compilation of application code.

摘要翻译： 计算机系统包括作为协处理器的一个或多个现场可编程门阵列，其可以在进程之间共享并且使用硬件库进行编程。 给定一组硬件库，更新过程定期更新库和/或添加新库。 一个或多个更新服务器可以提供有关可供下载的库的信息，无论是响应请求还是通知使用这些库的系统。 可以将新的可用库呈现给用户进行选择和下载。 更新库的请求可以通过几种方式出现，例如通过轮询更新，尝试使用库的应用程序的异常以及编译应用程序代码。

公开(公告)号：US09230091B2

公开(公告)日：2016-01-05

申请号：US13528400

申请日：2012-06-20

申请人： Brian A. LaMacchia ,  Edmund B. Nightingale ,  Paul Barham

发明人： Brian A. LaMacchia ,  Edmund B. Nightingale ,  Paul Barham

IPC分类号： G06F21/76 ,  G06F21/44 ,  G06F21/85

CPC分类号： G06F21/445 ,  G06F21/76 ,  G06F21/85

摘要： Field programmable gate arrays can be used as a shared programmable co-processor resource in a general purpose computing system. Components of an FPGA are isolated to protect the FPGA and data transferred between the FPGA and other components of the computer system. For example, data written by the FPGA to memory is encrypted, and is decrypted within the FPGA when read back from memory. Data transferred between the FPGA and other components such as the CPU or GPU, whether directly or through memory, can similarly be encrypted using cryptographic keys known to the communicating components. Transferred data also can be digitally signed by the FPGA or other component to provide authentication. Code for programming the FPGA can be encrypted and signed by the author, loaded into the FPGA in an encrypted state, and then decrypted and authenticated by the FPGA itself, before programming the FPGA with the code.

摘要翻译： 现场可编程门阵列可用作通用计算系统中的共享可编程协处理器资源。 FPGA的组件是隔离的，用于保护FPGA和FPGA与计算机系统其他组件之间传输的数据。 例如，由FPGA写入存储器的数据被加密，并在从存储器读回时在FPGA内进行解密。 FPGA和GPU等其他组件（无论是直接还是通过内存）之间传输的数据可以使用通信组件已知的加密密钥进行加密。 传输的数据也可以由FPGA或其他组件进行数字签名，以提供认证。 编程FPGA的代码可以由作者进行加密和签名，在加密状态下加载到FPGA中，然后在使用代码编程FPGA之前，由FPGA自身对其进行解密和认证。

公开(公告)号：US20130346758A1

公开(公告)日：2013-12-26

申请号：US13528400

申请日：2012-06-20

申请人： Brian A. LaMacchia ,  Edmund B. Nightingale ,  Paul Barham

发明人： Brian A. LaMacchia ,  Edmund B. Nightingale ,  Paul Barham

IPC分类号： G06F21/00 ,  G06F12/14

CPC分类号： G06F21/445 ,  G06F21/76 ,  G06F21/85

摘要： Field programmable gate arrays can be used as a shared programmable co-processor resource in a general purpose computing system. Components of an FPGA are isolated to protect the FPGA and data transferred between the FPGA and other components of the computer system. For example, data written by the FPGA to memory is encrypted, and is decrypted within the FPGA when read back from memory. Data transferred between the FPGA and other components such as the CPU or GPU, whether directly or through memory, can similarly be encrypted using cryptographic keys known to the communicating components. Transferred data also can be digitally signed by the FPGA or other component to provide authentication. Code for programming the FPGA can be encrypted and signed by the author, loaded into the FPGA in an encrypted state, and then decrypted and authenticated by the FPGA itself, before programming the FPGA with the code.

摘要翻译： 现场可编程门阵列可用作通用计算系统中的共享可编程协处理器资源。 FPGA的组件是隔离的，用于保护FPGA和FPGA与计算机系统其他组件之间传输的数据。 例如，由FPGA写入存储器的数据被加密，并在从存储器读回时在FPGA内进行解密。 FPGA和GPU等其他组件（无论是直接还是通过内存）之间传输的数据可以使用通信组件已知的加密密钥进行加密。 传输的数据也可以由FPGA或其他组件进行数字签名，以提供认证。 编程FPGA的代码可以由作者进行加密和签名，在加密状态下加载到FPGA中，然后在使用代码编程FPGA之前，由FPGA自身对其进行解密和认证。

公开(公告)号：US08933931B2

公开(公告)日：2015-01-13

申请号：US13688093

申请日：2012-11-28

申请人： Alexandru Balan ,  Jason Flaks ,  Steve Hodges ,  Michael Isard ,  Oliver Williams ,  Paul Barham ,  Shahram Izadi ,  Otmar Hiliges ,  David Molyneaux ,  David Kim

发明人： Alexandru Balan ,  Jason Flaks ,  Steve Hodges ,  Michael Isard ,  Oliver Williams ,  Paul Barham ,  Shahram Izadi ,  Otmar Hiliges ,  David Molyneaux ,  David Kim

IPC分类号： G06T15/00 ,  G06K9/64 ,  H04N7/00 ,  G06T19/00

CPC分类号： G06T19/006 ,  G06F3/005 ,  G06F3/0304 ,  G09G3/003 ,  G09G2340/12 ,  G09G2340/125 ,  G09G2340/14 ,  G09G2354/00

摘要： A system and method for providing an augmented reality environment in which the environmental mapping process is decoupled from the localization processes performed by one or more mobile devices is described. In some embodiments, an augmented reality system includes a mapping system with independent sensing devices for mapping a particular real-world environment and one or more mobile devices. Each of the one or more mobile devices utilizes a separate asynchronous computing pipeline for localizing the mobile device and rendering virtual objects from a point of view of the mobile device. This distributed approach provides an efficient way for supporting mapping and localization processes for a large number of mobile devices, which are typically constrained by form factor and battery life limitations.

摘要翻译： 描述了一种用于提供增强现实环境的系统和方法，其中环境映射过程与由一个或多个移动设备执行的定位处理分离。 在一些实施例中，增强现实系统包括具有用于映射特定现实世界环境和一个或多个移动设备的独立感测设备的映射系统。 一个或多个移动设备中的每一个利用单独的异步计算流水线来定位移动设备并从移动设备的角度呈现虚拟对象。 这种分布式方法提供了一种有效的方式来支持大量移动设备的映射和定位过程，这些移动设备通常受形状因素和电池寿命限制的限制。

公开(公告)号：US08649380B2

公开(公告)日：2014-02-11

申请号：US13300608

申请日：2011-11-20

申请人： Richard Mortier ,  Rebecca Isaacs ,  Paul Barham

发明人： Richard Mortier ,  Rebecca Isaacs ,  Paul Barham

IPC分类号： H04L12/28

CPC分类号： H04L41/042 ,  H04L41/0213 ,  H04L41/12 ,  H04L43/0811 ,  H04L45/02 ,  H04L45/44

摘要： Hosts or end-systems residing at the edges of a network gather data about the traffic they transmit into and receive from the network. The network's routing protocol (typically a link-state protocol such as OSPF) is monitored and routing data or packets are used to recover the network's current status and topology. This data can be collected, fused, and maintained and a platform, preferably distributed, can be provided to query the data, thus enabling a variety of network management applications.

摘要翻译： 驻留在网络边缘的主机或终端系统收集关于它们从网络发送和接收的流量的数据。 监控网络的路由协议（通常是链路状态协议，如OSPF），并使用路由数据或数据包来恢复网络的当前状态和拓扑。 可以收集，融合和维护该数据，并且可以提供优选分布的平台来查询数据，从而实现各种网络管理应用。

公开(公告)号：US20120159595A1

公开(公告)日：2012-06-21

申请号：US12972526

申请日：2010-12-20

申请人： Paul Barham

发明人： Paul Barham

IPC分类号： G06F15/16 ,  G06F21/00 ,  H04L9/32

CPC分类号： H04L67/1095 ,  H04L63/08 ,  H04L67/06 ,  H04L67/2814

摘要： A data transfer system is described herein that allows data to be sent directly between two computing devices at the request of a third party client computer. The system allows a third party to initiate data transfers between computers in a network file system. This results in a significant speed increase because little to no data travels over the third party's potentially slower connection. The data transfer system provides a mechanism to determine if the direct transfer would be more efficient than two separate read and write operations, based on measurements of bandwidth and latency between each computing device. The data transfer system provides support for the source server to compress the data and the destination server to decompress the data at the direction of a third party client to further save network bandwidth.

摘要翻译： 本文描述了允许在第三方客户端计算机的请求下在两个计算设备之间直接发送数据的数据传送系统。 系统允许第三方在网络文件系统中的计算机之间启动数据传输。 这导致显着的速度增加，因为几乎没有数据传播通过第三方的潜在较慢的连接。 基于每个计算设备之间的带宽和延迟的测量，数据传输系统提供了一种机制，以确定直接传输是否比两个单独的读取和写入操作更有效。 数据传输系统提供对源服务器的压缩数据和目的服务器的支持，以在第三方客户端的方向解压缩数据，以进一步节省网络带宽。

公开(公告)号：US20120159156A1

公开(公告)日：2012-06-21

申请号：US12972534

申请日：2010-12-20

申请人： Paul Barham ,  Joseph N. Figueroa

发明人： Paul Barham ,  Joseph N. Figueroa

IPC分类号： H04L29/06 ,  G01S19/42

CPC分类号： G06F21/6218 ,  G06F21/604 ,  G06F2221/0708 ,  G06F2221/2111 ,  H04L63/107

摘要： A secure location system is described herein that leverages location-based services and hardware to make access decisions. Many mobile computers have location devices, such as GPS. They also have a trusted platform module (TPM) or other security device. Currently GPS location data is made directly accessible to untrusted application code using a simple protocol. The secure location system provides a secure mechanism whereby the GPS location of a computer at a specific time can be certified by the operating system kernel and TPM. The secure location system logs user activity with a label indicating the geographic location of the computing device at the time of the activity. The secure location system can provide a difficult to forge, time-stamped location through a combination of kernel-mode GPS access and TPM security hardware. Thus, the secure location system incorporates secure location information into authorization and other operating system decisions.

摘要翻译： 本文描述了利用基于位置的服务和硬件来进行访问决定的安全定位系统。 许多移动计算机具有诸如GPS的定位设备。 它们还具有可信平台模块（TPM）或其他安全设备。 目前，GPS位置数据可以使用简单的协议直接访问不受信任的应用程序代码。 安全定位系统提供了一种安全机制，由此可以通过操作系统内核和TPM来认证计算机在特定时间的GPS位置。 安全位置系统使用指示活动时计算设备的地理位置的标签记录用户活动。 安全定位系统可以通过内核模式GPS访问和TPM安全硬件的组合来提供难以伪造的时间戳位置。 因此，安全定位系统将安全位置信息合并到授权和其他操作系统决策中。

公开(公告)号：US09686355B2

公开(公告)日：2017-06-20

申请号：US12972526

申请日：2010-12-20

申请人： Paul Barham

发明人： Paul Barham

IPC分类号： G06F15/16 ,  H04L29/08 ,  H04L29/06

CPC分类号： H04L67/1095 ,  H04L63/08 ,  H04L67/06 ,  H04L67/2814

摘要： A data transfer system is described herein that allows data to be sent directly between two computing devices at the request of a third party client computer. The system allows a third party to initiate data transfers between computers in a network file system. This results in a significant speed increase because little to no data travels over the third party's potentially slower connection. The data transfer system provides a mechanism to determine if the direct transfer would be more efficient than two separate read and write operations, based on measurements of bandwidth and latency between each computing device. The data transfer system provides support for the source server to compress the data and the destination server to decompress the data at the direction of a third party client to further save network bandwidth.

公开(公告)号：US09268613B2

公开(公告)日：2016-02-23

申请号：US12972563

申请日：2010-12-20

申请人： Paul Barham ,  Joseph N. Figueroa

发明人： Paul Barham ,  Joseph N. Figueroa

IPC分类号： G06F9/46 ,  G06F9/50

CPC分类号： G06F9/5044 ,  G06F9/5066 ,  G06F2209/501 ,  G06F2209/503

摘要： A personal datacenter system is described herein that provides a framework for leveraging multiple heterogeneous computers in a dynamically changing environment together as an ad-hoc cluster for performing parallel processing of various tasks. A home environment is much more heterogeneous and dynamic than a typical datacenter, and typical datacenter scheduling strategies do not work well for these types of small clusters. Machines in a home are likely to be powered on and off, be removed and taken elsewhere, and be connected by an ad-hoc network topology with a mix of wired and wireless technologies. The personal data center system provides components to overcome these differences. The system identifies a dynamically available set of machines, characterizes their performance, discovers the network topology, and monitors the available communications bandwidth between machines. This information is then used to compute an efficient execution plan for data-parallel and/or High Performance Computing (HPC)-style applications.

摘要翻译： 本文描述了个人数据中心系统，其提供了用于在动态变化的环境中一起作为用于执行各种任务的并行处理的自组群的多个异构计算机的框架。 家庭环境比典型的数据中心更加异构和动态，而典型的数据中心调度策略对于这些类型的小型集群来说并不奏效。 家庭中的机器可能被开启和关闭，被移除并在其他地方使用，并通过有线和无线技术的组合通过自组织网络拓扑连接。 个人数据中心系统提供组件来克服这些差异。 系统识别动态可用的机器集，表征其性能，发现网络拓扑，并监视机器之间可用的通信带宽。 然后，该信息用于计算数据并行和/或高性能计算（HPC）应用程序的高效执行计划。