公开(公告)号：US20190158606A1

公开(公告)日：2019-05-23

申请号：US16235137

申请日：2018-12-28

申请人： FRANCESC GUIM BERNAT ,  PATRICK BOHAN ,  KSHITIJ ARUN DOSHI ,  BRINDA GANESH ,  ANDREW J. HERDRICH ,  MONICA KENGUVA ,  KARTHIK KUMAR ,  PATRICK G. KUTCH ,  FELIPE PASTOR BENEYTO ,  RASHMIN PATEL ,  SURAJ PRABHAKARAN ,  NED M. SMITH ,  PETAR TORRE ,  ALEXANDER VUL

发明人： FRANCESC GUIM BERNAT ,  PATRICK BOHAN ,  KSHITIJ ARUN DOSHI ,  BRINDA GANESH ,  ANDREW J. HERDRICH ,  MONICA KENGUVA ,  KARTHIK KUMAR ,  PATRICK G. KUTCH ,  FELIPE PASTOR BENEYTO ,  RASHMIN PATEL ,  SURAJ PRABHAKARAN ,  NED M. SMITH ,  PETAR TORRE ,  ALEXANDER VUL

IPC分类号： H04L29/08 ,  H04L12/26 ,  H04L12/911 ,  H04L12/24

摘要： An architecture to perform resource management among multiple network nodes and associated resources is disclosed. Example resource management techniques include those relating to: proactive reservation of edge computing resources; deadline-driven resource allocation; speculative edge QoS pre-allocation; and automatic QoS migration across edge computing nodes. In a specific example, a technique for service migration includes: identifying a service operated with computing resources in an edge computing system, involving computing capabilities for a connected edge device with an identified service level; identifying a mobility condition for the service, based on a change in network connectivity with the connected edge device; and performing a migration of the service to another edge computing system based on the identified mobility condition, to enable the service to be continued at the second edge computing apparatus to provide computing capabilities for the connected edge device with the identified service level.

公开(公告)号：US20160350555A1

公开(公告)日：2016-12-01

申请号：US14369275

申请日：2013-12-23

申请人： WILLIAM C. DELEEUW ,  NED M. SMITH

发明人： WILLIAM C. DELEEUW ,  NED M. SMITH

IPC分类号： G06F21/62 ,  G06F7/58 ,  G06F17/30

CPC分类号： G06F21/6254 ,  G06F7/58 ,  G06F17/30336 ,  G06F17/30528 ,  G06F17/30867 ,  G06F21/6245

摘要： Improved techniques for context information management are described. In one embodiment, for example, an apparatus may comprise a processor element, a selection component for execution by the processor element to select a context information item, a random number generator to generate a random number, and an anonymization component for execution by the processor element to generate a random key based on the random number and send a message associating the context information item with the random key. Other embodiments are described and claimed.

摘要翻译： 描述了改进的上下文信息管理技术。 在一个实施例中，例如，设备可以包括处理器元件，用于由处理器元件执行以选择上下文信息项的选择组件，用于生成随机数的随机数生成器，以及用于由处理器执行的匿名组件 元素，以基于随机数生成随机密钥，并发送将上下文信息项与随机密钥相关联的消息。 描述和要求保护其他实施例。

公开(公告)号：US20150351068A1

公开(公告)日：2015-12-03

申请号：US14294345

申请日：2014-06-03

申请人： WILLIAM C. DELEEUW ,  NED M. SMITH

发明人： WILLIAM C. DELEEUW ,  NED M. SMITH

IPC分类号： H04W64/00 ,  H04L29/08

CPC分类号： H04W64/00 ,  G06F12/1408 ,  G06F2212/1052 ,  H04L67/18 ,  H04W4/02

摘要： Apparatus, systems, and/or methods to temporally and spatially bound personal information. A pseudo random number corresponding to time based on a random number time seed and generate a pseudo random number corresponding to location based on a random number location seed may be generated. In addition, the pseudo random number corresponding to time may be mixed with the pseudo random number corresponding to location to generate a combined pseudo random number corresponding to a specific user at a specific location at a specific time. The combined pseudo random number may be used to store and/or read personal information in an anonymous manner.

摘要翻译： 用于时间和空间结合个人信息的装置，系统和/或方法。 可以生成对应于基于随机数时间种子的时间的伪随机数，并且基于随机数位置种子生成与位置相对应的伪随机数。 此外，对应于时间的伪随机数可以与对应于位置的伪随机数混合，以在特定时间产生与特定用户在特定位置对应的组合伪随机数。 组合的伪随机数可用于以匿名方式存储和/或读取个人信息。

公开(公告)号：US20170185771A1

公开(公告)日：2017-06-29

申请号：US14757946

申请日：2015-12-24

申请人： MINGQIU SUN ,  RAJESH POORNACHANDRAN ,  NED M. SMITH ,  VINCENT J. ZIMMER ,  SVEN SCHRECKER ,  GOPINATTH SELVARAJE

发明人： MINGQIU SUN ,  RAJESH POORNACHANDRAN ,  NED M. SMITH ,  VINCENT J. ZIMMER ,  SVEN SCHRECKER ,  GOPINATTH SELVARAJE

IPC分类号： G06F21/56 ,  H04L29/06

CPC分类号： G06F21/56 ,  G06F21/57 ,  H04L63/1425

摘要： Various embodiments are generally directed to techniques for monitoring the integrity of an operating system (OS) security routine that checks the integrity of an OS and/or one or more application routines. An apparatus may include a first processor component to execute an operating system (OS) in a first operating environment within a processing device and to execute an OS security routine to recurringly verify an integrity of the OS; a challenge component within a second operating environment within the processing device that is isolated from the first operating environment to recurringly challenge the OS security routine to provide a measure of itself; and a response component within the second operating environment to analyze each measure provided by the OS security routine and an elapsed time to receive each measure from the OS security routine to verify an integrity of the OS security routine.

公开(公告)号：US20160285870A1

公开(公告)日：2016-09-29

申请号：US14666202

申请日：2015-03-23

申请人： RAJESH POORNACHANDRAN ,  NED M. SMITH

发明人： RAJESH POORNACHANDRAN ,  NED M. SMITH

IPC分类号： H04L29/06 ,  G06F1/32

CPC分类号： H04L63/0876 ,  G06F1/3287 ,  G06F21/10 ,  G06F21/81 ,  H04L63/0428 ,  H04L63/061

摘要： Various embodiments are generally directed to the provision re-provision of encryption keys to access encrypted media. Encryption keys may be provisioned and re-provisioned to components, such as, processor elements, of a system based on power state transitions of the components. An encryption key may be provisioned to a component and then re-provisioned to the component before or after the component transitions from an active power state to another power state and back to the active power state.

摘要翻译： 各种实施例通常涉及提供重新提供加密密钥以访问加密的媒体。 可以基于组件的功率状态转换来将加密密钥设置并重新提供给系统的组件，例如处理器元件。 加密密钥可以被提供给组件，然后在组件从有功功率状态转换到另一个功率状态之前或之后被重新提供给组件，并且返回到有功功率状态。

公开(公告)号：US20160285631A1

公开(公告)日：2016-09-29

申请号：US14668634

申请日：2015-03-25

申请人： WILLIAM C. DELEEUW ,  NED M. SMITH

发明人： WILLIAM C. DELEEUW ,  NED M. SMITH

IPC分类号： H04L9/08 ,  G06F7/58 ,  H04L29/06

CPC分类号： H04L9/0869 ,  G06F7/582 ,  G06F21/6218 ,  H04L63/0428 ,  H04L2209/24

摘要： Various embodiments are directed to techniques for controlling access to data in a decentralized manner. An apparatus includes an apportioning component to divide an item of data into multiple portions based on an organizational structure of the item of data; a tree component to generate a PRN tree including a multitude of nodes and a branching structure based on the organizational structure, the multitude including at least one branching node and multiple leaf nodes that correspond to the multiple portions; a PRN component to generate a PRN for each node of the multitude, the PRN component to use a PRN of a branching node of the PRN tree to generate a PRN for a leaf node that depends therefrom; and a communications component to transmit the multiple portions and multiple addresses based on PRNs of leaf nodes of the PRN tree to a server. Other embodiments are described and claimed.

摘要翻译： 各种实施例涉及用于以分散方式控制对数据的访问的技术。 一种装置，包括分配组件，用于基于所述数据项的组织结构将数据项划分成多个部分; 生成包括多个节点的PRN树和基于组织结构的分支结构的树组件，所述多个包括对应于所述多个部分的至少一个分支节点和多个叶节点; PRN组件，用于为所述众多的每个节点生成PRN，所述PRN组件使用所述PRN树的分支节点的PRN来生成与其相关的叶节点的PRN; 以及基于PRN树的叶节点的PRN将多个部分和多个地址发送到服务器的通信部件。 描述和要求保护其他实施例。

公开(公告)号：US20140032907A1

公开(公告)日：2014-01-30

申请号：US14051364

申请日：2013-10-10

申请人： NED M. SMITH ,  STEVEN E. WELLS ,  ROBERT W. STRONG

发明人： NED M. SMITH ,  STEVEN E. WELLS ,  ROBERT W. STRONG

IPC分类号： H04L9/32

CPC分类号： H04L9/32 ,  G06F21/44 ,  G06F21/629 ,  G06F21/70 ,  G06F2221/2107 ,  H04L9/3252

摘要： A protocol provides authentication of peripheral devices by a computing device to which the peripheral device connects. Computing devices include a verifier with a public key that authenticates multiple associated private keys. Private keys are embedded on peripheral devices. When the verifier is able to authenticate a connected peripheral, particular functionality is enabled that may not be enabled for peripherals that do not authenticate.

摘要翻译： 协议通过外围设备连接的计算设备提供对外围设备的认证。 计算设备包括具有认证多个相关私钥的公开密钥的验证者。 私钥嵌入在外围设备上。 当验证者能够对连接的外围设备进行身份验证时，启用特定的功能，这些功能可能无法为不进行身份验证的外设启用。

公开(公告)号：US20130347099A1

公开(公告)日：2013-12-26

申请号：US13532852

申请日：2012-06-26

申请人： NED M. SMITH

发明人： NED M. SMITH

IPC分类号： G06F21/00

CPC分类号： G06F21/316 ,  G06F21/32

摘要： Various embodiments are generally directed to use of a keyboard as a biometric authentication device. In one embodiment, for example, an apparatus comprises a processor circuit executing a sequence of instructions causing the processor circuit to receive a signal indicative of a keypress of at least one key of a keyboard communicatively coupled to the apparatus, and indicative of at least one physical characteristic associated with the keypress; compare the at least one physical characteristic to at least one stored physical characteristic associated with at least one authorized user of the apparatus; and determine if the keypress is associated with at least one authorized user of the apparatus based on the comparison. Other embodiments are described and claimed herein.

摘要翻译： 各种实施例通常涉及使用键盘作为生物认证设备。 在一个实施例中，例如，一种装置包括处理器电路，其执行指令序列，使得处理器电路接收指示通信地耦合到该设备的键盘的至少一个键的按键的信号，并指示至少一个 与按键相关的物理特性; 将所述至少一个物理特性与至少一个与所述设备的至少一个授权用户相关联的存储的物理特征进行比较; 并且基于所述比较来确定所述按键是否与所述装置的至少一个授权用户相关联。 在此描述和要求保护的其它实施例。

公开(公告)号：US20130347058A1

公开(公告)日：2013-12-26

申请号：US13530773

申请日：2012-06-22

申请人： NED M. SMITH ,  SIMON P. JOHNSON ,  STEVE ORRIN ,  WILLARD M. WISEMAN

发明人： NED M. SMITH ,  SIMON P. JOHNSON ,  STEVE ORRIN ,  WILLARD M. WISEMAN

IPC分类号： G06F21/00

CPC分类号： H04L63/107 ,  G06F21/57 ,  G06F21/575 ,  G06F2221/2111 ,  H04W4/021 ,  H04W12/06 ,  H04W12/08

摘要： In one embodiment, a method includes determining a location of a system responsive to location information received from at least one of a location sensor and a wireless device of the system, associating the location with a key present in the system to generate an authenticated location of the system, and determining whether the authenticated location is within a geofence boundary indicated in a location portion of a launch control policy (LCP) that provides a geographic-specific policy. Other embodiments are described and claimed.

摘要翻译： 在一个实施例中，一种方法包括响应于从系统的位置传感器和无线设备中的至少一个接收的位置信息来确定系统的位置，将位置与系统中存在的密钥相关联，以产生认证位置 并且确定所认证的位置是否在提供地理特定策略的发射控制策略（LCP）的位置部分中指示的地理围栏边界内。 描述和要求保护其他实施例。

公开(公告)号：US20160182497A1

公开(公告)日：2016-06-23

申请号：US14574847

申请日：2014-12-18

申请人： NED M. SMITH

发明人： NED M. SMITH

IPC分类号： H04L29/06 ,  H04L9/32

CPC分类号： H04L63/0853 ,  H04L9/3226 ,  H04L63/0407 ,  H04L63/0823

摘要： Devices and methods may provide for generating and/or using a trusted ephemeral identifier (TEID) to create a group for a service, and/or to provide the service. A verifier device may assign a value to a group that is to be created to provide the service, wherein the value may identify the group and may be issued to the prover device for use to generate the TEID value that is unique to the prover device and to participation of the prover device in the group. In addition, a prover device may generate the TEID value, wherein the TEID may be derived from a combination of a unique value that may be generated in a trusted execution environment (TEE) of the prover device and the value that may identify the group.

摘要翻译： 设备和方法可以提供用于生成和/或使用信任短暂标识符（TEID）来创建用于服务的组，和/或提供服务。 验证器设备可以将值分配给要被创建以提供服务的组，其中该值可以标识该组，并且可以被发布到该认证器设备用于生成该证明设备唯一的TEID值，以及 证明者设备参与该组。 另外，证明者设备可以生成TEID值，其中TEID可以从可以在证明者设备的可信执行环境（TEE）中生成的唯一值和可以标识该组的值的组合导出。