公开(公告)号：US20020023032A1

公开(公告)日：2002-02-21

申请号：US09932476

申请日：2001-08-17

Applicant: Hewlett-Packard Company

Inventor： Siani Lynne Pearson ,  Liqun Chen

IPC: G06F017/60

CPC classification number: G07F7/1008 ,  G06Q20/20 ,  G06Q20/341 ,  G06Q20/4097 ,  G06Q40/00 ,  G07F7/005

Abstract: A method for allowing a financial transaction to be performed using a electronic system, the method comprising interrogating an electronic transaction terminal with an electronic security device to obtain an integrity metric for the electronic financial transaction terminal; determining if the transaction terminal is a trusted terminal based upon the integrity metric; allowing financial transaction data to be input into the transaction terminal if the transaction terminal is identified as a trusted terminal.

Abstract translation: 一种允许使用电子系统执行金融交易的方法，所述方法包括用电子安全装置询问电子交易终端以获得电子金融交易终端的完整性度量; 基于所述完整性度量确定所述交易终端是否为信任终端; 如果交易终端被识别为可信终端，则允许将金融交易数据输入到交易终端。

公开(公告)号：US20020120863A1

公开(公告)日：2002-08-29

申请号：US10080478

申请日：2002-02-22

Applicant: Hewlett-Packard Company

Inventor： Siani Lynne Pearson ,  Graeme John Proudler

IPC: G06F011/30

CPC classification number: G06Q20/00 ,  G06F2221/2101 ,  G06Q20/341 ,  G06Q20/383 ,  G06Q20/389 ,  G06Q20/403 ,  G06Q20/4093 ,  G07F7/1008

Abstract: A method of investigating misdemeanour within a data processing system is provided. An investigator is given an anonymous authenticated identity on a trusted computing device such that a trustworthy record of transactions can be created. The investigator can participate in the transaction.

Abstract translation: 提供了一种在数据处理系统内调查轻罪的方法。 调查员在受信任的计算设备上获得匿名身份验证身份，从而可以创建可靠的交易记录。 调查员可以参与交易。

公开(公告)号：US20020119427A1

公开(公告)日：2002-08-29

申请号：US10080477

申请日：2002-02-22

Applicant: Hewlett-Packard Company

Inventor： Richard Brown ,  Siani Lynne Pearson ,  Christopher I. Dalton

IPC: G09B009/00

CPC classification number: H04L63/105 ,  G06F21/552 ,  G06F21/57 ,  G06F21/6218 ,  G06F2221/2103 ,  G06F2221/2153 ,  H04L63/126

Abstract: A trusted computing environment 100, wherein each computing device 112 to 118 holds a policy specifying the degree to which it can trust the other devices in the environment 100. The policies are updated by an assessor 110 which receives reports from trusted components 120 in the computing devices 112 to 118 which identify the trustworthiness of the computing devices 112 to 118.

Abstract translation: 可信计算环境100，其中每个计算设备112至118保存指定其可以信任环境100中的其他设备的程度的策略。策略由评估者110更新，评估者110在计算机中从可信组件120接收报告 识别计算设备112至118的可信赖性的设备112至118。

公开(公告)号：US20020194132A1

公开(公告)日：2002-12-19

申请号：US10175185

申请日：2002-06-18

Applicant: HEWLETT-PACKARD COMPANY

Inventor： Siani Lynne Pearson ,  Alex Chu

IPC: G06F017/60

CPC classification number: G06Q30/02

Abstract: A computing platform rents a computing environment to execute a process supplied from a user device. Integrity of the computing platform is verified using a trusted device which obtains an integrity metric particularly of the host operating system during start up. The computing environment is confirmed as being suitable for the requirements of the process, and then verified ideally again using an integrity metric of the computing environment produced by the trusted device. The user process is then supplied from the user device to the computing environment.

Abstract translation: 计算平台租用计算环境来执行从用户设备提供的过程。 使用可信设备验证计算平台的完整性，该可信设备在启动期间特别获得主机操作系统的完整性度量。 计算环境被确认为适合于过程的要求，然后再次使用可信设备产生的计算环境的完整性度量来再次验证。 用户进程然后从用户设备提供给计算环境。

公开(公告)号：US20030051171A1

公开(公告)日：2003-03-13

申请号：US10241893

申请日：2002-09-12

Applicant: HEWLETT-PACKARD COMPANY

Inventor： Siani Lynne Pearson

IPC: H04L009/00

CPC classification number: H04L63/102 ,  G06Q30/02 ,  G06Q30/06 ,  H04L63/0407 ,  H04L63/0428 ,  H04L63/062

Abstract: A user apparatus 10 forms a user identity such as in a trusted platform module 11, and captures at least one profile characteristic in a capture unit 12. An enquiry apparatus 20 sends a request to the user apparatus 10. In response, a profile unit 13 forms a user self-profile by combining the formed user identity with one or more selected profile characteristics of interest to the enquirer. Advantageously, the user profile is formed at the user apparatus, and sent on request to the remote enquiry apparatus. The user therefore maintains strong control of the user profile, and overhead such as data storage at the enquiry apparatus is decreased.

Abstract translation: 用户装置10形成诸如信任平台模块11中的用户身份，并且在捕获单元12中捕获至少一个简档特征。查询装置20向用户装置10发送请求。作为响应，简档单元13 通过将形成的用户身份与查询者感兴趣的一个或多个所选配置文件特征组合来形成用户自我简档。 有利地，用户简档形成在用户设备处，并且根据请求发送到远程查询设备。 因此，用户维护对用户简档的强大控制，并且诸如在查询装置处的数据存储的开销降低。

公开(公告)号：US20030051133A1

公开(公告)日：2003-03-13

申请号：US10241894

申请日：2002-09-12

Applicant: HEWLETT-PACKARD COMPANY

Inventor： Siani Lynne Pearson

IPC: H04L009/00

CPC classification number: H04L63/0442 ,  H04L29/06027 ,  H04L63/0407 ,  H04L63/08 ,  H04L63/0823 ,  H04L65/1006 ,  H04M1/2535 ,  H04M1/57 ,  H04M1/571 ,  H04M3/42042 ,  H04M7/006 ,  H04M2242/22

Abstract: A voice call system and a method and apparatus for identifying a voice caller are disclosed. The system includes a call originator apparatus 10 and a called party apparatus 20. At least one trusted user identity is formed at the call originator apparatus 10, ideally in a trusted platform module 12 configured according to a Trusted Computing Platform Alliance (TCPA) specification. The called party apparatus 20 checks the trusted user identity when establishing a new voice call. Advantageously, an identity of the voice caller using the call originator apparatus is confirmed in a reliable and trustworthy manner, even when the voice call is transported over an inherently insecure medium, e.g. an open computing system like the internet 30. Preferred embodiments of the invention use IP telephony, such as SIP (session initiation protocol) or H.323 standard voice telephony.

公开(公告)号：US20020120876A1

公开(公告)日：2002-08-29

申请号：US10080466

申请日：2002-02-22

Applicant: HEWLETT-PACKARD COMPANY

Inventor： Siani Lynne Pearson ,  Robert Thomas Owen Rees

IPC: G06F011/30

CPC classification number: H04L63/0869 ,  G06F21/34 ,  G06F2221/2147 ,  H04L63/0853

Abstract: A service-provider 600 including a physically and logically protected computing environment 401, and a user space 402 accepts a request 604 to provide a private virtual room for a particular purpose from a customer or multiple customers 606. At 702, it checks the legitimacy of the proposed purpose and seeks input about the criteria for filtering the participants. Providing the legitimacy of the proposed purposes are verified, at 703 the service-provider 600 sets up the private virtual room 608 which provides a secure environment within which participants can communicate electronically. At 704, the service-provider 600 receives requests from potential participants 610 to enter the virtual room 608, and its filters the participants 610 to ensure they meet previously-defined criteria.

Abstract translation: 包括物理上和逻辑上受保护的计算环境401的服务提供者600以及用户空间402接受请求604以为客户或多个客户606提供用于特定目的的私人虚拟空间。在702，它检查合法性 提出的目的，并寻求有关筛选参与者标准的投入。 验证提供所提出目的的合法性，在703，服务提供商600设置私人虚拟室608，私有虚拟室608提供安全环境，参与者可以在该安全环境中进行电子通信。 在704，服务提供者600从潜在参与者610接收进入虚拟房间608的请求，并且过滤参与者610以确保他们满足先前定义的标准。

公开(公告)号：US20020194086A1

公开(公告)日：2002-12-19

申请号：US10175395

申请日：2002-06-18

Applicant: HEWLETT-PACKARD COMPANY

Inventor： Siani Lynne Pearson ,  Jonathan Griffin

IPC: G06F017/60

CPC classification number: G06Q30/02 ,  G06Q30/0601

Abstract: Apparatus and method for providing a secure environment enabling remote agents to interact with an electronic service are described. The electronic service runs in a first physically and logically protected computing environment. Each agent, acting on behalf of a respective client, runs in a separate physically and logically protected computing environment or compartment.

Abstract translation: 描述了提供使远程代理与电子服务交互的安全环境的装置和方法。 电子服务运行在第一个物理和逻辑保护的计算环境中。 每个代理人代表相应的客户端运行在独立的物理和逻辑保护的计算环境或隔离专区中。

公开(公告)号：US20020120575A1

公开(公告)日：2002-08-29

申请号：US10080479

申请日：2002-02-22

Applicant: HEWLETT-PACKARD COMPANY

Inventor： Siani Lynne Pearson ,  Graeme John Proudler

IPC: G06F017/60

CPC classification number: G06F21/57 ,  G06Q20/3674

Abstract: In order to facilitate a user's ability to trust a computing environment, a trusted computing device (2) is arranged to challenge other devices in the computing environment and to record a log of the facilities available within the computing environment and an indication of whether those facilities are trustworthy. A new user (40) entering the computing environment can obtain the log from the trusted computing device in order to ascertain the status of the environment. Alternatively any device can hold data concerning platforms in its vicinity and its operation can be authenticated by the trusted device.

Abstract translation: 为了促进用户信任计算环境的能力，可信计算设备（2）被布置成挑战计算环境中的其他设备并且记录计算环境内可用的设施的日志以及这些设施的指示 值得信赖 进入计算环境的新用户（40）可以从可信计算设备获得日志，以便确定环境的状态。 或者，任何设备可以容纳关于其附近的平台的数据，并且其操作可以由受信任的设备认证。

公开(公告)号：US20020026576A1

公开(公告)日：2002-02-28

申请号：US09931526

申请日：2001-08-16

Applicant: Hewlett-Packard Company

Inventor： Arindam Das-Purkayastha ,  Siani Lynne Pearson ,  Liqun Chen

IPC: H04L009/32 ,  H04L012/22

CPC classification number: G06F21/57 ,  G06F21/552 ,  G06F21/6218 ,  G06F2211/009 ,  G06F2221/2103 ,  G06F2221/2151 ,  G06F2221/2153

Abstract: Computer apparatus comprising a receiver for receiving an integrity metric for a computer entity via a trusted device associated with the computer entity, the integrity metric having values for a plurality of characteristics associated with the computer entity; a controller for assigning a trust level to the computer entity from a plurality of trust levels, wherein the assigned trust level is based upon the value of at least one of the characteristics of the received integrity metric.

Abstract translation: 计算机设备包括：接收机，用于经由与计算机实体相关联的可信设备接收用于计算机实体的完整性度量，所述完整性度量具有与所述计算机实体相关联的多个特征的值; 用于从多个信任级别向所述计算机实体分配信任级别的控制器，其中，所分配的信任级别基于所接收的完整性度量的所述特性中的至少一个的值。