-
公开(公告)号:US20140281468A1
公开(公告)日:2014-09-18
申请号:US14272584
申请日:2014-05-08
申请人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Tracy L. Zenti , Bryan K. Jorgensen
发明人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Tracy L. Zenti , Bryan K. Jorgensen
IPC分类号: G06F9/44
CPC分类号: G06F9/4416 , G06F13/105 , G06F13/4027
摘要: A management engine may be used to trap configuration cycles during the boot process and thereafter in response to operating system enumeration. As a result, a virtual bus device can be created. The bus device may be used to provision software to the platform even when the operating system is corrupted or non-functional.
摘要翻译: 管理引擎可用于在引导过程期间以及其后响应于操作系统枚举来捕获配置周期。 结果,可以创建虚拟总线设备。 总线设备可用于将软件提供给平台,即使操作系统损坏或不起作用。
-
2.发明授权Providing software distribution and update services regardless of the state or physical location of an end point machine 有权提供软件分发和更新服务,而不管端点机器的状态或物理位置公开(公告)号:US08893112B2
公开(公告)日:2014-11-18
申请号:US12642911
申请日:2009-12-21
申请人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Bryan K. Jorgensen , Tracie L. Zenti
发明人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Bryan K. Jorgensen , Tracie L. Zenti
摘要: In accordance with some embodiments, software may be downloaded to an end point, even when that said end point is not fully functional. An indication that software is available for distribution may be stored in a dedicated location within a non-volatile memory. That location may be checked for software to download, for example, on each boot up. The software may then be downloaded and verified. Thereafter, the location is marked to indicate that the software has already been downloaded.
摘要翻译: 根据一些实施例,即使当所述终点没有完全起作用时,也可以将软件下载到终端。 软件可用于分发的指示可以存储在非易失性存储器内的专用位置。 可以检查该位置,例如,在每次启动时软件进行下载。 然后可以下载和验证软件。 此后,该位置被标记为指示该软件已经被下载。
-
公开(公告)号:US08762698B2
公开(公告)日:2014-06-24
申请号:US12636884
申请日:2009-12-14
申请人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Tracie L. Zenti , Bryan K. Jorgensen
发明人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Tracie L. Zenti , Bryan K. Jorgensen
IPC分类号: G06F15/177
CPC分类号: G06F9/4416 , G06F13/105 , G06F13/4027
摘要: A management engine may be used to trap configuration cycles during the boot process and thereafter in response to operating system enumeration. As a result, a virtual bus device can be created. The bus device may be used to provision software to the platform even when the operating system is corrupted or non-functional.
摘要翻译: 管理引擎可用于在引导过程期间以及其后响应于操作系统枚举来捕获配置周期。 结果,可以创建虚拟总线设备。 总线设备可用于将软件提供给平台,即使操作系统损坏或不起作用。
-
4.发明申请Providing Software Distribution and Update Services Regardless of the State or Physical Location of an End Point Machine 有权提供软件分发和更新服务,无论终点机器的状态或物理位置如何公开(公告)号:US20110154316A1
公开(公告)日:2011-06-23
申请号:US12642911
申请日:2009-12-21
申请人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Bryan K. Jorgensen , Tracie L. Zenti
发明人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Bryan K. Jorgensen , Tracie L. Zenti
摘要: In accordance with some embodiments, software may be downloaded to an end point, even when that said end point is not fully functional. An indication that software is available for distribution may be stored in a dedicated location within a non-volatile memory. That location may be checked for software to download, for example, on each boot up. The software may then be downloaded and verified. Thereafter, the location is marked to indicate that the software has already been downloaded.
摘要翻译: 根据一些实施例,即使当所述终点没有完全起作用时,也可以将软件下载到终端。 软件可用于分发的指示可以存储在非易失性存储器内的专用位置。 可以检查该位置,例如,在每次启动时软件进行下载。 然后可以下载和验证软件。 此后,该位置被标记为指示该软件已经被下载。
-
公开(公告)号:US20110145558A1
公开(公告)日:2011-06-16
申请号:US12636884
申请日:2009-12-14
申请人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Tracie L. Zenti , Bryan K. Jorgensen
发明人: Hormuzd M. Khosravi , Ajith K. Illendula , Ned M. Smith , Yasser Rasheed , Tracie L. Zenti , Bryan K. Jorgensen
IPC分类号: G06F15/177 , G06F13/00
CPC分类号: G06F9/4416 , G06F13/105 , G06F13/4027
摘要: A management engine may be used to trap configuration cycles during the boot process and thereafter in response to operating system enumeration. As a result, a virtual bus device can be created. The bus device may be used to provision software to the platform even when the operating system is corrupted or non-functional.
摘要翻译: 管理引擎可用于在引导过程期间以及其后响应于操作系统枚举来捕获配置周期。 结果,可以创建虚拟总线设备。 总线设备可用于将软件提供给平台,即使操作系统损坏或不起作用。
-
公开(公告)号:US08635705B2
公开(公告)日:2014-01-21
申请号:US12658876
申请日:2010-02-17
申请人: Ravi L. Sahita , David M. Durham , Steve Orrin , Yasser Rasheed , Prasanna G. Mulgaonkar , Paul S. Schmitz , Hormuzd M. Khosravi
发明人: Ravi L. Sahita , David M. Durham , Steve Orrin , Yasser Rasheed , Prasanna G. Mulgaonkar , Paul S. Schmitz , Hormuzd M. Khosravi
摘要: In some embodiments, approaches may provide an out-of-band (OOB) agent to protect a platform. The OOB agent may be able to use non-TRS methods to measure and protect an in-band security agent. In some embodiments, a manageability engine can provide out of band connectivity to the in-band and out-of-band security agents and provide access to the system memory resources without having to rely on OS services. This can be used for a trusted anti-malware and remediation service.
摘要翻译: 在一些实施例中,方法可以提供带外(OOB)代理来保护平台。 OOB代理可能能够使用非TRS方法来测量和保护带内安全代理。 在一些实施例中,可管理性引擎可以向带内和带外安全代理提供带外连接,并提供对系统存储器资源的访问,而不必依赖于OS服务。 这可以用于受信任的反恶意软件和修复服务。
-
7.发明申请METHOD AND APPARATUS FOR SECURE SCAN OF DATA STORAGE DEVICE FROM REMOTE SERVER 有权用于从远程服务器安全数据存储设备扫描的方法和装置公开(公告)号:US20110289306A1
公开(公告)日:2011-11-24
申请号:US12785146
申请日:2010-05-21
IPC分类号: G06F15/177 , H04L9/32
CPC分类号: G06F21/64 , G06F21/567 , G06F21/606 , G06F21/85 , G06F2213/0038
摘要: A method and device for providing a secure scan of a data storage device from a remote server are disclosed. In some embodiments, a computing device may include an in-band processor configured to execute an operating system and at least one host driver, communication circuitry configured to communicate with a remote server, and an out-of-band (OOB) processor capable of communicating with the remote server using the communication circuitry irrespective of the state of the operating system. The OOB processor may be configured to receive a block read request from the remote server, instruct the at least one host driver to send a storage command to a data storage device, receive data retrieved from the data storage device and authentication metadata generated by the data storage device, and transmit the data and the authentication metadata to the remote server.
摘要翻译: 公开了一种从远程服务器提供数据存储设备的安全扫描的方法和设备。 在一些实施例中,计算设备可以包括带内处理器,其被配置为执行操作系统和至少一个主机驱动器,被配置为与远程服务器通信的通信电路和能够与远程服务器通信的带外(OOB) 使用通信电路与远程服务器通信,而与操作系统的状态无关。 OOB处理器可以被配置为从远程服务器接收块读取请求,指示至少一个主机驱动程序向数据存储设备发送存储命令,接收从数据存储设备检索的数据和由数据生成的认证元数据 存储设备,并将数据和认证元数据传输到远程服务器。
-
公开(公告)号:US20110153725A1
公开(公告)日:2011-06-23
申请号:US12646692
申请日:2009-12-23
申请人: David A. Edwards , Hormuzd M. Khosravi , Yasser Rasheed , Divya Naidu Kolar Sunder , Joseph E. Clark
发明人: David A. Edwards , Hormuzd M. Khosravi , Yasser Rasheed , Divya Naidu Kolar Sunder , Joseph E. Clark
IPC分类号: G06F15/16 , G06F15/173
CPC分类号: H04L67/1097
摘要: Embodiments of the present disclosure provide methods and computing devices configured to establish secure out-of-band storage control. In various embodiments, a management module in a client device may be used to communicate with a server device independent of an operating system of the client device, to facilitate remote storage services. Other embodiments may be disclosed and claimed.
摘要翻译: 本公开的实施例提供了被配置为建立安全的带外存储控制的方法和计算设备。 在各种实施例中,客户端设备中的管理模块可用于与独立于客户端设备的操作系统的服务器设备通信,以便于远程存储服务。 可以公开和要求保护其他实施例。
-
公开(公告)号:US09069961B2
公开(公告)日:2015-06-30
申请号:US13919609
申请日:2013-06-17
CPC分类号: G06F21/561 , G06F21/51 , G06F21/56 , G06F21/74 , G06F21/85 , G06F2221/034 , G06F2221/2101 , G06F2221/2105
摘要: A platform to support verification of the contents of an input-output device. The platform includes a platform hardware, which may verify the contents of the I/O device. The platform hardware may comprise components such as manageability engine and verification engine that are used to verify the contents of the I/O device even before the contents of the I/O device are exposed to an operating system supported by a host. The platform components may delete the infected portions of the contents of I/O device if the verification process indicates that the contents of the I/O device include the infected portions.
摘要翻译: 支持验证输入输出设备内容的平台。 该平台包括可以验证I / O设备内容的平台硬件。 即使在I / O设备的内容暴露于由主机支持的操作系统之前,平台硬件也可以包括用于验证I / O设备的内容的诸如可管理性引擎和验证引擎的组件。 如果验证过程指示I / O设备的内容包括感染部分,则平台组件可以删除I / O设备的内容的感染部分。
-
10.发明授权Method and apparatus for secure scan of data storage device from remote server 有权从远程服务器安全扫描数据存储设备的方法和装置公开(公告)号:US08856534B2
公开(公告)日:2014-10-07
申请号:US12785146
申请日:2010-05-21
IPC分类号: G06F15/177 , H04L9/32
CPC分类号: G06F21/64 , G06F21/567 , G06F21/606 , G06F21/85 , G06F2213/0038
摘要: A method and device for providing a secure scan of a data storage device from a remote server are disclosed. In some embodiments, a computing device may include an in-band processor configured to execute an operating system and at least one host driver, communication circuitry configured to communicate with a remote server, and an out-of-band (OOB) processor capable of communicating with the remote server using the communication circuitry irrespective of the state of the operating system. The OOB processor may be configured to receive a block read request from the remote server, instruct the at least one host driver to send a storage command to a data storage device, receive data retrieved from the data storage device and authentication metadata generated by the data storage device, and transmit the data and the authentication metadata to the remote server.
摘要翻译: 公开了一种从远程服务器提供数据存储设备的安全扫描的方法和设备。 在一些实施例中,计算设备可以包括带内处理器,其被配置为执行操作系统和至少一个主机驱动器,被配置为与远程服务器通信的通信电路和能够与远程服务器通信的带外(OOB) 使用通信电路与远程服务器通信,而与操作系统的状态无关。 OOB处理器可以被配置为从远程服务器接收块读取请求,指示至少一个主机驱动程序向数据存储设备发送存储命令,接收从数据存储设备检索的数据和由数据生成的认证元数据 存储设备,并将数据和认证元数据传输到远程服务器。
-
-
-
-
-
-
-
-
-
搜索结果
93 条记录 (耗时 0.034 秒)
