-
公开(公告)号:US08468279B2
公开(公告)日:2013-06-18
申请号:US12415612
申请日:2009-03-31
CPC分类号: G06F21/561 , G06F21/51 , G06F21/56 , G06F21/74 , G06F21/85 , G06F2221/034 , G06F2221/2101 , G06F2221/2105
摘要: A platform to support verification of the contents of an input-output device. The platform includes a platform hardware, which may verify the contents of the I/O device. The platform hardware may comprise components such as manageability engine and verification engine that are used to verify the contents of the I/O device even before the contents of the I/O device are exposed to an operating system supported by a host. The platform components may delete the infected portions of the contents of I/O device if the verification process indicates that the contents of the I/O device include the infected portions.
-
2.发明申请VIRTUAL AND HIDDEN SERVICE PARTITION AND DYNAMIC ENHANCED THIRD PARTY DATA STORE 有权虚拟和隐藏服务分区和动态增强第三方数据存储公开(公告)号:US20110161551A1
公开(公告)日:2011-06-30
申请号:US12647538
申请日:2009-12-27
IPC分类号: G06F12/02
CPC分类号: G06F21/80 , G06F9/5077
摘要: A system reserves and manages a hidden service partition through components of the hardware platform of a computing device. The hidden partition is not accessible by way of a host operating system on the computing device. A hardware platform controller provisions a portion of nonvolatile storage through configuration settings of the hardware platform controller. When the host system requests settings related to storage in the system, the request is routed through the interfaces of the hardware platform, and the hardware platform controller reports in accordance with the configuration settings, hiding the service partition. The hidden partition is dynamically modifiable through secure remote access to the hardware platform controller, not through the host system such as operating system or BIOS.
摘要翻译: 系统通过计算设备的硬件平台的组件来保留和管理隐藏的服务分区。 隐藏的分区不能通过计算设备上的主机操作系统访问。 硬件平台控制器通过硬件平台控制器的配置设置来提供非易失性存储器的一部分。 当主机系统请求与系统存储相关的设置时,请求通过硬件平台的接口进行路由,硬件平台控制器根据配置设置进行报告,隐藏服务分区。 隐藏的分区可以通过安全远程访问硬件平台控制器而不是通过主机系统(如操作系统或BIOS)进行动态修改。
-
3.发明申请METHOD AND APPARATUS FOR SECURE SCAN OF DATA STORAGE DEVICE FROM REMOTE SERVER 有权用于从远程服务器安全数据存储设备扫描的方法和装置公开(公告)号:US20110289306A1
公开(公告)日:2011-11-24
申请号:US12785146
申请日:2010-05-21
IPC分类号: G06F15/177 , H04L9/32
CPC分类号: G06F21/64 , G06F21/567 , G06F21/606 , G06F21/85 , G06F2213/0038
摘要: A method and device for providing a secure scan of a data storage device from a remote server are disclosed. In some embodiments, a computing device may include an in-band processor configured to execute an operating system and at least one host driver, communication circuitry configured to communicate with a remote server, and an out-of-band (OOB) processor capable of communicating with the remote server using the communication circuitry irrespective of the state of the operating system. The OOB processor may be configured to receive a block read request from the remote server, instruct the at least one host driver to send a storage command to a data storage device, receive data retrieved from the data storage device and authentication metadata generated by the data storage device, and transmit the data and the authentication metadata to the remote server.
摘要翻译: 公开了一种从远程服务器提供数据存储设备的安全扫描的方法和设备。 在一些实施例中,计算设备可以包括带内处理器,其被配置为执行操作系统和至少一个主机驱动器,被配置为与远程服务器通信的通信电路和能够与远程服务器通信的带外(OOB) 使用通信电路与远程服务器通信,而与操作系统的状态无关。 OOB处理器可以被配置为从远程服务器接收块读取请求,指示至少一个主机驱动程序向数据存储设备发送存储命令,接收从数据存储设备检索的数据和由数据生成的认证元数据 存储设备,并将数据和认证元数据传输到远程服务器。
-
公开(公告)号:US09069961B2
公开(公告)日:2015-06-30
申请号:US13919609
申请日:2013-06-17
CPC分类号: G06F21/561 , G06F21/51 , G06F21/56 , G06F21/74 , G06F21/85 , G06F2221/034 , G06F2221/2101 , G06F2221/2105
摘要: A platform to support verification of the contents of an input-output device. The platform includes a platform hardware, which may verify the contents of the I/O device. The platform hardware may comprise components such as manageability engine and verification engine that are used to verify the contents of the I/O device even before the contents of the I/O device are exposed to an operating system supported by a host. The platform components may delete the infected portions of the contents of I/O device if the verification process indicates that the contents of the I/O device include the infected portions.
摘要翻译: 支持验证输入输出设备内容的平台。 该平台包括可以验证I / O设备内容的平台硬件。 即使在I / O设备的内容暴露于由主机支持的操作系统之前,平台硬件也可以包括用于验证I / O设备的内容的诸如可管理性引擎和验证引擎的组件。 如果验证过程指示I / O设备的内容包括感染部分,则平台组件可以删除I / O设备的内容的感染部分。
-
5.发明授权Method and apparatus for secure scan of data storage device from remote server 有权从远程服务器安全扫描数据存储设备的方法和装置公开(公告)号:US08856534B2
公开(公告)日:2014-10-07
申请号:US12785146
申请日:2010-05-21
IPC分类号: G06F15/177 , H04L9/32
CPC分类号: G06F21/64 , G06F21/567 , G06F21/606 , G06F21/85 , G06F2213/0038
摘要: A method and device for providing a secure scan of a data storage device from a remote server are disclosed. In some embodiments, a computing device may include an in-band processor configured to execute an operating system and at least one host driver, communication circuitry configured to communicate with a remote server, and an out-of-band (OOB) processor capable of communicating with the remote server using the communication circuitry irrespective of the state of the operating system. The OOB processor may be configured to receive a block read request from the remote server, instruct the at least one host driver to send a storage command to a data storage device, receive data retrieved from the data storage device and authentication metadata generated by the data storage device, and transmit the data and the authentication metadata to the remote server.
摘要翻译: 公开了一种从远程服务器提供数据存储设备的安全扫描的方法和设备。 在一些实施例中,计算设备可以包括带内处理器,其被配置为执行操作系统和至少一个主机驱动器,被配置为与远程服务器通信的通信电路和能够与远程服务器通信的带外(OOB) 使用通信电路与远程服务器通信,而与操作系统的状态无关。 OOB处理器可以被配置为从远程服务器接收块读取请求,指示至少一个主机驱动程序向数据存储设备发送存储命令,接收从数据存储设备检索的数据和由数据生成的认证元数据 存储设备,并将数据和认证元数据传输到远程服务器。
-
6.发明授权Virtual and hidden service partition and dynamic enhanced third party data store 有权虚拟和隐藏服务分区和动态增强的第三方数据存储公开(公告)号:US08949565B2
公开(公告)日:2015-02-03
申请号:US12647538
申请日:2009-12-27
CPC分类号: G06F21/80 , G06F9/5077
摘要: A system reserves and manages a hidden service partition through components of the hardware platform of a computing device. The hidden partition is not accessible by way of a host operating system on the computing device. A hardware platform controller provisions a portion of nonvolatile storage through configuration settings of the hardware platform controller. When the host system requests settings related to storage in the system, the request is routed through the interfaces of the hardware platform, and the hardware platform controller reports in accordance with the configuration settings, hiding the service partition. The hidden partition is dynamically modifiable through secure remote access to the hardware platform controller, not through the host system such as operating system or BIOS.
摘要翻译: 系统通过计算设备的硬件平台的组件来保留和管理隐藏的服务分区。 隐藏的分区不能通过计算设备上的主机操作系统访问。 硬件平台控制器通过硬件平台控制器的配置设置来提供非易失性存储器的一部分。 当主机系统请求与系统存储相关的设置时,请求通过硬件平台的接口进行路由,硬件平台控制器根据配置设置进行报告,隐藏服务分区。 隐藏的分区可以通过安全远程访问硬件平台控制器而不是通过主机系统(如操作系统或BIOS)来动态修改。
-
公开(公告)号:US20100250797A1
公开(公告)日:2010-09-30
申请号:US12415612
申请日:2009-03-31
IPC分类号: G06F3/00
CPC分类号: G06F21/561 , G06F21/51 , G06F21/56 , G06F21/74 , G06F21/85 , G06F2221/034 , G06F2221/2101 , G06F2221/2105
摘要: A platform to support verification of the contents of an input-output device. The platform includes a platform hardware, which may verify the contents of the I/O device. The platform hardware may comprise components such as manageability engine and verification engine that are used to verify the contents of the I/O device even before the contents of the I/O device are exposed to an operating system supported by a host. The platform components may delete the infected portions of the contents of I/O device if the verification process indicates that the contents of the I/O device include the infected portions.
摘要翻译: 支持验证输入输出设备内容的平台。 该平台包括可以验证I / O设备内容的平台硬件。 即使在I / O设备的内容暴露于由主机支持的操作系统之前,平台硬件也可以包括用于验证I / O设备的内容的诸如可管理性引擎和验证引擎的组件。 如果验证过程指示I / O设备的内容包括感染部分,则平台组件可以删除I / O设备的内容的感染部分。
-
公开(公告)号:US20130283383A1
公开(公告)日:2013-10-24
申请号:US13919609
申请日:2013-06-17
IPC分类号: G06F21/56
CPC分类号: G06F21/561 , G06F21/51 , G06F21/56 , G06F21/74 , G06F21/85 , G06F2221/034 , G06F2221/2101 , G06F2221/2105
摘要: A platform to support verification of the contents of an input-output device. The platform includes a platform hardware, which may verify the contents of the I/O device. The platform hardware may comprise components such as manageability engine and verification engine that are used to verify the contents of the I/O device even before the contents of the I/O device are exposed to an operating system supported by a host. The platform components may delete the infected portions of the contents of I/O device if the verification process indicates that the contents of the I/O device include the infected portions.
摘要翻译: 支持验证输入输出设备内容的平台。 该平台包括可以验证I / O设备内容的平台硬件。 即使在I / O设备的内容暴露于由主机支持的操作系统之前,平台硬件也可以包括用于验证I / O设备的内容的诸如可管理性引擎和验证引擎的组件。 如果验证过程指示I / O设备的内容包括感染部分,则平台组件可以删除I / O设备的内容的被感染部分。
-
9.发明申请COMPUTING DEVICE AND METHOD FOR WIRELESS REMOTE BOOT IN A NETWORKED ENVIRONMENT 有权网络环境中无线远程引导的计算设备和方法公开(公告)号:US20140047230A1
公开(公告)日:2014-02-13
申请号:US14060289
申请日:2013-10-22
申请人: Hormuzd M. Khosravi , Venkat R. Gokulrangan , Michael Berger , Izoslav Tchigevsky , Gary Joe Calhoun
发明人: Hormuzd M. Khosravi , Venkat R. Gokulrangan , Michael Berger , Izoslav Tchigevsky , Gary Joe Calhoun
CPC分类号: G06F9/4416 , H04W99/00
摘要: In some embodiments, a secure authenticated remote boot of computing device over a wireless network is performed in a pre-boot execution environment (PXE) using active management technology (AMT) for remote discovery. In these embodiments, a management engine (ME) may maintain full control of a wireless interface and a wireless connection as booting begins. The ME may relinquish control of the wireless interface after a PXE timeout, in response to a shutdown command, or once the device has booted. The ME controls the use of an operating system received from a remote location.
摘要翻译: 在一些实施例中,通过使用用于远程发现的主动管理技术(AMT)在预引导执行环境(PXE)中执行无线网络上的计算设备的安全认证的远程启动。 在这些实施例中,当引导开始时,管理引擎(ME)可以保持对无线接口和无线连接的完全控制。 在PXE超时之后,ME可以放弃对无线接口的控制,以响应关机命令,或者一旦设备启动。 ME控制从远程位置接收的操作系统的使用。
-
公开(公告)号:US20120017011A1
公开(公告)日:2012-01-19
申请号:US12836341
申请日:2010-07-14
IPC分类号: G06F3/00
CPC分类号: G06F3/0604 , G06F3/0617 , G06F3/0659 , G06F3/067
摘要: A method, apparatus, system, and computer program product for enabling out-of-band access to storage devices through port-sharing hardware. Providing out-of-band access to storage devices enables system management functions to be performed when an operating system is non-functional as well as when the operating system is active. Storage commands originating with a management service can be interleaved with storage commands issued by the host operating system. The host operating system maintains ownership and control over its storage devices, but management activities can be performed while the host operating system is operational.
摘要翻译: 一种用于通过端口共享硬件对存储设备进行带外访问的方法,装置,系统和计算机程序产品。 提供对存储设备的带外访问可使系统管理功能在操作系统不起作用以及操作系统处于活动状态时执行。 源自管理服务的存储命令可以与主机操作系统发出的存储命令交错。 主机操作系统维护对其存储设备的所有权和控制权,但是可以在主机操作系统运行时执行管理活动。
-
-
-
-
-
-
-
-
-
搜索结果
19 条记录 (耗时 0.024 秒)
