-
1.发明授权公开(公告)号:US10462135B2
公开(公告)日:2019-10-29
申请号:US14757659
申请日:2015-12-23
Applicant: Intel Corporation
Inventor: Srikanth Varadarajan , Reshma Lal , Josh Triplett
IPC: H04L29/06 , G06F16/901 , H04L29/08
Abstract: Various system configurations and methods for maintaining, accessing, and utilizing secure data of a web browser in a hardware-managed secure data store are disclosed herein. In an example, operations for management of sensitive data such as passwords may be provided with the use of secure enclaves operating in a trusted execution environment. For example, such secure enclaves may be used for sealing and persisting sensitive data associated with a remote service, and transmitting the sensitive data to the remote service, while an unsealed form of the sensitive data is not accessible outside of the trusted execution environment. In further examples, operations for generating a password, storing or updating existing passwords, and replacing web browser input fields with secure data are disclosed.
-
公开(公告)号:US10915348B2
公开(公告)日:2021-02-09
申请号:US15420773
申请日:2017-01-31
Applicant: Intel Corporation
Inventor: Josh Triplett
IPC: G06F9/455
Abstract: Technologies for duplicating virtual machines (VMs) are described. A virtual machine monitor (VMM) may operate a parent virtual machine (VM), which may include a parent virtual memory and a parent virtual central processing unit (VCPU). The VMM or a host platform may obtain a command to duplicate the parent VM to create a child VM. In response to the command, the VMM or host may obtain a VCPU state of the parent VCPU, and generate the child VM including a child VCPU based on a state of the parent VCPU and a child virtual memory based on the parent virtual memory. Other embodiments are described herein and claimed.
-
公开(公告)号:US20200151364A1
公开(公告)日:2020-05-14
申请号:US16680315
申请日:2019-11-11
Applicant: Intel Corporation
Inventor: Jose S. Niell , Gautham N. Chinya , Khee Wooi Lee , William A. Stevens, JR. , Josh Triplett
IPC: G06F21/70
Abstract: A system-on-chip (SoC) includes a host CPU on a CPU fabric, the host CPU including multiple processor cores, each associated with multiple security attributes. The SoC includes a secure asset on a network-on-chip and a security co-processor. The security co-processor includes circuitry to detect requests from the processor cores targeting the secure asset and security function processing requests, to determine, based on associated security attributes, whether the core or function is authorized to access the secure asset, to allow the request to be issued, if the core or function is so authorized, and to prevent its issuance, if not. The determination may be dependent on a signal from the CPU fabric indicating whether the host CPU can modify its security attributes or they are locked down. The security co-processor may have the highest security level and may be the only master on the SoC that can access the secure asset.
-
公开(公告)号:US12014377B2
公开(公告)日:2024-06-18
申请号:US17516380
申请日:2021-11-01
Applicant: Intel Corporation
Inventor: Josh Triplett , Philip Hanson , Justin Moore
CPC classification number: G06Q20/409 , G06F9/54 , G06Q20/12 , G06Q20/341 , G06Q20/204
Abstract: Methods, apparatus, systems and articles of manufacture to securely handle chip card data are disclosed. An example method includes providing, by executing an instruction with a first processor of a client device, an application programming interface (API) in a web client of the client device, in response to detecting, in the web client at the client device, a query from a server for card data, operating, by executing an instruction with the first processor of the client device, the API in the web client at the client device to obtain the card data stored on a chip of a chip card communicatively coupled to the client device, and sending, by executing an instruction with the first processor of the client device, the card data to the server.
-
公开(公告)号:US11562063B2
公开(公告)日:2023-01-24
申请号:US17114246
申请日:2020-12-07
Applicant: INTEL CORPORATION
Inventor: Michael Lemay , David M. Durham , Michael E. Kounavis , Barry E. Huntley , Vedvyas Shanbhogue , Jason W. Brandt , Josh Triplett , Gilbert Neiger , Karanvir Grewal , Baiju Patel , Ye Zhuang , Jr-Shian Tsai , Vadim Sukhomlinov , Ravi Sahita , Mingwei Zhang , James C. Farwell , Amitabh Das , Krishna Bhuyan
Abstract: Disclosed embodiments relate to encoded inline capabilities. In one example, a system includes a trusted execution environment (TEE) to partition an address space within a memory into a plurality of compartments each associated with code to execute a function, the TEE further to assign a message object in a heap to each compartment, receive a request from a first compartment to send a message block to a specified destination compartment, respond to the request by authenticating the request, generating a corresponding encoded capability, conveying the encoded capability to the destination compartment, and scheduling the destination compartment to respond to the request, and subsequently, respond to a check capability request from the destination compartment by checking the encoded capability and, when the check passes, providing a memory address to access the message block, and, otherwise, generating a fault, wherein each compartment is isolated from other compartments.
-
Patent Agency Ranking
公开(公告)号:US10241821B2
公开(公告)日:2019-03-26
申请号:US15368326
申请日:2016-12-02
Applicant: INTEL CORPORATION
Inventor: Josh Triplett , Adriaan Van De Ven
Abstract: The present disclosure provides RNG states. Generating the RNG states can include creating a first VM with a first RNG state and a second VM with a second RNG state and generating a plurality of interrupts for the first VM and the second VM. Generating the RNG states can also include providing the plurality of interrupts to the first VM with a first plurality of time intervals between the plurality of interrupts to configure the first RNG state and providing the plurality of interrupts to the second VM with a second plurality of time intervals, between the plurality of interrupts, that are different from the first plurality of time intervals to configure the second RNG state to be different from the first RNG state.
-
公开(公告)号:US20220058650A1
公开(公告)日:2022-02-24
申请号:US17516380
申请日:2021-11-01
Applicant: Intel Corporation
Inventor: Josh Triplett , Philip Hanson , Justin Moore
Abstract: Methods, apparatus, systems and articles of manufacture to securely handle chip card data are disclosed. An example method includes providing, by executing an instruction with a first processor of a client device, an application programming interface (API) in a web client of the client device, in response to detecting, in the web client at the client device, a query from a server for card data, operating, by executing an instruction with the first processor of the client device, the API in the web client at the client device to obtain the card data stored on a chip of a chip card communicatively coupled to the client device, and sending, by executing an instruction with the first processor of the client device, the card data to the server.
-
公开(公告)号:US20180217859A1
公开(公告)日:2018-08-02
申请号:US15420773
申请日:2017-01-31
Applicant: Intel Corporation
Inventor: Josh Triplett
CPC classification number: G06F9/45558 , G06F2009/45562 , G06F2009/45583 , G06F2009/45591
Abstract: Technologies for duplicating virtual machines (VMs) are described. A virtual machine monitor (VMM) may operate a parent virtual machine (VM), which may include a parent virtual memory and a parent virtual central processing unit (VCPU). The VMM or a host platform may obtain a command to duplicate the parent VM to create a child VM. In response to the command, the VMM or host may obtain a VCPU state of the parent VCPU, and generate the child VM including a child VCPU based on a state of the parent VCPU and a child virtual memory based on the parent virtual memory. Other embodiments are described herein and claimed.
-
公开(公告)号:US20180004979A1
公开(公告)日:2018-01-04
申请号:US15200935
申请日:2016-07-01
Applicant: Intel Corporation
Inventor: Jose S. Niell , Gautham N. Chinya , Khee Wooi Lee , William A. Stevens, JR. , Josh Triplett
IPC: G06F21/70
Abstract: A system-on-chip (SoC) includes a host CPU on a CPU fabric, the host CPU including multiple processor cores, each associated with multiple security attributes. The SoC includes a secure asset on a network-on-chip and a security co-processor. The security co-processor includes circuitry to detect requests from the processor cores targeting the secure asset and security function processing requests, to determine, based on associated security attributes, whether the core or function is authorized to access the secure asset, to allow the request to be issued, if the core or function is so authorized, and to prevent its issuance, if not. The determination may be dependent on a signal from the CPU fabric indicating whether the host CPU can modify its security attributes or they are locked down. The security co-processor may have the highest security level and may be the only master on the SoC that can access the secure asset.
-
公开(公告)号:US11164188B2
公开(公告)日:2021-11-02
申请号:US15812614
申请日:2017-11-14
Applicant: Intel Corporation
Inventor: Josh Triplett , Philip Hanson , Justin Moore
Abstract: Methods, apparatus, systems and articles of manufacture to securely handle chip card data are disclosed. An example method includes providing, by executing an instruction with a first processor of a client device, an application programming interface (API) in a web client of the client device, in response to detecting, in the web client at the client device, a query from a server for card data, operating, by executing an instruction with the first processor of the client device, the API in the web client at the client device to obtain the card data stored on a chip of a chip card communicatively coupled to the client device, and sending, by executing an instruction with the first processor of the client device, the card data to the server.
-
-
-
-
-
-
-
-
-
Search Results
14
records
(took 0.016 seconds)
