-
Patent Agency Ranking
公开(公告)号:US20190042478A1
公开(公告)日:2019-02-07
申请号:US16114241
申请日:2018-08-28
Applicant: Intel Corporation
Inventor: Somnath Chakrabarti , Mona Vij , Matthew Hoekstra
Abstract: A computer system for executing one or more software applications includes a host computer device configured to execute the one or more software applications. The computer system further includes one or more memory devices configured to cryptographically protect volatile memory of the one or more memory devices. The one more memory devices are configured to provide access to the cryptographically protected volatile memory for the one or more software applications. The host computer device is configured to execute the one or more software applications by executing a portion of the one or more software applications associated with the cryptographically protected volatile memory using a processor of the one or more memory devices.
-
公开(公告)号:US09514317B2
公开(公告)日:2016-12-06
申请号:US14367405
申请日:2013-12-19
Applicant: INTEL CORPORATION
Inventor: Jason Martin , Matthew Hoekstra
CPC classification number: G06F21/62 , G06F9/45558 , G06F21/10 , G06F21/56 , G06F21/602 , G06F21/74 , G06F2009/45579 , G06F2009/45587 , G06F2221/0724 , G06F2221/2105 , H04L63/0428 , H04L63/08 , H04L63/145 , H04L63/20
Abstract: An embodiment includes a method executed by at least one processor comprising: initializing first and second secure enclaves each comprising a trusted software execution environment that prevents software executing outside the first and second secure enclaves from having access to software and data inside the first and second secure enclaves; the first secure enclave (a)(i) inspecting a policy, (a)(ii) authenticating the second secure enclave in response to inspecting the policy; and (a)(iii) communicating encrypted content to the second secure enclave in response to authenticating the second secure enclave; and the second secure enclave (b)(i) decrypting the encrypted content to produce decrypted content, and (b)(ii) inspecting the decrypted content. Other embodiments are described herein.
Abstract translation: 一个实施例包括由至少一个处理器执行的方法,包括:初始化第一和第二安全空间,每个包括可信软件执行环境,其防止在第一和第二安全区域之外执行的软件在第一和第二安全区域内访问软件和数据 飞地 第一个安全飞地(a)(i)检查政策,(a)(ii)对检查该政策的第二个安全飞地进行认证; 和(a)(iii)响应于认证所述第二安全飞地而将加密的内容传送到所述第二安全飞地; 和第二安全飞地(b)(i)解密加密的内容以产生解密的内容,以及(b)(ii)检查解密的内容。 本文描述了其它实施例。
-
3.发明授权System partitioning to present software as platform level functionality via inter-partition bridge including reversible mode logic to switch between initialization, configuration, and execution mode 有权系统分区通过分区间桥将软件呈现为平台级功能,包括在初始化,配置和执行模式之间切换的可逆模式逻辑公开(公告)号:US09430296B2
公开(公告)日:2016-08-30
申请号:US13918277
申请日:2013-06-14
Applicant: Intel Corporation
Inventor: Stephen J. Tolopka , David A. Koufaty , John I. Garney , Yasser Rasheed , Ulhas Warrier , Matthew Hoekstra
CPC classification number: G06F9/5077 , G06F8/65 , G06F9/45533 , G06F9/45558 , G06F12/1491 , G06F21/74
Abstract: Embodiments of apparatuses, methods for partitioning systems, and partitionable and partitioned systems are disclosed. In one embodiment, a system includes processors and a partition manager. The partition manager is to allocate a subset of the processors to a first partition and another subset of the processors to a second partition. The first partition is to execute first operating system level software and the second partition is to execute second operating system level software.
Abstract translation: 公开了装置的实施例,分区系统的方法以及可分割和分区的系统。 在一个实施例中,系统包括处理器和分区管理器。 分区管理器将处理器的子集分配给第一分区,另一个处理器子集分配给第二分区。 第一个分区是执行第一个操作系统级软件,第二个分区是执行第二个操作系统级软件。
-
公开(公告)号:US11010309B2
公开(公告)日:2021-05-18
申请号:US16114241
申请日:2018-08-28
Applicant: Intel Corporation
Inventor: Somnath Chakrabarti , Mona Vij , Matthew Hoekstra
Abstract: A computer system for executing one or more software applications includes a host computer device configured to execute the one or more software applications. The computer system further includes one or more memory devices configured to cryptographically protect volatile memory of the one or more memory devices. The one or more memory devices are configured to provide access to the cryptographically protected volatile memory for the one or more software applications. The host computer device is configured to execute the one or more software applications by executing a portion of the one or more software applications associated with the cryptographically protected volatile memory using a processor of the one or more memory devices.
-
公开(公告)号:US20150347768A1
公开(公告)日:2015-12-03
申请号:US14367405
申请日:2013-12-19
Applicant: INTEL CORPORATION
Inventor: Jason Martin , Matthew Hoekstra
CPC classification number: G06F21/62 , G06F9/45558 , G06F21/10 , G06F21/56 , G06F21/602 , G06F21/74 , G06F2009/45579 , G06F2009/45587 , G06F2221/0724 , G06F2221/2105 , H04L63/0428 , H04L63/08 , H04L63/145 , H04L63/20
Abstract: An embodiment includes a method executed by at least one processor comprising: initializing first and second secure enclaves each comprising a trusted software execution environment that prevents software executing outside the first and second secure enclaves from having access to software and data inside the first and second secure enclaves; the first secure enclave (a)(i) inspecting a policy, (a)(ii) authenticating the second secure enclave in response to inspecting the policy; and (a)(iii) communicating encrypted content to the second secure enclave in response to authenticating the second secure enclave; and the second secure enclave (b)(i) decrypting the encrypted content to produce decrypted content, and (b)(ii) inspecting the decrypted content. Other embodiments are described herein.
Abstract translation: 一个实施例包括由至少一个处理器执行的方法,包括:初始化第一和第二安全空间,每个包括可信软件执行环境,其防止在第一和第二安全区域之外执行的软件在第一和第二安全区域内访问软件和数据 飞地 第一个安全飞地(a)(i)检查政策,(a)(ii)对检查该政策的第二个安全飞地进行认证; 和(a)(iii)响应于认证所述第二安全飞地而将加密的内容传送到所述第二安全飞地; 和第二安全飞地(b)(i)解密加密的内容以产生解密的内容,以及(b)(ii)检查解密的内容。 本文描述了其它实施例。
-
-
-
-
Search Results
5
records
(took 0.016 seconds)
