公开(公告)号：US20170222988A1

公开(公告)日：2017-08-03

申请号：US15431121

申请日：2017-02-13

Applicant: Intel Corporation

Inventor： Gyan Prakash ,  Jason M. Fung ,  Cris Rhodes ,  Selim Aissi

IPC: H04L29/06

CPC classification number: H04L63/0435 ,  G06F21/6218 ,  G06F21/72 ,  G06F21/78 ,  H04L63/061 ,  H04L2209/127

Abstract: A device, system, and method for providing processor-based data protection on a mobile computing device includes accessing data stored in memory with a central processing unit of the mobile computing device and determining that the accessed data is encrypted data based on a data included in one or more control registers of the central processing unit. If the data is determined to be encrypted data, the central processing unit is to decrypt the encrypted data using a cryptographic key stored in the central processing unit. The encrypted data may also be stored on a drive of the mobile computing device. The encryption state of the data stored on the drive is maintained in a drive encryption table, which is used to update a memory page tables and the one or more control registers.

公开(公告)号：US09483246B2

公开(公告)日：2016-11-01

申请号：US14055008

申请日：2013-10-16

Applicant: Intel Corporation

Inventor： Gyan Prakash ,  Saurabh Dadu ,  Selim Aissi ,  Hormuzd M. Khosravi ,  Duncan Glendinning ,  Cris Rhodes

IPC: G06Q99/00 ,  G06F9/445 ,  G06F21/57 ,  G06F9/24 ,  G06Q10/00

CPC classification number: G06F8/65 ,  G06F9/24 ,  G06F21/572 ,  G06Q10/00

Abstract: A method, apparatus, system, and computer program product for an automated modular and secure boot firmware update. An updated boot firmware code module is received in a secure partition of a system, the updated boot firmware code module to replace one original boot firmware code module for the system. Only the one original boot firmware code module is automatically replaced with the updated boot firmware code module. The updated boot firmware code module is automatically executed with the plurality of boot firmware code modules for the system and without user intervention when the system is next booted. The updated boot firmware code module may be written to an update partition of a firmware volume, wherein the update partition of the firmware volume is read along with another partition of the firmware volume containing the plurality of boot firmware code modules when the system is booted.