公开(公告)号：US20240012972A1

公开(公告)日：2024-01-11

申请号：US18475199

申请日：2023-09-26

Applicant: Intel Corporation

Inventor： Michael Neve De Mevergnies ,  Geoffrey Strongin

IPC: G06F30/34

CPC classification number: G06F30/34

Abstract: An integrated circuit includes a region of configurable logic circuits and a configuration controller circuit that generates a first health condition report indicating a first health condition of the region before configuring the configurable logic circuits according to a circuit design. The configuration controller circuit generates a second health condition report indicating a second health condition of the region after configuring the configurable logic circuits according to the circuit design.

公开(公告)号：US20240106644A1

公开(公告)日：2024-03-28

申请号：US17954157

申请日：2022-09-27

Applicant: Intel Corporation

Inventor： Aditya Katragada ,  Geoffrey Strongin ,  Prakash Iyer ,  Rajesh Banginwar ,  Poh Thiam Teoh ,  Gary Wallichs

IPC: H04L9/08

CPC classification number: H04L9/0891 ,  H04L9/0894

Abstract: A system and method of enhancing the mitigation of side channel attacks on platform interconnects using endpoint HW based detection, synchronization, and re-keying include generating a set of keys for link encryption based on a high entropy seed, storing the set of keys in a deterministic order in a register, detecting that a re-key programmable threshold is met during link encryption with a device, identifying a synchronization point associated with the device, where the synchronization point indicates the device is ready to switch a current key used for link encryption, and synchronizing a rekeying event with the device.

公开(公告)号：US09124635B2

公开(公告)日：2015-09-01

申请号：US13690666

申请日：2012-11-30

Applicant: Intel Corporation

Inventor： Scott H. Robinson ,  Jason Martin ,  Howard C. Herbert ,  Michael LeMay ,  Karanvir Ken S. Grewal ,  Keith L. Shippy ,  Geoffrey Strongin

IPC: H04L29/06

CPC classification number: H04L63/20 ,  G06K9/00228 ,  H04L63/105 ,  H04L67/24

Abstract: Sensor data may be filtered in a secure environment. The filtering may limit distribution of the sensor data. Filtering may modify the sensor data, for example, to prevent identification of a person depicted in a captured image or to prevent acquiring a user's precise location. Filtering may also add or require other data use controls to access the data. Attestation that a filter policy is being applied and working properly or not may be provided as well.

Abstract translation: 传感器数据可能会在安全的环境中进行过滤。 滤波可能会限制传感器数据的分布。 过滤可以修改传感器数据，例如，以防止识别拍摄图像中描绘的人，或阻止获取用户的精确位置。 过滤还可以添加或要求其他数据使用控制来访问数据。 也可以提供过滤器策略正在应用和正常工作的证明。

公开(公告)号：US20150040242A1

公开(公告)日：2015-02-05

申请号：US14518962

申请日：2014-10-20

Applicant: Intel Corporation

Inventor： David Bar-On ,  Geoffrey Strongin

IPC: G06F21/62

CPC classification number: G06F21/6245 ,  G06F21/83

Abstract: Methods, apparatuses and storage medium associated with providing enhanced privacy during usage of computer vision are disclosed. In embodiments, an apparatus may include one or more privacy indicators to indicate one or more privacy conditions of the apparatus in association with provision of computer vision on the apparatus. The apparatus may further include a privacy engine coupled with the one or more privacy indicators, and configured to pre-process images from an image source of the apparatus associated with the provision of computer vision to the apparatus, to increase privacy for a user of the apparatus, and to control the one or more privacy indicators. In embodiments, the apparatus may include means for blanking out one or more pixels with depth values identified as greater than a threshold. Other embodiments may be described and claimed.

Abstract translation: 公开了在计算机视觉使用期间提供增强隐私的方法，装置和存储介质。 在实施例中，设备可以包括一个或多个隐私指示符，以指示在设备上提供计算机视觉的设备的一个或多个隐私条件。 该装置还可以包括与该一个或多个隐私指示符相配合的隐私引擎，并且被配置为将来自与提供计算机视觉的设备的图像源预处理到该设备的图像，以增加用户的隐私 设备，并控制一个或多个隐私指示符。 在实施例中，装置可以包括用于消除被识别为大于阈值的深度值的一个或多个像素的装置。 可以描述和要求保护其他实施例。

公开(公告)号：US11520611B2

公开(公告)日：2022-12-06

申请号：US16370924

申请日：2019-03-30

Applicant: Intel Corporation

Inventor： David Durham ,  Siddhartha Chhabra ,  Geoffrey Strongin ,  Ronald Perez

IPC: G06F9/455 ,  G06F12/1009 ,  H04L9/32

Abstract: A host Virtual Machine Monitor (VMM) operates “blindly,” without the host VMM having the ability to access data within a guest virtual machine (VM) or the ability to access directly control structures that control execution flow of the guest VM. Guest VMs execute within a protected region of memory (called a key domain) that even the host VMM cannot access. Virtualization data structures that pertain to the execution state (e.g., a Virtual Machine Control Structure (VMCS)) and memory mappings (e.g., Extended Page Tables (EPTs)) of the guest VM are also located in the protected memory region and are also encrypted with the key domain key. The host VMM and other guest VMs, which do not possess the key domain key for other key domains, cannot directly modify these control structures nor access the protected memory region. The host VMM, however, using VMPageIn and VMPageOut instructions, can build virtual machines in key domains and page VM pages in and out of key domains.

公开(公告)号：US10768968B2

公开(公告)日：2020-09-08

申请号：US16147169

申请日：2018-09-28

Applicant: Intel Corporation

Inventor： Gilbert Neiger ,  Geoffrey Strongin ,  Ramya Jayaram Masti

IPC: G06F12/10 ,  G06F9/455 ,  G06F12/1009

Abstract: A method includes receiving, by a processor from a virtual machine (VM) executed by the processor, an indication that a proper subset of a plurality of virtual memory pages of the VM are secure memory pages. The method further includes, responsive to determining the VM is attempting to access a first memory page, determining whether the proper subset comprises the first memory page. The method further includes, responsive to determining the proper subset comprises the first memory page: using first attributes specified by the VM for the first memory page; and ignoring second attributes specified by a virtual machine monitor (VMM) for the first memory page. The VMM is executed by the processor to manage the VM.

公开(公告)号：US20200057664A1

公开(公告)日：2020-02-20

申请号：US16370924

申请日：2019-03-30

Applicant: Intel Corporation

Inventor： David Durham ,  Siddhartha Chhabra ,  Geoffrey Strongin ,  Ronald Perez

IPC: G06F9/455 ,  G06F12/1009 ,  H04L9/32

Abstract: A host Virtual Machine Monitor (VMM) operates “blindly,” without the host VMM having the ability to access data within a guest virtual machine (VM) or the ability to access directly control structures that control execution flow of the guest VM. Guest VMs execute within a protected region of memory (called a key domain) that even the host VMM cannot access. Virtualization data structures that pertain to the execution state (e.g., a Virtual Machine Control Structure (VMCS)) and memory mappings (e.g., Extended Page Tables (EPTs)) of the guest VM are also located in the protected memory region and are also encrypted with the key domain key. The host VMM and other guest VMs, which do not possess the key domain key for other key domains, cannot directly modify these control structures nor access the protected memory region. The host VMM, however, using VMPageIn and VMPageOut instructions, can build virtual machines in key domains and page VM pages in and out of key domains.

公开(公告)号：US09569637B2

公开(公告)日：2017-02-14

申请号：US14938665

申请日：2015-11-11

Applicant: Intel Corporation

Inventor： David Bar-On ,  Geoffrey Strongin

IPC: G06F7/04 ,  G06F21/62 ,  G06F21/83

CPC classification number: G06F21/6245 ,  G06F21/83

Abstract: Methods, apparatuses and storage medium associated with providing enhanced privacy during usage of computer vision are disclosed. In embodiments, an apparatus may include one or more privacy indicators to indicate one or more privacy conditions of the apparatus in association with provision of computer vision on the apparatus. The apparatus may further include a privacy engine coupled with the one or more privacy indicators, and configured to pre-process images from an image source of the apparatus associated with the provision of computer vision to the apparatus, to increase privacy for a user of the apparatus, and to control the one or more privacy indicators. In embodiments, the apparatus may include means for blanking out one or more pixels with depth values identified as greater than a threshold. Other embodiments may be described and claimed.

Abstract translation: 公开了在计算机视觉使用期间提供增强隐私的方法，装置和存储介质。 在实施例中，设备可以包括一个或多个隐私指示符，以指示在设备上提供计算机视觉的设备的一个或多个隐私条件。 该装置还可以包括与该一个或多个隐私指示符相配合的隐私引擎，并且被配置为将来自与提供计算机视觉的设备的图像源预处理到该设备的图像，以增加用户的隐私 设备，并控制一个或多个隐私指示符。 在实施例中，装置可以包括用于消除被识别为大于阈值的深度值的一个或多个像素的装置。 可以描述和要求保护其他实施例。

公开(公告)号：US20220150046A1

公开(公告)日：2022-05-12

申请号：US17477028

申请日：2021-09-16

Applicant: Intel Corporation

Inventor： Dumitru-Daniel Dinu ,  Emre Karabulut ,  Aditya Katragada ,  Geoffrey Strongin ,  Avinash L. Varna

IPC: H04L9/00 ,  G06F21/72

Abstract: A security processor includes a scheduler to read input data blocks from an input buffer, send the input data blocks to one or more cryptographic circuits in a first random order; and send data blocks having random values in a second random order to one or more of the cryptographic circuits that did not receive the input data blocks.

公开(公告)号：US10104122B2

公开(公告)日：2018-10-16

申请号：US14825645

申请日：2015-08-13

Applicant: Intel Corporation

Inventor： Scott H. Robinson ,  Jason Martin ,  Howard C. Herbert ,  Michael LeMay ,  Karanvir Ken S. Grewal ,  Keith L. Shippy ,  Geoffrey Strongin

IPC: H04L29/06 ,  H04L29/08 ,  G06K9/00

Abstract: Sensor data may be filtered in a secure environment. The filtering may limit distribution of the sensor data. Filtering may modify the sensor data, for example, to prevent identification of a person depicted in a captured image or to prevent acquiring a user's precise location. Filtering may also add or require other data use controls to access the data. Attestation that a filter policy is being applied and working properly or not may be provided as well.