公开(公告)号：US20180004982A1

公开(公告)日：2018-01-04

申请号：US15709342

申请日：2017-09-19

Applicant: Intel Corporation

Inventor： JEFFREY C. SEDAYAO ,  IVAN JIBAJA ,  SRIKANTH VARADARAJAN ,  RESHMA LAL ,  SOHAM JAYESH DESAI

IPC: G06F21/84 ,  G06F21/12

CPC classification number: G06F21/84 ,  G06F21/123 ,  G06F2221/2125

Abstract: The present application is directed to transparent execution of secret content. A device may be capable of downloading content that may include at least one secret portion, wherein any secret portions of the content may be directed to a secure workplace in the device not accessible to device operating system components, applications, users, etc. The device may then present the content in a manner that allows secret portions of the content to be executed without direct access. For example, the device may download content, and a director module in the device may direct any secret portions of the downloaded content to a secure workspace. During execution of the content, any inputs required by the secret portions may be provided to the secure workspace, and any resulting outputs from the secret portions may then be used during content presentation.

公开(公告)号：US20190036704A1

公开(公告)日：2019-01-31

申请号：US15855310

申请日：2017-12-27

Applicant: Intel Corporation

Inventor： DOUG DeVETTER ,  JAMES CHU ,  ADRIAN PEARSON ,  GAMIL CAIN ,  SRIKANTH VARADARAJAN

IPC: H04L9/32 ,  G06F21/60 ,  G06F3/06 ,  H04L9/14 ,  H04L9/30

Abstract: A system for verifying the secure erase of a storage device is provided. A storage device controller for the storage device logs the execution of a secure erase command. A storage device controller for the storage device receives an erase verify command from a host. The storage device controller retrieves one or more secure erase log entries from access-limited memory locations in non-volatile memory of the storage device. The storage device controller copies the one or more secure erase log entries to storage device buffer circuitry. The storage device controller secures the one or more secure erase log entries with one or more cryptographic keys to generate an encrypted and/or signed erase verification message. The storage device controller transmits the encrypted and/or signed erase verification message to the host, in response to receipt of the erase verify command.

公开(公告)号：US20160147982A1

公开(公告)日：2016-05-26

申请号：US14550959

申请日：2014-11-22

Applicant: Intel Corporation

Inventor： JEFFREY C. SEDAYAO ,  IVAN JIBAJA ,  SRIKANTH VARADARAJAN ,  RESHMA LAL ,  SOHAM JAYESH DESAI

IPC: G06F21/12

CPC classification number: G06F21/84 ,  G06F21/123 ,  G06F2221/2125

Abstract: The present application is directed to transparent execution of secret content. A device may be capable of downloading content that may include at least one secret portion, wherein any secret portions of the content may be directed to a secure workplace in the device not accessible to device operating system components, applications, users, etc. The device may then present the content in a manner that allows secret portions of the content to be executed without direct access. For example, the device may download content, and a director module in the device may direct any secret portions of the downloaded content to a secure workspace. During execution of the content, any inputs required by the secret portions may be provided to the secure workspace, and any resulting outputs from the secret portions may then be used during content presentation.

Abstract translation: 本申请旨在透明地执行秘密内容。 设备可能能够下载可以包括至少一个秘密部分的内容，其中内容的任何秘密部分可以被引导到设备操作系统组件，应用，用户等不可访问的设备中的安全工作场所。该设备 然后可以以允许内容的秘密部分执行而不需要直接访问的方式呈现内容。 例如，设备可以下载内容，并且设备中的引导器模块可以将下载的内容的任何秘密部分引导到安全的工作空间。 在执行内容期间，秘密部分所需的任何输入可以被提供给安全工作空间，然后可以在内容呈现期间使用秘密部分的任何结果输出。