公开(公告)号：US20160044005A1

公开(公告)日：2016-02-11

申请号：US14922931

申请日：2015-10-26

Applicant: Intel Corporation

Inventor： VINAY PHEGADE ,  ANAND RAJAN ,  Simon Johnson ,  Vincent Scarlata ,  Carlos Rozas ,  Nikhil Deshpande

IPC: H04L29/06

CPC classification number: H04L63/0428 ,  G06F21/57 ,  G06F21/60 ,  G06F21/64 ,  G06F2221/2105 ,  H04L63/126 ,  H04L63/302

Abstract: An apparatus for sharing information between entities includes a processor and a trusted execution module executing on the processor. The trusted execution module is configured to receive first confidential information from a first client device associated with a first entity, seal the first confidential information within a trusted execution environment, receive second confidential information from a second client device associated with a second entity, seal the second confidential information within the trusted execution environment, and execute code within the trusted execution environment. The code is configured to compute a confidential result based upon the first confidential information and the second confidential information.

Abstract translation: 用于在实体之间共享信息的装置包括处理器和在处理器上执行的可信执行模块。 可信执行模块被配置为从与第一实体相关联的第一客户端设备接收第一机密信息，将可信执行环境中的第一机密信息密封，从与第二实体相关联的第二客户端设备接收第二机密信息， 可信执行环境中的第二机密信息，并在可信执行环境内执行代码。 代码被配置为基于第一机密信息和第二机密信息来计算机密结果。

公开(公告)号：US20180173888A1

公开(公告)日：2018-06-21

申请号：US15897990

申请日：2018-02-15

Applicant: Intel Corporation

Inventor： RICHARD CHOW ,  EDWARD WANG ,  VINAY PHEGADE

IPC: G06F21/62 ,  H04L29/06 ,  G06F17/30 ,  G06F21/57

CPC classification number: G06F21/6218 ,  G06F16/22 ,  G06F16/278 ,  G06F16/9027 ,  G06F21/57 ,  G06F21/6227 ,  G06F21/6263 ,  G06F2221/2123 ,  H04L63/0428 ,  H04L63/102

Abstract: Systems, methods, and apparatus to provide private information retrieval are disclosed. An example apparatus includes a protected data enclave to store a first portion of data such that entities other than the first trusted hardware processing unit are unable to access the first portion of the data. The example apparatus includes a request processor to determine that a data element specified in a first request from an entity is stored in a second trusted hardware processing unit. The request processor is to send an encrypted request for the data element to the second trusted hardware processing unit, and send an encrypted dummy request to a third trusted hardware processing unit. The request processor is to determine whether an encrypted dummy response has been received from the third trusted hardware processing unit, and whether an encrypted response including the data element has been received from the second trusted hardware processing unit.

公开(公告)号：US20170093806A1

公开(公告)日：2017-03-30

申请号：US14866264

申请日：2015-09-25

Applicant: Intel Corporation

Inventor： VINAY PHEGADE ,  HUAIYU LIU ,  JESSE WALKER

IPC: H04L29/06 ,  H04L9/14

Abstract: Various embodiments are generally directed to the providing for mutual authentication and secure distributed processing of multi-party data. In particular, an experiment may be submitted to include the distributed processing of private data owned by multiple distrustful entities. Private data providers may authorize the experiment and securely transfer the private data for processing by trusted computing nodes in a pool of trusted computing nodes.

公开(公告)号：US20160283731A1

公开(公告)日：2016-09-29

申请号：US14665064

申请日：2015-03-23

Applicant: Intel Corporation

Inventor： RICHARD CHOW ,  EDWARD WANG ,  VINAY PHEGADE

IPC: G06F21/62 ,  G06F17/30 ,  H04L29/06

CPC classification number: G06F21/6218 ,  G06F17/30312 ,  G06F17/30584 ,  G06F17/30961 ,  G06F21/57 ,  G06F21/6227 ,  G06F21/6263 ,  G06F2221/2123 ,  H04L63/0428 ,  H04L63/102

Abstract: Systems, methods, and apparatus to provide private information retrieval. A disclosed example system includes a first trusted processing unit to store a first portion of data such that entities other than the first trusted processing unit are unable to access the first portion of the data in the first trusted processing unit; a second trusted processing unit to store a second portion of the data such that entities other than the second trusted processing unit are unable to access the second portion of the data in the second trusted processing unit; and a third trusted processing unit to: determine that a data element specified in a request is stored in the first trusted processing unit; request the data element from the first trusted processing unit; send a dummy request to the second trusted processing unit; and send the data element to a requester.

Abstract translation: 提供私人信息检索的系统，方法和设备。 所公开的示例系统包括：第一可信处理单元，用于存储数据的第一部分，使得除第一可信处理单元之外的实体不能访问第一可信处理单元中的数据的第一部分; 第二可信处理单元，用于存储数据的第二部分，使得除第二可信处理单元之外的实体不能访问第二可信处理单元中的数据的第二部分; 以及第三可信处理单元，用于：确定在所述第一可信处理单元中存储在请求中指定的数据元素; 从第一可信处理单元请求数据元素; 向第二可信处理单元发送伪请求; 并将数据元素发送到请求者。