公开(公告)号：US5590289A

公开(公告)日：1996-12-31

申请号：US384472

申请日：1995-01-31

申请人： Joseph M. Nardone ,  Michael J. McTague ,  Howard S. David

发明人： Joseph M. Nardone ,  Michael J. McTague ,  Howard S. David

IPC分类号： G06F9/445 ,  G06F12/06 ,  G06F13/14

CPC分类号： G06F12/0653 ,  G06F12/0661 ,  G06F12/0684 ,  G06F9/445

摘要： A hybrid decoding module which resides on the computer system's high speed memory bus. The computer system incorporating the hybrid decoding module scheme is capable of having centrally decoded resources on the memory bus as well as resources capable of decoding memory bus addresses directly. During system initialization, or after a hard reset, the decoding logic polls each of the resources on the memory bus to determine whether the resource is a centrally decoded resource or a distributed decode resource. A table is maintained for all centrally decoded resources such that when addresses are put out by the processor during run-time, the decoding logic is capable of directing control to the centrally decoded resource. Another aspect of the present invention is implemented during the initialization of the system. When resources are polled by the decoding logic, they are also provided with an identifier which identifies the last available I/O space slot. If the memory bus resource requires this I/O space for its own use, it signals the decoding module that it should be assigned to that resource.

摘要翻译： 位于计算机系统的高速存储器总线上的混合解码模块。 结合混合解码模块方案的计算机系统能够在存储器总线上具有集中解码的资源以及能够直接解码存储器总线地址的资源。 在系统初始化期间或硬复位之后，解码逻辑轮询存储器总线上的每个资源以确定资源是集中解码的资源还是分布式解码资源。 维护所有中央解码的资源的表格，使得当运行时地址被处理器放出时，解码逻辑能够将控制权指向中央解码的资源。 在系统的初始化期间实现本发明的另一方面。 当资源被解码逻辑调查时，它们还被提供有识别最后可用的I / O空间时隙的标识符。 如果内存总线资源需要此I / O空间供其自己使用，则会向解码模块发出应该分配给该资源的信号。

公开(公告)号：US5668949A

公开(公告)日：1997-09-16

申请号：US545374

申请日：1995-10-19

申请人： Joseph M. Nardone ,  Michael J. McTague ,  Howard S. David

发明人： Joseph M. Nardone ,  Michael J. McTague ,  Howard S. David

IPC分类号： G06F12/06 ,  G06F12/10 ,  G06F13/12

CPC分类号： G06F12/0653 ,  G06F12/0684

摘要： A hybrid decoding module which resides on the computer system's high speed memory bus. The computer system incorporating the hybrid decoding module scheme is capable of having centrally decoded resources on the memory bus as well as resources capable of decoding memory bus addresses directly. During system initialization, or after a hard reset, the decoding logic polls each of the resources on the memory bus to determine whether the resource is a centrally decoded resource or a distributed decode resource. A table is maintained for all centrally decoded resources such that when addresses are put out by the processor during run-time, the decoding logic is capable of directing control to the centrally decoded resource. Another aspect of the present invention is implemented during the initialization of the system. When resources are polled by the decoding logic, they are also provided with an identifier which identifies the last available I/O space slot. If the memory bus resource requires this I/O space for its own use, it signals the decoding module that it should be assigned to that resource.

摘要翻译： 位于计算机系统的高速存储器总线上的混合解码模块。 结合混合解码模块方案的计算机系统能够在存储器总线上具有集中解码的资源以及能够直接解码存储器总线地址的资源。 在系统初始化期间或硬复位之后，解码逻辑轮询存储器总线上的每个资源以确定资源是集中解码的资源还是分布式解码资源。 维护所有中央解码的资源的表格，使得当运行时地址被处理器放出时，解码逻辑能够将控制权指向中央解码的资源。 在系统的初始化期间实现本发明的另一方面。 当资源被解码逻辑调查时，它们还被提供有识别最后可用的I / O空间时隙的标识符。 如果内存总线资源需要此I / O空间供其自己使用，则会向解码模块发出应该分配给该资源的信号。

公开(公告)号：US06205550B1

公开(公告)日：2001-03-20

申请号：US08924740

申请日：1997-09-05

申请人： Joseph M. Nardone ,  Richard P. Mangold ,  Jody L. Pfotenhauer ,  Keith L. Shippy ,  David W. Aucsmith ,  Richard L. Maliszewski ,  Gary L. Graunke

发明人： Joseph M. Nardone ,  Richard P. Mangold ,  Jody L. Pfotenhauer ,  Keith L. Shippy ,  David W. Aucsmith ,  Richard L. Maliszewski ,  Gary L. Graunke

IPC分类号： G06F1130

CPC分类号： G06F12/1408 ,  G06F21/10 ,  G06F21/14 ,  G06F21/52 ,  G06F21/57 ,  G06F21/79 ,  G06F2221/2107 ,  G06F2221/2135 ,  G06F2221/2151 ,  G11B20/00086

摘要： In one apparatus, a number of obfuscated programming instructions are equipped to self-verify whether execution of the obfuscated programming instructions is being observed. In another apparatus, a number of obfuscated programming instruction are equipped to determine whether the apparatus is being operated in a mode that supports single step execution of the obfuscated programming instructions. In yet another apparatus, a number of obfuscated programming instruction are equipped to verify whether an amount of elapsed execution time has exceeded a threshold. In yet another apparatus, a first and a second group of obfuscated programming instruction are provided to implement a first and a second tamper resistant technique respectively, with the first and the second group of programming instructions sharing a storage location for a first and a second key value corresponding to the first and the second tamper resistant technique.

摘要翻译： 在一种装置中，配置了许多模糊编程指令来自我验证是否正在观察到模糊编程指令的执行。 在另一装置中，配备有多个模糊编程指令，以确定装置是否以支持模糊编程指令的单步执行的模式操作。 在另一装置中，配备有多个模糊编程指令，以验证经过的执行时间量是否超过阈值。 在另一装置中，提供第一组和第二组混淆编程指令以分别实现第一和第二防篡改技术，第一组和第二组编程指令共享用于第一和第二键的存储位置 值对应于第一和第二防篡改技术。

公开(公告)号：US06175925B1

公开(公告)日：2001-01-16

申请号：US08924167

申请日：1997-09-05

申请人： Joseph M. Nardone ,  Richard P. Mangold ,  Jody L. Pfotenhauer ,  Keith L. Shippy ,  David W. Aucsmith ,  Richard L. Maliszewski ,  Gary L. Graunke

发明人： Joseph M. Nardone ,  Richard P. Mangold ,  Jody L. Pfotenhauer ,  Keith L. Shippy ,  David W. Aucsmith ,  Richard L. Maliszewski ,  Gary L. Graunke

IPC分类号： G06F1130

CPC分类号： G11B20/00086 ,  G06F12/1408 ,  G06F21/10 ,  G06F21/14 ,  G06F21/52 ,  G06F21/57 ,  G06F21/79 ,  G06F2221/2107 ,  G06F2221/2135 ,  G06F2221/2151

摘要： In one apparatus, a group of plain text and obfuscated cells of programming instructions is provided to implement a descrambler that descrambles scrambled content to generate descrambled content. In another apparatus, a group of plain text and obfuscated cells of programming instructions is provided to implement an authenticator that provides appropriate authentication challenges to a scrambled content provider, and generates appropriate authentication responses to authentication challenges from the scrambled content provider. In yet another apparatus, a group of plain text and obfuscated cells of programming instructions is provided to implement an integrity verifier that performs integrity verification on a decoder. In yet another apparatus, a group of plain text and obfuscated cells of programming instructions is provided to implement a secrets holder that holds a number of secrets associated with playing scrambled contents.

摘要翻译： 在一种装置中，提供了一组编程指令的纯文本和混淆单元，以实现解扰器，其解扰加扰的内容以产生解扰的内容。 在另一种装置中，提供了一组编程指令的明文和混淆单元，以实现向加扰的内容提供商提供适当的认证挑战的认证器，并从加扰的内容提供商产生对认证挑战的适当认证响应。 在又一设备中，提供了一组编程指令的纯文本和混淆单元，以实现在解码器上执行完整性验证的完整性验证器。 在另一装置中，提供一组编程指令的明文和混淆单元，以实现保存与播放加扰内容相关联的多个秘密的秘密持有者。

公开(公告)号：US5991403A

公开(公告)日：1999-11-23

申请号：US772692

申请日：1996-12-23

申请人： David Aucsmith ,  Joseph M. Nardone ,  Robert Sullivan

发明人： David Aucsmith ,  Joseph M. Nardone ,  Robert Sullivan

IPC分类号： H04N7/167 ,  H04N7/50 ,  H04L9/00

CPC分类号： H04N7/1675 ,  H04N19/61 ,  H04N21/2347 ,  H04N21/26613

摘要： A method for encoding MPEG compatible video data for subsequent compression comprises detecting a plurality of frames of video data organized as a GOP, generating an encryption key for the GOP, and encrypting the video data using GOP-synchronized substitution, transposition, and rotation transformations that are parameterized by offsets derived from the generated encryption key.

摘要翻译： 用于对用于后续压缩的MPEG兼容视频数据进行编码的方法包括检测组织为GOP的多个视频数据帧，生成GOP的加密密钥，以及使用GOP同步替换，转置和旋转变换来加密视频数据， 通过从生成的加密密钥导出的偏移进行参数化。

公开(公告)号：US06178509B1

公开(公告)日：2001-01-23

申请号：US08924166

申请日：1997-09-05

申请人： Joseph M. Nardone ,  Richard T. Mangold ,  Jody L. Pfotenhauer ,  Keith L. Shippy ,  David W. Aucsmith ,  Richard L. Maliszewski ,  Gary L. Graunke

发明人： Joseph M. Nardone ,  Richard T. Mangold ,  Jody L. Pfotenhauer ,  Keith L. Shippy ,  David W. Aucsmith ,  Richard L. Maliszewski ,  Gary L. Graunke

IPC分类号： H04L900

CPC分类号： G11B20/00086 ,  G06F12/1408 ,  G06F21/10 ,  G06F21/14 ,  G06F21/52 ,  G06F21/57 ,  G06F21/79 ,  G06F2221/2107 ,  G06F2221/2135 ,  G06F2221/2151

摘要： In one apparatus, a number of obfuscated programming instructions is provided to perform integrity verification on a number of other plain text programming instructions. In another apparatus, a number of obfuscated programming instructions is provided to self-verify an invocation of the obfuscated programming instructions is not originated from an intruder.

摘要翻译： 在一种装置中，提供了许多模糊编程指令以对许多其他纯文本编程指令执行完整性验证。 在另一种装置中，提供了许多混淆的编程指令来自我验证，混淆编程指令的调用不是源于入侵者。

公开(公告)号：US5805700A

公开(公告)日：1998-09-08

申请号：US730065

申请日：1996-10-15

申请人： Joseph M. Nardone ,  Keith L. Shippy ,  David W. Aucsmith

发明人： Joseph M. Nardone ,  Keith L. Shippy ,  David W. Aucsmith

IPC分类号： H04N7/167 ,  H04N7/46 ,  H04N7/50 ,  H04N21/2347

CPC分类号： H04N21/23476 ,  H04N19/577 ,  H04N19/61 ,  H04N7/1675

摘要： Basic transfer units (BTUs) of compressed video data of video images are selectively encrypted in accordance with an encryption policy to degrade the video images to at least a virtually useless state, if the selectively encrypted compressed video images were to be rendered without decryption. As a result, degradation that approximates the level provided by the total encryption approach is achieved, but requiring only a fraction of the processor cycle cost required by the total encryption approach, to decrypt and render the video images.

摘要翻译： 视频图像的压缩视频数据的基本传送单元（BTU）根据加密策略被选择性地加密，以将视频图像降级到至少几乎无用的状态，如果选择性地加密的压缩视频图像被无需解密地呈现。 结果，实现了近似总加密方法提供的级别的劣化，但是仅需要总加密方法所需的处理器周期成本的一小部分来解密和呈现视频图像。