公开(公告)号：US07533274B2

公开(公告)日：2009-05-12

申请号：US10712237

申请日：2003-11-13

Applicant: Joseph Wayne Freeman ,  Steven Dale Goodman ,  Randall Scott Springfield

Inventor： Joseph Wayne Freeman ,  Steven Dale Goodman ,  Randall Scott Springfield

IPC: G06F9/24 ,  G06F9/22 ,  G06F9/30

CPC classification number: G06F21/572 ,  G06F21/575

Abstract: A method, computer program product and system for reducing the boot time of a TCPA based computing system. A flash memory in the TCPA based computing system may include a register comprising bits configured to indicate whether the segments of the flash memory have been updated. The flash memory may further include a table configured to store measurements of the segments of the flash memory. The flash memory may further include a boot block code that includes a Core Root of Trust for Measurement (CRTM). The CRTM may read the bits in the register to determine if any of the segments of the flash memory have been updated. The CRTM may further obtain the measurement values in the table for those segments that store the POST BIOS code that have not been updated thereby saving time from measuring the POST BIOS code and consequently reducing the boot time.

Abstract translation: 一种用于减少基于TCPA的计算系统的启动时间的方法，计算机程序产品和系统。 基于TCPA的计算系统中的闪速存储器可以包括寄存器，其包括被配置为指示闪速存储器的段是否已被更新的位。 闪存可以进一步包括被配置为存储闪存的片段的测量的表。 闪速存储器还可以包括引导块代码，其包括用于测量的信任核心根（CRTM）。 CRTM可以读取寄存器中的位，以确定闪存中的任何段是否已更新。 CRTM可以进一步获得存储POST BIOS代码的那些片段的表中的测量值，从而节省了测量POST BIOS代码的时间，从而减少了引导时间。

公开(公告)号：US07319299B2

公开(公告)日：2008-01-15

申请号：US11167751

申请日：2005-06-27

Applicant: Joseph Wayne Freeman ,  Steven Dale Goodman ,  Isaac Karpel ,  Randall Scott Springfield

Inventor： Joseph Wayne Freeman ,  Steven Dale Goodman ,  Isaac Karpel ,  Randall Scott Springfield

IPC: H02P5/00

CPC classification number: G06F1/20 ,  F04D27/00 ,  F04D27/001 ,  F04D29/582

Abstract: A cooling fan, system and method for controlling cooling fans in a personal computer. A unique series of sensing points is placed on a rotating hub of a cooling fan in order to uniquely identify the particular type of cooling fan. A tachometer sensor mounted in the cooling fan detects the unique series of sensing points as the cooling fan rotates and generates a sequence of pulses corresponding to the detected sending points. This generated pulse signal may be transmitted by the sensor to the fan control code. The fan control code may determine a particular type of cooling fan that the cooling fan is based on the generated pulse signal. Once the fan control code determines the particular type of cooling fan that the cooling fan is, the fan control code uses particular control parameters set for that particular type of cooling fan to control the cooling fan so that it operates optimally.

Abstract translation: 一种用于控制个人计算机中的冷却风扇的冷却风扇，系统和方法。 为了唯一地识别特定类型的冷却风扇，将一系列传感点放置在冷却风扇的旋转轮毂上。 安装在冷却风扇中的转速计传感器在冷却风扇旋转时检测独特的感测点系列，并产生与检测到的发送点相对应的脉冲序列。 该生成的脉冲信号可以由传感器传输到风扇控制代码。 风扇控制代码可以确定冷却风扇基于生成的脉冲信号的特定类型的冷却风扇。 一旦风扇控制代码确定了冷却风扇的特定类型的冷却风扇，则风扇控制代码使用为特定类型的冷却风扇设置的特定控制参数来控制冷却风扇，使其最佳运行。

公开(公告)号：US07177782B2

公开(公告)日：2007-02-13

申请号：US10871848

申请日：2004-06-18

Applicant: Ohad Falik ,  Joseph Wayne Freeman ,  Isaac Karpel ,  James S. Rutledge ,  Randall Scott Springfield

Inventor： Ohad Falik ,  Joseph Wayne Freeman ,  Isaac Karpel ,  James S. Rutledge ,  Randall Scott Springfield

IPC: G06F15/00 ,  G06F12/00

CPC classification number: G06F11/348 ,  G06F11/0778 ,  G06F11/1666 ,  G06F11/2015

Abstract: Methods and arrangements for capturing information related to operational conditions are disclosed. Embodiments include volatile memory to quickly record operational parameters via, e.g., basic input output system (BIOS) code, system management interrupt (SMI) code and/or executing applications. Many embodiments provide an alternative power source and a voltage switch to protect against loss of the information between storage in the volatile memory and storage in the non-volatile memory. Some embodiments include a read controller that provides access to the volatile memory when primary power is available. The read controller may also offer direct access to the non-volatile memory in case of a catastrophic failure that renders the processing device substantially non-functional. Further embodiments include a second processing device to generate a usage model and/or to perform diagnostics with the operational parameters.

Abstract translation: 公开了捕获与操作条件有关的信息的方法和布置。 实施例包括通过例如基本输入输出系统（BIOS）代码，系统管理中断（SMI）代码和/或执行应用程序来快速记录操作参数的易失性存储器。 许多实施例提供了替代电源和电压开关，以防止在易失性存储器中的存储器和非易失性存储器中的存储之间的信息丢失。 一些实施例包括在主电源可用时提供对易失性存储器的访问的读取控制器。 在导致处理设备基本上不起作用的灾难性故障的情况下，读控制器还可以提供对非易失性存储器的直接访问。 另外的实施例包括用于生成使用模型和/或使用操作参数执行诊断的第二处理装置。

公开(公告)号：US07814532B2

公开(公告)日：2010-10-12

申请号：US09847085

申请日：2001-05-02

Applicant: Daryl Carvis Cromer ,  Joseph Wayne Freeman ,  Steven Dale Goodman ,  Eric Richard Kern ,  Randall Scott Springfield

Inventor： Daryl Carvis Cromer ,  Joseph Wayne Freeman ,  Steven Dale Goodman ,  Eric Richard Kern ,  Randall Scott Springfield

IPC: G06F7/04 ,  G08B29/00 ,  G06F9/00 ,  G06F15/177

CPC classification number: G06F21/575

Abstract: A data processing system and method of password protecting the boot of a data processing system are disclosed. According to the method, in response to an attempt to boot the data processing system utilizing a boot device, the boot device is interrogated for a password. If the boot device supplies password information corresponding to that of a trusted boot device, the data processing system boots utilizing the boot device. If, however, the boot device does not supply password information corresponding to that of a trusted boot device, booting from the boot device is inhibited. In a preferred embodiment, the password information comprises a unique combination of the boot device's manufacturer-supplied model and serial numbers.

Abstract translation: 公开了一种密码保护数据处理系统引导的数据处理系统和方法。 根据该方法，响应于利用引导设备引导数据处理系统的尝试，引导设备被询问密码。 如果引导设备提供与可信引导设备的密码信息相对应的密码信息，则数据处理系统使用引导设备引导。 但是，如果引导设备不提供与受信任引导设备相对应的密码信息，则禁止从引导设备引导。 在优选实施例中，密码信息包括引导设备的制造商提供的模型和序列号的唯一组合。

公开(公告)号：US20080184025A1

公开(公告)日：2008-07-31

申请号：US12058696

申请日：2008-03-29

Applicant: Richard Alan Dayan ,  Joseph Wayne Freeman ,  William Fred Keown ,  Randall Scott Springfield

Inventor： Richard Alan Dayan ,  Joseph Wayne Freeman ,  William Fred Keown ,  Randall Scott Springfield

IPC: G06F15/177

CPC classification number: G06F9/4406 ,  G06F11/1417 ,  G06F11/1441

Abstract: A system, computer program product and method for booting to a partition in a non-volatile storage unit without a local operator. In one embodiment, one or more bits in a BOOT register may be set by an operating system indicating if the BIOS should boot to the partition. The BIOS may then read the BOOT register to determine if the BIOS is to boot to the partition as well as any activities to perform if the BIOS is to boot to the partition. In another embodiment, a network interface card may insert directive information received from a packet in a register within the network interface card. The BIOS may then read the register within the network interface card to determine if the BIOS is to boot to the partition as well as any activities to perform if the BIOS is to boot to the partition.

Abstract translation: 用于在没有本地操作者的情况下引导到非易失性存储单元中的分区的系统，计算机程序产品和方法。 在一个实施例中，BOOT寄存器中的一个或多个位可以由操作系统设置，指示是否BIOS应该引导到分区。 然后，BIOS可以读取BOOT寄存器，以确定BIOS是否要引导到分区，以及BIOS是否要引导到分区时执行的任何活动。 在另一个实施例中，网络接口卡可以将从分组接收的指令信息插入网络接口卡内的寄存器中。 然后，BIOS可以读取网络接口卡内的寄存器，以确定BIOS是否要引导到分区，以及BIOS要启动到分区的任何活动。

公开(公告)号：US07366888B2

公开(公告)日：2008-04-29

申请号：US09876426

申请日：2001-06-07

Applicant: Richard Alan Dayan ,  Joseph Wayne Freeman ,  William Fred Keown, Jr. ,  Randall Scott Springfield

Inventor： Richard Alan Dayan ,  Joseph Wayne Freeman ,  William Fred Keown, Jr. ,  Randall Scott Springfield

IPC: G06F15/177

CPC classification number: G06F9/4406 ,  G06F11/1417 ,  G06F11/1441

Abstract: A system, computer program product and method for booting to a partition in a non-volatile storage unit without a local operator. In one embodiment, one or more bits in a BOOT register may be set by an operating system indicating if the BIOS should boot to the partition. The BIOS may then read the BOOT register to determine if the BIOS is to boot to the partition as well as any activities to perform if the BIOS is to boot to the partition. In another embodiment, a network interface card may insert directive information received from a packet in a register within the network interface card. The BIOS may then read the register within the network interface card to determine if the BIOS is to boot to the partition as well as any activities to perform if the BIOS is to boot to the partition.

Abstract translation: 用于在没有本地操作者的情况下引导到非易失性存储单元中的分区的系统，计算机程序产品和方法。 在一个实施例中，BOOT寄存器中的一个或多个位可以由操作系统设置，指示是否BIOS应该引导到分区。 然后，BIOS可以读取BOOT寄存器，以确定BIOS是否要引导到分区，以及BIOS是否要引导到分区时执行的任何活动。 在另一个实施例中，网络接口卡可以将从分组接收的指令信息插入网络接口卡内的寄存器中。 然后，BIOS可以读取网络接口卡内的寄存器，以确定BIOS是否要引导到分区，以及BIOS要启动到分区的任何活动。

公开(公告)号：US07191464B2

公开(公告)日：2007-03-13

申请号：US09978381

申请日：2001-10-16

Applicant: Daryl Carvis Cromer ,  Joseph Wayne Freeman ,  Steven Dale Goodman ,  Eric Richard Kern ,  Randall Scott Springfield

Inventor： Daryl Carvis Cromer ,  Joseph Wayne Freeman ,  Steven Dale Goodman ,  Eric Richard Kern ,  Randall Scott Springfield

IPC: H04L9/32 ,  G06F15/177

CPC classification number: G06F21/575

Abstract: A method, system and computer readable medium containing programming instructions for tracking a secure boot in a computer system having a plurality of devices is disclosed. The method, system and computer readable medium include providing an embedded security system (ESS) in the computer system, wherein the ESS includes at least one boot platform configuration register (PCR) and a shadow PCR for each of the at least one boot PCRs, initiating a platform reset to boot the computer system via BIOS, and, for a device booted, generating a measurement value for the device and extending that value to one of the at least one boot PCRs and its corresponding shadow PCR. The system, method and computer readable medium of the present invention also includes comparing the measurement values of the boot PCRs to their corresponding shadow PCRs, whereby the computer system is trusted if the measurement values match.

Abstract translation: 公开了一种包含用于在具有多个设备的计算机系统中跟踪安全引导的编程指令的方法，系统和计算机可读介质。 所述方法，系统和计算机可读介质包括在所述计算机系统中提供嵌入式安全系统（ESS），其中所述ESS包括用于所述至少一个启动PCR中的每一个的至少一个引导平台配置寄存器（PCR）和阴影PCR， 启动平台重置以通过BIOS引导计算机系统，并且对于引导的设备，生成所述设备的测量值并将该值扩展到所述至少一个启动PCR中的一个及其相应的阴影PCR。 本发明的系统，方法和计算机可读介质还包括将引导PCR的测量值与其相应的阴影PCR进行比较，从而如果测量值匹配，则计算机系统被信任。

公开(公告)号：US07174465B2

公开(公告)日：2007-02-06

申请号：US10180160

申请日：2002-06-26

Applicant: Joseph Wayne Freeman ,  Chad Lee Gettelfinger ,  Steven Dale Goodman ,  William Fred Keown, Jr. ,  Eric Richard Kern ,  Randall Scott Springfield

Inventor： Joseph Wayne Freeman ,  Chad Lee Gettelfinger ,  Steven Dale Goodman ,  William Fred Keown, Jr. ,  Eric Richard Kern ,  Randall Scott Springfield

IPC: H04L9/32 ,  H04L9/00

CPC classification number: G06F21/57

Abstract: A method is disclosed for securely updating system attributes of a client computer with a BIOS and includes signing a public key of a secure server with a private key of the BIOS prior to completion of manufacturing of the client computer to create an encrypted public key and embedded private key stored at the server. The method includes receiving at the server a request packet transmitted from the client computer requesting system attribute modification, encrypting the request packet to create an encrypted packet, and transmitting a return packet to client computer comprising the encrypted packet, the server's public key, and server instructions. The client computer decrypts the request packet using the server's public key and compares it to the original request packet, and if identical, executes the server instructions to modify the client computer's boot block to update client computer's system attributes.

Abstract translation: 公开了一种用于使用BIOS安全地更新客户端计算机的系统属性的方法，并且包括在完成客户端计算机的制造之前用BIOS的私钥对安全服务器的公共密钥进行签名以创建加密的公共密钥并且嵌入 私钥存储在服务器端。 该方法包括在服务器处接收从客户端计算机发送的请求系统属性修改的请求分组，对请求分组进行加密以创建加密的分组，以及向包括加密分组，服务器的公钥和服务器的客户端计算机发送返回分组 说明。 客户端计算机使用服务器的公钥解密请求包，并将其与原始请求包进行比较，如果相同，则执行服务器指令修改客户端计算机的启动块以更新客户端计算机的系统属性。

公开(公告)号：US07082129B2

公开(公告)日：2006-07-25

申请号：US10134936

申请日：2002-04-29

Applicant: Daryl Carvis Cromer ,  Joseph Wayne Freeman ,  Chad Lee Gettelfinger ,  Steven Dale Goodman ,  Eric Richard Kern ,  Randall Scott Springfield

Inventor： Daryl Carvis Cromer ,  Joseph Wayne Freeman ,  Chad Lee Gettelfinger ,  Steven Dale Goodman ,  Eric Richard Kern ,  Randall Scott Springfield

IPC: H04L12/28

CPC classification number: G06F1/3209 ,  H04L12/12 ,  H04L45/20 ,  Y02D50/40

Abstract: In a computer network including a plurality of interconnected computers, one of the computers being a sleeping computer in a power down state, the sleeping computer listening for a packet associated with the sleeping computer, a method and system of waking the sleeping computer from the computer network. An incoming packet of data is transmitted from one of the computers in the network to the sleeping computer. When the sleeping computer detects the incoming packet, it determines if the incoming packet contains a data sequence associated with the sleeping computer. Further, the sleeping computer compares a transit value in the incoming packet to a predetermined value stored at the sleeping computer. The transit value indicates how far the data packet has traveled through the network, indicating the approximate origin of the data packet. Knowing the approximate origin of the data packet allows the client system to identify if the data packet originated from an external network. The predetermined value represents an origin within the internal network. Accordingly, if the incoming packet matches the particular data sequence associated with the sleeping computer, and the transit value in the packet matches the predetermined value stored at the sleeping computer, then a signal is issued to wake the sleeping computer. Otherwise, the incoming packet is discarded and the sleeping computer is not awaken.

Abstract translation: 在包括多个相互连接的计算机的计算机网络中，计算机中的一个是处于断电状态的休眠计算机，睡眠计算机监听与休眠计算机相关联的分组，从计算机唤醒睡眠计算机的方法和系统 网络。 传入的数据包从网络中的一台计算机发送到睡眠计算机。 当睡眠计算机检测到传入分组时，它确定传入分组是否包含与睡眠计算机相关联的数据序列。 此外，睡眠计算机将输入分组中的传输值与存储在睡眠计算机上的预定值进行比较。 传输值表示数据分组通过网络传播的距离，指示数据分组的近似来源。 知道数据包的近似来源允许客户端系统识别数据包是否源自外部网络。 预定值表示内部网络内的原点。 因此，如果输入分组与休眠计算机相关联的特定数据序列匹配，并且分组中的传输值与存储在睡眠计算机上的预定值匹配，则发出信号以唤醒睡眠计算机。 否则，传入的数据包被丢弃，并且睡眠的计算机没有被唤醒。

公开(公告)号：US06658562B1

公开(公告)日：2003-12-02

申请号：US09649440

申请日：2000-08-25

Applicant: Ralph Bonomo ,  Richard Alan Dayan ,  Joseph Wayne Freeman ,  Robert Duane Johnson ,  Diane Nolterieke ,  Randall Scott Springfield

Inventor： Ralph Bonomo ,  Richard Alan Dayan ,  Joseph Wayne Freeman ,  Robert Duane Johnson ,  Diane Nolterieke ,  Randall Scott Springfield

IPC: G06F924

CPC classification number: G06F9/44505 ,  G06F9/4401 ,  G06F21/572

Abstract: A method, system, and program for selecting and implementing a basic input/output system (“BIOS”) configuration among various BIOS configurations for a data processing system are disclosed. Different BIOS configurations are defined for various types of users, such as a home user, a commercial user, and a network user. Each of the BIOS configurations includes a different set of BIOS characteristics, such as program setup features security features, and network server features, under which the data processing system is able to run. The different BIOS configurations are stored into a memory device for the data processing system. A designation is set within the memory device that directs a processor of the data processing system to select and execute a desired one of the BIOS configurations for a particular type of user.

Abstract translation: 公开了一种用于在数据处理系统的各种BIOS配置之间选择和实现基本输入/输出系统（“BIOS”）配置的方法，系统和程序。 为各种类型的用户（例如家庭用户，商业用户和网络用户）定义不同的BIOS配置。 每个BIOS配置包括一组不同的BIOS特性，例如程序设置功能，安全功能和网络服务器功能，数据处理系统可以在这些功能下运行。 不同的BIOS配置被存储到用于数据处理系统的存储器设备中。 在存储器设备内设置指示数据处理系统的处理器为特定类型的用户选择并执行所需的一个BIOS配置的指定。