Network access control for many-core systems
    2.
    发明授权
    Network access control for many-core systems 有权
    多核系统的网络访问控制

    公开(公告)号:US08930580B2

    公开(公告)日:2015-01-06

    申请号:US13472422

    申请日:2012-05-15

    IPC分类号: G06F15/16 H04L29/06 G06F9/455

    摘要: In a processor based system comprising a plurality of logical machines, selecting a logical machine of the system to serve as a host; the host communicating with a policy decision point (PDP) of a network to provision a data channel interconnecting the processor based system and the network and to provision a logical data channel interconnecting each logical machine of the system to the network.

    摘要翻译: 在包括多个逻辑机器的基于处理器的系统中,选择系统的逻辑机器用作主机; 主机与网络的策略决策点(PDP)进行通信,以提供互连基于处理器的系统和网络的数据信道,并且提供将系统的每个逻辑机器互连到网络的逻辑数据信道。

    NETWORK ACCESS CONTROL FOR MANY-CORE SYSTEMS
    3.
    发明申请
    NETWORK ACCESS CONTROL FOR MANY-CORE SYSTEMS 审中-公开
    多核系统的网络访问控制

    公开(公告)号:US20120226825A1

    公开(公告)日:2012-09-06

    申请号:US13472422

    申请日:2012-05-15

    IPC分类号: G06F15/16

    摘要: In a processor based system comprising a plurality of logical machines, selecting a logical machine of the system to serve as a host; the host communicating with a policy decision point (PDP) of a network to provision a data channel interconnecting the processor based system and the network and to provision a logical data channel interconnecting each logical machine of the system to the network.

    摘要翻译: 在包括多个逻辑机器的基于处理器的系统中,选择系统的逻辑机器用作主机; 主机与网络的策略决策点(PDP)进行通信,以提供互连基于处理器的系统和网络的数据信道,并且提供将系统的每个逻辑机器互连到网络的逻辑数据信道。

    Network access control for many-core systems
    4.
    发明授权
    Network access control for many-core systems 有权
    多核系统的网络访问控制

    公开(公告)号:US08180923B2

    公开(公告)日:2012-05-15

    申请号:US11290408

    申请日:2005-11-29

    IPC分类号: G06F15/16

    摘要: In a processor based system comprising a plurality of logical machines, selecting a logical machine of the system to serve as a host; the host communicating with a policy decision point (PDP) of a network to provision a data channel interconnecting the processor based system and the network and to provision a logical data channel interconnecting each logical machine of the system to the network.

    摘要翻译: 在包括多个逻辑机器的基于处理器的系统中,选择系统的逻辑机器用作主机; 主机与网络的策略决策点(PDP)进行通信,以提供互连基于处理器的系统和网络的数据信道,并且提供将系统的每个逻辑机器互连到网络的逻辑数据信道。

    Network access control for many-core systems
    5.
    发明申请
    Network access control for many-core systems 有权
    多核系统的网络访问控制

    公开(公告)号:US20070124434A1

    公开(公告)日:2007-05-31

    申请号:US11290408

    申请日:2005-11-29

    IPC分类号: G06F15/177

    摘要: In a processor based system comprising a plurality of logical machines, selecting a logical machine of the system to serve as a host; the host communicating with a policy decision point (PDP) of a network to provision a data channel interconnecting the processor based system and the network and to provision a logical data channel interconnecting each logical machine of the system to the network.

    摘要翻译: 在包括多个逻辑机器的基于处理器的系统中,选择系统的逻辑机器用作主机; 主机与网络的策略决策点(PDP)进行通信,以提供互连基于处理器的系统和网络的数据信道,并且提供将系统的每个逻辑机器互连到网络的逻辑数据信道。

    Techniques for authenticated posture reporting and associated enforcement of network access
    6.
    发明申请
    Techniques for authenticated posture reporting and associated enforcement of network access 有权
    用于认证状态报告和网络访问相关实施的技术

    公开(公告)号:US20100107224A1

    公开(公告)日:2010-04-29

    申请号:US12655024

    申请日:2009-12-22

    IPC分类号: G06F17/00

    摘要: Architectures and techniques that allow a firmware agent to operate as a tamper-resistant agent on a host platform that may be used as a trusted policy enforcement point (PEP) on the host platform to enforce policies even when the host operating system is compromised. The PEP may be used to open access control and/or remediation channels on the host platform. The firmware agent may also act as a local policy decision point (PDP) on the host platform in accordance with an authorized enterprise PDP entity by providing policies if a host trust agent is non-responsive and may function as a passive agent when the host trust agent is functional.

    摘要翻译: 允许固件代理在主机平台上作为防篡改代理操作的体系结构和技术,可在主机平台上用作受信任的策略执行点(PEP),即使主机操作系统受到威胁也可执行策略。 PEP可用于在主机平台上打开访问控制和/或修复通道。 固件代理还可以根据授权的企业PDP实体在主机平台上作为本地策略决策点(PDP),通过在主机信任代理不响应时提供策略,并且当主机信任时可以用作被动代理 代理功能。

    Method, apparatus and system for protecting security keys on a wireless platform
    9.
    发明授权
    Method, apparatus and system for protecting security keys on a wireless platform 有权
    用于在无线平台上保护安全密钥的方法,装置和系统

    公开(公告)号:US08422678B2

    公开(公告)日:2013-04-16

    申请号:US11281982

    申请日:2005-11-16

    申请人: Kapil Sood Ned Smith

    发明人: Kapil Sood Ned Smith

    IPC分类号: H04L29/06

    CPC分类号: H04L9/0844 H04L2209/80

    摘要: A method, apparatus and system enable security keys to be processed in a dedicated partition on a secure wireless platform. Specifically, embodiments of the present invention may utilize a secure processing area (i.e., a dedicated partition) to generate security keys and to utilize the security keys to perform a 4-way handshake to provide confidentiality and integrity protection for all data communication between the wireless node and an access point.

    摘要翻译: 方法,装置和系统使安全密钥能够在安全无线平台上的专用分区中被处理。 具体地,本发明的实施例可以利用安全处理区域(即,专用分区)来生成安全密钥,并且利用安全密钥来执行4次握手以对无线之间的所有数据通信提供保密性和完整性保护 节点和接入点。

    Techniques for Authenticated Posture Reporting and Associated Enforcement of Network Access
    10.
    发明申请
    Techniques for Authenticated Posture Reporting and Associated Enforcement of Network Access 有权
    用于认证的姿势报告和关联的网络访问执行技术

    公开(公告)号:US20100071032A1

    公开(公告)日:2010-03-18

    申请号:US12460736

    申请日:2009-07-23

    IPC分类号: H04L9/32

    摘要: Architectures and techniques that allow a firmware agent to operate as a tamper-resistant agent on a host platform that may be used as a trusted policy enforcement point (PEP) on the host platform to enforce policies even when the host operating system is compromised. The PEP may be used to open access control and/or remediation channels on the host platform. The firmware agent may also act as a local policy decision point (PDP) on the host platform in accordance with an authorized enterprise PDP entity by providing policies if a host trust agent is non-responsive and may function as a passive agent when the host trust agent is functional.

    摘要翻译: 允许固件代理在主机平台上作为防篡改代理操作的体系结构和技术,可在主机平台上用作受信任的策略执行点(PEP),即使主机操作系统受到威胁也可执行策略。 PEP可用于在主机平台上打开访问控制和/或修复通道。 如果主机信任代理不响应,固件代理还可以根据授权的企业PDP实体在主机平台上作为本地策略决策点(PDP),通过提供策略,并且当主机信任时可以用作被动代理 代理功能。