公开(公告)号：US20100122250A1

公开(公告)日：2010-05-13

申请号：US12269668

申请日：2008-11-12

Applicant: David Carroll Challener ,  Mark Charles Davis ,  Randall Scott Springfield ,  Rod D. Waltermann

Inventor： David Carroll Challener ,  Mark Charles Davis ,  Randall Scott Springfield ,  Rod D. Waltermann

IPC: G06F9/445 ,  G06F9/455 ,  G06F9/46 ,  G06F15/177

CPC classification number: G06F21/53 ,  G06F8/61 ,  G06F9/4401 ,  G06F9/45558 ,  G06F9/468 ,  G06F21/575 ,  G06F2009/45562 ,  G06F2009/45587

Abstract: An apparatus, system, and method are disclosed for granting hypervisor privileges. An installation module installs a monitor hypervisor wherein only the monitor hypervisor is granted the hypervisor privileges by the computer. An authentication module authenticates a second hypervisor. An eviction module evicts the monitor hypervisor if the second hypervisor is authenticated. The installation module further installs the second hypervisor after the monitor hypervisor is evicted so that only the second hypervisor is granted hypervisor privileges by the computer

Abstract translation: 公开了用于授予管理程序特权的装置，系统和方法。 安装模块安装监视器管理程序，其中只有监视器管理程序被计算机授予管理程序的权限。 认证模块认证第二管理程序。 如果第二个管理程序被认证，驱逐模块将使监视器管理程序移走。 在监视器管理程序被驱逐之后，安装模块进一步安装第二管理程序，使得只有第二管理程序被计算机授予管理程序特权

公开(公告)号：US07424745B2

公开(公告)日：2008-09-09

申请号：US11057804

申请日：2005-02-14

Applicant: Richard W. Cheston ,  Daryl Carvis Cromer ,  Mark Charles Davis ,  Howard Jeffrey Locker ,  Randall Scott Springfield

Inventor： Richard W. Cheston ,  Daryl Carvis Cromer ,  Mark Charles Davis ,  Howard Jeffrey Locker ,  Randall Scott Springfield

IPC: G06F11/30 ,  G06F12/14 ,  G06F7/04 ,  G06F17/30 ,  H04L9/32 ,  G06K9/00 ,  G06F15/177 ,  G06F15/16 ,  G06F15/18 ,  G08B23/00

CPC classification number: G06F21/575 ,  G06F21/56 ,  G06F2221/2115 ,  H04L63/1433 ,  H04L63/145

Abstract: A method and system is described for a wireless client computer to be connected via an access point to a network only if the wireless client computer has executed all requisite anti-virus programs. Where necessary, a signal from the access point notifies an anti-viral program server that an anti-virus needs to be immediately downloaded to the wireless client computer. An anti-virus fix is installed on the wireless client computer, and a full session is then initiated between the wireless client computer and a wireless network via the access point.

Abstract translation: 如果无线客户端计算机已经执行了所有必要的防病毒程序，则描述了一种无线客户端计算机通过接入点连接到网络的方法和系统。 必要时，来自接入点的信号通知反病毒程序服务器需要立即将防病毒下载到无线客户端计算机。 在无线客户端计算机上安装了防病毒修复程序，然后通过接入点在无线客户端计算机和无线网络之间启动完整会话。

公开(公告)号：US07210166B2

公开(公告)日：2007-04-24

申请号：US10967761

申请日：2004-10-16

Applicant: Mark Charles Davis ,  Randall Scott Springfield

Inventor： Mark Charles Davis ,  Randall Scott Springfield

IPC: H04L9/00 ,  G06F15/177 ,  G06F17/30

CPC classification number: H04L9/3228 ,  G06F21/31 ,  G06F21/575 ,  H04L9/0863 ,  H04L9/0869 ,  H04L9/0897 ,  H04L63/083 ,  H04L2463/081

Abstract: A method, system, and program product for enabling administrative recovery of a user's lost/forgotten boot-up passwords without compromising the administrative/master password(s). A restricted-use password is dynamically generated from a first hash of a random number generated on a client system and a secret retrieved from a secure device associated with the client system. The restricted-use password operates as a master password but is not the administrative password of the client system. Once the password is generated, it is provided to the user/client system to enable user access to said client system and hardfile and reset of the user passwords.

Abstract translation: 一种方法，系统和程序产品，用于在不影响管理/主密码的情况下实现对用户丢失/遗忘启动密码的管理恢复。 从客户端系统上产生的随机数的第一个哈希值和从与客户机系统相关联的安全设备检索的秘密，动态地生成受限制的密码。 受限使用的密码作为主密码操作，但不是客户端系统的管理密码。 一旦生成密码，就将它提供给用户/客户端系统，以使用户能够访问所述客户端系统，并且硬文件和用户密码的复位。

公开(公告)号：US08205197B2

公开(公告)日：2012-06-19

申请号：US12269668

申请日：2008-11-12

Applicant: David Carroll Challener ,  Mark Charles Davis ,  Randall Scott Springfield ,  Rod D. Waltermann

Inventor： David Carroll Challener ,  Mark Charles Davis ,  Randall Scott Springfield ,  Rod D. Waltermann

IPC: G06F9/455 ,  G06F9/46

CPC classification number: G06F21/53 ,  G06F8/61 ,  G06F9/4401 ,  G06F9/45558 ,  G06F9/468 ,  G06F21/575 ,  G06F2009/45562 ,  G06F2009/45587

Abstract: An apparatus, system, and method are disclosed for granting hypervisor privileges. An installation module installs a monitor hypervisor wherein only the monitor hypervisor is granted the hypervisor privileges by the computer. An authentication module authenticates a second hypervisor. An eviction module evicts the monitor hypervisor if the second hypervisor is authenticated. The installation module further installs the second hypervisor after the monitor hypervisor is evicted so that only the second hypervisor is granted hypervisor privileges by the computer.

Abstract translation: 公开了用于授予管理程序特权的装置，系统和方法。 安装模块安装监视器管理程序，其中只有监视器管理程序被计算机授予管理程序的权限。 认证模块认证第二管理程序。 如果第二个管理程序被认证，驱逐模块将使监视器管理程序移走。 在监视器管理程序被驱逐之后，安装模块进一步安装第二管理程序，以便计算机只能向管理程序授予管理程序权限。

公开(公告)号：US08706642B2

公开(公告)日：2014-04-22

申请号：US11609814

申请日：2006-12-12

Applicant: Stacy John Cannady ,  David Carroll Challener ,  Daryl Cromer ,  Mark Charles Davis ,  David Rivera ,  Randall Scott Springfield ,  Rod D. Waltermann

Inventor： Stacy John Cannady ,  David Carroll Challener ,  Daryl Cromer ,  Mark Charles Davis ,  David Rivera ,  Randall Scott Springfield ,  Rod D. Waltermann

IPC: G06Q20/00

CPC classification number: G07F7/08 ,  G06Q20/24 ,  G06Q20/26 ,  G06Q20/3674 ,  G06Q20/3829 ,  G06Q20/40 ,  G06Q20/403 ,  G06Q20/4037 ,  H04L9/3231 ,  H04L9/3234 ,  H04L2209/56 ,  H04L2209/805

Abstract: An apparatus, system, and method are disclosed for securely authorizing changes to a transaction restriction. A security module securely stores encryption keys for a payment instrument. The payment instrument electronically transacts payments and includes a transaction restriction. An authentication module receives an authentication from a user of the payment instrument. The security module validates the authentication with a first encryption key. In addition, the security module authorizes a change to the transaction restriction using a second encryption key if the authentication is valid. The security module resides on a computer that the user designates as authorized to validate the authentication.

Abstract translation: 公开了用于安全地授权对交易限制的改变的装置，系统和方法。 安全模块安全地存储付款工具的加密密钥。 支付工具以电子方式处理付款，并包括交易限制。 验证模块从付款工具的用户接收认证。 安全模块使用第一个加密密钥验证身份验证。 此外，如果认证有效，则安全模块授权使用第二加密密钥更改事务限制。 安全模块驻留在用户指定为授权验证身份验证的计算机上。

公开(公告)号：US20110231671A1

公开(公告)日：2011-09-22

申请号：US12725838

申请日：2010-03-17

Applicant: Howard J. Locker ,  David Carroll Challener ,  Mark Charles Davis ,  Randall Scott Springfield

Inventor： Howard J. Locker ,  David Carroll Challener ,  Mark Charles Davis ,  Randall Scott Springfield

IPC: G06F12/14 ,  G06F21/00

CPC classification number: G06F21/6209 ,  G06F2221/2101

Abstract: An apparatus, system, and method are disclosed for auditing access to secure data. A detection module detects an access to the secure data. A record module records an encrypted log entry describing the access to the secure data. A verification module verifies the secure data is securely stored.

Abstract translation: 公开了用于审计对安全数据的访问的装置，系统和方法。 检测模块检测对安全数据的访问。 记录模块记录描述对安全数据的访问的加密日志条目。 验证模块验证安全数据是否安全存储。

公开(公告)号：US07757112B2

公开(公告)日：2010-07-13

申请号：US11394278

申请日：2006-03-29

Applicant: Philip Lee Childs ,  Mark Charles Davis ,  Steven Dale Goodman ,  Joseph Wayne Freeman ,  Randall Scott Springfield ,  Rod David Waltermann

Inventor： Philip Lee Childs ,  Mark Charles Davis ,  Steven Dale Goodman ,  Joseph Wayne Freeman ,  Randall Scott Springfield ,  Rod David Waltermann

IPC: G06F12/14

CPC classification number: G06F11/1417 ,  G06F11/1666 ,  G06F21/56 ,  G06F21/575

Abstract: In the event of a virally infected MBR on a hard disk drive that might prevent booting, a service MBR in a hidden protected area (HPA) can be used to boot a service O.S., and then the service MBR can be replaced with a previously backed-up MBR, also in the HPA, to mount any missing partitions.

Abstract translation: 如果硬盘驱动器上有病毒感染的MBR可能会阻止启动，则可以使用隐藏保护区域（HPA）中的服务MBR来引导服务操作系统，然后将服务MBR替换为先前支持的 -up MBR（也在HPA中）安装任何丢失的分区。

公开(公告)号：US07752659B2

公开(公告)日：2010-07-06

申请号：US11057795

申请日：2005-02-14

Applicant: Daryl Carvis Cromer ,  Mark Charles Davis ,  Howard Jeffrey Locker ,  Randall Scott Springfield

Inventor： Daryl Carvis Cromer ,  Mark Charles Davis ,  Howard Jeffrey Locker ,  Randall Scott Springfield

IPC: G06F17/00

CPC classification number: H04L63/145

Abstract: A method and system is described for selectively downloading antidotes onto a client computer. The client computer is connected via a network interface card (NIC) to a network that contains an anti-virus server. The NIC is initially logically isolated from the client computer, thus permitting the NIC to autonomously examine packets to and from the client computer and the network. The NIC selectively accepts packets only from trusted Internet Protocol (IP) addresses that conform to a security format such as Internet Protocol Security (IPSec).

Abstract translation: 描述了用于有选择地将解毒剂下载到客户端计算机上的方法和系统。 客户端计算机通过网络接口卡（NIC）连接到包含防病毒服务器的网络。 NIC最初在逻辑上与客户端计算机隔离，从而允许NIC自主地检查到客户端计算机和网络的数据包。 NIC选择性地仅接收来自符合诸如因特网协议安全（IPSec）之类的安全格式的受信任的因特网协议（IP）地址的分组。

公开(公告)号：US07702894B2

公开(公告)日：2010-04-20

申请号：US11954664

申请日：2007-12-12

Applicant: Rod David Waltermann ,  Nathan J. Peterson ,  Joseph Wayne Freeman ,  Randall Scott Springfield ,  Mark Charles Davis ,  Steven Dale Goodman ,  Isaac Kareel ,  Scott Edwards Kelso

Inventor： Rod David Waltermann ,  Nathan J. Peterson ,  Joseph Wayne Freeman ,  Randall Scott Springfield ,  Mark Charles Davis ,  Steven Dale Goodman ,  Isaac Kareel ,  Scott Edwards Kelso

IPC: G06F7/00

CPC classification number: G06F9/4406

Abstract: A method for booting into computer memory a non-operating system (O.S.) program from a hard disk drive (HDD) prior to booting into memory an O.S. from the HDD. The method includes establishing a table of contents (TOC) on the HDD that contains entries for special O.S. programs. A pointer to the TOC is placed in non-volatile memory of the computer that is associated with the HDD, and when BIOS of the computer is prompted to load into memory one of the special O.S. programs, the pointer is accessed and used to locate the TOC, which in turn is accessed to load the special O.S. program.

Abstract translation: 在引导到存储器之前从硬盘驱动器（HDD）引导到计算机存储器的非操作系统（O.S.）程序的方法。 从硬盘。 该方法包括在HDD上建立内容表（TOC），其中包含特殊O.S.的条目。 程式。 指向TOC的指针被放置在与HDD相关联的计算机的非易失性存储器中，并且当计算机的BIOS被提示加载到存储器中时，特别的O.S. 程序中，指针被访问并用于定位TOC，而TOC又被访问以加载特殊的O.S. 程序。

公开(公告)号：US07590834B2

公开(公告)日：2009-09-15

申请号：US11352499

申请日：2006-02-10

Applicant: David Carroll Challener ,  Daryl Carvis Cromer ,  Mark Charles Davis ,  Jerry Clyde Dishman ,  Howard Jeffery Locker ,  Randall Scott Springfield

Inventor： David Carroll Challener ,  Daryl Carvis Cromer ,  Mark Charles Davis ,  Jerry Clyde Dishman ,  Howard Jeffery Locker ,  Randall Scott Springfield

IPC: G06F9/00 ,  G06F12/14 ,  G06F15/177 ,  G08B23/00

CPC classification number: G06F21/57 ,  G06F9/4408 ,  G06F21/562

Abstract: A computer determines whether it has been booted from a hard disk drive or from an alternate source (e.g., a floppy drive or portable memory) that entails a higher risk of importing a virus into the computer, and if it is determined that a non-HDD source was booted from, corrective action such as a virus scan can be preemptively taken.

Abstract translation: 计算机确定是从硬盘驱动器还是从备份源（例如，软盘驱动器或便携式存储器）引导，这导致将病毒导入计算机的风险更高，并且如果确定非易失性存储器 HDD源被启动，可以抢先采取诸如病毒扫描的纠正措施。