System and method for out-of-band assisted biometric secure boot
    1.
    发明授权
    System and method for out-of-band assisted biometric secure boot 有权
    用于带外辅助生物识别安全启动的系统和方法

    公开(公告)号:US09158920B2

    公开(公告)日:2015-10-13

    申请号:US11770464

    申请日:2007-06-28

    IPC分类号: H04L29/06 G06F21/57

    CPC分类号: G06F21/575

    摘要: In some embodiments, the invention involves using a dedicated service processor with out-of-band capabilities to enable a secure boot using biometric data to authenticate the user. In some embodiments, at least a secondary token is used enhance the secure boot. An off-line database may be accessed by the service processor during boot to store or retrieve biometric templates to compare with scanned, live, biometric data. Other embodiments are described and claimed.

    摘要翻译: 在一些实施例中,本发明涉及使用具有带外能力的专用服务处理器,以使得能够使用生物特征数据进行安全启动来认证用户。 在一些实施例中,至少使用辅助令牌来增强安全引导。 服务处理器在引导期间可以访问离线数据库以存储或检索生物特征模板以与扫描的,活的生物特征数据进行比较。 描述和要求保护其他实施例。

    CONTENT PROTECTION FOR DATA AS A SERVICE (DAAS)
    2.
    发明申请
    CONTENT PROTECTION FOR DATA AS A SERVICE (DAAS) 有权
    数据作为服务的内容保护(DAAS)

    公开(公告)号:US20150281186A1

    公开(公告)日:2015-10-01

    申请号:US14361759

    申请日:2013-12-24

    IPC分类号: H04L29/06 G06F21/10

    摘要: The present disclosure is directed to content protection for Data as a Service (DaaS). A device may receive encrypted data from a content provider via DaaS, the encrypted data comprising at least content for presentation on the device. For example, the content provider may utilize a secure multiplex transform (SMT) module in a trusted execution environment (TEE) module to generate encoded data from the content and digital rights management (DRM) data and to generate the encrypted data from the encoded data. The device may also comprise a TEE module including a secure demultiplex transform (SDT) module to decrypt the encoded data from the encrypted data and to decode the content and DRM data from the encoded data. The SMT and SDT modules may interact via a secure communication session to validate security, distribute decryption key(s), etc. In one embodiment, a trust broker may perform TEE module validation and key distribution.

    摘要翻译: 本公开涉及数据即服务(DaaS)的内容保护。 设备可以经由DaaS从内容提供商接收加密数据,所述加密数据至少包括用于在设备上呈现的内容。 例如,内容提供商可以利用可信执行环境(TEE)模块中的安全多路转换(SMT)模块来从内容和数字版权管理(DRM)数据生成编码数据,并从编码数据生成加密数据 。 该设备还可以包括TEE模块,该TEE模块包括安全解复用变换(SDT)模块,用于从加密的数据解密编码数据,并从编码的数据解码内容和DRM数据。 SMT和SDT模块可以通过安全通信会话交互以验证安全性,分发解密密钥等。在一个实施例中,信任代理可以执行TEE模块验证和密钥分发。

    Method and system for providing keyboard, video, and mouse switching
    4.
    发明授权
    Method and system for providing keyboard, video, and mouse switching 有权
    用于提供键盘,视频和鼠标切换的方法和系统

    公开(公告)号:US08516092B2

    公开(公告)日:2013-08-20

    申请号:US11966098

    申请日:2007-12-28

    IPC分类号: G06F15/173

    CPC分类号: G06F9/4411

    摘要: A method and system for providing keyboard, video, and mouse switching includes establishing a basic input/output system (BIOS) agent and an operating system (OS) agent on a server of a plurality of servers. The basic input/output system agent routes input/output data between the server and a remote keyboard, remote video device, and/or remote mouse over a network during a pre-boot phase of the server. The operating system agent routes input/output data between the server and the remote keyboard, remote video device, and/or remote mouse over the network during a runtime phase of the server. The basic input/output agent may pass data to the operating system agent to indicate that a communication connection has been established between the server and the remote keyboard, remote video device, and/or remote mouse.

    摘要翻译: 一种用于提供键盘,视频和鼠标切换的方法和系统,包括在多个服务器的服务器上建立基本的输入/输出系统(BIOS)代理和操作系统(OS)代理。 基本输入/输出系统代理在服务器的预启动阶段,通过网络在服务器与远程键盘,远程视频设备和/或远程鼠标之间路由输入/输出数据。 操作系统代理在服务器的运行时阶段期间,通过网络在服务器和远程键盘,远程视频设备和/或远程鼠标之间路由输入/输出数据。 基本输入/输出代理可以将数据传送到操作系统代理,以指示在服务器与远程键盘,远程视频设备和/或远程鼠标之间建立了通信连接。

    Method and system for recovery of a computing environment during pre-boot and runtime phases
    5.
    发明授权
    Method and system for recovery of a computing environment during pre-boot and runtime phases 有权
    在预引导和运行阶段期间恢复计算环境的方法和系统

    公开(公告)号:US08499202B2

    公开(公告)日:2013-07-30

    申请号:US13538215

    申请日:2012-06-29

    IPC分类号: G06F11/00 G06F11/22

    CPC分类号: G06F11/0793 G06F11/0706

    摘要: A method and system for recovery of a computing environment includes monitoring during a pre-boot phase and a runtime phase of a computing device for selection of a hot key sequence by a user and performing a recovery action in response to the selection of the hot key sequence by the user. The recovery action may be any one of a number of predetermined and/or selectable actions such as restoring system defaults, migrating memory, displaying a menu of options, setting various software flags, restarting or rebooting the computing device, and/or the like.

    摘要翻译: 用于恢复计算环境的方法和系统包括在计算设备的预引导阶段和运行时阶段期间监视用于用户选择热键序列并响应于热键的选择执行恢复动作 由用户排序 恢复动作可以是多个预定和/或可选动作中的任何一个,诸如恢复系统默认值,迁移存储器,显示选项菜单,设置各种软件标志,重新启动或重新启动计算设备等。

    Component firmware integration in distributed systems
    6.
    发明授权
    Component firmware integration in distributed systems 有权
    组件固件集成在分布式系统中

    公开(公告)号:US08452950B2

    公开(公告)日:2013-05-28

    申请号:US12795765

    申请日:2010-06-08

    IPC分类号: G06F9/00

    CPC分类号: G06F9/4403

    摘要: A plurality of platforms may be defined in a distributed system. Each of the platforms may include a processor and a chipset from a common source on a single motherboard. Extensible firmware interface drivers are provided for the processors and the chipsets. Each of the platforms may be defined pursuant to a system definition model where the system definition model defines the firmware for each of the platforms. As a result, any of the platforms can be updateable from a common source, such as an Internet web site.

    摘要翻译: 可以在分布式系统中定义多个平台。 每个平台可以包括来自单个主板上的公共源的处理器和芯片组。 为处理器和芯片组提供了可扩展的固件接口驱动程序。 可以根据系统定义模型来定义每个平台,其中系统定义模型定义每个平台的固件。 因此,可以从诸如因特网网站的通用源更新任何平台。

    Non-blocking UEFI I/O channel enhancements
    7.
    发明授权
    Non-blocking UEFI I/O channel enhancements 有权
    非阻塞UEFI I / O通道增强

    公开(公告)号:US08356168B2

    公开(公告)日:2013-01-15

    申请号:US12142086

    申请日:2008-06-19

    IPC分类号: G06F9/00

    CPC分类号: G06F9/4401

    摘要: A method and apparatus for providing platform initialization enhancements is discussed herein. In one embodiment, buses, activities, devices, and/or nodes to be processed during boot, are processed in a non-blocking fashion, which potentially results in faster boot times. Moreover, some devices/nodes, such as root nodes, may be boot in an early phase of initialization to enhance both available resources and initialization times. Furthermore, early connects in an early phase of initialization may be performed to construct partial or entire device paths, which also potentially results in faster boot times.

    摘要翻译: 本文讨论了一种用于提供平台初始化增强的方法和装置。 在一个实施例中,在引导期间要处理的总线,活动,设备和/或节点以非阻塞方式被处理,这可能导致更快的启动时间。 此外,一些设备/节点(例如根节点)可以在初始化的早期阶段被引导以增强可用资源和初始化时间。 此外,可以执行初始化的早期阶段中的早期连接以构建部分或整个设备路径,这也可能导致更快的启动时间。

    METHOD AND SYSTEM FOR RECOVERY OF A COMPUTING ENVIRONMENT DURING PRE-BOOT AND RUNTIME PHASES
    8.
    发明申请
    METHOD AND SYSTEM FOR RECOVERY OF A COMPUTING ENVIRONMENT DURING PRE-BOOT AND RUNTIME PHASES 有权
    计算环境在预启动和运行期间恢复的方法和系统

    公开(公告)号:US20120266012A1

    公开(公告)日:2012-10-18

    申请号:US13538215

    申请日:2012-06-29

    IPC分类号: G06F11/07

    CPC分类号: G06F11/0793 G06F11/0706

    摘要: A method and system for recovery of a computing environment includes monitoring during a pre-boot phase and a runtime phase of a computing device for selection of a hot key sequence by a user and performing a recovery action in response to the selection of the hot key sequence by the user. The recovery action may be any one of a number of predetermined and/or selectable actions such as restoring system defaults, migrating memory, displaying a menu of options, setting various software flags, restarting or rebooting the computing device, and/or the like.

    摘要翻译: 用于恢复计算环境的方法和系统包括在计算设备的预引导阶段和运行时阶段期间监视用于用户选择热键序列并响应于热键的选择执行恢复动作 由用户排序 恢复动作可以是多个预定和/或可选动作中的任何一个,诸如恢复系统默认值,迁移存储器,显示选项菜单,设置各种软件标志,重新启动或重新启动计算设备等。

    Method, program and system to update files in a computer system
    9.
    发明授权
    Method, program and system to update files in a computer system 有权
    方法,程序和系统来更新计算机系统中的文件

    公开(公告)号:US08245019B2

    公开(公告)日:2012-08-14

    申请号:US12365134

    申请日:2009-02-03

    IPC分类号: G06F9/00

    CPC分类号: G06F8/61 G06F9/4401

    摘要: Provided is a method, program and system to update files in a computer system. A patch is received for an installed program in a computer and message from a server over a network. Program files for the installed program are updated with contents of the patch. A determination is made as to whether the message indicates to automatically reboot the computer. Information is generated to a user indicating that the computer will be automatically rebooted. Operations are initiated in the computer to reboot the computer after a delay period to provide the user opportunity to close files and applications before the reboot.

    摘要翻译: 提供了一种更新计算机系统中的文件的方法,程序和系统。 接收到计算机中已安装程序的补丁以及通过网络从服务器发送的消息。 已安装程序的程序文件将使用补丁的内容进行更新。 确定消息是否指示自动重新启动计算机。 向用户生成指示计算机将自动重启的信息。 在计算机中启动操作以在延迟时间后重新启动计算机,以提供用户在重新启动之前关闭文件和应用程序的机会。

    DECOUPLED HARDWARE CONFIGURATION MANAGER
    10.
    发明申请
    DECOUPLED HARDWARE CONFIGURATION MANAGER 审中-公开
    解密硬件配置经理

    公开(公告)号:US20120102312A1

    公开(公告)日:2012-04-26

    申请号:US13340381

    申请日:2011-12-29

    IPC分类号: G06F15/177

    摘要: The present disclosure relates to a technique or device to allow hardware related drivers to present a centralized configuration program and, more particularly, to a technique or device to allow hardware related drivers to present configuration information to a centralized user interface manager.

    摘要翻译: 本公开涉及允许硬件相关驱动器呈现集中式配置程序的技术或设备,更具体地,涉及允许硬件相关驱动器向中央用户界面管理器呈现配置信息的技术或设备。