-
公开(公告)号:US07210169B2
公开(公告)日:2007-04-24
申请号:US10225048
申请日:2002-08-20
IPC分类号: G06F7/04
CPC分类号: H04L63/12 , H04L63/083 , H04L63/0853 , H04L63/0876
摘要: An originator device allows for a unique passphrase to be communicated to a service system. The originator device has a fixed token in which a unique platform identifier is recorded and a processor to generate a representation of the platform configuration. This representation is communicated to the registry service as a unique, platform-specific passphrase associated with the originator.
摘要翻译: 发起者设备允许将独特的密码传递给服务系统。 发起者设备具有固定令牌,其中记录了唯一的平台标识符,并且处理器生成平台配置的表示。 该表示形式作为与发起方关联的独特的,与平台相关的密码传递给注册服务。
-
公开(公告)号:US07546452B2
公开(公告)日:2009-06-09
申请号:US10225504
申请日:2002-08-20
CPC分类号: G06F21/57 , G06F2221/2105
摘要: A credential management device has a protected domain and a credential manager to perform credential transactions. A credential transaction may comprise determining if a platform is operating in a trusted mode and releasing an operation credential if the platform is operating in a trusted mode. A credential transaction may comprise validating incoming credentials from other platforms.
摘要翻译: 凭证管理设备具有受保护的域和凭证管理器来执行凭证交易。 证书交易可以包括确定平台是否以可信任模式操作并且如果平台以可信任模式操作则释放操作凭证。 证书交易可以包括验证来自其他平台的传入凭证。
-
公开(公告)号:US20140181893A1
公开(公告)日:2014-06-26
申请号:US13726148
申请日:2012-12-23
IPC分类号: H04L29/06
CPC分类号: H04L63/0838 , G06F21/305 , G06F21/44 , H04L9/0877 , H04L9/3226 , H04L9/3234 , H04L63/0876 , H04L63/102 , H04L63/20 , H04L67/141
摘要: An opportunity for a computing device to participate in a secure session with a particular domain is identified. A secured microcontroller of the computing device is used to identify a secured, persistent seed corresponding to the particular domain and stored in secured memory of the computing device. A secure identifier is derived based on the seed and sent for use by the particular domain in authenticating the computing device to the particular domain for the secure session. The particular domain can further apply security policies to transactions involving the computing device and particular domain based at least in part on the secure identifier.
摘要翻译: 识别计算设备参与与特定域的安全会话的机会。 计算设备的安全微控制器用于识别对应于特定域并且存储在计算设备的安全存储器中的安全的持久种子。 基于种子导出安全标识符,并将其发送供特定域使用,以将计算设备认证到用于安全会话的特定域。 所述特定域可以至少部分地基于所述安全标识符来进一步对涉及所述计算设备和特定域的事务应用安全策略。
-
公开(公告)号:US08086839B2
公开(公告)日:2011-12-27
申请号:US12346532
申请日:2008-12-30
申请人: Jiewen Yao , Ned McArthur Smith , Vincent J. Zimmer , Qin Long
发明人: Jiewen Yao , Ned McArthur Smith , Vincent J. Zimmer , Qin Long
CPC分类号: G06F9/4418 , G06F9/44 , G06F21/575
摘要: Methods and systems to perform an authentication operation after resuming from a sleep state are presented. In one embodiment, a method includes starting a boot process from a sleep state. The method further includes providing platform services to support an authentication operation as part of the boot process and determining whether to complete the boot process based at least on results of the authentication operation.
摘要翻译: 呈现从休眠状态恢复后执行认证操作的方法和系统。 在一个实施例中,一种方法包括从睡眠状态开始引导过程。 该方法还包括提供平台服务以支持作为引导过程的一部分的认证操作,并且至少基于认证操作的结果来确定是否完成引导过程。
-
公开(公告)号:US08850543B2
公开(公告)日:2014-09-30
申请号:US13726140
申请日:2012-12-23
CPC分类号: G06F21/44 , G06F17/3033 , G06F21/305 , H04L9/0877 , H04L9/3226 , H04L9/3234 , H04L63/0876 , H04L63/102 , H04L63/107 , H04L63/20
摘要: An opportunity for a computing device to participate in a secure session with a particular domain is identified. A domain identifier of the particular domain is received and a secured microcontroller of the computing device is used to identify a secured, persistent hardware identifier of the computing device stored in secured memory of the computing device. A secure identifier is derived for a pairing of the computing device and the particular domain based on the hardware identifier and domain identifier of the particular domain and the secure identifier is transmitted over a secured channel to the particular domain. The particular domain can verify identity of the computing device from the secure identifier and apply security policies to transactions involving the computing device and the particular domain based at least in part on the secure identifier.
摘要翻译: 识别计算设备参与与特定域的安全会话的机会。 接收特定域的域标识符,并且使用计算设备的安全微控制器来识别存储在计算设备的安全存储器中的计算设备的安全的持久硬件标识符。 基于特定域的硬件标识符和域标识符,导出计算设备和特定域的配对的安全标识符,并且安全标识符通过安全信道发送到特定域。 特定域可以从安全标识符中验证计算设备的身份,并且至少部分地基于安全标识符将安全策略应用于涉及计算设备和特定域的事务。
-
公开(公告)号:US20100169631A1
公开(公告)日:2010-07-01
申请号:US12346532
申请日:2008-12-30
申请人: Jiewen Yao , Ned McArthur Smith , Vincent J. Zimmer , Qin Long
发明人: Jiewen Yao , Ned McArthur Smith , Vincent J. Zimmer , Qin Long
IPC分类号: G06F15/177 , G06F1/32
CPC分类号: G06F9/4418 , G06F9/44 , G06F21/575
摘要: Methods and systems to perform an authentication operation after resuming from a sleep state are presented. In one embodiment, a method includes starting a boot process from a sleep state. The method further includes providing platform services to support an authentication operation as part of the boot process and determining whether to complete the boot process based at least on results of the authentication operation.
摘要翻译: 呈现从休眠状态恢复后执行认证操作的方法和系统。 在一个实施例中,一种方法包括从睡眠状态开始引导过程。 该方法还包括提供平台服务以支持作为引导过程的一部分的认证操作,并且至少基于认证操作的结果来确定是否完成引导过程。
-
公开(公告)号:US20140181894A1
公开(公告)日:2014-06-26
申请号:US13726167
申请日:2012-12-23
IPC分类号: H04L29/06
CPC分类号: H04L63/0838 , H04L41/046 , H04L41/28 , H04L63/061 , H04L63/0823 , H04L63/18 , H04L63/20
摘要: A secure identifier is derived, using a secured microcontroller of a computing device, that is unique to a pairing of the computing device and a particular domain. Secure posture data corresponding to attributes of the computing device is identified in secured memory of the computing device. The secure identifier and security posture is sent in a secured container to a management device of the particular domain. The particular domain can utilize the information in the secured container to authenticate the computing device and determine a security task to be performed relating to interactions of the computing device with the particular domain.
摘要翻译: 使用计算设备的安全微控制器导出安全标识符,其对于计算设备和特定域的配对是唯一的。 在计算设备的安全存储器中识别与计算设备的属性相对应的安全姿势数据。 安全标识符和安全状态在安全容器中发送到特定域的管理设备。 特定域可以利用安全容器中的信息来认证计算设备,并确定要与计算设备与特定域的交互相关的安全性任务。
-
公开(公告)号:US20140181892A1
公开(公告)日:2014-06-26
申请号:US13726140
申请日:2012-12-23
IPC分类号: H04L29/06
CPC分类号: G06F21/44 , G06F17/3033 , G06F21/305 , H04L9/0877 , H04L9/3226 , H04L9/3234 , H04L63/0876 , H04L63/102 , H04L63/107 , H04L63/20
摘要: An opportunity for a computing device to participate in a secure session with a particular domain is identified. A domain identifier of the particular domain is received and a secured microcontroller of the computing device is used to identify a secured, persistent hardware identifier of the computing device stored in secured memory of the computing device. A secure identifier is derived for a pairing of the computing device and the particular domain based on the hardware identifier and domain identifier of the particular domain and the secure identifier is transmitted over a secured channel to the particular domain. The particular domain can verify identity of the computing device from the secure identifier and apply security policies to transactions involving the computing device and the particular domain based at least in part on the secure identifier.
摘要翻译: 识别计算设备参与与特定域的安全会话的机会。 接收特定域的域标识符,并且使用计算设备的安全微控制器来识别存储在计算设备的安全存储器中的计算设备的安全的持久硬件标识符。 基于特定域的硬件标识符和域标识符,导出计算设备和特定域的配对的安全标识符,并且安全标识符通过安全信道发送到特定域。 特定域可以从安全标识符中验证计算设备的身份,并且至少部分地基于安全标识符将安全策略应用于涉及计算设备和特定域的事务。
-
-
-
-
-
-
-
搜索结果
8 条记录 (耗时 0.019 秒)
