公开(公告)号：US20060294019A1

公开(公告)日：2006-12-28

申请号：US11159044

申请日：2005-06-22

申请人： Richard Dayan ,  Richard Cheston ,  Daryl Cromer ,  Howard Locker ,  Randall Springfield

发明人： Richard Dayan ,  Richard Cheston ,  Daryl Cromer ,  Howard Locker ,  Randall Springfield

IPC分类号： G06Q99/00

CPC分类号： G06Q10/087

摘要： A technique is disclosed for storing an electronic record of the existence of licenses available for use in a network of computers and the deployment status of programs covered by the licenses. License tokens are stored on a license server, and the stored license tokens are used to validate the deployment of applications stored on clients associated with the license server. The license server maintains the license tokens for all licensed applications used by the associated clients and maintains a license file for each client. Periodically, the license file containing token data is sent to the pre-boot environment of each client in the system, e.g., by a synching process. A license-maintenance application residing in the pre-boot environment of each client validates the applications stored on the client by comparing them with the token data in the license file upon the occurrence of a pre-boot process.

摘要翻译： 公开了一种用于存储可用于计算机网络的许可证的存在的电子记录以及由许可证覆盖的程序的部署状态的技术。 许可证令牌存储在许可证服务器上，并且存储的许可证令牌用于验证存储在与许可证服务器相关联的客户端上的应用程序的部署。 许可证服务器维护关联客户端使用的所有许可应用程序的许可证令牌，并为每个客户端维护许可证文件。 定期地，包含令牌数据的许可证文件例如通过同步处理被发送到系统中每个客户机的预引导环境。 驻留在每个客户端的预引导环境中的许可证维护应用程序通过在发生预引导过程时将其与许可证文件中的令牌数据进行比较来验证存储在客户端上的应用程序。

公开(公告)号：US20060041932A1

公开(公告)日：2006-02-23

申请号：US10924103

申请日：2004-08-23

申请人： Daryl Cromer ,  Richard Cheston ,  Steven Goodman ,  Howard Locker ,  Randall Springfield

发明人： Daryl Cromer ,  Richard Cheston ,  Steven Goodman ,  Howard Locker ,  Randall Springfield

IPC分类号： H04L9/32

CPC分类号： H04L9/3226 ,  H04L9/0897

摘要： Systems and methods to access password-protected stored data when a corresponding data password has been lost, forgotten, or is otherwise unavailable, and to recover the data password to facilitate access to the password-protected data from a digital memory device such as a hard disk drive associated with a user computer. In some embodiments the computer is communicatively coupled with a network and receives at least one encryption key from a secure computer via the network. In other embodiments the computer is a stand alone computer and receives at least one encryption key from a removable, non-volatile memory such as a CD ROM. The encryption key is used to encrypt the data password and both are stored on the hard disk drive. If the data password becomes lost, forgotten, or otherwise unavailable, the encrypted password is recovered from the hard disk drive and decrypted to recover the data password.

摘要翻译： 当相应的数据密码丢失，被遗忘或不可用时访问受密码保护的存储数据的系统和方法，以及恢复数据密码以便于从诸如硬的数字存储设备访问受密码保护的数据 与用户计算机相关联的磁盘驱动器。 在一些实施例中，计算机与网络通信耦合，并经由网络从安全计算机接收至少一个加密密钥。 在其他实施例中，计算机是独立的计算机，并且从诸如CD ROM的可移除的非易失性存储器接收至少一个加密密钥。 加密密钥用于加密数据密码，两者都存储在硬盘驱动器上。 如果数据密码丢失，忘记或以其他方式不可用，则会从硬盘驱动器恢复加密的密码并解密以恢复数据密码。

公开(公告)号：US20060185015A1

公开(公告)日：2006-08-17

申请号：US11057804

申请日：2005-02-14

申请人： Richard Cheston ,  Daryl Cromer ,  Mark Davis ,  Howard Locker ,  Randall Springfield

发明人： Richard Cheston ,  Daryl Cromer ,  Mark Davis ,  Howard Locker ,  Randall Springfield

IPC分类号： G06F12/14

CPC分类号： G06F21/575 ,  G06F21/56 ,  G06F2221/2115 ,  H04L63/1433 ,  H04L63/145

摘要： A method and system is described for a wireless client computer to be connected via an access point to a network only if the wireless client computer has executed all requisite anti-virus programs. Where necessary, a signal from the access point notifies an anti-viral program server that an anti-virus needs to be immediately downloaded to the wireless client computer. An anti-virus fix is installed on the wireless client computer, and a full session is then initiated between the wireless client computer and a wireless network via the access point.

摘要翻译： 如果无线客户端计算机已经执行了所有必要的防病毒程序，则描述了一种无线客户端计算机通过接入点连接到网络的方法和系统。 必要时，来自接入点的信号通知反病毒程序服务器需要立即将防病毒下载到无线客户端计算机。 在无线客户端计算机上安装了防病毒修复程序，然后通过接入点在无线客户端计算机和无线网络之间启动完整会话。

公开(公告)号：US20060085648A1

公开(公告)日：2006-04-20

申请号：US10967762

申请日：2004-10-16

申请人： Richard Cheston ,  Daryl Cromer ,  Howard Locker ,  Randall Springfield

发明人： Richard Cheston ,  Daryl Cromer ,  Howard Locker ,  Randall Springfield

IPC分类号： H04L9/00

CPC分类号： H04L63/083

摘要： A method that restricts a user's access to critical data on a client and network by requiring renewal of a client's lease for accessing the network by an administrative utility of the network during each login by a user to the client. A user/client logon policy is created for each user and/or each client and stored at the lease server. The lease server executes a utility that utilizes the policies to control whether a user is allowed to access a particular client on the network. User access to the client and ultimately the network is only provided when the lease term is renewed for the client (and user). When a lease term is not renewed/extended, the user is blocked from accessing the client system.

摘要翻译： 一种通过在用户每次登录到客户端期间通过网络的管理实用程序要求更新用于访问网络的客户端的租赁来限制用户对客户端和网络上的关键数据的访问的方法。 为每个用户和/或每个客户端创建用户/客户端登录策略并存储在租赁服务器。 租赁服务器执行利用策略来控制是否允许用户访问网络上的特定客户端的实用程序。 仅当为客户端（和用户）更新租用期限时，才提供对客户端和最终网络的用户访问。 当租赁期不更新/扩展时，用户被阻止访问客户端系统。

公开(公告)号：US20060085625A1

公开(公告)日：2006-04-20

申请号：US10967821

申请日：2004-10-18

申请人： Richard Cheston ,  Daryl Cromer ,  Jan Janick ,  John Karidis ,  Howard Locker ,  Randall Springfield

发明人： Richard Cheston ,  Daryl Cromer ,  Jan Janick ,  John Karidis ,  Howard Locker ,  Randall Springfield

IPC分类号： G06F15/177

CPC分类号： G06F8/63 ,  G06F2221/2143

摘要： An apparatus, system, and method are disclosed for autonomically disposing a computer such as a workstation. The computer's local persistent storage medium is configured with pre-boot image which is configured with a set of functional modules that facilitate disposal or recycling of the computer to the next user. The disposal and recycle methods are automated, require minimal user intervention, and facilitate moving configuration options and data to a different computer. The entire process may execute from the pre-boot image on the computer's local persistent storage medium without ever booting the primary operating system.

摘要翻译： 公开了用于自动地布置诸如工作站的计算机的装置，系统和方法。 计算机的本地持久存储介质被配置有预引导映像，其被配置有一组功能模块，这些功能模块便于将计算机处理或再循环到下一个用户。 处置和回收方法是自动化的，需要最少的用户干预，并且便于将配置选项和数据移动到不同的计算机。 整个过程可以从计算机本地持久存储介质上的预引导映像执行，而无需引导主操作系统。

公开(公告)号：US20050144493A1

公开(公告)日：2005-06-30

申请号：US10749583

申请日：2003-12-31

申请人： Daryl Cromer ,  Richard Dayan ,  Joseph Freeman ,  Steven Goodman ,  Eric Kern ,  Howard Locker ,  Randall Springfield

发明人： Daryl Cromer ,  Richard Dayan ,  Joseph Freeman ,  Steven Goodman ,  Eric Kern ,  Howard Locker ,  Randall Springfield

IPC分类号： G06F9/445 ,  G06F1/26 ,  G06F1/28

CPC分类号： G06F9/4416 ,  G06F9/4401 ,  G06F9/4406 ,  G06F9/4408 ,  G06F15/177 ,  H04L29/12235 ,  H04L67/34 ,  H04N21/443

摘要： Systems and arrangements for remotely selecting a bootable image via a WOL packet for a wake-on-LAN (WOL) capable computer are contemplated. Server-side embodiments include hardware and/or software for determining a client to be managed, determining whether the client is active on the network, and transmitting a WOL packet having a vector, or operating system partition identification (OSPID), to describe a bootable image accessible by the WOL capable computer. Some embodiments may include an OSPID that points to a secure bootable image such as a bootable image on a hard drive, a compact disk (CD) connected to the computer, or other local resource. Client-side embodiments may receive the WOL packet at, for instance, a network interface card (NIC), recognize that the WOL packet includes an OSPID that describes the bootable image to boot, and implement an alternative boot sequence to boot from that bootable image.

摘要翻译： 可以考虑通过用于具有LAN唤醒（WOL）功能的计算机的WOL分组来远程选择可启动图像的系统和布置。 服务器端实施例包括用于确定要管理的客户机的硬件和/或软件，确定客户端是否在网络上是活动的，以及发送具有向量的WOL分组或操作系统分区标识（OSPID）来描述可引导的 WOL功能的计算机可访问的图像。 一些实施例可以包括指向安全可启动图像的OSPID，例如硬盘驱动器上的可引导映像，连接到计算机的光盘（CD）或其他本地资源。 客户端实施例可以在例如网络接口卡（NIC）处接收WOL分组，识别WOL分组包括描述可启动图像引导的OSPID，并且实现替代引导序列以从该可启动图像引导 。

公开(公告)号：US20050081118A1

公开(公告)日：2005-04-14

申请号：US10683242

申请日：2003-10-10

申请人： Richard Cheston ,  Daryl Cromer ,  Richard Dayan ,  Howard Locker

发明人： Richard Cheston ,  Daryl Cromer ,  Richard Dayan ,  Howard Locker

IPC分类号： G06F11/00 ,  G06F17/00

CPC分类号： G06F11/0784 ,  G06F11/0748 ,  G06F11/079 ,  G06F11/0793

摘要： A data processing system service includes enabling the system to perform diagnostic processing in response to a system failure and enabling the system to perform corrective action during the automated diagnostic processing to attempt to resolve the system failure. The service further includes configuring the system to generate a trouble ticket containing information characterizing the system failure and any attempted corrective action regardless of whether the corrective action was successful in resolving the system failure. The system may be further enabled to forward the trouble ticket to an external database for analysis and to access the external database to determine whether the detected failure has been encountered previously. The system may be partitioned into two partitions including a diagnostic partition. The system boots to the diagnostic partition following a failure or in response to a request from a user.

摘要翻译： 数据处理系统服务包括使系统能够响应于系统故障执行诊断处理，并使系统能够在自动诊断处理期间执行校正动作以尝试解决系统故障。 该服务还包括配置系统以生成包含表征系统故障的信息和任何尝试的纠正措施的故障单，而不管纠正措施是否成功解决系统故障。 还可以进一步使系统将故障单转发到外部数据库进行分析，并访问外部数据库，以确定先前是否遇到检测到的故障。 该系统可以被划分成包括诊断分区的两个分区。 系统在发生故障或响应用户的请求后，引导到诊断分区。

公开(公告)号：US20050081079A1

公开(公告)日：2005-04-14

申请号：US10683786

申请日：2003-10-10

申请人： Richard Cheston ,  Daryl Cromer ,  Richard Dayan ,  Howard Locker

发明人： Richard Cheston ,  Daryl Cromer ,  Richard Dayan ,  Howard Locker

IPC分类号： G06F11/00 ,  G06F11/273

CPC分类号： G06F11/2294 ,  G06F11/0748

摘要： A data processing system service and method includes enabling the system to perform diagnostic processing in response to identified system problems and enabling the system to generate a trouble ticket containing machine and problem-specific information. The service and method further include forwarding the trouble ticket to an external server which responds with a unique identifier tied logically to the trouble ticket. The service and method of the present invention requires that requested services such as a help desk call or the return of the system for repair or replacement be obtained only upon presentation of the unique identifier. The system may be partitioned into at least two partitions including a diagnostic partition wherein the diagnostic processing is performed. The system boots to the diagnostic partition upon recognition of a system problem, either automatically or by a user.

摘要翻译： 数据处理系统服务和方法包括使得系统能够响应于所识别的系统问题执行诊断处理，并且使系统能够生成包含机器的故障单和特定于问题的信息。 该服务和方法还包括将故障单转发到外部服务器，该外部服务器用逻辑上绑定到故障单的唯一标识符进行响应。 本发明的服务和方法要求仅在呈现唯一标识符时才能获得诸如帮助台呼叫的所请求的服务或用于修复或替换的系统的返回。 该系统可以被划分成至少两个分区，包括执行诊断处理的诊断分区。 系统自动或由用户识别系统问题时，系统将引导到诊断分区。

公开(公告)号：US20060185017A1

公开(公告)日：2006-08-17

申请号：US11319329

申请日：2005-12-28

申请人： David Challener ,  Daryl Cromer ,  Howard Locker ,  David Safford ,  Randall Springfield

发明人： David Challener ,  Daryl Cromer ,  Howard Locker ,  David Safford ,  Randall Springfield

IPC分类号： G06F12/14

CPC分类号： G06F21/565 ,  G06F2221/2151

摘要： The present invention adds a procedure to the operating system file subsystem of a processing system that significantly reduces the amount of time necessary to verify the validity of executable files. Each executable is extended with a file signature containing a header containing validation data. This header may be added to an existing ELF header, added as a new section, or placed in a file's extended attribute store. The header contains results of all previous validation checks that have been performed. The file signature is inserted, with a date stamp, into the file attributes. On execution, the system checks the previously-created file signature against a current file signature, instead of creating the file signature for every file during the execution process. Checks to ensure that the file signature is secure, and is valid and up to date, are also implemented. Only if the file signature is not valid and up-to-date does the execution program create a new file signature at the time of execution.

摘要翻译： 本发明向处理系统的操作系统文件子系统添加了一个过程，其显着地减少了验证可执行文件的有效性所需的时间量。 每个可执行文件使用包含包含验证数据的标题的文件签名进行扩展。 该标题可以被添加到现有的ELF标题中，作为新的部分添加，或者被放置在文件的扩展属性存储中。 标题包含已执行的所有先前验证检查的结果。 将文件签名带有日期戳插入到文件属性中。 执行时，系统会根据当前文件签名检查先前创建的文件签名，而不是在执行过程中为每个文件创建文件签名。 检查以确保文件签名是安全的，并且是有效的和最新的，也被实现。 只有当文件签名无效且最新的执行程序在执行时才会创建新的文件签名。

公开(公告)号：US20060168486A1

公开(公告)日：2006-07-27

申请号：US11044433

申请日：2005-01-27

申请人： Daryl Cromer ,  Howard Locker ,  Randall Springfield ,  Rod Waltermann

发明人： Daryl Cromer ,  Howard Locker ,  Randall Springfield ,  Rod Waltermann

IPC分类号： G06F11/00

CPC分类号： H04L41/00 ,  G01R31/08

摘要： A method and system for remotely isolating faults in computer network devices coupled to a computer network. A plurality of first computer units are coupled to the computer network. The plurality of first computer units are located on a user side of the computer network. A plurality of second computer units are coupled to the computer network. The plurality of second computer units are located on a service provider side of the network. One of the plurality of second computer units is designated to provide computing services to one of the plurality of first computer units. One of the plurality of first computer units experiencing a fault communicating with its designated second computer unit uses another of the plurality of first computer units as a proxy computer unit to remotely isolate the fault.

摘要翻译： 一种用于远程隔离耦合到计算机网络的计算机网络设备中的故障的方法和系统。 多个第一计算机单元耦合到计算机网络。 多个第一计算机单元位于计算机网络的用户侧。 多个第二计算机单元耦合到计算机网络。 多个第二计算机单元位于网络的服务提供方侧。 多个第二计算机单元中的一个被指定为向多个第一计算机单元之一提供计算服务。 经历与其指定的第二计算机单元通信的故障的多个第一计算机单元中的一个使用多个第一计算机单元中的另一个作为代理计算机单元远程隔离故障。