-
公开(公告)号:US20140068275A1
公开(公告)日:2014-03-06
申请号:US13602449
申请日:2012-09-04
IPC分类号: G06F21/72
CPC分类号: G06F21/72 , G06F21/57 , G06F21/575
摘要: In accordance with some embodiments, a single trusted platform module per platform may be used to handle conventional trusted platform tasks as well as those that would arise prior to the existence of a primary trusted platform module in conventional systems. Thus one single trusted platform module may handle measurements of all aspects of the platform including the baseboard management controller. In some embodiments, a management engine image is validated using a read only memory embedded in a chipset such as a platform controller hub, as the root of trust. Before the baseboard management controller (BMC) is allowed to boot, it must validate the integrity of its flash memory. But the BMC image may be stored in a memory coupled to a platform controller hub (PCH) in a way that it can be validated by the PCH.
摘要翻译: 根据一些实施例,可以使用每个平台的单个可信平台模块来处理常规可信任平台任务以及在传统系统中存在主要可信平台模块之前出现的那些任务。 因此,单个可信平台模块可以处理包括基板管理控制器的平台的所有方面的测量。 在一些实施例中,使用嵌入在诸如平台控制器集线器的芯片组中的只读存储器作为信任根来验证管理引擎映像。 在允许引导基板管理控制器(BMC)之前,必须验证其闪存的完整性。 但是,BMC图像可以存储在耦合到平台控制器集线器(PCH)的存储器中,其可以由PCH验证。
-
公开(公告)号:US09384367B2
公开(公告)日:2016-07-05
申请号:US13602449
申请日:2012-09-04
CPC分类号: G06F21/72 , G06F21/57 , G06F21/575
摘要: In accordance with some embodiments, a single trusted platform module per platform may be used to handle conventional trusted platform tasks as well as those that would arise prior to the existence of a primary trusted platform module in conventional systems. Thus one single trusted platform module may handle measurements of all aspects of the platform including the baseboard management controller. In some embodiments, a management engine image is validated using a read only memory embedded in a chipset such as a platform controller hub, as the root of trust. Before the baseboard management controller (BMC) is allowed to boot, it must validate the integrity of its flash memory. But the BMC image may be stored in a memory coupled to a platform controller hub (PCH) in a way that it can be validated by the PCH.
摘要翻译: 根据一些实施例,可以使用每个平台的单个可信平台模块来处理常规可信任平台任务以及在传统系统中存在主要可信平台模块之前出现的那些任务。 因此,单个可信平台模块可以处理包括基板管理控制器的平台的所有方面的测量。 在一些实施例中,使用嵌入在诸如平台控制器集线器的芯片组中的只读存储器作为信任根来验证管理引擎映像。 在允许引导基板管理控制器(BMC)之前,必须验证其闪存的完整性。 但是,BMC图像可以存储在耦合到平台控制器集线器(PCH)的存储器中,其可以由PCH验证。
-
公开(公告)号:US20130325738A1
公开(公告)日:2013-12-05
申请号:US13997106
申请日:2011-12-15
IPC分类号: G06Q10/08
CPC分类号: G06Q10/083 , G06Q10/08 , H04W4/029 , H04W12/08
摘要: Methods, apparatuses and storage medium associated with providing location service, are disclosed. In various embodiments, a method may include receiving, by a location server, location information associated with a user of a mobile device or a party associated with user; and receiving, by the location server, from a delivery service server, a request for the location information. The request may include a credential indicative of eligibility of the delivery service server to receive the requested location information. The method may further include providing, by the location server, to the delivery service server, the location information, on confirmation of the eligibility of the delivery service server based at least in part on the credential. Other embodiments may be disclosed or claimed.
摘要翻译: 公开了与提供定位服务相关联的方法,装置和存储介质。 在各种实施例中,方法可以包括由位置服务器接收与移动设备的用户或与用户相关联的方相关联的位置信息; 并且由位置服务器从传送服务服务器接收对位置信息的请求。 请求可以包括指示传送服务服务器接收请求的位置信息的资格的证书。 所述方法可以进一步包括至少部分地基于所述证书,由所述位置服务器向所述递送服务服务器提供所述位置信息,以确认所述递送服务服务器的资格。 可以公开或要求保护其他实施例。
-
公开(公告)号:US20130318577A1
公开(公告)日:2013-11-28
申请号:US13995511
申请日:2011-12-30
IPC分类号: H04L29/06
CPC分类号: H04L63/0876 , G06F21/00 , H04L63/08 , H04W12/06 , H04W12/08
摘要: An embodiment includes a secure and stable method for sending information across a compute continuum. For example, the method may include executing an application (e.g., video player) on a first node (e.g., tablet) with a desire to perform “context migration” to a second node (e.g., desktop). This may allow a user to watch a movie on the tablet, stop watching the movie, and then resume watching the movie from the desktop. To do so in a secure and stable manner, the first node may request security and performance credentials from the second node. If both credential sets satisfy thresholds, the first node may transfer content (e.g., encrypted copy of a movie) and state information (e.g., placeholder indicating where the movie was when context transfer began). The second node may then allow the user to resume his or her movie watching from the desktop. Other embodiments are described herein.
摘要翻译: 一个实施例包括用于在计算连续体上发送信息的安全且稳定的方法。 例如,该方法可以包括在第一节点(例如,平板电脑)上执行应用(例如,视频播放器),期望执行到第二节点(例如桌面)的“上下文迁移”。 这可能允许用户在平板电脑上观看电影,停止观看电影,然后从桌面恢复观看电影。 为了以安全和稳定的方式这样做,第一节点可以从第二节点请求安全性和性能证书。 如果两个凭证组都满足阈值,则第一节点可以传送内容(例如,电影的加密副本)和状态信息(例如,当上下文传送开始时,指示电影在哪里的占位符)。 然后,第二节点可以允许用户从桌面恢复他或她的电影观看。 本文描述了其它实施例。
-
公开(公告)号:US08533526B2
公开(公告)日:2013-09-10
申请号:US13647154
申请日:2012-10-08
申请人: Robert C. Swanson , Mallik Bulusu
发明人: Robert C. Swanson , Mallik Bulusu
IPC分类号: G06F11/07
CPC分类号: G06F11/1666 , G06F11/1658 , G06F11/20
摘要: In one embodiment, the present invention includes a method for receiving an indication of a loss of redundancy with respect to a pair of mirrored memory regions of a partially redundant memory system, determining new mirrored memory regions, and dynamically migrating information stored in the original mirrored memory regions to the new mirrored memory regions. Other embodiments are described and claimed.
摘要翻译: 在一个实施例中,本发明包括一种用于接收相对于部分冗余存储器系统的一对镜像存储器区域的冗余丢失的指示的方法,确定新的镜像存储器区域以及动态迁移存储在原始镜像中的信息 内存区域到新的镜像内存区域。 描述和要求保护其他实施例。
-
公开(公告)号:US20120025953A1
公开(公告)日:2012-02-02
申请号:US12848654
申请日:2010-08-02
申请人: Robert C. Swanson , Vincent J. Zimmer , Mallik Bulusu , Michael A. Rothman , Palsamy Sakthikumar
发明人: Robert C. Swanson , Vincent J. Zimmer , Mallik Bulusu , Michael A. Rothman , Palsamy Sakthikumar
IPC分类号: G06K7/01
摘要: Using radio frequency identification (RFID) tags embedded in processors within a computing system to assist in system initialization processing. The RFID tags provide a separate communication path to other components of the computing system during initialization processing, apart from the system interconnect. When the computing system is powered up, each processor in the system may cause its RFID tag to broadcast data regarding the processor's interconnect location and initialization status. The RFID tags may be sensed by a RFID receiver in the Platform Control Hub (PCH) of the computing system, and each processor's interconnect location and initialization status data may be stored in selected registers within the PCH. When the BIOS executes during system initialization processing, the BIOS may access these PCH registers to obtain the processor's data. The interconnect location and initialization status data may be used by the BIOS to select the optimal routing table and to configure the virtual network within the computing system based at least in part on the optimal routing table and the RFID tag data and without the need for interrogating each processor individually over the system interconnect.
摘要翻译: 使用嵌入在计算系统内的处理器中的射频识别(RFID)标签来协助系统初始化处理。 除了系统互连,RFID标签在初始化处理期间提供到计算系统的其他组件的单独的通信路径。 当计算系统通电时,系统中的每个处理器可能使其RFID标签广播关于处理器的互连位置和初始化状态的数据。 RFID标签可以由计算系统的平台控制中心(PCH)中的RFID接收器感测,并且每个处理器的互连位置和初始化状态数据可以存储在PCH内的选定的寄存器中。 当BIOS在系统初始化处理期间执行时,BIOS可以访问这些PCH寄存器以获得处理器的数据。 BIOS可以使用互连位置和初始化状态数据来选择最佳路由表并且至少部分地基于最佳路由表和RFID标签数据来配置计算系统内的虚拟网络,并且不需要询问 每个处理器分别通过系统互连。
-
公开(公告)号:US20110307712A1
公开(公告)日:2011-12-15
申请号:US12814246
申请日:2010-06-11
申请人: Palsamy Sakthikumar , Robert C. Swanson , Vincent J. Zimmer , Michael A. Rothman , Mallik Bulusu
发明人: Palsamy Sakthikumar , Robert C. Swanson , Vincent J. Zimmer , Michael A. Rothman , Mallik Bulusu
IPC分类号: H04L9/00
CPC分类号: G06F21/572 , G06F2221/2141
摘要: A method, apparatus, system, and computer program product for multi-owner deployment of firmware images. The method includes obtaining a signed firmware image that comprises a first code module signed by a first code owner and a second code module signed by a second code owner. The method further includes obtaining an updated first code module comprising updated code for the first code module, verifying that the updated first code module is signed by the first code owner, and updating the signed firmware image with the updated first code module in response to verifying that the updated first code module is signed by the first code owner. The signed firmware image may further comprise an access control list that authorizes updates to the first code module by the first code owner and updates to the second code module by the second code owner.
摘要翻译: 一种用于多所有者部署固件映像的方法,设备,系统和计算机程序产品。 该方法包括获得包括由第一代码所有者签名的第一代码模块和由第二代码所有者签名的第二代码模块的签名固件映像。 所述方法还包括获得包括用于第一代码模块的更新代码的更新的第一代码模块,验证所更新的第一代码模块是否被第一代码所有者签名,以及响应于验证更新带有更新的第一代码模块的已签名固件映像 更新的第一代码模块由第一代码所有者签名。 签名的固件图像还可以包括访问控制列表,其授权第一代码所有者更新第一代码模块,并由第二代码所有者更新第二代码模块。
-
公开(公告)号:US20110154103A1
公开(公告)日:2011-06-23
申请号:US12643345
申请日:2009-12-21
申请人: Mallik Bulusu , Robert C. Swanson
发明人: Mallik Bulusu , Robert C. Swanson
CPC分类号: G06F11/1666 , G06F11/1658 , G06F11/20
摘要: In one embodiment, the present invention includes a method for receiving an indication of a loss of redundancy with respect to a pair of mirrored memory regions of a partially redundant memory system, determining new mirrored memory regions, and dynamically migrating information stored in the original mirrored memory regions to the new mirrored memory regions. Other embodiments are described and claimed.
摘要翻译: 在一个实施例中,本发明包括一种用于接收相对于部分冗余存储器系统的一对镜像存储器区域的冗余丢失的指示的方法,确定新的镜像存储器区域以及动态迁移存储在原始镜像中的信息 内存区域到新的镜像内存区域。 描述和要求保护其他实施例。
-
公开(公告)号:US20080244250A1
公开(公告)日:2008-10-02
申请号:US11731525
申请日:2007-03-30
IPC分类号: G06F9/00
CPC分类号: G06F9/4403 , G06F9/4401
摘要: In some embodiments, the invention involves speeding boot up of a platform by initializing the video card early on in the boot process. In an embodiment, processor cache memory is to be used as cache as RAM (CAR). Video graphics adapter (VGA) card initialization uses the CAR instead of system RAM to perform initialization. A portion of the firmware code, interrupt vector tables and handlers are mirrored in the CAR, from flash memory to mimic the behavior of system RAM during the video initialization. VGA initialization may occur before system RAM has initialized to enable early visual feedback to a user. Other embodiments are described and claimed.
摘要翻译: 在一些实施例中,本发明涉及通过在启动过程中提前初始化视频卡来加速平台的启动。 在一个实施例中,将处理器高速缓冲存储器用作高速缓存作为RAM(CAR)。 视频图形适配器(VGA)卡初始化使用CAR代替系统RAM执行初始化。 固件代码,中断向量表和处理程序的一部分在CAR中从闪存镜像到模拟视频初始化期间系统RAM的行为。 在系统RAM初始化之前可能会发生VGA初始化,以便能够为用户提供早期的视觉反馈。 描述和要求保护其他实施例。
-
公开(公告)号:US09210148B2
公开(公告)日:2015-12-08
申请号:US13995511
申请日:2011-12-30
CPC分类号: H04L63/0876 , G06F21/00 , H04L63/08 , H04W12/06 , H04W12/08
摘要: An embodiment includes a secure and stable method for sending information across a compute continuum. For example, the method may include executing an application (e.g., video player) on a first node (e.g., tablet) with a desire to perform “context migration” to a second node (e.g., desktop). This may allow a user to watch a movie on the tablet, stop watching the movie, and then resume watching the movie from the desktop. To do so in a secure and stable manner, the first node may request security and performance credentials from the second node. If both credential sets satisfy thresholds, the first node may transfer content (e.g., encrypted copy of a movie) and state information (e.g., placeholder indicating where the movie was when context transfer began). The second node may then allow the user to resume his or her movie watching from the desktop. Other embodiments are described herein.
摘要翻译: 一个实施例包括用于在计算连续体上发送信息的安全且稳定的方法。 例如,该方法可以包括在第一节点(例如,平板电脑)上执行应用(例如,视频播放器),期望执行到第二节点(例如桌面)的“上下文迁移”。 这可能允许用户在平板电脑上观看电影,停止观看电影,然后从桌面恢复观看电影。 为了以安全和稳定的方式这样做,第一节点可以从第二节点请求安全性和性能凭证。 如果两个凭证组都满足阈值,则第一节点可以传送内容(例如,电影的加密副本)和状态信息(例如,当上下文传送开始时,指示电影在哪里的占位符)。 然后,第二节点可以允许用户从桌面恢复他或她的电影观看。 本文描述了其它实施例。
-
-
-
-
-
-
-
-
-
搜索结果
89 条记录 (耗时 0.049 秒)
