公开(公告)号：US20170024584A1

公开(公告)日：2017-01-26

申请号：US14979002

申请日：2015-12-22

申请人： Siddhartha Chhabra ,  Gideon Gerzon ,  Reshma Lal ,  Bin Xing ,  Pradeep M. Pappachan ,  Steven B. McGowan

发明人： Siddhartha Chhabra ,  Gideon Gerzon ,  Reshma Lal ,  Bin Xing ,  Pradeep M. Pappachan ,  Steven B. McGowan

IPC分类号： G06F21/72 ,  H04L9/32 ,  H04L9/08

CPC分类号： G06F21/72 ,  G06F21/57 ,  H04L9/0822 ,  H04L9/0861 ,  H04L9/3242

摘要： Technologies for secure programming of a cryptographic engine include a computing device with a cryptographic engine and one or more I/O controllers. The computing device establishes, an invoking secure enclave using secure enclave support of a processor. The invoking enclave configures channel programming information, including a channel key, and invokes a processor instruction with the channel programming information as a parameter. The processor generates wrapped programming information including an encrypted channel key and a message authentication code. The encrypted channel key is protected with a key known only to the processor. The invoking enclave provides the wrapped programming information to untrusted software, which invokes a processor instruction with the wrapped programming information as a parameter. The processor unwraps and verifies the wrapped programming information and then programs the cryptographic engine. The processor generates an authenticated response that may be verified by the invoking enclave. Other embodiments are described and claimed.

摘要翻译： 用于加密引擎的安全编程的技术包括具有密码引擎和一个或多个I / O控制器的计算设备。 计算设备使用处理器的安全飞地支持来建立调用安全飞地。 调用飞地配置信道编程信息，包括信道密钥，并且以通道编程信息为参数来调用处理器指令。 处理器产生包括加密的信道密钥和消息认证码的包装节目信息。 加密的通道密钥由仅对处理器已知的密钥进行保护。 调用的包层将包装的编程信息提供给不受信任的软件，该软件以包装的编程信息作为参数调用处理器指令。 处理器解封装并验证封装的编程信息，然后对加密引擎进行编程。 处理器生成可以通过调用飞地验证的认证响应。 描述和要求保护其他实施例。

公开(公告)号：US20170024570A1

公开(公告)日：2017-01-26

申请号：US14974960

申请日：2015-12-18

申请人： Pradeep M. Pappachan ,  Reshma Lal ,  Bin Xing ,  Siddhartha Chhabra ,  Vincent R. Scarlata ,  Steven B. McGowan

发明人： Pradeep M. Pappachan ,  Reshma Lal ,  Bin Xing ,  Siddhartha Chhabra ,  Vincent R. Scarlata ,  Steven B. McGowan

IPC分类号： G06F21/60 ,  G06F13/28

CPC分类号： G06F21/602 ,  G06F13/28 ,  G06F21/57

摘要： Technologies for trusted I/O attestation and verification include a computing device with a cryptographic engine and one or more I/O controllers. The computing device collects hardware attestation information associated with statically attached hardware I/O components that are associated with a trusted I/O usage protected by the cryptographic engine. The computing device verifies the hardware attestation information and securely enumerates one or more dynamically attached hardware components in response to verification. The computing device collects software attestation information for trusted software components loaded during secure enumeration. The computing device verifies the software attestation information. The computing device may collect firmware attestation information for firmware loaded in the I/O controllers and verify the firmware attestation information. The computing device may collect application attestation information for a trusted application that uses the trusted I/O usage and verify the application attestation information. Other embodiments are described and claimed.

摘要翻译： 用于可信I / O认证和验证的技术包括具有加密引擎和一个或多个I / O控制器的计算设备。 计算设备收集与由加密引擎保护的受信任的I / O使用相关联的静态附接的硬件I / O组件相关联的硬件认证信息。 计算设备验证硬件认证信息并且响应于验证安全地枚举一个或多个动态附加的硬件组件。 计算设备收集在安全枚举期间加载的可信软件组件的软件认证信息。 计算设备验证软件认证信息。 计算设备可以收集加载在I / O控制器中的固件的固件证明信息，并验证固件证明信息。 计算设备可以收集使用可信I / O使用的可信应用的应用认证信息，并验证应用认证信息。 描述和要求保护其他实施例。

公开(公告)号：US20170024568A1

公开(公告)日：2017-01-26

申请号：US14974874

申请日：2015-12-18

申请人： Pradeep M. Pappachan ,  Reshma Lal ,  Bin Xing ,  Steven B. McGowan ,  Siddhartha Chhabra ,  Reouven Elbaz

发明人： Pradeep M. Pappachan ,  Reshma Lal ,  Bin Xing ,  Steven B. McGowan ,  Siddhartha Chhabra ,  Reouven Elbaz

IPC分类号： G06F21/60 ,  G06F13/28 ,  G06F17/30

CPC分类号： G06F21/602 ,  G06F13/28 ,  G06F17/30371 ,  G06F21/606 ,  G06F21/64 ,  G06F2221/031

摘要： Technologies for authenticity assurance for I/O data include a computing device with a cryptographic engine and one or more I/O controllers. A metadata producer of the computing device performs an authenticated encryption operation on I/O data to generate encrypted I/O data and an authentication tag. The metadata producer stores the encrypted I/O data in a DMA buffer and the authentication tag in an authentication tag queue. A metadata consumer decrypts the encrypted I/O data from the DMA buffer and determines whether the encrypted I/0 data is authentic using the authentication tag from the authentication tag queue. For input, the metadata producer may be embodied as the cryptographic engine and the metadata consumer may be embodied as a trusted software component. For output, the metadata producer may be embodied as the trusted software component and the metadata consumer may be embodied as the cryptographic engine. Other embodiments are described and claimed.

摘要翻译： 用于I / O数据的真实性保证的技术包括具有加密引擎和一个或多个I / O控制器的计算设备。 计算设备的元数据生成器对I / O数据执行认证加密操作以产生加密的I / O数据和认证标签。 元数据生成器将加密的I / O数据存储在DMA缓冲器中，认证标签存储在认证标签队列中。 元数据消费者从DMA缓冲器解密加密的I / O数据，并使用来自认证标签队列的认证标签来确定加密的I / O数据是否是真实的。 对于输入，元数据生成器可以体现为加密引擎，并且元数据消费者可以被实现为可信软件组件。 对于输出，元数据生成器可以被实现为可信软件组件，并且元数据消费者可以被体现为密码引擎。 描述和要求保护其他实施例。

公开(公告)号：US20170177293A1

公开(公告)日：2017-06-22

申请号：US14974645

申请日：2015-12-18

申请人： Sudha Krishnakumar ,  Reshma Lal ,  Pradeep M. Pappachan ,  Kar Leong Wong ,  Steven B. McGowan ,  Adeel A. Aslam

发明人： Sudha Krishnakumar ,  Reshma Lal ,  Pradeep M. Pappachan ,  Kar Leong Wong ,  Steven B. McGowan ,  Adeel A. Aslam

IPC分类号： G06F3/16 ,  G06F15/167 ,  H04L9/32 ,  H04L29/06

CPC分类号： G06F3/165 ,  G06F3/162 ,  G06F15/167 ,  H04L9/32 ,  H04L63/126 ,  H04L65/1069 ,  H04L65/4069 ,  H04L65/605

摘要： Technologies for cryptographic protection of I/O audio data include a computing device with a cryptographic engine and an audio controller. A trusted software component may request an untrusted audio driver to establish an audio session with the audio controller that is associated with an audio codec. The trusted software component may verify that a stream identifier associated with the audio session received from the audio driver matches a stream identifier received from the codec. The trusted software may program the cryptographic engine with a DMA channel identifier associated with the codec, and the audio controller may assert the channel identifier in each DMA transaction associated with the audio session. The cryptographic engine cryptographically protects audio data associated with the audio session. The audio controller may lock the controller topology after establishing the audio session, to prevent re-routing of audio during a trusted audio session. Other embodiments are described and claimed.

公开(公告)号：US20180145951A1

公开(公告)日：2018-05-24

申请号：US15356720

申请日：2016-11-21

申请人： Srikanth Varadarajan ,  Reshma Lal ,  Steven B. McGowan ,  Hakan Magnus Eriksson ,  Travis W. Peters

发明人： Srikanth Varadarajan ,  Reshma Lal ,  Steven B. McGowan ,  Hakan Magnus Eriksson ,  Travis W. Peters

IPC分类号： H04L29/06 ,  H04W12/04 ,  H04L9/14 ,  H04W12/02 ,  G06F21/57 ,  G06F13/28 ,  G06F13/40

CPC分类号： G06F13/4068 ,  G06F13/28 ,  G06F21/57 ,  G06F21/85 ,  H04L9/065 ,  H04L63/0464 ,  H04L69/22 ,  H04L2209/127 ,  H04W12/02 ,  H04W12/1208

摘要： In one embodiment, an apparatus includes a wireless controller, which may include a byte stream parser to receive a stream of data from one or more wireless devices and parse the stream of data to identify a first data packet associated with a first channel identifier associated with a trusted application, and a cryptographic engine coupled to the byte stream parser to encrypt a payload portion of the first data packet in response to the identification of the first data packet associated with the first channel identifier. Other embodiments are described and claimed.

公开(公告)号：US09864711B2

公开(公告)日：2018-01-09

申请号：US13976010

申请日：2011-12-16

申请人： Jennifer C. Wang ,  Alejandro Lenero Beracoechea ,  Nai-Chih Chang ,  Steven B. McGowan

发明人： Jennifer C. Wang ,  Alejandro Lenero Beracoechea ,  Nai-Chih Chang ,  Steven B. McGowan

IPC分类号： G06F13/36 ,  G06F13/40

CPC分类号： G06F13/36 ,  G06F13/4022 ,  G06F13/4081 ,  G06F2213/0042

摘要： Examples are disclosed for automatic downstream to upstream mode switching at a universal serial bus (USB) physical (PHY) layer including activating a switching structure to switch a USB port operating in a downstream mode to an upstream mode based on an attempted attachment by another USB port also operating in a downstream mode. The examples may also include facilitating attachment of the switched USB port now operating in the upstream mode to the other USB port operating in the downstream mode.

公开(公告)号：US20170286359A1

公开(公告)日：2017-10-05

申请号：US15089531

申请日：2016-04-02

申请人： Steven B. McGowan

发明人： Steven B. McGowan

IPC分类号： G06F13/42 ,  H04L9/32 ,  G06F13/16

CPC分类号： G06F13/4291 ,  G06F13/1673 ,  G06F13/36 ,  G06F13/4295 ,  H04L9/3297 ,  H04L25/0298

摘要： Methods and apparatuses relating to measuring propagation delays through USB retimers are described. In one embodiment, a retimer apparatus includes a receiver to receive a data block and a timestamp for the data block from an upstream device, a buffer to store the data block and the timestamp for transmittal, a controller to modify the timestamp to generate a modified timestamp that includes a time from a receipt of a first portion of the data block in the buffer until a transmittal of the first portion of the data block from the buffer, and a transmitter to transmit the data block and the modified timestamp to a downstream device.

公开(公告)号：US20140136646A1

公开(公告)日：2014-05-15

申请号：US14162468

申请日：2014-01-23

申请人： Eliezer Tamir ,  Ben-Zion Friedman ,  Theodore L. Willke ,  Eliel Louzoun ,  Matthew R. Wilcox ,  Donald E. Wood ,  Steven B. McGowan ,  Robert O. Sharp

发明人： Eliezer Tamir ,  Ben-Zion Friedman ,  Theodore L. Willke ,  Eliel Louzoun ,  Matthew R. Wilcox ,  Donald E. Wood ,  Steven B. McGowan ,  Robert O. Sharp

IPC分类号： G06F15/167

CPC分类号： G06F15/17331 ,  G06F13/385 ,  G06F15/167 ,  H04L67/1097

摘要： An embodiment may include circuitry to facilitate, at least in part, a first network interface controller (NIC) in a client to be capable of accessing, via a second NIC in a server that is remote from the client and in a manner that is independent of an operating system environment in the server, at least one command interface of another controller of the server. The command interface may include at least one controller command queue. Such accessing may include writing at least one queue element to the at least one command queue to command the another controller to perform at least one operation associated with the another controller. The another controller may perform the at least one operation in response, at least in part, to the at least one queue element. Many alternatives, variations, and modifications are possible.

摘要翻译： 一个实施例可以包括至少部分地促进客户端中的第一网络接口控制器（NIC）的电路，以便能够通过远离客户端的服务器中的第二NIC以独立的方式访问 的服务器中的操作系统环境，服务器的另一个控制器的至少一个命令接口。 命令接口可以包括至少一个控制器命令队列。 这种访问可以包括将至少一个队列元素写入至少一个命令队列以命令另一控制器执行与另一个控制器相关联的至少一个操作。 另一个控制器可以至少部分地响应于至少一个队列元素来执行至少一个操作。 许多替代方案，变化和修改是可能的。

公开(公告)号：US07512380B2

公开(公告)日：2009-03-31

申请号：US09932286

申请日：2001-08-17

申请人： Steven B. McGowan

发明人： Steven B. McGowan

IPC分类号： H04B1/00 ,  H04B7/00 ,  H04Q7/20

CPC分类号： H04B1/034 ,  H03J1/0066 ,  H03J1/0091 ,  H04R2420/07

摘要： A low-power radio frequency (RF) transmitter includes circuitry for finding unused transmission frequencies on a frequency band, such as an FM broadcast band, and to use an available frequency to broadcast a low-power audio signal to a sound reproduction device. In one embodiment, the sound reproduction device forms part of an entertainment system such as a vehicular stereo, home stereo, boom box, or RF headset. In one embodiment, the transmitter is operatively part of a sound generation device capable of generating and/or reproducing music or sound, such as an MP3 player or other portable entertainment device, personal digital assistant, electronic musical instrument, electronic toy, wireless microphone, or the like. The sound generation device can use an RF receiver or a geoposition source to identify an available transmission frequency. Also described are a sound generation system, a computer-readable medium, and various methods, including methods for finding and using available transmission frequencies.

摘要翻译： 低功率射频（RF）发射机包括用于在诸如FM广播频带的频带上发现未使用的传输频率的电路，并且使用可用频率将低功率音频信号广播到声音再现设备。 在一个实施例中，声音再现装置构成娱乐系统的一部分，诸如车辆立体声，家用立体声，吊杆盒或RF头戴式耳机。 在一个实施例中，发射器是能够产生和/或再现音乐或声音的声音产生装置的操作部分，诸如MP3播放器或其他便携式娱乐装置，个人数字助理，电子乐器，电子玩具，无线麦克风， 或类似物。 声音产生装置可以使用RF接收器或地理位置源来识别可用的传输频率。 还描述了声音生成系统，计算机可读介质和各种方法，包括用于查找和使用可用传输频率的方法。

公开(公告)号：US07908421B2

公开(公告)日：2011-03-15

申请号：US12241648

申请日：2008-09-30

申请人： Steven B. McGowan

发明人： Steven B. McGowan

IPC分类号： G06F13/20 ,  G06F3/00 ,  G06F5/00 ,  G06F9/46

CPC分类号： G06F13/387

摘要： According to some embodiments, an apparatus may be capable of exchanging information with t potential universal serial bus endpoints, where t is an integer greater than 1. Moreover, x endpoint state machines may be established, where x is an integer greater than 1 and less than t. A first endpoint state machine may then be assigned to a first potential endpoint having a pending work item. Before the apparatus has completed the pending work item associated with the first potential endpoint, the first endpoint state machine may be flushed, and the first endpoint state machine may be re-assigned to a second potential endpoint.

摘要翻译： 根据一些实施例，装置可以能够与t个电势通用串行总线端点交换信息，其中t是大于1的整数。此外，可以建立x端点状态机，其中x是大于1且小于等于1的整数 比t 然后可以将第一端点状态机分配给具有未决工作项的第一潜在端点。 在装置完成与第一潜在端点相关联的挂起工作项目之前，可以刷新第一端点状态机，并且可以将第一端点状态机重新分配给第二潜在端点。