公开(公告)号：US20160182508A1

公开(公告)日：2016-06-23

申请号：US14580985

申请日：2014-12-23

申请人： Timothy J. Gresham ,  Tobias M. Kohlenberg ,  Ravi L. Sahita ,  Tracy E. Camp ,  Harvir Singh ,  Robert L. Vaughn ,  Ned M. Smith ,  Cedric Cochin

发明人： Timothy J. Gresham ,  Tobias M. Kohlenberg ,  Ravi L. Sahita ,  Tracy E. Camp ,  Harvir Singh ,  Robert L. Vaughn ,  Ned M. Smith ,  Cedric Cochin

IPC分类号： H04L29/06

CPC分类号： H04L63/0807 ,  H04L63/0861 ,  H04L63/102

摘要： A technique allows a parentally attested security token to serve as authentication for a minor using identifying attributes of the minor child. The security token may include personally identifiable information about the child, a description of authorized activity as well as specifications of intended use of the security token. The security token may include provisions for authentication to be revoked by a parent or guardian and/or expire after a predetermined time. The security token may be stored inside a trusted execution environment of a portable computing device that may be carried by the minor and presented at physical locations where authentication is required.

摘要翻译： 一种技术允许父母认证的安全令牌作为未成年人的身份认证的身份验证。 安全令牌可以包括关于孩子的个人身份信息，授权活动的描述以及安全令牌的预期用途的规范。 安全令牌可以包括由父母或监护人撤销认证和/或在预定时间之后到期的规定。 安全令牌可以存储在便携式计算设备的可信执行环境中，该便携式计算设备可由未成年人携带并在需要认证的物理位​​置处呈现。

公开(公告)号：US09372984B2

公开(公告)日：2016-06-21

申请号：US13993095

申请日：2011-09-30

申请人： Ned M. Smith ,  Ravi L. Sahita

发明人： Ned M. Smith ,  Ravi L. Sahita

IPC分类号： G06F21/44 ,  G06F21/00 ,  G06F9/455

CPC分类号： G06F21/44 ,  G06F9/45558 ,  G06F21/00 ,  G06F21/575 ,  G06F2009/45562 ,  G06F2009/45566 ,  G06F2009/45587

摘要： An embodiment of the invention provides for an authenticated launch of VMs and nested VMMs. The embodiment may do so using an interface that invokes a VMM protected launch control mechanism for the VMs and nested VMMs. The interface may be architecturally generic. Other embodiments are described herein.

摘要翻译： 本发明的实施例提供了VM和嵌套VMM的认证启动。 该实施例可以使用调用用于VM和嵌套VMM的VMM保护的启动控制机制的接口来实现。 接口可能是架构上通用的。 本文描述了其它实施例。

公开(公告)号：US20130276057A1

公开(公告)日：2013-10-17

申请号：US13993095

申请日：2011-09-30

申请人： Ned M. Smith ,  Ravi L. Sahita

发明人： Ned M. Smith ,  Ravi L. Sahita

IPC分类号： G06F21/44

CPC分类号： G06F21/44 ,  G06F9/45558 ,  G06F21/00 ,  G06F21/575 ,  G06F2009/45562 ,  G06F2009/45566 ,  G06F2009/45587

摘要： An embodiment of the invention provides for an authenticated launch of VMs and nested VMMs. The embodiment may do so using an interface that invokes a VMM protected launch control mechanism for the VMs and nested VMMs. The interface may be architecturally generic. Other embodiments are described herein.

摘要翻译： 本发明的实施例提供了VM和嵌套VMM的认证启动。 该实施例可以使用调用用于VM和嵌套VMM的VMM保护的启动控制机制的接口来实现。 接口可能是架构上通用的。 本文描述了其它实施例。

公开(公告)号：US20220224776A1

公开(公告)日：2022-07-14

申请号：US17711742

申请日：2022-04-01

申请人： Kshitij Arun Doshi ,  Francesc Guim Bernat ,  Ned M. Smith

发明人： Kshitij Arun Doshi ,  Francesc Guim Bernat ,  Ned M. Smith

IPC分类号： H04L67/5681 ,  H04L43/0852 ,  G06F12/0897 ,  G06F12/0891

摘要： The present disclosure is related to managing a caching system based on object fetch costs, where the fetch cost are based on the access latency, cache misses, and time to reuse of individual objects. The caching system may be a multi-tiered caching system that includes multiple storage tiers, where an object management system determines whether to retain or evict an object from a cache of a particular storage tier based on the object's fetch cost. Additionally, eviction can include moving objects from a current storage tier to another storage tier based on the current storage tier and fetch costs.

公开(公告)号：US20220222359A1

公开(公告)日：2022-07-14

申请号：US17711542

申请日：2022-04-01

申请人： Kshitij Arun Doshi ,  Francesc Guim Bernart ,  Ned M. Smith

发明人： Kshitij Arun Doshi ,  Francesc Guim Bernart ,  Ned M. Smith

IPC分类号： G06F21/60

摘要： System and techniques for fault tolerant telemetry of distributed devices are described herein. A node includes a hardware component that receives telemetry from an entity resident on the node. The hardware component signs the telemetry with a cryptographic key to create signed telemetry and stores the signed telemetry in memory of the hardware component. Then, upon request from a remote entity, the hardware component provides the signed telemetry.

公开(公告)号：US20220114055A1

公开(公告)日：2022-04-14

申请号：US17559877

申请日：2021-12-22

申请人： Kshitij Arun Doshi ,  Francesc Guim Bernat ,  Christian Maciocco ,  Ned M. Smith ,  S M Iftekharul Alam ,  Satish Chandra Jha ,  Vesh Raj Sharma Banjade ,  Alexander Bachmutsky

发明人： Kshitij Arun Doshi ,  Francesc Guim Bernat ,  Christian Maciocco ,  Ned M. Smith ,  S M Iftekharul Alam ,  Satish Chandra Jha ,  Vesh Raj Sharma Banjade ,  Alexander Bachmutsky

IPC分类号： G06F11/14 ,  G06F9/50 ,  G06F9/455

摘要： Systems and techniques for transparent dynamic reassembly of computing resource compositions are described herein. An indication may be obtained of an error state of a component of a computing system. An offload command may be transmitted to component management software of the computing system. An indication may be received that workloads to be executed using the component have been suspended. An administrative mode command may be transmitted to the component. The administrative mode command may place the component in partial shutdown to prevent the component from receiving non-administrative workloads. Data of the component may be synchronized with a backup component. Workloads from the component may be transferred to the backup component. An offload release command may be transmitted to the software of the computing system.

公开(公告)号：US20220014466A1

公开(公告)日：2022-01-13

申请号：US17484125

申请日：2021-09-24

申请人： Kshitij Arun Doshi ,  Srikathyayani Srikanteswara ,  Francesc Guim Bernat ,  Ned M. Smith

发明人： Kshitij Arun Doshi ,  Srikathyayani Srikanteswara ,  Francesc Guim Bernat ,  Ned M. Smith

IPC分类号： H04L12/747 ,  H04L29/08 ,  H04L29/06

摘要： System and techniques for information centric network tunneling are described herein. At an ICN router, a data handle for data—that includes an indication of security metadata—is received. The security metadata is obtained based on the data handle and the data is cached based on the security metadata. An ICN node at an interface of the ICN router is tested for compatibility with the security metadata and a version of the data is transmitted to the ICN node based on the compatibility of the ICN node with the security metadata.

公开(公告)号：US20210328783A1

公开(公告)日：2021-10-21

申请号：US17358474

申请日：2021-06-25

申请人： Kshitij Arun Doshi ,  Francesc Guim Bernat ,  Srikathyayani Srikanteswara ,  Ned M. Smith

发明人： Kshitij Arun Doshi ,  Francesc Guim Bernat ,  Srikathyayani Srikanteswara ,  Ned M. Smith

IPC分类号： H04L9/08

摘要： System and techniques for decentralized key generation and management are described herein. An information centric network (ICN) node receives a first ICN interest packet for public encryption parameters of an identity based encryption (IBE) key generation center (KGC). Public encryption parameters for the KGC are received in a first ICN data packet in response to the first ICN interest packet. The public encryption parameters are cached and used to respond a second ICN interest packet for the public parameters. A third ICN data packet may be received from the KGC in response to a key generation request. Here, the third data packet includes an indication that the third ICN data packet is part of a one-time session. Then, the third ICN data packet is transmitted without caching the third ICN data packet content based on the indication.

公开(公告)号：US20210011765A1

公开(公告)日：2021-01-14

申请号：US17028809

申请日：2020-09-22

申请人： Kshitij Arun Doshi ,  Francesc Guim Bernat ,  Ned M. Smith ,  Christian Maciocco

发明人： Kshitij Arun Doshi ,  Francesc Guim Bernat ,  Ned M. Smith ,  Christian Maciocco

IPC分类号： G06F9/50 ,  G06F9/48

摘要： Systems and techniques for adaptive limited-duration edge resource management are described herein. Available capacity may be calculated for a resource for a node of the edge computing network based on workloads executing on the node. Available set-aside resources may be determined based on the available capacity. A service request may be received from an application executing on the edge computing node. A priority category may be determined for the service request. Set-aside resources from the available set-aside resources may be assigned to a workload associated with the service request based on the priority category.

公开(公告)号：US20190325737A1

公开(公告)日：2019-10-24

申请号：US16456716

申请日：2019-06-28

申请人： Hassnaa Moustafa ,  Eve M. Schooler ,  Maruti Gupta Hyde ,  Jeffrey Christopher Sedayao ,  Ned M. Smith ,  S. M. Iftekharul Alam ,  Satish Chandra Jha

发明人： Hassnaa Moustafa ,  Eve M. Schooler ,  Maruti Gupta Hyde ,  Jeffrey Christopher Sedayao ,  Ned M. Smith ,  S. M. Iftekharul Alam ,  Satish Chandra Jha

IPC分类号： G08G1/01 ,  H04L29/08 ,  H04W4/46 ,  H04W4/44 ,  G08G1/0967 ,  H04W4/38

摘要： Systems and techniques for information centric network (ICN) high definition (HD) map distribution are described herein. For example, a vehicle may detect a map tile event (e.g., moving into an area for which the vehicle does not have an up-to-date map tile). The vehicle may transmit an interest packet a name for the map tile via an ICN and receiving the map tile in a data packet sent in response to the interest packet.