公开(公告)号：US20090187772A1

公开(公告)日：2009-07-23

申请号：US12016934

申请日：2008-01-18

Applicant: Sebastian Lange ,  Victor Tan ,  Adam G. Poulos

Inventor： Sebastian Lange ,  Victor Tan ,  Adam G. Poulos

IPC: H04L9/06

CPC classification number: H04L9/3247 ,  G06F21/10 ,  G06F21/6218 ,  G06F2221/0704 ,  H04L9/0643 ,  H04L9/0825 ,  H04L63/0853 ,  H04L63/10 ,  H04L63/12 ,  H04N7/165 ,  H04N21/4623 ,  H04W12/06 ,  H04W12/08

Abstract: Various techniques are described to protect secrets held by closed computing devices. In an ecosystem where devices operate and are offered a wide range of services from a service provider, the service provider may want to prevent users from sharing services between devices. In order to guarantee that services are not shared between devices, each device can be manufactured with a different set of secrets such as per device identifiers. Unscrupulous individuals may try to gain access to the secrets and transfer secrets from one device to another. In order to prevent this type of attack, each closed computing system can be manufactured to include a protected memory location that is tied to the device.

Abstract translation: 描述了各种技术来保护由封闭计算设备保持的秘密。 在设备运行并从服务提供商提供广泛服务的生态系统中，服务提供商可能希望阻止用户在设备之间共享服务。 为了保证服务不在设备之间共享，每个设备可以使用不同的秘密集来制造，例如每个设备标识符。 不道德的个人可能会尝试获取机密，并将秘密从一个设备转移到另一个设备。 为了防止这种类型的攻击，可以将每个封闭的计算系统制造成包括被绑定到设备的受保护的存储器位置。

公开(公告)号：US07389500B2

公开(公告)日：2008-06-17

申请号：US11177130

申请日：2005-07-08

Applicant: Victor Tan

Inventor： Victor Tan

IPC: G06F9/45

CPC classification number: G06F9/45516 ,  G06F9/45504

Abstract: A method and computer-readable medium perform a pre-boot scan of an emulated binary to detect a function that is above a predetermined complexity threshold. The detected function may then be precompiled during a boot-up process. The pre-boot scan may also detect a function that falls below a second predetermined complexity threshold. The detected function may be placed inline with the code body. Just-in-time translation may then be performed at runtime.

Abstract translation: 方法和计算机可读介质执行仿真二进制的预引导扫描以检测高于预定复杂度阈值的函数。 然后可以在启动过程中预先编译检测到的功能。 预引导扫描还可以检测到低于第二预定复杂度阈值的功能。 检测到的功能可以与代码体一起放置。 然后可以在运行时执行即时翻译。

公开(公告)号：US20070006178A1

公开(公告)日：2007-01-04

申请号：US11128699

申请日：2005-05-12

Applicant: Victor Tan

Inventor： Victor Tan

IPC: G06F9/45

CPC classification number: G06F9/45516 ,  G06F8/52 ,  G06F9/45554

Abstract: A JIT binary translator translates code at a function level of the source code rather than at an opcode level. The JIT binary translator of the invention grabs an entire x86 function out of the source stream, rather than an instruction, translates the whole function into an equivalent function of the target processor, and executes that function all at once before returning to the source stream, thereby reducing context switching. Also, since the JIT binary translator sees the entire source code function context at once the software emulator may optimize the code translation. For example, the JIT binary translator might decide to translate a sequence of x86 instructions into an efficient PPC equivalent sequence. Many such optimizations result in a tighter emulated binary.

Abstract translation: JIT二进制翻译器将代码转换为源代码的功能级别而不是操作码级别。 本发明的JIT二进制翻译器从源流中获取整个x86函数而不是指令，将整个函数转换为目标处理器的等效函数，并在返回到源流之前一次执行该函数， 从而减少上下文切换。 此外，由于JIT二进制翻译器一次看到整个源代码功能上下文，因此软件仿真器可以优化代码转换。 例如，JIT二进制翻译器可能决定将x86指令序列转换为有效的PPC等效序列。 许多这样的优化导致更严格的仿真二进制。

公开(公告)号：US20060203799A1

公开(公告)日：2006-09-14

申请号：US10562291

申请日：2004-06-23

Applicant: Victor Tan ,  Siew Chong ,  Hsi Ho

Inventor： Victor Tan ,  Siew Chong ,  Hsi Ho

IPC: H04L12/66

CPC classification number: G11B20/0021 ,  G06F3/0601 ,  G06F2003/0692 ,  G11B19/125 ,  G11B20/00253 ,  G11B20/10 ,  G11B27/105 ,  G11B2220/237 ,  G11B2220/2545 ,  G11B2220/2562

Abstract: The invention provides a circuit for reading data from a data carrier, the circuit comprising a reading unit for reading data from the data carrier; and a controller for controlling the circuit. The circuit further comprises a detection unit for detecting a format of the data carrier; and the controller is configurable to control the circuit to read data from the data carrier in accordance with the detected data carrier format. In this way, for example, an ATAPI engine can be used in a consumer electronics device to play back music from a Super Audio CD. The invention also provides an apparatus, method and data carrier.

Abstract translation: 本发明提供了一种用于从数据载体读取数据的电路，该电路包括用于从数据载体读取数据的读取单元; 以及用于控制电路的控制器。 电路还包括检测单元，用于检测数据载体的格式; 并且控制器可配置为根据检测到的数据载体格式控制电路从数据载体读取数据。 以这种方式，例如，可以在消费电子设备中使用ATAPI引擎来从超级音频CD播放音乐。 本发明还提供了一种装置，方法和数据载体。

公开(公告)号：US08656190B2

公开(公告)日：2014-02-18

申请号：US12023614

申请日：2008-01-31

Applicant: Sebastian Lange ,  Adam Gabriel Poulos ,  Victor Tan

Inventor： Sebastian Lange ,  Adam Gabriel Poulos ,  Victor Tan

IPC: G06F11/30

CPC classification number: G06F21/79 ,  G06F12/1491 ,  G06F2221/2113

Abstract: A one-time-settable tamper resistant software repository may be used in any computing system to store system information such as security violations and policies for responding to them. A one-time-settable tamper resistant software repository may be cryptographically signed, encrypted with a per device key and accessible by only the most privileged software executed by a computing device, e.g., hypervisor or operating system kernel. A one-time-settable tamper resistant software repository may be mirrored in RAM for performance. Recordable event fields in a software repository may be one-time-settable without the ability to reset them in a field operation mode whereas they may be resettable in a different mode such as a manufacturing mode. Memory allocated to a one-time-settable tamper resistant software repository may be reset, reclaimed, reassigned, scaled and otherwise flexibly adapted to changing conditions and priorities in the lifespan of a computing device, which may be particularly useful for service-backed consumer devices.

Abstract translation: 可以在任何计算系统中使用一次性设置的防篡改软件存储库来存储系统信息，例如安全违规和用于对其进行响应的策略。 一次性设置的防篡改软件存储库可以被加密地签名，用每个设备密钥加密，并且只能由计算设备（例如，管理程序或操作系统内核）执行的最特权的软件访问。 一次性设置的防篡改软件存储库可以镜像到RAM中以实现性能。 软件仓库中的可记录事件字段可以是一次性设置的，而无需在现场操作模式下复位它们，而它们可以以诸如制造模式的不同模式被重置。 分配给一次性可设置的防篡改软件存储库的内存可以被重置，回收，重新分配，缩放以及其他灵活地适应于在计算设备的寿命内的变化的条件和优先级，其可能对于服务支持的消费者设备特别有用 。

公开(公告)号：US07817163B2

公开(公告)日：2010-10-19

申请号：US10691442

申请日：2003-10-23

Applicant: Scott Hanggie ,  Victor Tan ,  Gerardo Bermudez ,  Gregory D. Swedberg

Inventor： Scott Hanggie ,  Victor Tan ,  Gerardo Bermudez ,  Gregory D. Swedberg

IPC: G09G5/00

CPC classification number: G06F3/0481 ,  G06F9/451 ,  G09G5/14

Abstract: A method and system for rendering a desktop on a computer using a composited desktop model operating system are provided. A composited desktop window manager, upon receiving base object and content object information for one or more content objects from an application program, draws the window to a buffer memory, and takes advantage of advanced graphics hardware and visual effects to render windows based on content on which they are drawn. The frame portion of each window may be generated by pixel shading a bitmap having the appearance of frosted glass based on the content of the desktop on top of which the frame is displayed. Legacy support is provided so that the operating system can draw and render windows generated by legacy applications to look consistent with non-legacy application windows.

Abstract translation: 提供了一种使用合成桌面模型操作系统在计算机上呈现桌面的方法和系统。 合成的桌面窗口管理器在从应用程序接收到一个或多个内容对象的基础对象和内容对象信息时，将窗口绘制到缓冲存储器，并利用高级图形硬件和视觉效果来基于内容呈现窗口 他们被绘制。 每个窗口的框架部分可以通过基于在其上显示框架的桌面的内容的具有磨砂玻璃的外观的位图的像素着色来生成。 提供传统支持，以便操作系统可以绘制和渲染由旧应用程序生成的窗口，使其与非传统应用程序窗口一致。

公开(公告)号：US20090199279A1

公开(公告)日：2009-08-06

申请号：US12023097

申请日：2008-01-31

Applicant: Sebastian Lange ,  Victor Tan ,  Adam G. Poulos

Inventor： Sebastian Lange ,  Victor Tan ,  Adam G. Poulos

IPC: H04L9/32

CPC classification number: G06F21/10 ,  H04L9/3247 ,  H04L9/3263 ,  H04L2209/603

Abstract: Techniques for migrating content from a first set of conditions to a second set of conditions are disclosed herein. In particular, a content migration certificate is utilized to enable content migration and set forth under what conditions content may be accessed after migration. The content migration certificate may, for example, be stored as a file in a removable storage unit or transferred online once an indication that conditions have changed is received. The change in conditions may involve a new device attempting to access the content file, a new user attempting to access the content, or any other similar conditions. Access to the information in the content migration certificate may be protected by encryption so that only devices and/or users meeting the conditions of the certificate are permitted to transfer content. By accessing the content migration certificate in the prescribed manner, migration of content is enabled in a controlled and easy process.

Abstract translation: 本文公开了将内容从第一组条件迁移到第二组条件的技术。 特别地，使用内容迁移证书来实现内容迁移，并在迁移后可以在哪些条件下访问内容。 内容迁移证书例如可以作为文件存储在可移动存储单元中，或者一旦接收到条件已经改变的指示，就可以在线传送。 条件的变化可能涉及尝试访问内容文件的新设备，尝试访问内容的新用户或任何其他类似条件。 可以通过加密来保护对内容迁移证书中的信息的访问，以便只允许符合证书条件的设备和/或用户传输内容。 通过以规定的方式访问内容迁移证书，在受控和容易的过程中启用内容的迁移。

公开(公告)号：US07552391B2

公开(公告)日：2009-06-23

申请号：US10606591

申请日：2003-06-26

Applicant: Christopher A. Evans ,  Giampiero M. Sierra ,  Victor Tan ,  Praerit Garg ,  David Andrew Matthews ,  Reiner Fink ,  Paul S. Hellyar

Inventor： Christopher A. Evans ,  Giampiero M. Sierra ,  Victor Tan ,  Praerit Garg ,  David Andrew Matthews ,  Reiner Fink ,  Paul S. Hellyar

IPC: G06F3/00

CPC classification number: G06F9/451

Abstract: Methods and arrangements are provided for use in multiple user computing environments. These methods and arrangements can be configured to allow for a plurality of separate and concurrent desktops and workspaces within the shared computing environment. One method includes creating a separate desktop thread for each user that is authenticated during a logon process, creating a separate desktop associated with each desktop thread, and maintaining a list of desktop threads that are created. In this manner, several users can be logged on simultaneously. In certain implementations, the method further includes establishing a separate user environment associated with each desktop and launching a separate user shell associated with each desktop. The list of desktop threads allows for selective and/or automatic switching from a first desktop to a second desktop without terminating a desktop thread associated with the first desktop. The methods and arrangements are also applicable to remote process logon and switching.

Abstract translation: 提供了在多个用户计算环境中使用的方法和布置。 这些方法和布置可以被配置为允许在共享计算环境内的多个单独的和并发的桌面和工作空间。 一种方法包括为登录过程中进行身份验证的每个用户创建单独的桌面线程，创建与每个桌面线程相关联的单独桌面，以及维护创建的桌面线程列表。 以这种方式，几个用户可以同时登录。 在某些实现中，该方法还包括建立与每个桌面相关联的单独的用户环境并且启动与每个桌面相关联的单独的用户外壳。 桌面线程列表允许从第一桌面到第二桌面的选择性和/或自动切换，而不终止与第一台桌面相关联的桌面线程。 方法和布置也适用于远程进程登录和切换。

公开(公告)号：US20070260990A1

公开(公告)日：2007-11-08

申请号：US11739641

申请日：2007-04-24

Applicant: Christopher Evans ,  Giampiero Sierra ,  Sterling Reasor ,  Frank Yerrace ,  Victor Tan ,  Louis Amadio ,  Kelly Rollin

Inventor： Christopher Evans ,  Giampiero Sierra ,  Sterling Reasor ,  Frank Yerrace ,  Victor Tan ,  Louis Amadio ,  Kelly Rollin

IPC: G06F3/00

CPC classification number: G06F9/485 ,  G06F9/451 ,  G06F9/461

Abstract: Methods and apparatuses are provided for controlling application software while switching between session in a multi-session computing environment. An apparatus includes memory coupled to switching logic and application program managing logic. The switching logic is configured to selectively switch console control of a computing device between at least two user kernel sessions that are maintained in the memory. The application program managing logic is configured to selectively control at least one application program that is operatively configured within at least one of the user kernel sessions. For example, the application program managing logic can be configured to stop the operation, restart certain application programs, notify application programs about switching events, and/or adjust the playback of audio and/or video signals associated certain application programs.

Abstract translation: 提供了用于在多会话计算环境中的会话之间切换的同时控制应用软件的方法和装置。 一种装置包括耦合到开关逻辑和应用程序管理逻辑的存储器。 交换逻辑被配置为在存储器中维护的至少两个用户内核会话之间选择性地切换计算设备的控制台控制。 应用程序管理逻辑被配置为选择性地控制在至少一个用户内核会话中可操作地配置的至少一个应用程序。 例如，应用程序管理逻辑可以被配置为停止操作，重新启动某些应用程序，通知应用程序关于切换事件，和/或调整与某些应用程序相关联的音频和/或视频信号的重放。

公开(公告)号：US20070169012A1

公开(公告)日：2007-07-19

申请号：US11274693

申请日：2005-11-14

Applicant: Victor Tan

Inventor： Victor Tan

IPC: G06F9/45

CPC classification number: G06F9/45516

Abstract: Asynchronous just-in-time (JIT) compilation is provided. An asynchronous code translation thread running on a second processor can be invoked by the synchronous thread or can be self-invoked in order to run ahead of user execution and pre-translate code. A translated code cache is present with contention-management structures where both the synchronous and asynchronous threads deposit translated code for delivery to the code execution thread.

Abstract translation: 提供异步即时（JIT）编译。 在第二处理器上运行的异步代码转换线程可以由同步线程调用，或者可以自我调用，以便先于用户执行和预转换代码运行。 翻译的代码缓存存在竞争管理结构，同时和异步线程都将转储的代码存储到代码执行线程中。