专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

31. 发明授权

US07248248B2 Pointing system for pen-based computer 有权
标题翻译：笔式电脑指点系统
公开(公告)号：US07248248B2
公开(公告)日：2007-07-24
申请号：US10216431
申请日：2002-08-12
申请人： Butler W. Lampson
发明人： Butler W. Lampson
IPC分类号： G09G5/00
CPC分类号： G06F1/162 , G06F1/1626 , G06F1/1643 , G06F1/169
摘要： A secondary input system for a pen-based computer allows users to control a graphical user interface without the use of a stylus. The secondary input system may be in the form of a pointing system. A display surface may be attached to a housing in which the display surface is sensitive to input of a pen device. The pointing system includes a secondary input system on housing in which the input device is responsive to movement of a finger of a user for controlling the graphical user interface. The input device may be a point stick device, a touchpad, or other device that provides two-dimensional movement of a graphical object on the display surface. The secondary input system may be automatically activated or deactivated based on proximity sensing of a stylus or pen with respect of the display surface.
摘要翻译：用于基于笔的计算机的辅助输入系统允许用户在不使用触控笔的情况下控制图形用户界面。辅助输入系统可以是指示系统的形式。显示表面可以附接到显示表面对笔装置的输入敏感的外壳。指示系统包括在外壳上的辅助输入系统，其中输入装置响应于用户的手指的移动来控制图形用户界面。输入设备可以是提供图形对象在显示表面上的二维移动的点按钮设备，触摸板或其他设备。可以基于相对于显示表面的触针或笔的接近感测来自动地激活或去激活辅助输入系统。

32. 发明授权

US07194092B1 Key-based secure storage 有权
标题翻译：基于密钥的安全存储
公开(公告)号：US07194092B1
公开(公告)日：2007-03-20
申请号：US09227568
申请日：1999-01-08
申请人： Paul England , John D. DeTreville , Butler W. Lampson
发明人： Paul England , John D. DeTreville , Butler W. Lampson
IPC分类号： H04L9/00
CPC分类号： G06F9/468 , G06F9/4406 , G06F21/10 , G06F21/575 , G06F2221/2113 , H04L63/0435 , H04L63/0442 , H04L63/166
摘要： Secure storage for downloaded content on a subscriber computer is keyed to a trusted digital rights management operating system, a trusted application, a trusted user or a combination thereof. A one-way hash function is applied to a seed supplied by an application to produce a hashed seed that is used to generate the application storage key. A one-way hash function is applied to a seed supplied by a user to produce a first hashed seed that is passed to a keyed hash function, which is keyed to an identity for the user, to produce a second hashed seed. The second hashed seed is used to generate the user storage key. An operating system storage key is generated from an unhashed seed. One of the storage keys is used to encrypt the downloaded content. An access predicate attached to the content when it is downloaded is associated with the storage key to enforce certain limitations on the access of the content.
摘要翻译：用户计算机上的下载内容的安全存储被锁定到可信赖的数字版权管理操作系统，可信应用程序，可信用户或其组合。单向散列函数应用于由应用程序提供的种子以产生用于生成应用程序存储密钥的散列种子。单向散列函数被应用于由用户提供的种子以产生第一散列种子，该第一散列种子被传递给键入的哈希函数，其被键入用户的身份，以产生第二散列种子。第二个散列种子用于生成用户存储密钥。从未分解的种子生成操作系统存储密钥。其中一个存储密钥用于加密下载的内容。在下载时附加到内容的访问谓词与存储密钥相关联，以对内容的访问执行某些限制。

33. 发明授权

US06820063B1 Controlling access to content based on certificates and access predicates 有权
标题翻译：基于证书和访问谓词控制对内容的访问
公开(公告)号：US06820063B1
公开(公告)日：2004-11-16
申请号：US09227559
申请日：1999-01-08
申请人： Paul England , John D. DeTreville , Butler W. Lampson
发明人： Paul England , John D. DeTreville , Butler W. Lampson
IPC分类号： G06F1760
CPC分类号： G06F21/57 , G06F21/10 , G06F2221/2101
摘要： Digital rights for content downloaded to a subscriber computer from a provider are specified in an access predicate. The access predicate is compared with a rights manager certificate associated with an entity, such as an application, that wants access to the content. If the rights manager certificate satisfies the access predicate, the entity is allowed access to the content. A license that specifies limitations on the use of the content can also be associated with the content and provided to the entity. The use the entity makes of the content is monitored and terminated if the entity violates the license limitations. In one aspect of the invention, the access predicate and the license are protected from tampering through cryptographic techniques.
摘要翻译：在访问谓词中指定了从提供者下载到用户计算机的内容的数字权限。访问谓词与与想要访问内容的实体（例如应用）相关联的权限管理器证书进行比较。如果权限管理器证书满足访问谓词，则允许实体访问内容。指定对使用内容的限制的许可证也可以与内容相关联并提供给实体。如果实体违反许可证限制，使用实体使内容受到监控和终止。在本发明的一个方面，访问谓词和许可证被保护免受通过加密技术的篡改。

34. 发明授权

US06327652B1 Loading and identifying a digital rights management operating system 有权
标题翻译：加载和识别数字版权管理操作系统
公开(公告)号：US06327652B1
公开(公告)日：2001-12-04
申请号：US09227611
申请日：1999-01-08
申请人： Paul England , John D. DeTreville , Butler W. Lampson
发明人： Paul England , John D. DeTreville , Butler W. Lampson
IPC分类号： G06F9445
CPC分类号： G06F9/468 , G06F9/4406 , G06F21/10 , G06F2221/2113
摘要： The identity of an operating system running on a computer is determined from an identity associated with an initial component for the operating system, combined with identities of additional components that are loaded afterwards. Loading of a digital rights management operating system on a subscriber computer is guaranteed by validating digital signatures on each component to be loaded and by determining a trust level for each component. A trusted identity is assumed by the digital rights management operating system when only components with valid signatures and a pre-determined trust level are loaded. Otherwise, the operating system is associated with an untrusted identity. Both the trusted and untrusted identities are derived from the components that were loaded. Additionally, a record of the loading of each component is placed into a boot log that is protected from tampering through a chain of public-private key pairs.
摘要翻译：在计算机上运行的操作系统的身份是从与操作系统的初始组件相关联的身份确定的，再加上随后加载的附加组件的标识。通过验证要加载的每个组件上的数字签名以及通过确定每个组件的信任级别来保证在用户计算机上加载数字版权管理操作系统。只有加载了具有有效签名和预定信任级别的组件时，数字版权管理操作系统才承担可信身份。否则，操作系统与不可信身份相关联。受信任和不受信任的身份都来自已加载的组件。另外，每个组件的加载记录被放置在引导日志中，该引导日志不受篡改通过一系列公私密钥对。

35. 发明授权

US4203154A Electronic image processing system 失效
标题翻译：电子图像处理系统
公开(公告)号：US4203154A
公开(公告)日：1980-05-13
申请号：US899751
申请日：1978-04-24
申请人： Butler W. Lampson , Robert F. Sproull , Severo M. Ornstein , James Y. Leung
发明人： Butler W. Lampson , Robert F. Sproull , Severo M. Ornstein , James Y. Leung
IPC分类号： G06K15/12 , G06K15/10 , G09G5/00 , G09G5/24 , G09G5/32 , G06F3/14 , G06F13/00
CPC分类号： G09G5/24 , G06K15/10 , G06K2215/0042 , G06K2215/0065 , G06K2215/0094
摘要： An electronic image processing system includes a controller for receiving character font data from a main memory and for converting it to image data utilizable by a raster output device capable of formatting the image data in a plurality of scan lines onto an imaging medium. The controller includes an input memory coupled to the main memory for receiving character font data therefrom, a data pattern memory for providing a predetermined pattern of data in response to a predetermined address signal, and a plurality of band buffer memories each capable of storing image data representing a predetermined number of scan lines constituting an image band, each band buffer memory having enable input lines and associated data input lines. The input memory is addressed to access character font data therefrom, such accessed character font data being then applied to respective enable input lines of a selected one of the band buffer memories. The predetermined address signal is applied to the data pattern memory in order to access the predetermined pattern of data and apply same to respective data input lines of the selected band buffer memory. Additionally, the selected band buffer memory is addressed to load into an addressed memory location the predetermined pattern of data only with respect to those data lines whose associated enable input lines are enabled by the character font data.
摘要翻译：电子图像处理系统包括：控制器，用于从主存储器接收字符字体数据，并将其转换成能够将多条扫描线中的图像数据格式化到成像介质上的光栅输出装置可利用的图像数据。控制器包括耦合到主存储器的用于从其接收字符字体数据的输入存储器，用于响应于预定地址信号提供预定数据模式的数据模式存储器，以及每个能够存储图像数据的多个频带缓冲存储器表示构成图像带的预定数量的扫描线，每个带缓冲存储器具有使能输入线和相关联的数据输入线。输入存储器被寻址以从其访问字符字体数据，然后将这样访问的字符字体数据应用于所选频带缓冲存储器的相应使能输入行。预定的地址信号被施加到数据模式存储器以便访问预定的数据模式并将其应用到所选择的频带缓冲存储器的各个数据输入线。此外，所选择的频带缓冲存储器被寻址以仅将相对于其相关联的使能输入线由字符字体数据启用的那些数据线加载到寻址的存储器位置中的预定数据模式。

36. 发明授权

US07457412B2 System and method for authenticating an operating system to a central processing unit, providing the CPU/OS with secure storage, and authenticating the CPU/OS to a third party 有权
标题翻译：将操作系统认证到中央处理单元的系统和方法，向CPU / OS提供安全存储，并将CPU / OS认证给第三方
公开(公告)号：US07457412B2
公开(公告)日：2008-11-25
申请号：US11615266
申请日：2006-12-22
申请人： Paul England , Butler W. Lampson , John D. DeTreville
发明人： Paul England , Butler W. Lampson , John D. DeTreville
IPC分类号： H04L9/00
CPC分类号： G06F21/10 , G06F9/4406 , G06F9/468 , G06F21/445 , G06F21/57 , G06F21/575 , G06F2221/0704 , G06F2221/2103 , G06F2221/2113 , G06F2221/2129
摘要： In accordance with certain aspects, a computer system has a central processing unit (CPU) and an operating system (OS), the CPU having a pair of private and public keys and a software identity register that holds an identity of the operating system. An OS certificate is created including the identity from the software identity register, information describing the operating system, and the CPU public key. The created OS certificate is signed using the CPU private key.
摘要翻译：根据某些方面，计算机系统具有中央处理单元（CPU）和操作系统（OS），所述CPU具有一对专用和公共密钥以及保存操作系统的身份的软件身份寄存器。创建一个OS证书，包括软件身份登记器的身份，描述操作系统的信息和CPU公钥。创建的OS证书使用CPU私钥进行签名。

37. 发明授权

US07174457B1 System and method for authenticating an operating system to a central processing unit, providing the CPU/OS with secure storage, and authenticating the CPU/OS to a third party 有权
标题翻译：将操作系统认证到中央处理单元的系统和方法，向CPU / OS提供安全存储，并将CPU / OS认证给第三方
公开(公告)号：US07174457B1
公开(公告)日：2007-02-06
申请号：US09266207
申请日：1999-03-10
申请人： Paul England , John D. DeTreville , Butler W. Lampson
发明人： Paul England , John D. DeTreville , Butler W. Lampson
IPC分类号： H04L9/00
CPC分类号： G06F21/10 , G06F9/4406 , G06F9/468 , G06F21/445 , G06F21/57 , G06F21/575 , G06F2221/0704 , G06F2221/2103 , G06F2221/2113 , G06F2221/2129
摘要： A general-purpose processor (CPU) is configured with a new mechanism facilitating an authenticated boot sequence that provides building blocks for client-side rights management when the system is online, and provides continued protection of persistent data even when the system goes offline or is rebooted. The CPU includes a cryptographic key pair, and a manufacturer certificate testifying that the manufacturer built the CPU according to a known specification. The operating system (OS) includes a unique block of code, or “boot block” that can establish OS identity by extraction from a digitally signed boot block or by computing a hash digest of the boot block. During booting, the CPU executes a single opcode, followed by the boot block, as an atomic operation to set the identity of the OS into the software identity register. The subscriber unit then can establish a chain of trust to a content provider.
摘要翻译：通用处理器（CPU）配置有一种新的机制，便于经过身份验证的引导顺序，该系统在系统联机时为客户端权限管理提供构建块，并且即使在系统脱机时也提供持续数据的持续保护重新启动 CPU包括加密密钥对和制造商证书，证明制造商根据已知规格构建CPU。操作系统（OS）包括一个唯一的代码块或“引导块”，可以通过从数字签名的引导块中提取或通过计算引导块的散列摘要来建立OS标识。在引导期间，CPU执行单个操作码，后跟引导块，作为将操作系统的身份设置为软件身份寄存器的原子操作。订户单元然后可以建立到内容提供商的信任链。

38. 发明授权

US06976175B2 Hierarchical trusted code for content protection in computers 失效
公开(公告)号：US06976175B2
公开(公告)日：2005-12-13
申请号：US11011457
申请日：2004-12-13
申请人： Paul England , Butler W. Lampson
发明人： Paul England , Butler W. Lampson
IPC分类号： G06F21/00 , G06Q10/10 , H04L9/00 , G06F17/60
CPC分类号： G06Q10/10 , G06F21/57
摘要： An architecture for protecting premium content in a nonsecure computer environment executes only a small number of code modules in a secure memory. The modules are arranged in a hierarchy of trust, where a module names other modules that it is willing to trust, and those modules in turn name other modules that they are willing to trust. A secure loader loads a security manager that oversees a number of content-providing modules for manipulating the content. A memory manager assigns permissions to various pages of the secure memory. The memory has rings of different security. The security model can be extended to program modules and other devices on the computer's bus, such as DMA controllers and peripherals.

39. 发明授权

US06330670B1 Digital rights management operating system 有权
标题翻译：数字版权管理操作系统
公开(公告)号：US06330670B1
公开(公告)日：2001-12-11
申请号：US09227561
申请日：1999-01-08
申请人： Paul England , John D. DeTreville , Butler W. Lampson
发明人： Paul England , John D. DeTreville , Butler W. Lampson
IPC分类号： G06F944
CPC分类号： G06F9/468 , G06F9/4406 , G06F21/10 , G06F21/575 , G06F2221/2113
摘要： A digital rights management operating system protects rights-managed data, such as downloaded content, from access by untrusted programs while the data is loaded into memory or on a page file as a result of the execution of a trusted application that accesses the memory. To protect the rights-managed data resident in memory, the digital rights management operating system refuses to load an untrusted program into memory while the trusted application is executing or removes the data from memory before loading the untrusted program. If the untrusted program executes at the operating system level, such as a debugger, the digital rights management operating system renounces a trusted identity created for it by the computer processor when the computer was booted. To protect the rights-managed data on the page file, the digital rights management operating system prohibits raw access to the page file, or erases the data from the page file before allowing such access. Alternatively, the digital rights management operating system can encrypt the rights-managed data prior to writing it to the page file. The digital rights management operating system also limits the functions the user can perform on the rights-managed data and the trusted application, and can provide a trusted clock used in place of the standard computer clock.
摘要翻译：数字版权管理操作系统由于执行访问存储器的可信应用程序而将数据加载到存储器或页面文件中时，保护诸如下载的内容之类的权利管理的数据免受不可信程序的访问。为了保护驻留在内存中的权限管理数据，数字版权管理操作系统拒绝在可信应用程序正在执行之前加载不受信任的程序，或者在加载不受信任的程序之前从内存中删除数据。如果不可信程序在操作系统级别（例如调试器）上执行，则数字版权管理操作系统在计算机引导时放弃由计算机处理器为其创建的可信标识。为了保护页面文件上的权限管理数据，数字版权管理操作系统禁止原始访问页面文件，或者在允许访问页面之前从页面文件中删除数据。或者，数字权限管理操作系统可以在将权限管理的数据写入页面文件之前加密。数字版权管理操作系统还限制用户可以在权限管理的数据和可信应用上执行的功能，并且可以提供用于代替标准计算机时钟的可信时钟。

40. 发明授权

US5475819A Distributed configuration profile for computing system 失效
标题翻译：计算系统的分布式配置文件
公开(公告)号：US5475819A
公开(公告)日：1995-12-12
申请号：US261741
申请日：1994-06-17
申请人： Steven P. Miller , Butler W. Lampson
发明人： Steven P. Miller , Butler W. Lampson
IPC分类号： G06F15/16 , G06F9/46 , G06F9/50 , G06F15/177 , H04L29/00 , H04L29/06 , H04L29/08 , G06F13/14
CPC分类号： H04L67/16 , G06F9/547 , H04L29/12113 , H04L29/12132 , H04L61/1541 , H04L61/1552 , H04L67/1006 , H04L67/30 , H04L67/1023 , H04L67/40 , H04L69/329
摘要： A distributed computing system using a data communications network may have a number of service providers for a given service or remote procedure call. A client on the network makes reference to a name service to obtain the network address of one of these service providers. The name service maintains for each client or group of clients a configuration profile of the service providers in order to resolve the issue of selecting one of the several service providers when a request is made. A single configuration profile is a priority-ordered search list that maps from a service identifier (e.g., remote procedure call interface specification) into service provider (e.g., remote procedure call server) names. A configuration profile may include names for individual service providers, and/or named groups of service providers, and/or other configuration profiles. Configuration profiles are stored in a manner that makes them accessible throughout the distributed system, e.g., in the name service. Configuration profiles may be chained together by referencing other configuration profiles to provide a hierarchy of configuration profiles.
摘要翻译：使用数据通信网络的分布式计算系统可以具有用于给定服务或远程过程调用的多个服务提供商。网络上的客户端引用名称服务来获取其中一个服务提供商的网络地址。名称服务为每个客户端或一组客户端维护服务提供商的配置简档，以便在请求时解决选择多个服务提供商之一的问题。单个配置简档是从服务标识符（例如，远程过程呼叫接口规范）映射到服务提供商（例如，远程过程呼叫服务器）名称的优先级排序的搜索列表。配置简档可以包括单个服务提供商和/或命名的服务提供商组的名称和/或其他配置简档。配置配置文件以使其在整个分布式系统中可访问的方式存储，例如在名称服务中。配置配置文件可以通过引用其他配置配置文件来链接在一起，以提供配置配置文件的层次结构。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式