专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08892904B2 Hardware enforced security governing access to an operating system 有权
标题翻译：硬件强制执行对操作系统的访问的安全性
公开(公告)号：US08892904B2
公开(公告)日：2014-11-18
申请号：US13612991
申请日：2012-09-13
申请人： Mojtaba Mirashrafi , Gyan Prakash , Jiphun C. Satapathy , Saurabh Dadu
发明人： Mojtaba Mirashrafi , Gyan Prakash , Jiphun C. Satapathy , Saurabh Dadu
IPC分类号： G06F12/14 , G06F21/31 , G06F3/038
CPC分类号： G06F21/31 , G06F21/57 , H04L63/083
摘要： The present disclosure is directed to systems and methods related to hardware-enforced access protection. An example device may comprise a login agent module (LAM), an operating system login authentication module (OSLAM) and a secure user authentication module (SUAM). The LAM may be configured to cause a prompt requesting login information to be presented by the device. The LAM may then provide the login information to the OSLAM, which may be configured to authenticate the login information using known user information. If authenticated, the OSLAM may generate and transmit a signed login success message to the SUAM using a private key. The SUAM may be secure/trusted software loaded by device firmware, and may be configured to authenticate the signed login success message. If authenticated, the SUAM may transmit an encrypted authentication message to the OSLAM. If the encrypted authentication message is authenticated, the OSLAM may grant access to the device.
摘要翻译：本公开涉及与硬件强制访问保护相关的系统和方法。示例设备可以包括登录代理模块（LAM），操作系统登录认证模块（OSLAM）和安全用户认证模块（SUAM）。 LAM可以被配置为引起提示请求登录信息由设备呈现。然后，LAM可以向OSLAM提供登录信息，其可以被配置为使用已知的用户信息来认证登录信息。如果经过身份验证，OSLAM可以使用私钥生成并发送签名的登录成功消息给SUAM。 SUAM可以是由设备固件加载的安全/可信软件，并且可以被配置为对签名的登录成功消息进行认证。如果认证，则SUAM可以向OSLAM发送加密的认证消息。如果加密的认证消息被认证，OSLAM可以授权对设备的访问。

2. 发明授权

US08171529B2 Secure subscriber identity module service 有权
标题翻译：安全的用户身份模块服务
公开(公告)号：US08171529B2
公开(公告)日：2012-05-01
申请号：US12653709
申请日：2009-12-17
申请人： Saurabh Dadu , Gyan Prakash , Mojtaba Mirashrafi
发明人： Saurabh Dadu , Gyan Prakash , Mojtaba Mirashrafi
IPC分类号： G06F7/04
CPC分类号： H04L63/061 , G06F21/335 , G06F21/34 , G06F21/6272 , G06F21/72 , G06F2221/2105 , G06F2221/2115 , G06F2221/2141 , G06F2221/2149 , G06F2221/2153 , H04L63/0853 , H04L63/123 , H04W4/50
摘要： A method, apparatus, system, and computer program product for a secure subscriber identity module service. Communication via a mobile network is activated in response to receiving a request to activate communication service for the system by a secure partition of the system. In response to receiving the request, a key is retrieved for a permit service from storage accessible only by the secure partition. The key is included in a permit requesting to activate the communication service, and the permit is sent to a service provider for the communication service. The service provider communicates with the permit service to obtain a digital signature for the permit. The secure partition receives a signed permit from the service provider, confirms that the signed permit contains the digital signature by the permit service, and activates the communication service for the system in response to confirming that the signed permit contains the digital signature.
摘要翻译：一种用于安全用户识别模块服务的方法，装置，系统和计算机程序产品。响应于通过系统的安全分区来接收为系统激活通信服务的请求而激活通过移动网络的通信。响应于接收到请求，从仅由安全分区访问的存储中检索用于许可服务的密钥。密钥被包括在请求激活通信服务的许可证中，并且许可证被发送到用于通信服务的服务提供商。服务提供者与许可证服务人员进行通信，以获得许可证的数字签名。安全分区从服务提供商接收签名的许可证，确认签名的许可证包含许可服务的数字签名，并且响应于确认签署的许可证包含数字签名，激活系统的通信服务。

3. 发明授权

US08566610B2 Methods and apparatus for restoration of an anti-theft platform 有权
标题翻译：防盗平台恢复方法及装置
公开(公告)号：US08566610B2
公开(公告)日：2013-10-22
申请号：US12653872
申请日：2009-12-18
申请人： Mousumi Hazra , Gyan Prakash , Saurabh Dadu , Mojtaba Mirashrafi , Duncan Glendinning
发明人： Mousumi Hazra , Gyan Prakash , Saurabh Dadu , Mojtaba Mirashrafi , Duncan Glendinning
IPC分类号： G06F11/30
CPC分类号： G06F21/88
摘要： Embodiments of methods for restoration an anti-theft platform are generally described herein. Other embodiments may be described and claimed.
摘要翻译：本文一般地描述用于恢复防盗平台的方法的实施例。可以描述和要求保护其他实施例。

4. 发明申请

US20110076986A1 THEFT DETERRENT TECHNIQUES AND SECURE MOBILE PLATFORM SUBSCRITION FOR WIRELESSLY ENABLED MOBILE DEVICES 有权
标题翻译：无线自动移动设备的防盗技术和安全移动平台订阅
公开(公告)号：US20110076986A1
公开(公告)日：2011-03-31
申请号：US12567652
申请日：2009-09-25
申请人： Duncan Glendinning , Mojtaba Mirashrafi , Saurabh Dadu , Mousumi M. Hazra , Gyan Prakash , Carol A. Bell
发明人： Duncan Glendinning , Mojtaba Mirashrafi , Saurabh Dadu , Mousumi M. Hazra , Gyan Prakash , Carol A. Bell
IPC分类号： H04M1/66
CPC分类号： H04M1/675 , G06F21/88
摘要： Theft deterrence and secure mobile platform subscription techniques for wireless mobile devices are described. An apparatus may comprise a removable secure execution module arranged to connect with a computing platform for a wireless mobile device. The removable secure execution module may comprise a first processing system to execute a security control module. The security control module may be operative to communicate with a security server over a wireless channel on a periodic basis to obtain a security status for the wireless mobile device. The security control module may output control directives to control operations for one or more components of the computing platform based on the security status. Other embodiments are described and claimed.
摘要翻译：描述了无线移动设备的盗窃威慑和安全移动平台订阅技术。设备可以包括被布置成与用于无线移动设备的计算平台连接的可移除的安全执行模块。可拆卸安全执行模块可以包括执行安全控制模块的第一处理系统。安全控制模块可操作以定期地通过无线信道与安全服务器进行通信，以获得无线移动设备的安全状态。安全控制模块可以基于安全状态输出控制指令以控制计算平台的一个或多个组件的操作。描述和要求保护其他实施例。

5. 发明申请

US20100169630A1 Pre-boot Recovery of a Locked Computer System 有权
标题翻译：锁定计算机系统的预引导恢复
公开(公告)号：US20100169630A1
公开(公告)日：2010-07-01
申请号：US12346078
申请日：2008-12-30
申请人： Mojtaba Mirashrafi , Mousumi Hazra , Gyan Prakash , Saurabh Dadu
发明人： Mojtaba Mirashrafi , Mousumi Hazra , Gyan Prakash , Saurabh Dadu
IPC分类号： G06F15/177 , G06F21/00 , G06F12/14 , H04L9/14
CPC分类号： G06F9/4406 , G06F21/575
摘要： Embodiments of the present disclosure provide methods, apparatuses, articles, and removable storage devices for pre-boot recovery of a locked computer system. Other embodiments may also be described and claimed.
摘要翻译：本公开的实施例提供了用于锁定计算机系统的预引导恢复的方法，装置，物品和可移动存储装置。也可以描述和要求保护其他实施例。

6. 发明授权

US08346305B2 Theft deterrent techniques and secure mobile platform subscription for wirelessly enabled mobile devices 有权
标题翻译：盗窃威慑技术和安全移动平台订阅无线启用的移动设备
公开(公告)号：US08346305B2
公开(公告)日：2013-01-01
申请号：US12567652
申请日：2009-09-25
申请人： Duncan Glendinning , Mojtaba Mirashrafi , Saurabh Dadu , Mousumi M. Hazra , Gyan Prakash , Carol A. Bell
发明人： Duncan Glendinning , Mojtaba Mirashrafi , Saurabh Dadu , Mousumi M. Hazra , Gyan Prakash , Carol A. Bell
IPC分类号： H04M1/00 , H04B1/38
CPC分类号： H04M1/675 , G06F21/88
摘要： Theft deterrence and secure mobile platform subscription techniques for wireless mobile devices are described. An apparatus may comprise a removable secure execution module arranged to connect with a computing platform for a wireless mobile device. The removable secure execution module may comprise a first processing system to execute a security control module. The security control module may be operative to communicate with a security server over a wireless channel on a periodic basis to obtain a security status for the wireless mobile device. The security control module may output control directives to control operations for one or more components of the computing platform based on the security status. Other embodiments are described and claimed.
摘要翻译：描述了无线移动设备的盗窃威慑和安全移动平台订阅技术。设备可以包括被布置成与用于无线移动设备的计算平台连接的可移除的安全执行模块。可拆卸安全执行模块可以包括执行安全控制模块的第一处理系统。安全控制模块可操作以定期地通过无线信道与安全服务器进行通信，以获得无线移动设备的安全状态。安全控制模块可以基于安全状态输出控制指令以控制计算平台的一个或多个组件的操作。描述和要求保护其他实施例。

7. 发明申请

US20120115442A1 SECURE SUBSCRIBER IDENTITY MODULE SERVICE 有权
标题翻译：安全订户身份认证服务
公开(公告)号：US20120115442A1
公开(公告)日：2012-05-10
申请号：US13332847
申请日：2011-12-21
申请人： Saurabh Dadu , Gyan Prakash , Mojtaba Mirashrafi
发明人： Saurabh Dadu , Gyan Prakash , Mojtaba Mirashrafi
IPC分类号： H04W12/00 , H04W88/02
CPC分类号： H04L63/061 , G06F21/335 , G06F21/34 , G06F21/6272 , G06F21/72 , G06F2221/2105 , G06F2221/2115 , G06F2221/2141 , G06F2221/2149 , G06F2221/2153 , H04L63/0853 , H04L63/123 , H04W4/50
摘要： A method, apparatus, system, and computer program product for a secure subscriber identity module service. Communication via a mobile network is activated in response to receiving a request to activate communication service for the system by a secure partition of the system. In response to receiving the request, a key is retrieved for a permit service from storage accessible only by the secure partition. The key is included in a permit requesting to activate the communication service, and the permit is sent to a service provider for the communication service. The service provider communicates with the permit service to obtain a digital signature for the permit. The secure partition receives a signed permit from the service provider, confirms that the signed permit contains the digital signature by the permit service, and activates the communication service for the system in response to confirming that the signed permit contains the digital signature.
摘要翻译：一种用于安全用户识别模块服务的方法，装置，系统和计算机程序产品。响应于通过系统的安全分区来接收为系统激活通信服务的请求而激活通过移动网络的通信。响应于接收到请求，从仅由安全分区访问的存储中检索用于许可服务的密钥。密钥被包括在请求激活通信服务的许可证中，并且许可证被发送到用于通信服务的服务提供商。服务提供者与许可证服务人员进行通信，以获得许可证的数字签名。安全分区从服务提供商接收签名的许可证，确认签发的许可证包含许可服务的数字签名，并且响应于确认签署的许可证包含数字签名，激活系统的通信服务。

8. 发明申请

US20110154030A1 Methods and apparatus for restoration of an anti-theft platform 有权
标题翻译：防盗平台恢复方法及装置
公开(公告)号：US20110154030A1
公开(公告)日：2011-06-23
申请号：US12653872
申请日：2009-12-18
申请人： Mousumi Hazra , Gyan Prakash , Saurabh Dadu , Mojtaba Mirashrafi , Duncan Glendinning
发明人： Mousumi Hazra , Gyan Prakash , Saurabh Dadu , Mojtaba Mirashrafi , Duncan Glendinning
IPC分类号： H04L9/32 , G06F12/02
CPC分类号： G06F21/88
摘要： Embodiments of methods for restoration an anti-theft platform are generally described herein. Other embodiments may be described and claimed.
摘要翻译：本文一般地描述用于恢复防盗平台的方法的实施例。可以描述和要求保护其他实施例。

9. 发明授权

US08296554B2 Pre-boot recovery of a locked computer system 有权
标题翻译：锁定计算机系统的预引导恢复
公开(公告)号：US08296554B2
公开(公告)日：2012-10-23
申请号：US12346078
申请日：2008-12-30
申请人： Mojtaba Mirashrafi , Mousumi Hazra , Gyan Prakash , Saurabh Dadu
发明人： Mojtaba Mirashrafi , Mousumi Hazra , Gyan Prakash , Saurabh Dadu
IPC分类号： G06F21/00 , G06F15/177 , G06F9/00 , G06F9/24 , G06F9/445 , G06F13/10
CPC分类号： G06F9/4406 , G06F21/575
摘要： Embodiments of the present disclosure provide methods, apparatuses, articles, and removable storage devices for pre-boot recovery of a locked computer system. In one instance, the method includes determining on pre-boot whether a removable storage device is attached to a computer system, determining whether the computer system is in a locked state and, if the removable storage device is detected, transferring control to a pre-boot authentication module (PBA) stored on the removable storage device to interact with a manageability engine to restore the computer system from the locked state to an unlocked state. If the removable storage device is not detected, the computer system shuts down if the system is determined to be in the locked state and no other PBA is detected. The computer system comprises a host operating environment and a manageability engine that operates independent of the host operating environment. Other embodiments may also be described and claimed.
摘要翻译：本公开的实施例提供了用于锁定计算机系统的预引导恢复的方法，装置，物品和可移动存储装置。在一种情况下，该方法包括：在预引导下确定可移动存储设备是否连接到计算机系统，确定计算机系统是否处于锁定状态，并且如果检测到可移动存储设备，存储在可移动存储设备上的引导认证模块（PBA），以与可管理引擎交互以将计算机系统从锁定状态恢复到解锁状态。如果未检测到可移动存储设备，则如果确定系统处于锁定状态并且没有检测到其他PBA，则计算机系统将关闭。计算机系统包括独立于主机操作环境操作的主机操作环境和可管理引擎。也可以描述和要求保护其他实施例。

10. 发明申请

US20110151836A1 Secure subscriber identity module service 有权
标题翻译：安全的用户身份模块服务
公开(公告)号：US20110151836A1
公开(公告)日：2011-06-23
申请号：US12653709
申请日：2009-12-17
申请人： Saurabh Dadu , Gyan Prakash , Mojtaba Mirashrafi
发明人： Saurabh Dadu , Gyan Prakash , Mojtaba Mirashrafi
IPC分类号： H04W12/04 , H04M1/00 , H04L9/32
CPC分类号： H04L63/061 , G06F21/335 , G06F21/34 , G06F21/6272 , G06F21/72 , G06F2221/2105 , G06F2221/2115 , G06F2221/2141 , G06F2221/2149 , G06F2221/2153 , H04L63/0853 , H04L63/123 , H04W4/50
摘要： A method, apparatus, system, and computer program product for a secure subscriber identity module service. Communication via a mobile network is activated in response to receiving a request to activate communication service for the system by a secure partition of the system. In response to receiving the request, a key is retrieved for a permit service from storage accessible only by the secure partition. The key is included in a permit requesting to activate the communication service, and the permit is sent to a service provider for the communication service. The service provider communicates with the permit service to obtain a digital signature for the permit. The secure partition receives a signed permit from the service provider, confirms that the signed permit contains the digital signature by the permit service, and activates the communication service for the system in response to confirming that the signed permit contains the digital signature.
摘要翻译：一种用于安全用户识别模块服务的方法，装置，系统和计算机程序产品。响应于通过系统的安全分区来接收为系统激活通信服务的请求而激活通过移动网络的通信。响应于接收到请求，从仅由安全分区访问的存储中检索用于许可服务的密钥。密钥被包括在请求激活通信服务的许可证中，并且许可证被发送到用于通信服务的服务提供商。服务提供商与许可证服务人员进行通信，以获得许可证的数字签名。安全分区从服务提供商接收签名的许可证，确认签发的许可证包含许可服务的数字签名，并且响应于确认签署的许可证包含数字签名，激活系统的通信服务。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式