专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

91. 发明授权

US07424606B2 System and method for authenticating an operating system 有权
标题翻译：用于认证操作系统的系统和方法
公开(公告)号：US07424606B2
公开(公告)日：2008-09-09
申请号：US10430999
申请日：2003-05-07
申请人： Butler W. Lampson , John D. DeTreville , Paul England
发明人： Butler W. Lampson , John D. DeTreville , Paul England
IPC分类号： H04L9/00 , G06F7/04
CPC分类号： G06F9/468 , G06F9/4406 , G06F21/10 , G06F21/575 , G06F2221/2113 , H04L63/0435 , H04L63/0442 , H04L63/166
摘要： A system and method for authenticating an operating system includes, in accordance with one aspect, a method in a computer system having a processor, an operating system (OS), and a software identity register that holds an identity of the operating system, the processor having a private key. The method comprises forming an OS certificate containing the identity from the software identity register and signing the OS certificate using the private key. In accordance with another aspect, the signed identity is submitted to a recipient to prove an identity of the operating system to the recipient.
摘要翻译：根据一个方面，用于认证操作系统的系统和方法包括具有处理器，操作系统（OS）和保存操作系统的身份的软件身份寄存器的计算机系统中的方法，所述处理器有私钥。该方法包括从软件身份寄存器形成包含身份的OS证书，并使用私钥对OS证书进行签名。根据另一方面，将签名的身份提交给接收者以向接收者证明操作系统的身份。

92. 发明授权

US07362861B2 Methods and apparatus for protecting information content 有权
标题翻译：保护信息内容的方法和装置
公开(公告)号：US07362861B2
公开(公告)日：2008-04-22
申请号：US10854967
申请日：2004-05-26
申请人： Yacov Yacobi , Paul England , Gideon A. Yuval
发明人： Yacov Yacobi , Paul England , Gideon A. Yuval
IPC分类号： H04N7/167 , H04B1/69
CPC分类号： H04N21/4402 , H04N7/1696 , H04N21/4122 , H04N21/43632 , H04N21/4367 , H04N21/4405 , H04N21/4408
摘要： Methods and apparatus for protecting copyrighted information, e.g., video signals, from unauthorized copying. Analog red (R), green (G) and blue (B) video signals are transmitted from a source device, e.g., a display adapter, to a display device, e.g., a monitor, over corresponding analog signal lines after the identify of the destination device is confirmed by receipt of a certificate assigned to the destination device. A session key, used for encrypting the analog signals, is generated and exchanged between the source and destination devices after the identification of the destination device is confirmed. The source and destination devices each includes a pseudo-random number generator driven by the session key. The lines that carry the R, G and B video signals are changed, e.g., swapped, on a periodic basis as a function of the output of the pseudo-random number generator in the source device. The destination device, which has an input to its pseudo-random number generator synchronized with the random number generator of the source device, decrypts the received video signals in a complimentary fashion to the encryption. Encrypted digital information subject to copying constraints may be supplied to a display adapter via an IEEE 1394 compliant bus.
摘要翻译：用于保护受版权保护的信息（例如，视频信号）的未经授权的复制的方法和装置。模拟红色（R），绿色（G）和蓝色（B）视频信号从源设备（例如显示适配器）传输到显示设备，例如监视器，在相应的模拟信号线上，通过接收分配给目的地设备的证书来确认目的地设备。在确认目的地设备的识别之后，在源设备和目的设备之间生成用于加密模拟信号的会话密钥。源和目标设备每个都包括由会话密钥驱动的伪随机数发生器。作为源设备中的伪随机数发生器的输出的函数，周期性地改变携带R，G和B视频信号的线路，例如交换。具有与源设备的随机数发生器同步的其伪随机数发生器的输入的目的地设备以接收的视频信号以加密方式互补地解密。受复制限制的加密数字信息可以通过IEEE 1394兼容总线提供给显示适配器。

93. 发明授权

US07305553B2 Manifest-based trusted agent management in a trusted operating system environment 有权
公开(公告)号：US07305553B2
公开(公告)日：2007-12-04
申请号：US11206578
申请日：2005-08-18
申请人： Paul England , Marcus Peinado , Daniel R. Simon , Josh D. Benaloh
发明人： Paul England , Marcus Peinado , Daniel R. Simon , Josh D. Benaloh
IPC分类号： H04L29/00
CPC分类号： G06F21/54 , G06F21/53 , G06F21/57
摘要： Manifest-based trusted agent management in a trusted operating system environment includes receiving a request to execute a process is received and setting up a virtual memory space for the process. Additionally, a manifest corresponding to the process is accessed, and which of a plurality of binaries can be executed in the virtual memory space is limited based on indicators, of the binaries, that are included in the manifest.

94. 发明申请

US20070226492A1 SECURE PROCESSOR ARCHITECTURE FOR USE WITH A DIGITAL RIGHTS MANAGEMENT (DRM) SYSTEM ON A COMPUTING DEVICE 有权
标题翻译：安全处理器架构与数字权限管理（DRM）系统在计算机上的使用
公开(公告)号：US20070226492A1
公开(公告)日：2007-09-27
申请号：US11754856
申请日：2007-05-29
申请人： Marcus Peinado , Paul England
发明人： Marcus Peinado , Paul England
IPC分类号： H04L9/00
CPC分类号： H04L63/0442 , G06F21/10 , G06F21/71 , G06F2221/2105 , H04L9/0897 , H04L9/3236 , H04L9/3263 , H04L63/068 , H04L63/0823 , H04L63/12 , H04L2209/603
摘要： A secure processor is operable in normal and preferred modes, and includes a security kernel instantiated when the processor enters into preferred mode and a security key accessible by the security kernel during preferred mode. The security kernel employs the accessed security key to authenticate a secure application, and allows the processor to be trusted to keep hidden a secret of the application. To instantiate the application, the processor enters preferred mode where the security key is accessible, and instantiates and runs the security kernel. The security kernel accesses the security key and applies same to decrypt a key for the application, stores the decrypted key in a location where the application will expect same, and instantiates the application. The processor then enters the normal mode, where the security key is not accessible.
摘要翻译：安全处理器在正常和优选模式下可操作，并且包括当处理器进入优选模式时实例化的安全内核以及在优选模式期间由安全内核访问的安全密钥。安全内核使用访问的安全密钥来认证安全应用程序，并允许处理器被信任以隐藏应用程序的秘密。为了实例化应用程序，处理器进入可访问安全密钥的首选模式，并实例化和运行安全内核。安全内核访问安全密钥并应用该密钥对应用程序的密钥进行解密，将解密的密钥存储在应用程序期望相同的位置，并实例化应用程序。然后，处理器进入正常模式，其中安全密钥不可访问。

95. 发明授权

US07257707B2 Manifest-based trusted agent management in a trusted operating system environment 有权
标题翻译：在受信任的操作系统环境中进行基于清单的可信代理管理
公开(公告)号：US07257707B2
公开(公告)日：2007-08-14
申请号：US11206579
申请日：2005-08-18
申请人： Paul England , Marcus Peinado , Daniel R. Simon , Josh D. Benaloh
发明人： Paul England , Marcus Peinado , Daniel R. Simon , Josh D. Benaloh
IPC分类号： H04L29/00
CPC分类号： G06F21/54 , G06F21/53 , G06F21/57
摘要： Manifest-based trusted agent management in a trusted operating system environment includes receiving a request to execute a process is received and setting up a virtual memory space for the process. Additionally, a manifest corresponding to the process is accessed, and which of a plurality of binaries can be executed in the virtual memory space is limited based on indicators, of the binaries, that are included in the manifest.
摘要翻译：在受信任的操作系统环境中的基于清单的可信代理管理包括接收接收到的执行进程的请求，并为进程设置虚拟内存空间。此外，访问对应于进程的清单，并且可以基于二进制文件中包括在清单中的指示符限制在虚拟存储器空间中执行多个二进制文件中的哪一个。

96. 发明申请

US20070174600A1 Interface for communicating physical presence requests 审中-公开
标题翻译：用于传送物理存在请求的接口
公开(公告)号：US20070174600A1
公开(公告)日：2007-07-26
申请号：US11292768
申请日：2005-12-02
申请人： Mark Williams , Paul England , Xian Ke
发明人： Mark Williams , Paul England , Xian Ke
IPC分类号： G06F9/00
CPC分类号： G06F21/316 , G06F21/629 , G06F2221/2149
摘要： In order to facilitate the execution of a command in a pre-OS environment, functionality is provided in the OS environment which allows information regarding a requested command to be communicated to the pre-OS environment. A user request for a command is received, and the user is given information regarding the procedure for execution of the command. The OS communicates to the pre-OS environment certain information, for example by writing to specific memory locations accessible by the pre-OS environment. When the pre-OS environment is activated, the information is used in order to facilitate the user's execution of the command. Information can be transmitted back to the OS, for presentation to the user or further action by the pre-OS environment.
摘要翻译：为了便于在OS前环境中执行命令，在OS环境中提供功能，其允许关于所请求命令的信息被传送到OS前的环境。接收到用户对命令的请求，并向用户提供关于执行命令的过程的信息。操作系统通过写入到操作系统之前的环境可访问的特定存储器位置来向操作系统前的操作环境通信某些信息。当前OS环境被激活时，使用该信息以便于用户执行该命令。信息可以被传送回操作系统，用于呈现给用户或者由操作系统之前的环境进一步的动作。

97. 发明申请

US20070104329A1 System and Method for Authenticating an Operating System to a Central Processing Unit, Providing the CPU/OS with Secure Storage, and Authenticating the CPU/OS to a Third Party 审中-公开
标题翻译：用于向中央处理单元验证操作系统的系统和方法，向CPU / OS提供安全存储，以及向第三方认证CPU / OS
公开(公告)号：US20070104329A1
公开(公告)日：2007-05-10
申请号：US11615195
申请日：2006-12-22
申请人： Paul England , John Detreville , Butler Lampson
发明人： Paul England , John Detreville , Butler Lampson
IPC分类号： H04K1/00
CPC分类号： G06F21/10 , G06F9/4406 , G06F9/468 , G06F21/445 , G06F21/57 , G06F21/575 , G06F2221/0704 , G06F2221/2103 , G06F2221/2113 , G06F2221/2129
摘要： In accordance with certain aspects, an operating system is booted for execution on a central processing unit (CPU). An atomic operation is executed, and if the atomic operation completes correctly then a software identity register of the CPU is set to an identity of the operating system.
摘要翻译：根据某些方面，引导操作系统以在中央处理单元（CPU）上执行。执行原子操作，如果原子操作正确完成，则将CPU的软件标识寄存器设置为操作系统的标识。

98. 发明申请

US20070088949A1 Saving and Retrieving Data Based on Public Key Encryption 失效
标题翻译：基于公钥加密保存和检索数据
公开(公告)号：US20070088949A1
公开(公告)日：2007-04-19
申请号：US11557581
申请日：2006-11-08
申请人： Paul England , Marcus Peinado
发明人： Paul England , Marcus Peinado
IPC分类号： H04L9/00
CPC分类号： G06F21/6218
摘要： In accordance with certain aspects, data is received from a calling program. Ciphertext that includes the data is generated, using public key encryption, in a manner that allows only one or more target programs to be able to obtain the data from the ciphertext. In accordance with another aspect, a bit string is received from a calling program. An identifier of the calling program is checked to determine whether the calling program is allowed to access data encrypted in ciphertext of the bit string. The data is decrypted using public key decryption and returned to the calling program only if the calling program is allowed to access the data.
摘要翻译：根据某些方面，从呼叫程序接收数据。使用公钥加密来生成包含数据的密文，只允许一个或多个目标程序能够从密文获得数据。根据另一方面，从调用程序接收位串。检查调用程序的标识符以确定是否允许调用程序访问以位串的密文加密的数据。数据使用公开密钥解密解密，只有在允许调用程序访问数据的情况下才能返回到调用程序。

99. 发明申请

US20070088946A1 Saving and Retrieving Data Based on Symmetric Key Encryption 有权
公开(公告)号：US20070088946A1
公开(公告)日：2007-04-19
申请号：US11557620
申请日：2006-11-08
申请人： Paul England , Marcus Peinado
发明人： Paul England , Marcus Peinado
IPC分类号： H04L9/00
CPC分类号： G06F21/6218
摘要： In accordance with certain aspects, data is received from a calling program. Ciphertext that includes the data is generated, using a symmetric cipher, in a manner that allows only one or more target programs to be able to obtain the data from the ciphertext. In accordance with other aspects, a bit string is received from a calling program. An identifier of the calling program is checked to determine whether the calling program is allowed to access data encrypted in ciphertext of the bit string. The integrity of the data is also verified, and the data is decrypted using a symmetric key. The data is returned to the calling program only if the calling program is allowed to access the data and if the integrity of the data is successfully verified.

100. 发明申请

US20070086588A1 Saving and Retrieving Data Based on Symmetric Key Encryption 有权
标题翻译：基于对称密钥加密保存和检索数据
公开(公告)号：US20070086588A1
公开(公告)日：2007-04-19
申请号：US11557595
申请日：2006-11-08
申请人： Paul England , Marcus Peinado
发明人： Paul England , Marcus Peinado
IPC分类号： H04L9/28
CPC分类号： G06F21/6218
摘要： In accordance with certain aspects, data is received from a calling program. Ciphertext that includes the data is generated, using a symmetric cipher, in a manner that allows only one or more target programs to be able to obtain the data from the ciphertext. In accordance with other aspects, a bit string is received from a calling program. An identifier of the calling program is checked to determine whether the calling program is allowed to access data encrypted in ciphertext of the bit string. The integrity of the data is also verified, and the data is decrypted using a symmetric key. The data is returned to the calling program only if the calling program is allowed to access the data and if the integrity of the data is successfully verified.
摘要翻译：根据某些方面，从呼叫程序接收数据。使用对称密码，以允许只有一个或多个目标程序能够从密文获得数据的方式生成包含数据的密文。根据其他方面，从呼叫程序接收到位串。检查调用程序的标识符以确定是否允许调用程序访问以位串的密文加密的数据。还验证数据的完整性，并使用对称密钥对数据进行解密。只有当主叫程序被允许访问数据并且数据的完整性被成功验证时，才将数据返回给调用程序。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式