专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

101. 发明申请

US20110238967A1 METHOD AND APPARATUS FOR SHARING AN INTEGRITY SECURITY MODULE IN A DUAL-ENVIRONMENT COMPUTING DEVICE 有权
标题翻译：在双环境计算设备中共享安全性模块的方法和装置
公开(公告)号：US20110238967A1
公开(公告)日：2011-09-29
申请号：US12748787
申请日：2010-03-29
申请人： David Carroll Challener , Daryl C. Cromer , Howard J. Locker , Randall Scott Springfield
发明人： David Carroll Challener , Daryl C. Cromer , Howard J. Locker , Randall Scott Springfield
IPC分类号： G06F9/00 , G06F9/48
CPC分类号： G06F9/52 , G06F21/575
摘要： A method and apparatus are disclosed for sharing an integrity security module in a dual-environment computing device. The apparatus include an integrity security module, one or more processors, a detection module and a regeneration module. The one or more processors may have access to the integrity security module and may operate in two distinct operating environments of a dual-environment computing device. The detection module may detect, during an initialization sequence, a power state transition of an operating environment of the dual-environment computing device. The regeneration module may regenerate one or more integrity values from a stored integrity metric log in response to detecting the power state transition of the operating environment of the dual-environment computing device.
摘要翻译：公开了用于在双环境计算设备中共享完整性安全模块的方法和装置。该装置包括完整性安全模块，一个或多个处理器，检测模块和再生模块。一个或多个处理器可以访问完整性安全模块，并且可以在双环境计算设备的两个不同的操作环境中操作。检测模块可以在初始化序列期间检测双环境计算设备的操作环境的功率状态转换。响应于检测双环境计算设备的操作环境的功率状态转换，再生模块可以从存储的完整性度量日志重新生成一个或多个完整性值。

102. 发明授权

US07747024B2 System and method for generalized authentication 有权
标题翻译：广泛认证的系统和方法
公开(公告)号：US07747024B2
公开(公告)日：2010-06-29
申请号：US11673308
申请日：2007-02-09
申请人： David Carroll Challener
发明人： David Carroll Challener
IPC分类号： H04L9/00 , H04L9/32 , G06F7/04
CPC分类号： G06F21/34 , G06F21/32 , H04L9/0822 , H04L9/0897 , H04L9/14 , H04L9/3231 , H04L9/3271
摘要： A system, method, and program product is provided that uses environments to control access to encryption keys. A request for an encryption key and an environment identifier is received. If the encryption key is not associated with the environment identifier, the request is denied. If they are associated, the system receives user-supplied environment authentication data items from a user. Examples of environment authentication data include passwords, user identifiers, user biometric data (e.g., fingerprint scan, etc.), smart cards, and the like. The system retrieves stored environment authentication data items from a secure (e.g., encrypted) storage location. The retrieved stored environment authentication data items correspond to the environment identifier that was received. The received environment authentication data items are authenticated using the retrieved stored environment authentication data items. If the authentication is successful, the user is allowed use of the requested encryption key, otherwise, the request is denied.
摘要翻译：提供了一种使用环境来控制对加密密钥的访问的系统，方法和程序产品。接收到加密密钥和环境标识符的请求。如果加密密钥与环境标识符不相关联，则请求被拒绝。如果它们相关联，则系统从用户接收用户提供的环境认证数据项。环境认证数据的示例包括密码，用户标识符，用户生物特征数据（例如，指纹扫描等），智能卡等。系统从安全（例如，加密的）存储位置检索存储的环境认证数据项。检索到的存储环境认证数据项对应于接收到的环境标识符。接收到的环境认证数据项使用检索到的存储环境认证数据项进行认证。如果认证成功，则允许用户使用所请求的加密密钥，否则请求被拒绝。

103. 发明申请

US20100158253A1 System and Method for Generalized Authentication 有权
标题翻译：广义认证系统与方法
公开(公告)号：US20100158253A1
公开(公告)日：2010-06-24
申请号：US12717401
申请日：2010-03-04
申请人： David Carroll Challener
发明人： David Carroll Challener
IPC分类号： H04L9/00
CPC分类号： G06F21/34 , G06F21/32 , H04L9/0822 , H04L9/0897 , H04L9/14 , H04L9/3231 , H04L9/3271
摘要： A system, method, and program product is provided that uses environments to control access to encryption keys. A request for an encryption key and an environment identifier is received. If the encryption key is not associated with the environment identifier, the request is denied. If they are associated, the system receives user-supplied environment authentication data items from a user. Examples of environment authentication data include passwords, user identifiers, user biometric data (e.g., fingerprint scan, etc.), smart cards, and the like. The system retrieves stored environment authentication data items from a secure (e.g., encrypted) storage location. The retrieved stored environment authentication data items correspond to the environment identifier that was received. The received environment authentication data items are authenticated using the retrieved stored environment authentication data items. If the authentication is successful, the user is allowed use of the requested encryption key, otherwise, the request is denied.
摘要翻译：提供了一种使用环境来控制对加密密钥的访问的系统，方法和程序产品。接收到加密密钥和环境标识符的请求。如果加密密钥与环境标识符不相关联，则请求被拒绝。如果它们相关联，则系统从用户接收用户提供的环境认证数据项。环境认证数据的示例包括密码，用户标识符，用户生物特征数据（例如，指纹扫描等），智能卡等。系统从安全（例如，加密的）存储位置检索存储的环境认证数据项。检索到的存储环境认证数据项对应于接收到的环境标识符。接收到的环境认证数据项使用检索到的存储环境认证数据项进行认证。如果认证成功，则允许用户使用所请求的加密密钥，否则请求被拒绝。

104. 发明申请

US20100058082A1 MAINTAINING NETWORK LINK DURING SUSPEND STATE 审中-公开
标题翻译：在暂停状态下维护网络链接
公开(公告)号：US20100058082A1
公开(公告)日：2010-03-04
申请号：US12198979
申请日：2008-08-27
申请人： Howard Jeffrey Locker , David Carroll Challener , Justin Tyler Dubs , Steven Richard Perrin , Michael Terrell Vanover , Jennifer Greenwood Zawacki
发明人： Howard Jeffrey Locker , David Carroll Challener , Justin Tyler Dubs , Steven Richard Perrin , Michael Terrell Vanover , Jennifer Greenwood Zawacki
IPC分类号： G06F1/32
CPC分类号： G06F1/3209
摘要： A low power processor in a computer is kept energized in a suspend state in which a main processor of the computer is deenergized. The low power processor maintains a network connection by sending keepalive packets as required by the network communication protocol.
摘要翻译：计算机中的低功率处理器被保持通电，其中计算机的主处理器被断电。低功率处理器通过根据网络通信协议的要求发送keepalive分组来维护网络连接。

105. 发明授权

US07673134B2 Backup restore in a corporate infrastructure 有权
标题翻译：企业基础架构中的备份还原
公开(公告)号：US07673134B2
公开(公告)日：2010-03-02
申请号：US11101290
申请日：2005-04-07
申请人： Ryan Charles Catherman , David Carroll Challener , Scott Thomas Elliott , James Patrick Hoff
发明人： Ryan Charles Catherman , David Carroll Challener , Scott Thomas Elliott , James Patrick Hoff
IPC分类号： H04L29/06 , G06F9/00
CPC分类号： H04L63/0428 , G06F11/1446 , G06F21/6209 , H04L9/0822 , H04L2209/60 , H04L2463/062
摘要： A method and system for remotely storing a user's admin key to gain access to an intranet is presented. The user's admin key and intranet user identification (ID) are encrypted using an enterprise's public key, and together they are concatenated into a single backup admin file, which is stored in the user's client computer. If the user needs his admin file and is unable to access it in a backup client computer, he sends the encrypted backup admin file to a backup server and his unencrypted intranet user ID to an intranet authentication server. The backup server decrypts the user's single backup admin file to obtain the user's admin key and intranet user ID. If the unencrypted intranet user ID in the authentication server matches the decrypted intranet user ID in the backup server, then the backup server sends the backup client computer the decrypted admin key.
摘要翻译：介绍一种用于远程存储用户管理密钥以访问内联网的方法和系统。用户的管理密钥和内部网用户标识（ID）使用企业的公钥进行加密，并将它们并入一个备份管理文件，该文件存储在用户的客户端计算机中。如果用户需要他的管理员文件，并且无法在备份客户端计算机中访问它，则他将加密的备份管理文件发送到备份服务器，并将其未加密的内部网用户ID发送到内部网认证服务器。备份服务器解密用户的单备份管理文件，获取用户的管理密钥和内部网用户ID。如果身份验证服务器中未加密的Intranet用户ID与备份服务器中的解密内网用户ID匹配，则备份服务器将备份客户端计算机发送解密的管理密钥。

106. 发明申请

US20090249434A1 APPARATUS, SYSTEM, AND METHOD FOR PRE-BOOT POLICY MODIFICATION 有权
标题翻译：装置，系统和预引导政策修改方法
公开(公告)号：US20090249434A1
公开(公告)日：2009-10-01
申请号：US12059805
申请日：2008-03-31
申请人： David Carroll Challener , Jeffrey Mark Estroff , Mikio Hagiwara , Seiichi Kawano , Keiko Kokubun , Randall Scott Springfield
发明人： David Carroll Challener , Jeffrey Mark Estroff , Mikio Hagiwara , Seiichi Kawano , Keiko Kokubun , Randall Scott Springfield
IPC分类号： G06F21/00 , H04L9/08 , G06F17/00 , G06F15/177
CPC分类号： G06F9/4401 , G06F1/24
摘要： An apparatus, system, and method are disclosed for pre-boot policy modification. A key module exchanges a key with a server in a secure environment. A communication module receives a policy encoded with the key. A decode module decodes the encoded policy using the key and saves the policy setting prior to booting an operating system on the computer. An update module boots the computer using the policy.
摘要翻译：公开了用于预引导策略修改的装置，系统和方法。密钥模块在安全环境中与服务器交换密钥。通信模块接收用该密钥编码的策略。解码模块使用密钥解码编码策略，并在引导计算机上的操作系统之前保存策略设置。更新模块使用策略引导计算机。

107. 发明申请

US20090222635A1 System and Method to Use Chipset Resources to Clear Sensitive Data from Computer System Memory 审中-公开
标题翻译：使用芯片组资源清除计算机系统内存中的敏感数据的系统和方法
公开(公告)号：US20090222635A1
公开(公告)日：2009-09-03
申请号：US12040981
申请日：2008-03-03
申请人： David Carroll Challener , Daryl Carvis Cromer , Howard Jeffrey Locker , Randall Scott Springfield
发明人： David Carroll Challener , Daryl Carvis Cromer , Howard Jeffrey Locker , Randall Scott Springfield
IPC分类号： G06F15/177 , G06F12/00
CPC分类号： G06F12/1433 , G06F21/575 , G06F2221/2143
摘要： A system, method, and program product is provided that initializes a computer system using an initialization process that identifies secrets that were stored in memory and not scrubbed during a prior use of the computer system. During the initialization process, one or more secret indicators are retrieved that identify whether one or more secrets were scrubbed from the computer system's memory during a previous use of the computer system. If the secret indicators show that one or more secrets were not scrubbed from the memory during the prior use of the computer system, then the initialization process scrubs the memory. On the other hand, if the secret indicators show that each of the secrets was scrubbed from the memory during the prior use of the computer system, then the memory is not scrubbed during the initialization process.
摘要翻译：提供了一种系统，方法和程序产品，其使用识别存储在存储器中并且在先前使用计算机系统期间不被擦除的秘密的初始化过程来初始化计算机系统。在初始化过程中，检索一个或多个秘密指示符，其识别在先前使用计算机系统期间是否从计算机系统的存储器擦除了一个或多个秘密。如果秘密指示器显示在计算机系统的先前使用期间没有从存储器擦除一个或多个秘密，则初始化过程擦除存储器。另一方面，如果秘密指示器显示在计算机系统的先前使用期间从存储器擦除了每个秘密，则在初始化过程期间不擦除存储器。

108. 发明授权

US07581253B2 Secure storage tracking for anti-virus speed-up 有权
标题翻译：安全的存储跟踪，防病毒加速
公开(公告)号：US07581253B2
公开(公告)日：2009-08-25
申请号：US10894588
申请日：2004-07-20
申请人： David Carroll Challener , John Peter Karidis
发明人： David Carroll Challener , John Peter Karidis
IPC分类号： G06F11/00
CPC分类号： G06F21/564 , G06F21/80
摘要： A computer system includes a security subsystem which is able to trustfully track which files or storage areas of a storage device have been altered since a last virus scan. The trusted information can then be used to accelerate scans for undesirable code or data such as viruses and invalid or corrupt registry entries. In the case of viruses, files or storage areas which have been altered are scanned against a super-set of virus definitions. Unaltered files or storage areas are scanned against a subset of virus definitions.
摘要翻译：计算机系统包括安全子系统，该子系统能够信任地跟踪自上次病毒扫描以来存储设备的哪些文件或存储区域被改变。然后，可信信息可用于加速扫描不期望的代码或数据，如病毒和无效或损坏的注册表项。在病毒的情况下，已经被更改的文件或存储区域被扫描超过一组病毒定义。未修改的文件或存储区域将针对病毒定义的一部分进行扫描。

109. 发明申请

US20090083539A1 Method for Securely Creating an Endorsement Certificate in an Insecure Environment 失效
标题翻译：在不安全的环境中安全地创建认可证书的方法
公开(公告)号：US20090083539A1
公开(公告)日：2009-03-26
申请号：US11858971
申请日：2007-09-21
申请人： Ryan Charles Catherman , David Carroll Challener , James Patrick Hoff
发明人： Ryan Charles Catherman , David Carroll Challener , James Patrick Hoff
IPC分类号： H04L9/00
CPC分类号： G06F21/57
摘要： A method and system for ensuring security-compliant creation and signing of endorsement keys of manufactured TPMs. The endorsement keys are generated for the TPM. The TPM vendor selects an N-byte secret and stores the N-byte secret in the TPM along with the endorsement keys. The secret number cannot be read outside of the TPM. The secret number is also provided to the OEM's credential server. During the endorsement key (EK) credential process, the TPM generates an endorsement key, which comprises both the public key and a hash of the secret and the public key. The credential server matches the hash within the endorsement key with a second hash of the received public key (from the endorsement key) and the vendor provided secret. The EK certificate is generated and inserted into the TPM only when a match is confirmed.
摘要翻译：一种用于确保制造TPM的签注密钥的安全兼容创建和签名的方法和系统。为TPM生成认可密钥。 TPM供应商选择一个N字节的秘密，并将N字节的秘密与支持密钥一起存储在TPM中。无法在TPM之外读取密码。秘密编号也提供给OEM的凭据服务器。在认可密钥（EK）凭证处理过程中，TPM产生一个签名密钥，其包括公开密钥和密钥的散列以及公开密钥。凭证服务器将签名密钥内的散列与接收到的公钥（来自认可密钥）和供应商提供的秘密的第二散列进行匹配。仅当匹配确认时，EK证书才会生成并插入到TPM中。

110. 发明申请

US20090083534A1 REMOTE PC BOOTUP VIA A HANDHELD COMMUNICATION DEVICE 有权
标题翻译：远程PC启动通过手持通信设备
公开(公告)号：US20090083534A1
公开(公告)日：2009-03-26
申请号：US11861577
申请日：2007-09-26
申请人： David Carroll Challener , Daryl Cromer , Howard Locker , Randall Scott Springfield
发明人： David Carroll Challener , Daryl Cromer , Howard Locker , Randall Scott Springfield
IPC分类号： G06F9/00 , G06F21/00
CPC分类号： G06F21/305
摘要： A method computer usable medium and computer system circuitry are disclosed for starting or “booting up” a computer from a remote location using a remote command device such as a cellular telephone. The method and system includes a secure means for remotely storing and transmitting security passwords.
摘要翻译：公开了一种方法计算机可用介质和计算机系统电路，用于使用诸如蜂窝电话的远程命令装置从远程位置启动或“启动”计算机。该方法和系统包括用于远程存储和传输安全密码的安全装置。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式