专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08386763B1 System and method for locking down a capability of a computer system 有权
标题翻译：锁定计算机系统能力的系统和方法
公开(公告)号：US08386763B1
公开(公告)日：2013-02-26
申请号：US13343677
申请日：2012-01-04
申请人： Randall R. Spangler , William F. Richardson , Sumit Gwalani , Luigi Semenzato , William A. Drewry
发明人： Randall R. Spangler , William F. Richardson , Sumit Gwalani , Luigi Semenzato , William A. Drewry
IPC分类号： H04L29/14 , G06F15/177
CPC分类号： G06F21/54 , G06F9/4401 , G06F21/572 , G06F21/575 , G06F2221/033 , G06F2221/2141
摘要： A system and method is disclosed for locking down a capability of a computer system. Hardware instructions initiate a sequence of boot cycles to launch a computer operating system on a computer-enabled device. During the boot cycles, multiple levels of boot code are verified. Each verified stage of boot code verifies a subsequent stage of boot code. If the subsequent stage of boot code cannot be verified, the verified stage locks a capability of the computer so that the subsequent stage of boot code cannot modify the capability.
摘要翻译：公开了一种用于锁定计算机系统的能力的系统和方法。硬件指令启动一系列引导周期，以在启用计算机的设备上启动计算机操作系统。在引导周期期间，验证多级引导代码。启动代码的每个验证阶段验证后续阶段的引导代码。如果引导代码的后续阶段无法验证，则验证的阶段锁定计算机的能力，以便后续阶段的引导代码不能修改能力。

2. 发明授权

US08583891B1 Associating partitions in a computing device 有权
标题翻译：在计算设备中关联分区
公开(公告)号：US08583891B1
公开(公告)日：2013-11-12
申请号：US13189783
申请日：2011-07-25
申请人： Randall R. Spangler , William A. Drewry , William F. Richardson
发明人： Randall R. Spangler , William A. Drewry , William F. Richardson
IPC分类号： G06F12/02
CPC分类号： G06F9/4406
摘要： Methods and apparatus for associating partitions in a computing device are disclosed. An example method includes, loading an operating system (O/S) kernel partition (kernel partition) and identifying one or more root filesystem (rootfs) partitions that are compatible with the loaded kernel partition. In the example method, the one or more compatible rootfs partitions are identified by comparing a set of compatibility bits of the loaded kernel partition with respective sets of compatibility bits of a plurality of rootfs partitions of the computing device. The example method still further includes selecting a rootfs partition from the one or more identified compatible rootfs partitions and loading the selected rootfs partition.
摘要翻译：公开了用于在计算设备中关联分区的方法和装置。一个示例方法包括：加载操作系统（O / S）内核分区（内核分区）并识别与加载的内核分区兼容的一个或多个根文件系统（rootfs）分区。在示例性方法中，通过将加载的内核分区的一组兼容性比特与计算设备的多个rootfs分区的相应的相应组的集合进行比较来识别一个或多个兼容的rootfs分区。该示例方法还包括从一个或多个所识别的兼容的rootfs分区中选择一个rootfs分区并加载所选的rootfs分区。

3. 发明授权

US08832455B1 Verified boot path retry 有权
标题翻译：验证的引导路径重试
公开(公告)号：US08832455B1
公开(公告)日：2014-09-09
申请号：US13239303
申请日：2011-09-21
申请人： William A. Drewry , William F. Richardson , Randall R. Spangler
发明人： William A. Drewry , William F. Richardson , Randall R. Spangler
IPC分类号： G06F21/00
CPC分类号： G06F21/575
摘要： Configurations providing a non-zero threshold for verifying a root file system of an operating system stored on blocks of a boot storage are disclosed. In particular, the root file system is verified during a boot sequence for the operating system. For each block of the root file system of the boot storage, the subject technology verifies a respective block of the boot storage. A counter tracking a number of verification failures is incremented if the block fails verification. In some configurations, the subject technology determines whether the counter meets a predetermined non-zero threshold. If the counter meets the predetermined non-zero threshold, the root file system is marked as corrupted. A recovery mode for the operating system is then initiated. If the counter does not meet the predetermined non-zero threshold, the operating system is reset in order to verify the root file system during a subsequent boot sequence.
摘要翻译：公开了提供用于验证存储在引导存储器的块上的操作系统的根文件系统的非零阈值的配置。特别地，根文件系统在操作系统的引导顺序期间被验证。对于引导存储器的根文件系统的每个块，主题技术验证引导存储器的相应块。跟踪多个验证失败的计数器如果块验证失败，则会递增。在一些配置中，主题技术确定计数器是否满足预定的非零阈值。如果计数器满足预定的非零阈值，则根文件系统被标记为已损坏。然后启动操作系统的恢复模式。如果计数器不满足预定的非零阈值，则操作系统被重置以便在随后的引导序列期间验证根文件系统。

4. 发明授权

US08819330B1 System and method for updating a locally stored recovery image 有权
标题翻译：用于更新本地存储的恢复映像的系统和方法
公开(公告)号：US08819330B1
公开(公告)日：2014-08-26
申请号：US13237873
申请日：2011-09-20
申请人： Randall R. Spangler , William A. Drewry , William F. Richardson
发明人： Randall R. Spangler , William A. Drewry , William F. Richardson
IPC分类号： G06F12/00
CPC分类号： G06F12/1425 , G06F11/1417 , G06F11/1433
摘要： Systems, methods, and machine-readable media for storing a recovery image on a secondary memory device on a computing system and updating the recovery image. In some aspects, the system may include a main storage device comprising an operating system, a secondary storage device, internal to the computer system and separate from the main storage device, comprising a recovery image, and a processor configured to determine whether to boot the computer system in a normal mode using the main storage device or in a recovery mode using the recovery image on the secondary storage device. In some aspects, the system may also include a recovery circuit configured to prevent access to the secondary storage device during the normal mode when the recovery circuit is disabled and to permit access to the second storage device when the recovery circuit is enabled during the recovery mode process.
摘要翻译：用于将恢复映像存储在计算系统上的次存储器设备上并更新恢复映像的系统，方法和机器可读介质。在一些方面，系统可以包括主存储设备，其包括操作系统，辅助存储设备，计算机系统内部并且与主存储设备分离，包括恢复映像，以及处理器，被配置为确定是否引导计算机系统以正常模式使用主存储设备，或者在恢复模式下使用辅助存储设备上的恢复映像。在一些方面，系统还可以包括恢复电路，其被配置为当恢复电路被禁用时在正常模式期间防止对辅助存储设备的访问，并且当在恢复模式期间启用恢复电路时允许访问第二存储设备处理。

5. 发明授权

US08347349B1 Configuring browser policy settings on client computing devices 有权
公开(公告)号：US08347349B1
公开(公告)日：2013-01-01
申请号：US13369161
申请日：2012-02-08
申请人： Glenn Wilson , Sumit Gwalani , William A. Drewry , Mattias Stefan Nissler , Daniel Kenneth Clifford , Christopher Masone
发明人： Glenn Wilson , Sumit Gwalani , William A. Drewry , Mattias Stefan Nissler , Daniel Kenneth Clifford , Christopher Masone
IPC分类号： H04L9/30 , H04L9/32 , G06F12/14 , G06F11/30
CPC分类号： H04L63/20 , G06F21/6218 , H04L63/08 , H04L63/101
摘要： Systems and methods for configuring browser policy settings on client computing devices are provided. In some aspects, a method includes receiving login credentials from a client computing device. The client computing device includes a browser. The method also includes transmitting browser policy data associated with the login credentials to the client computing device. The browser policy data identifies browser policy settings to be installed on the browser. The browser policy settings identified by the browser policy data include four or more of: compliance settings, behavioral settings, browser/software applications, permission to access one or more websites, restrictions on accessing one or more websites, read permission in a remote document storage unit accessible via the browser, or write permission in a remote document storage unit accessible via the browser.

6. 发明授权

US09256743B2 Remote enterprise policy/client configuration installation for computing devices 有权
标题翻译：用于计算设备的远程企业策略/客户端配置安装
公开(公告)号：US09256743B2
公开(公告)日：2016-02-09
申请号：US13552563
申请日：2012-07-18
申请人： Mattias Stefan Nissler , William A. Drewry , Christopher Masone , Sumit Gwalani
发明人： Mattias Stefan Nissler , William A. Drewry , Christopher Masone , Sumit Gwalani
IPC分类号： G06F21/00 , G06F15/177 , G06F21/57
CPC分类号： G06F21/57
摘要： Systems and methods for remote an enterprise policy/client configuration installation for client computing devices are provided. In some aspects, a method includes receiving, on a client computing device, via a network, a message including an updated enterprise policy/client configuration associated with an operating system and a signature. The signature identifies a source of the message. The method also includes authenticating the message based on the signature. The method also includes installing the updated an enterprise policy/client configuration. At least a first portion of an enterprise policy/client configuration is configured not to be updatable without receiving the message via the network.
摘要翻译：提供了用于远程客户端计算设备的企业策略/客户端配置安装的系统和方法。在一些方面，一种方法包括在客户端计算设备上经由网络接收包括与操作系统和签名相关联的更新的企业策略/客户端配置的消息。签名标识消息的来源。该方法还包括基于签名验证消息。该方法还包括安装更新的企业策略/客户端配置。企业策略/客户端配置的至少第一部分被配置为不可更新，而不经由网络接收到消息。

7. 发明授权

US08701157B1 Configuring policy settings on client computing devices 有权
标题翻译：在客户端计算设备上配置策略设置
公开(公告)号：US08701157B1
公开(公告)日：2014-04-15
申请号：US13348574
申请日：2012-01-11
申请人： Glenn Wilson , Sumit Gwalani , William A. Drewry , Mattias Stefan Nissler
发明人： Glenn Wilson , Sumit Gwalani , William A. Drewry , Mattias Stefan Nissler
IPC分类号： H04L29/06
CPC分类号： H04L63/20 , H04L63/08 , H04L63/0823 , H04L67/306 , H04L67/34
摘要： Systems and methods for configuring policy settings on client computing devices are provided. In some aspects, a method includes transmitting login credentials to one or more server machines. The method also includes receiving, on the client computing device, policy data and a public key from the one or more server machines in response to the login credentials. The method also includes authenticating the policy data based on the public key. The method also includes automatically installing policy settings based on the authenticated policy data on the client computing device. The policy settings identified by the policy data include four or more of: compliance settings, behavioral settings, software applications, permission to access one or more websites, restrictions on accessing one or more websites, read permission in a remote document storage unit, or write permission in a remote document storage unit.
摘要翻译：提供了在客户端计算设备上配置策略设置的系统和方法。在一些方面，一种方法包括将登录凭证传送到一个或多个服务器机器。该方法还包括响应于登录凭证在客户端计算设备上接收来自一个或多个服务器机器的策略数据和公钥。该方法还包括基于公钥验证策略数据。该方法还包括基于客户端计算设备上的认证策略数据自动安装策略设置。由策略数据确定的策略设置包括以下四个或更多：合规性设置，行为设置，软件应用程序，访问一个或多个网站的权限，访问一个或多个网站的限制，远程文档存储单元中的读取权限或写入远程文档存储单元的权限。

8. 发明申请

US20130227090A1 REMOTE ENTERPRISE POLICY/CLIENT CONFIGURATION INSTALLATION FOR COMPUTING DEVICES 有权
标题翻译：远程企业政策/客户端配置计算设备安装
公开(公告)号：US20130227090A1
公开(公告)日：2013-08-29
申请号：US13552563
申请日：2012-07-18
申请人： Mattias Stefan NISSLER , William A. Drewry , Christopher Masone , Sumit Gwalani
发明人： Mattias Stefan NISSLER , William A. Drewry , Christopher Masone , Sumit Gwalani
IPC分类号： G06F15/177 , G06F21/00
CPC分类号： G06F21/57
摘要： Systems and methods for remote an enterprise policy/client configuration installation for client computing devices are provided. In some aspects, a method includes receiving, on a client computing device, via a network, a message including an updated enterprise policy/client configuration associated with an operating system and a signature. The signature identifies a source of the message. The method also includes authenticating the message based on the signature. The method also includes installing the updated an enterprise policy/client configuration. At least a first portion of an enterprise policy/client configuration is configured not to be updatable without receiving the message via the network.
摘要翻译：提供了用于远程客户端计算设备的企业策略/客户端配置安装的系统和方法。在一些方面，一种方法包括在客户端计算设备上经由网络接收包括与操作系统和签名相关联的更新的企业策略/客户端配置的消息。签名标识消息的来源。该方法还包括基于签名验证消息。该方法还包括安装更新的企业策略/客户端配置。企业策略/客户端配置的至少第一部分被配置为不可更新，而不经由网络接收到消息。

9. 发明申请

US20150199028A1 KEYBOARD-CONTROLLED DEVELOPER MODE 审中-公开
标题翻译：键盘控制开发者模式
公开(公告)号：US20150199028A1
公开(公告)日：2015-07-16
申请号：US13326176
申请日：2011-12-14
申请人： Randall R. Spangler , Ryan Tabone , William A. Drewry , Linus Michael Upson
发明人： Randall R. Spangler , Ryan Tabone , William A. Drewry , Linus Michael Upson
IPC分类号： G06F9/06 , G06F9/44
CPC分类号： G06F3/0227 , G06F9/441
摘要： A computer-implemented method for controlling a developer mode of a computer is disclosed according to an aspect of the subject technology. The method comprises, during boot time of the computer, determining whether one or more keys on a keyboard corresponding to the developer mode are held down, and, if the one or more keys are held down, then setting a developer mode value within a lockable memory space to enable the developer mode.
摘要翻译：根据本技术的一个方面，公开了一种用于控制计算机的显影剂模式的计算机实现的方法。该方法包括在计算机的引导时间期间确定是否按住与开发者模式对应的键盘上的一个或多个键，并且如果一个或多个键被按下，则将开发者模式值设置在可锁定内存空间来启用开发人员模式。

10. 发明授权

US09015824B1 Allowing a client computing device to securely interact with a private network 有权
标题翻译：允许客户端计算设备安全地与专用网络交互
公开(公告)号：US09015824B1
公开(公告)日：2015-04-21
申请号：US13405167
申请日：2012-02-24
申请人： William A. Drewry , Kenneth Edward Mixter
发明人： William A. Drewry , Kenneth Edward Mixter
IPC分类号： H04L29/00 , H04L9/32 , G06F11/30
CPC分类号： H04L9/32 , G06F21/6218
摘要： Systems and methods for allowing client computing device to securely interact with private network are provided. Method includes initiating virtual private network connection. Method also includes executing at least portion of virtual private network client code within memory region for unsecure software. Method also includes receiving request within virtual private network client code to access local resource. Local resource is within memory region for secure software. Method also includes determining whether virtual private network client code has permission to access local resource within memory region for secure software. Method also includes, if virtual private network client code has permission to access local resource, providing local resource to virtual private network client code according to request within virtual private network client code. Method also includes, if virtual private network lacks permission to access the local resource, denying local resource to virtual private network client code.
摘要翻译：提供了允许客户端计算设备安全地与专用网络交互的系统和方法。方法包括启动虚拟专用网络连接。方法还包括在非安全软件的内存区内执行虚拟专用网客户端代码的至少一部分。方法还包括在虚拟专用网络客户端代码中接收访问本地资源的请求。本地资源在安全软件的内存区域内。方法还包括确定虚拟专用网络客户端代码是否具有访问用于安全软件的存储器区域内的本地资源的许可。方法还包括，如果虚拟专用网客户端代码具有访问本地资源的权限，则根据虚拟专用网客户端代码内的请求向虚拟专用网客户端代码提供本地资源。方法还包括，如果虚拟专用网络缺少访问本地资源的权限，则拒绝虚拟专用网客户端代码的本地资源。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式