专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07533274B2 Reducing the boot time of a TCPA based computing system when the core root of trust measurement is embedded in the boot block code 失效
标题翻译：当信任测度的核心根源嵌入引导块代码时，减少基于TCPA的计算系统的启动时间
公开(公告)号：US07533274B2
公开(公告)日：2009-05-12
申请号：US10712237
申请日：2003-11-13
申请人： Joseph Wayne Freeman , Steven Dale Goodman , Randall Scott Springfield
发明人： Joseph Wayne Freeman , Steven Dale Goodman , Randall Scott Springfield
IPC分类号： G06F9/24 , G06F9/22 , G06F9/30
CPC分类号： G06F21/572 , G06F21/575
摘要： A method, computer program product and system for reducing the boot time of a TCPA based computing system. A flash memory in the TCPA based computing system may include a register comprising bits configured to indicate whether the segments of the flash memory have been updated. The flash memory may further include a table configured to store measurements of the segments of the flash memory. The flash memory may further include a boot block code that includes a Core Root of Trust for Measurement (CRTM). The CRTM may read the bits in the register to determine if any of the segments of the flash memory have been updated. The CRTM may further obtain the measurement values in the table for those segments that store the POST BIOS code that have not been updated thereby saving time from measuring the POST BIOS code and consequently reducing the boot time.
摘要翻译：一种用于减少基于TCPA的计算系统的启动时间的方法，计算机程序产品和系统。基于TCPA的计算系统中的闪速存储器可以包括寄存器，其包括被配置为指示闪速存储器的段是否已被更新的位。闪存可以进一步包括被配置为存储闪存的片段的测量的表。闪速存储器还可以包括引导块代码，其包括用于测量的信任核心根（CRTM）。 CRTM可以读取寄存器中的位，以确定闪存中的任何段是否已更新。 CRTM可以进一步获得存储POST BIOS代码的那些片段的表中的测量值，从而节省了测量POST BIOS代码的时间，从而减少了引导时间。

2. 发明授权

US07319299B2 Determining types of cooling fans used in a personal computer thereby using optimum parameters to control each unique cooling fan 有权
标题翻译：确定个人计算机中使用的冷却风扇的类型，从而使用最佳参数来控制每个独特的冷却风扇
公开(公告)号：US07319299B2
公开(公告)日：2008-01-15
申请号：US11167751
申请日：2005-06-27
申请人： Joseph Wayne Freeman , Steven Dale Goodman , Isaac Karpel , Randall Scott Springfield
发明人： Joseph Wayne Freeman , Steven Dale Goodman , Isaac Karpel , Randall Scott Springfield
IPC分类号： H02P5/00
CPC分类号： G06F1/20 , F04D27/00 , F04D27/001 , F04D29/582
摘要： A cooling fan, system and method for controlling cooling fans in a personal computer. A unique series of sensing points is placed on a rotating hub of a cooling fan in order to uniquely identify the particular type of cooling fan. A tachometer sensor mounted in the cooling fan detects the unique series of sensing points as the cooling fan rotates and generates a sequence of pulses corresponding to the detected sending points. This generated pulse signal may be transmitted by the sensor to the fan control code. The fan control code may determine a particular type of cooling fan that the cooling fan is based on the generated pulse signal. Once the fan control code determines the particular type of cooling fan that the cooling fan is, the fan control code uses particular control parameters set for that particular type of cooling fan to control the cooling fan so that it operates optimally.
摘要翻译：一种用于控制个人计算机中的冷却风扇的冷却风扇，系统和方法。为了唯一地识别特定类型的冷却风扇，将一系列传感点放置在冷却风扇的旋转轮毂上。安装在冷却风扇中的转速计传感器在冷却风扇旋转时检测独特的感测点系列，并产生与检测到的发送点相对应的脉冲序列。该生成的脉冲信号可以由传感器传输到风扇控制代码。风扇控制代码可以确定冷却风扇基于生成的脉冲信号的特定类型的冷却风扇。一旦风扇控制代码确定了冷却风扇的特定类型的冷却风扇，则风扇控制代码使用为特定类型的冷却风扇设置的特定控制参数来控制冷却风扇，使其最佳运行。

3. 发明授权

US07177782B2 Methods and arrangements for capturing runtime information 有权
标题翻译：捕获运行时信息的方法和安排
公开(公告)号：US07177782B2
公开(公告)日：2007-02-13
申请号：US10871848
申请日：2004-06-18
申请人： Ohad Falik , Joseph Wayne Freeman , Isaac Karpel , James S. Rutledge , Randall Scott Springfield
发明人： Ohad Falik , Joseph Wayne Freeman , Isaac Karpel , James S. Rutledge , Randall Scott Springfield
IPC分类号： G06F15/00 , G06F12/00
CPC分类号： G06F11/348 , G06F11/0778 , G06F11/1666 , G06F11/2015
摘要： Methods and arrangements for capturing information related to operational conditions are disclosed. Embodiments include volatile memory to quickly record operational parameters via, e.g., basic input output system (BIOS) code, system management interrupt (SMI) code and/or executing applications. Many embodiments provide an alternative power source and a voltage switch to protect against loss of the information between storage in the volatile memory and storage in the non-volatile memory. Some embodiments include a read controller that provides access to the volatile memory when primary power is available. The read controller may also offer direct access to the non-volatile memory in case of a catastrophic failure that renders the processing device substantially non-functional. Further embodiments include a second processing device to generate a usage model and/or to perform diagnostics with the operational parameters.
摘要翻译：公开了捕获与操作条件有关的信息的方法和布置。实施例包括通过例如基本输入输出系统（BIOS）代码，系统管理中断（SMI）代码和/或执行应用程序来快速记录操作参数的易失性存储器。许多实施例提供了替代电源和电压开关，以防止在易失性存储器中的存储器和非易失性存储器中的存储之间的信息丢失。一些实施例包括在主电源可用时提供对易失性存储器的访问的读取控制器。在导致处理设备基本上不起作用的灾难性故障的情况下，读控制器还可以提供对非易失性存储器的直接访问。另外的实施例包括用于生成使用模型和/或使用操作参数执行诊断的第二处理装置。

4. 发明授权

US06721885B1 Reducing start-up time and avoiding customer-induced system failures for personal computers 失效
标题翻译：减少启动时间，避免客户导致的个人电脑系统故障
公开(公告)号：US06721885B1
公开(公告)日：2004-04-13
申请号：US09658130
申请日：2000-09-08
申请人： Joseph Wayne Freeman , Joseph Franklin Garvey , Steven D. Goodman , William Fred Keown, Jr. , Randall S. Springfield
发明人： Joseph Wayne Freeman , Joseph Franklin Garvey , Steven D. Goodman , William Fred Keown, Jr. , Randall S. Springfield
IPC分类号： G06F15177
CPC分类号： G06F9/4401 , G06F11/2289
摘要： Disclosed is a method for reducing power-up time and avoiding customer-induced failures of computer systems during power-up. An intrusion switch, which is connected to the inside frame of the computer system is utilized. The intrusion switch signals the BIOS of the computer system whenever the cover of the computer's system unit is opened. The BIOS controls the POST operation during power-up of the computer system. During an initial power-up of the computer system, the POST configuration code examines and configures the hardware and sets the applicable registers, etc. At the end of the POST configuration code, the register values are stored in non-volatile storage. During a subsequent power-up of the computer system, a check is made to see if the cover of the system had been opened. When the cover has not been opened, the BIOS assumes that no changed has occurred in the hardware configuration and the BIOS restores the register values from non-volatile storage without completing the POST operation. When the cover has been opened, the BIOS discards the register values and initiates the POST operation, i.e., a full configuration operation is performed and new values stored in the registers and non-volatile storage element.
摘要翻译：公开了一种在上电期间减少上电时间并避免客户导致的计算机系统故障的方法。使用连接到计算机系统的内部框架的入侵开关。每当打开计算机系统单元的盖子时，入侵开关就会通知计算机系统的BIOS。 BIOS在电脑系统启动期间控制POST操作。在计算机系统的初始上电期间，POST配置代码检查和配置硬件并设置适用的寄存器等。在POST配置代码结束时，寄存器值存储在非易失性存储器中。在计算机系统的随后上电期间，检查系统的盖是否已打开。当盖子尚未打开时，BIOS假定在硬件配置中没有发生任何变化，BIOS会从非易失性存储器中恢复寄存器值，而无需完成POST操作。当盖子打开时，BIOS将丢弃寄存器值并启动POST操作，即执行完整配置操作，并将新值存储在寄存器和非易失性存储元件中。

5. 发明授权

US07840796B2 Booting to a recovery/maintenance environment 有权
标题翻译：引导到恢复/维护环境
公开(公告)号：US07840796B2
公开(公告)日：2010-11-23
申请号：US12058696
申请日：2008-03-29
申请人： Richard Alan Dayan , Joseph Wayne Freeman , William Fred Keown, Jr. , Randall Scott Springfield
发明人： Richard Alan Dayan , Joseph Wayne Freeman , William Fred Keown, Jr. , Randall Scott Springfield
IPC分类号： G06F15/177
CPC分类号： G06F9/4406 , G06F11/1417 , G06F11/1441
摘要： A system, computer program product and method for booting to a partition in a non-volatile storage unit without a local operator. In one embodiment, one or more bits in a BOOT register may be set by an operating system indicating if the BIOS should boot to the partition. The BIOS may then read the BOOT register to determine if the BIOS is to boot to the partition as well as any activities to perform if the BIOS is to boot to the partition. In another embodiment, a network interface card may insert directive information received from a packet in a register within the network interface card. The BIOS may then read the register within the network interface card to determine if the BIOS is to boot to the partition as well as any activities to perform if the BIOS is to boot to the partition.
摘要翻译：用于在没有本地操作者的情况下引导到非易失性存储单元中的分区的系统，计算机程序产品和方法。在一个实施例中，BOOT寄存器中的一个或多个位可以由操作系统设置，指示是否BIOS应该引导到分区。然后，BIOS可以读取BOOT寄存器，以确定BIOS是否要引导到分区，以及BIOS是否要引导到分区时执行的任何活动。在另一个实施例中，网络接口卡可以将从分组接收的指令信息插入网络接口卡内的寄存器中。然后，BIOS可以读取网络接口卡内的寄存器，以确定BIOS是否要引导到分区，以及BIOS要启动到分区的任何活动。

6. 发明授权

US07412596B2 Method for preventing system wake up from a sleep state if a boot log returned during the system wake up cannot be authenticated 有权
标题翻译：如果在系统唤醒期间返回的引导日志无法验证，则防止系统从睡眠状态唤醒的方法
公开(公告)号：US07412596B2
公开(公告)日：2008-08-12
申请号：US10967760
申请日：2004-10-16
申请人： David Carroll Challener , Daryl Carvis Cromer , Joseph Wayne Freeman , Steven Dale Goodman , James Patrick Hoff , Howard Jeffrey Locker , Randall Scott Springfield , James Peter Ward
发明人： David Carroll Challener , Daryl Carvis Cromer , Joseph Wayne Freeman , Steven Dale Goodman , James Patrick Hoff , Howard Jeffrey Locker , Randall Scott Springfield , James Peter Ward
IPC分类号： G06F9/00 , G06F15/177
CPC分类号： G06F21/575
摘要： A method and system for enabling security attestation for a computing device during a return from an S4 sleep state. When the computing device enters into the S4 state following a successful boot up, the attestation log is appended to the TPM tick count and the log is signed (with a security signature). When the device is awaken from S4 state, the BIOS obtains and verifies the log created during the previous boot. The CRTM maintains a set of virtual PCRs and references these virtual PCRs against the log. If the values do not match, the return from S4 state fails and the device is rebooted.
摘要翻译：一种用于在从S4睡眠状态返回期间为计算设备提供安全认证的方法和系统。当计算设备在成功启动后进入S4状态时，认证日志会追加到TPM刻度计数，并且日志被签名（具有安全签名）。当设备从S4状态唤醒时，BIOS将获取并验证在以前引导过程中创建的日志。 CRTM维护一组虚拟PCR，并将这些虚拟PCR引用到日志中。如果值不匹配，则S4状态返回失败，设备重启。

7. 发明授权

US07249249B2 Dynamic hardfile size allocation to secure data 有权
标题翻译：动态硬文件大小分配到安全数据
公开(公告)号：US07249249B2
公开(公告)日：2007-07-24
申请号：US10064087
申请日：2002-06-10
申请人： Joseph Wayne Freeman , Steven Dale Goodman , Randall Scott Springfield
发明人： Joseph Wayne Freeman , Steven Dale Goodman , Randall Scott Springfield
IPC分类号： G06F15/177
CPC分类号： G06F21/575 , G06F9/4406 , G06F2221/2105
摘要： A system and method for access control of a hardfile responsive to a computer system having an operating system is disclosed. The method includes detecting a special boot condition during a pre-boot test of the computer system; and altering, in response to the special boot condition, an operating system access configuration of the hardfile. The system includes a computer system that adjusts an operating system access to a hardfile based upon various boot conditions.
摘要翻译：公开了一种响应具有操作系统的计算机系统对硬盘进行访问控制的系统和方法。该方法包括在计算机系统的预引导测试期间检测特殊启动条件; 并且响应于特殊引导条件改变硬文件的操作系统访问配置。该系统包括一个计算机系统，该计算机系统根据各种引导条件调整对硬盘的操作系统访问。

8. 发明授权

US07200761B1 Method to use secure passwords in an unsecure program environment 失效
标题翻译：在不安全的程序环境中使用安全密码的方法
公开(公告)号：US07200761B1
公开(公告)日：2007-04-03
申请号：US09711028
申请日：2000-11-09
申请人： Joseph Wayne Freeman , Randall Scott Springfield , Steven Dale Goodman , Isaac Karpel
发明人： Joseph Wayne Freeman , Randall Scott Springfield , Steven Dale Goodman , Isaac Karpel
IPC分类号： G06F9/00 , G06F11/30 , G06F15/173 , G06F15/16 , H04L9/00
CPC分类号： G06F21/575 , G06F11/2284 , G06F21/79
摘要： During power up initialization, security data such as passwords and other sensitive data which are stored in a lockable memory device are read and copied to protected system management interrupt (SMI) memory space, subject to verification by code running in the SMI memory space that the call to write the security data originates with a trusted entity. Once copied to SMI memory space, the security data is erased from regular system memory and the lockable storage device is hard locked (requiring a reset to unlock) against direct access prior to starting the operating system. The copy of the security data within the SMI memory space is invisible to the operating system. However, the operating system may initiate a call to code running in the SMI memory space to check a password entered by the user, with the SMI code returning a “match” or “no match” indication. The security data may thus be employed after the lockable memory device is hard locked and the operating system is started.
摘要翻译：在上电初始化期间，存储在可锁定存储器设备中的安全数据（例如密码和其他敏感数据）被读取并复制到受保护的系统管理中断（SMI）存储器空间，经由在SMI存储器空间中运行的代码进行验证，调用写入安全数据来源于受信任的实体。一旦复制到SMI内存空间，安全数据将从常规系统内存中擦除，锁定的存储设备在启动操作系统之前就被硬锁定（需要重新启动）以防止直接访问。 SMI内存空间中的安全数据的副本对于操作系统是不可见的。然而，操作系统可以启动对在SMI存储器空间中运行的代码的调用，以检查由用户输入的密码，SMI代码返回“匹配”或“不匹配”指示。因此，在可锁定存储器件被硬锁定并且操作系统启动之后可以采用安全数据。

9. 发明授权

US06990515B2 Secure method and system to prevent internal unauthorized remotely initiated power up events in computer systems 有权
公开(公告)号：US06990515B2
公开(公告)日：2006-01-24
申请号：US10135010
申请日：2002-04-29
申请人： Daryl Carvis Cromer , Joseph Wayne Freeman , Chad Lee Gettelfinger , Steven Dale Goodman , Eric Richard Kern , Randall Scott Springfield
发明人： Daryl Carvis Cromer , Joseph Wayne Freeman , Chad Lee Gettelfinger , Steven Dale Goodman , Eric Richard Kern , Randall Scott Springfield
IPC分类号： G06F1/26 , G06F15/173
CPC分类号： G06F21/575 , H04L63/12
摘要： In a computer network including a plurality of interconnected computers, one of the computers being a sleeping computer in a power down state, the sleeping computer listening for a packet associated with the sleeping computer, a method of waking the sleeping computer from the computer network. An incoming packet of data is transmitted from an administration system in the network to the sleeping computer. When the sleeping computer detects the incoming packet, it determines if the incoming packet contains a data sequence associated with the sleeping computer. If the incoming packet matches the particular data sequence associated with the sleeping computer, the sleeping computer transmits a reply message to the administration system. Upon receiving the reply, the administration system modifies the reply message in a predetermined manner and transmits the modified reply to the sleeping computer. If the sleeping computer determines the reply message was modified in the predetermined manner, then a signal is issued to wake the sleeping computer. Otherwise, the incoming packet is discarded and the sleeping computer is not awakened.

10. 发明授权

US06925570B2 Method and system for setting a secure computer environment 失效
标题翻译：设置安全计算机环境的方法和系统
公开(公告)号：US06925570B2
公开(公告)日：2005-08-02
申请号：US09858058
申请日：2001-05-15
申请人： Joseph Wayne Freeman , Randall Scott Springfield
发明人： Joseph Wayne Freeman , Randall Scott Springfield
IPC分类号： G06F12/14 , G06F9/445 , G06F21/00 , G06F21/22 , G06F21/24 , G06F17/00
CPC分类号： G06F21/71 , G06F21/79
摘要： A computer system processor incorporates a special S-latch which may only be set by secure signals. One state of the S-latch sets the processor into a secure mode where it only executes instructions and not commands from an In Circuit Emulator (ICE) unit. A second state of the S-latch sets the processor into a non-secure mode. A non-volatile random access memory (NVRAM) is written with secure data which can only be read by boot block code stored in a BIOS storage device. The boot block code is operable to read the secure data in the NVRAM and set the S-latch to an appropriate security state. If the boot block code cannot set the S-latch, then remaining boot up with BIOS data is stopped. On boot up the boot block code reads the NVRAM and sets the S-latch into the appropriate security state.
摘要翻译：计算机系统处理器包括只能由安全信号设置的特殊S-锁存器。 S锁存器的一个状态将处理器设置为安全模式，其中它只执行指令而不是来自In Circuit Emulator（ICE）单元的命令。 S锁存器的第二状态将处理器设置为非安全模式。用非易失性随机存取存储器（NVRAM）写入只能由存储在BIOS存储设备中的引导块代码读取的安全数据。引导块代码可操作以读取NVRAM中的安全数据并将S锁存器设置为适当的安全状态。如果引导块代码无法设置S锁存器，则停止使用BIOS数据进行剩余引导。启动引导块代码读取NVRAM并将S锁存器设置为适当的安全状态。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式