-
公开(公告)号:WO2004090701A2
公开(公告)日:2004-10-21
申请号:PCT/GB2004001531
申请日:2004-04-08
Applicant: IBM , IBM UK , CATHERMAN RYAN CHARLES , GOODMAN STEVEN DALE , HOFF JAMES PATRICK , SPRINGFIELD RANDALL SCOTT , WARD JAMES PETER
Inventor: CATHERMAN RYAN CHARLES , GOODMAN STEVEN DALE , HOFF JAMES PATRICK , SPRINGFIELD RANDALL SCOTT , WARD JAMES PETER
CPC classification number: G06F21/57 , G06F21/575 , H05K1/181
Abstract: A computer system (and a motherboard for a computer system) is presented which provides a trusted platform by which operations can be performed with an increased level trust and confidence. The basis of trust for the computer system (or motherboard) is established by an encryption coprocessor and by code which interfaces with the encryption coprocessor and establishes root of trust metrics for the platform. The encryption coprocessor is built such that certain critical operations are allowed only if physical presence of an operator has been detected. Physical presence is determined by inference based upon the status of registers in the core chipset (e.g. on the motherboard).
Abstract translation: 提供了一种计算机系统(以及用于计算机系统的主板),其提供可信赖的平台,通过该平台可以以更高级别的信任和置信度执行操作。 计算机系统(或主板)的信任基础由加密协处理器和与加密协处理器接口的代码建立,并为平台建立信任度量的根。 构建加密协处理器,使得仅当检测到操作者的物理存在时才允许某些关键操作。 基于核心芯片组(例如在主板上)的寄存器的状态通过推理确定物理存在。
-
公开(公告)号:WO2004004226A3
公开(公告)日:2004-03-04
申请号:PCT/GB0302729
申请日:2003-06-25
Inventor: CROMER DARYL CARVIS , JAKES PHILIP JOHN , LOCKER HOWARD JEFFREY , WARD JAMES PETER
Abstract: Apparatus and method provides dynamic load balancing of network bandwidth between access points in an 802.11 wireless LAN. The access point generates and monitors average bandwidth utilization of client devices connected to said access point. The average bandwidth utilization for each client device is aggregated and selected clients are forced to roam to other access points if the aggregate bandwidth is equal or exceeds a threshold.
Abstract translation: 装置和方法提供802.11无线LAN中的接入点之间的网络带宽的动态负载平衡。 接入点生成并监视连接到所述接入点的客户端设备的平均带宽利用率。 如果总带宽等于或超过阈值,则每个客户端设备的平均带宽利用率被聚合,并且选择的客户端被强制漫游到其他接入点。
-
公开(公告)号:JP2004013899A
公开(公告)日:2004-01-15
申请号:JP2003150538
申请日:2003-05-28
Applicant: Internatl Business Mach Corp
, インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation Inventor: DAVID CARROL CHARUNAA , HOFF JAMES PATRICK , CROMER DARYL CARVIS , WARD JAMES PETER
CPC classification number: G06F21/78 , G06F2221/2129
Abstract: PROBLEM TO BE SOLVED: To provide control of access to data stored in a storage device of a trusted computing platform system. SOLUTION: This storage device is uniquely linked with a particular computer system. Because the storage device is linked in such a manner that access is allowed only when a series of exchange examples of the link are performed, high security is attained in controlling access to a data file stored on a reader/writer. Access to data stored on the reader/writer is allowed only when the reader/writer is associated with the particular computer system and in addition, only when the storage device confirms the entry of a proper password. A trusted computing platform function is used to enhance a security function. COPYRIGHT: (C)2004,JPO
-
公开(公告)号:JP2001273059A
公开(公告)日:2001-10-05
申请号:JP2001026518
申请日:2001-02-02
Applicant: IBM
Inventor: DAVID CARROL CHARUNAA , DYURUBU MAMOHANDASU DESAI , NORMAN A DION II , VIVIEN M KLEIN , HOWARD JEFFREY ROCKER , HERNAND OVIS , ANDY LLOYD TOROTTAA , WARD JAMES PETER
Abstract: PROBLEM TO BE SOLVED: To provide a data processing system and a method protecting a USB device to enable the USB device to be available only by a connected computer system. SOLUTION: The USB device is not connected with any computer systems until it is used for the first time. When the USB device is used and connected with a specific computer system for the first time, it is connected with the specific computer system included in the data processing system. The USB device is initially incapacitated and turns to be available by responding only to the connection with the connected computer system. The USB device and the connected computer system are connected by using a pair of the encryption keys. Here the connected computer system memorizes the first key and the USB device memorizes the second key.
-
公开(公告)号:JP2005182787A
公开(公告)日:2005-07-07
申请号:JP2004358329
申请日:2004-12-10
Applicant: Internatl Business Mach Corp
, インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation Inventor: BALL CHARLES D , CATHERMAN RYAN C , HOFF JAMES PATRICK , WARD JAMES PETER
CPC classification number: H04L9/0894
Abstract: PROBLEM TO BE SOLVED: To provide a method for a plurality of key cache managers for a plurality of localities to share cryptographic key storage resources of a security chip. SOLUTION: This method includes: a step for loading an application key into a key storage; and a step for saving restoration data for the application key by a key cache manager. The key cache manager can use restoration data to reload the application key into the key storage if the application key is evicted from the key storage by another key cache manager. COPYRIGHT: (C)2005,JPO&NCIPI
Abstract translation: 要解决的问题:提供一种用于多个地区的多个密钥高速缓存管理器的方法,以共享安全芯片的加密密钥存储资源。 解决方案:该方法包括:将应用密钥加载到密钥存储器中的步骤; 以及由密钥高速缓存管理器保存应用密钥的恢复数据的步骤。 如果应用密钥从另一个密钥缓存管理器的密钥存储中逐出,密钥缓存管理器可以使用恢复数据将应用密钥重新加载到密钥存储器中。 版权所有(C)2005,JPO&NCIPI
-
Patent Agency Ranking
公开(公告)号:JP2004046820A
公开(公告)日:2004-02-12
申请号:JP2003150787
申请日:2003-05-28
Applicant: Internatl Business Mach Corp
, インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation Abstract: PROBLEM TO BE SOLVED: To provide a validation device and its method for authentication in a computer system.
SOLUTION: In this computer system 10 and its operation method, a second input device 14 requiring second authentication input for enabling authentication of an authentication input from an ordinary keyboard 12 is selectively arranged between the keyboard 12 and a security element related to a system mother board for avoiding possibility of careless disclosure or attachment of an authentication date row.
COPYRIGHT: (C)2004,JPO-
公开(公告)号:JP2001290776A
公开(公告)日:2001-10-19
申请号:JP2001051958
申请日:2001-02-27
Applicant: IBM
Inventor: RICHARD W CHESTON , DARYL C KROMER , RICHARD ALAN DIANE , DEURUBU MAMOHANDA DESAI , JAN M JANICK , HOWARD JEFFREY ROCKER , ANDY LLOYD TOROTTAA , WARD JAMES PETER
Abstract: PROBLEM TO BE SOLVED: To provide a data processing system and a data processing method for restoring the basic password of a client computer system remotely. SOLUTION: When the basic password is not correctly inputted, a user cannot access the client computer system in a complete form. The client computer system is connected to a server computer system by using a network. The input of the basic password is requested from the user before the client computer system completes a boot process. An inquiry-type password method is supplied in response to the input error of the basic password. The basic password can be restored in response to the normal performance of the inquiry-type password method. The basic password can be restored from the server computer system by the client computer system before the boot process is completed by using the inquiry-type password method by the client computer system.
-
公开(公告)号:GB2354610A
公开(公告)日:2001-03-28
申请号:GB0005417
申请日:2000-03-08
Applicant: IBM
Inventor: CROMER DARYL CARVIS , ELLISON BRANDON , LOCKER HOWARD , SIEVERT MICHAEL , WARD JAMES PETER
Abstract: A data processing system and method are described for permitting a server computer system to remotely access asset information stored within one of a plurality of client computer systems. The client computer systems are coupled to the server computer system utilising a network. Asset information is stored in a storage device within the particular client computer system. The asset information includes information identifying a plurality of components of the client computer system. The server computer system transmits a message to the client computer system while the client computer system is powered-off. A network adapter is included within the client computer system. The network adapter accesses the storage device to obtain the asset information while the client computer system is powered-off.
-
公开(公告)号:CA2302075A1
公开(公告)日:2000-11-07
申请号:CA2302075
申请日:2000-03-24
Applicant: IBM
Inventor: WARD JAMES PETER , SCHROTT ALEJANDRO GABRIEL , VON GUTFELD ROBERT JACOB , STEINMETZ MICHAEL J
Abstract: A method and system for preventing theft of an object, includes an electronic article surveillance (EAS) device operatively attached to an object, a security path for detection of the EAS device, a reader operatively coupled to the security path, and a smart card for being read by the reader. The smart card contains an identification profile of an authorized user of the object.
-
公开(公告)号:GB2351821B
公开(公告)日:2003-10-29
申请号:GB0007190
申请日:2000-03-27
Applicant: IBM
Inventor: WARD JAMES PETER , CROMER DARYL CARVIS , DAYAN RICHARD ALAN , STEINMETZ MICHAEL , LOCKER HOWARD
Abstract: Method and system aspects for securely transferring a computer system are described. A computer system is disabled at a shipping point via an RFID (radio frequency identification) interface and re-enabled at a receiving point via the RFID interface. Disabling the computer system includes selecting a boot password, writing the boot password to storage in the computer system via the RFID interface, and setting a disable bit in the storage via the, RFID interface. Re-enabling the computer system includes entering the boot password via the RFID interface and clearing the disable bit.
-
-
-
-
-
-
-
-
-
Search Results
18
records
(took 0.018 seconds)
