公开(公告)号：US20070028124A1

公开(公告)日：2007-02-01

申请号：US11193934

申请日：2005-07-29

Applicant: Russell Resnick ,  Howard Locker ,  Randall Springfield

Inventor： Russell Resnick ,  Howard Locker ,  Randall Springfield

IPC: G06F1/00

CPC classification number: G06F1/28

Abstract: A system for measuring power-on parameters for data processing systems is disclosed. During periodic System Management BIOS states that interrupt operation of the data processing system, code is executed that estimates the amount of time a data processing system has been powered on. Also, code is executed that tracks the number of times a data processing system has been powered on. Variables related to power-on-time and number of times powered on are incremented and stored in PROM, for example an Asset ID EEPROM, during SMBIOS states. Incrementing and storing these variables during SMBIOS states minimizes latencies.

Abstract translation: 公开了一种用于测量数据处理系统的开机参数的系统。 在定期系统管理期间，BIOS指示中断数据处理系统的操作，执行代码来估计数据处理系统上电的时间量。 此外，执行跟踪数据处理系统已经通电的次数的代码。 在电源接通时间和上电次数方面的变量在SMBIOS状态期间增加并存储在PROM中，例如资产ID EEPROM。 在SMBIOS状态下增加和存储这些变量使延迟最小化。

公开(公告)号：US20060185017A1

公开(公告)日：2006-08-17

申请号：US11319329

申请日：2005-12-28

Applicant: David Challener ,  Daryl Cromer ,  Howard Locker ,  David Safford ,  Randall Springfield

Inventor： David Challener ,  Daryl Cromer ,  Howard Locker ,  David Safford ,  Randall Springfield

IPC: G06F12/14

CPC classification number: G06F21/565 ,  G06F2221/2151

Abstract: The present invention adds a procedure to the operating system file subsystem of a processing system that significantly reduces the amount of time necessary to verify the validity of executable files. Each executable is extended with a file signature containing a header containing validation data. This header may be added to an existing ELF header, added as a new section, or placed in a file's extended attribute store. The header contains results of all previous validation checks that have been performed. The file signature is inserted, with a date stamp, into the file attributes. On execution, the system checks the previously-created file signature against a current file signature, instead of creating the file signature for every file during the execution process. Checks to ensure that the file signature is secure, and is valid and up to date, are also implemented. Only if the file signature is not valid and up-to-date does the execution program create a new file signature at the time of execution.

Abstract translation: 本发明向处理系统的操作系统文件子系统添加了一个过程，其显着地减少了验证可执行文件的有效性所需的时间量。 每个可执行文件使用包含包含验证数据的标题的文件签名进行扩展。 该标题可以被添加到现有的ELF标题中，作为新的部分添加，或者被放置在文件的扩展属性存储中。 标题包含已执行的所有先前验证检查的结果。 将文件签名带有日期戳插入到文件属性中。 执行时，系统会根据当前文件签名检查先前创建的文件签名，而不是在执行过程中为每个文件创建文件签名。 检查以确保文件签名是安全的，并且是有效的和最新的，也被实现。 只有当文件签名无效且最新的执行程序在执行时才会创建新的文件签名。

公开(公告)号：US20060168486A1

公开(公告)日：2006-07-27

申请号：US11044433

申请日：2005-01-27

Applicant: Daryl Cromer ,  Howard Locker ,  Randall Springfield ,  Rod Waltermann

Inventor： Daryl Cromer ,  Howard Locker ,  Randall Springfield ,  Rod Waltermann

IPC: G06F11/00

CPC classification number: H04L41/00 ,  G01R31/08

Abstract: A method and system for remotely isolating faults in computer network devices coupled to a computer network. A plurality of first computer units are coupled to the computer network. The plurality of first computer units are located on a user side of the computer network. A plurality of second computer units are coupled to the computer network. The plurality of second computer units are located on a service provider side of the network. One of the plurality of second computer units is designated to provide computing services to one of the plurality of first computer units. One of the plurality of first computer units experiencing a fault communicating with its designated second computer unit uses another of the plurality of first computer units as a proxy computer unit to remotely isolate the fault.

Abstract translation: 一种用于远程隔离耦合到计算机网络的计算机网络设备中的故障的方法和系统。 多个第一计算机单元耦合到计算机网络。 多个第一计算机单元位于计算机网络的用户侧。 多个第二计算机单元耦合到计算机网络。 多个第二计算机单元位于网络的服务提供方侧。 多个第二计算机单元中的一个被指定为向多个第一计算机单元之一提供计算服务。 经历与其指定的第二计算机单元通信的故障的多个第一计算机单元中的一个使用多个第一计算机单元中的另一个作为代理计算机单元远程隔离故障。

公开(公告)号：US20060161765A1

公开(公告)日：2006-07-20

申请号：US11038630

申请日：2005-01-19

Applicant: Daryl Cromer ,  Howard Locker ,  Randall Springfield ,  Rod Waltermann

Inventor： Daryl Cromer ,  Howard Locker ,  Randall Springfield ,  Rod Waltermann

IPC: G06F9/00

CPC classification number: G06F9/4416

Abstract: A method, computer program product and system for reducing the boot time of a client device in a client device/data center environment. A profile of the client device, which includes information regarding the usage characteristics of the client device, may be created. A confidence level indicating the likelihood that the client device is going to be booted may be determined based on the client device's profile. The confidence level and the utilization of the resources of the server blades in the data center may be examined in determining whether to have an appropriate server blade perform an action involved in booting the operating system of the client device. If the appropriate server blade performs such an action, e.g., pre-booting the client device's operating system, prior to the user of the client device attempting to boot its operating system, then the boot time may be reduced.

Abstract translation: 一种用于减少客户端设备/数据中心环境中的客户端设备的启动时间的方法，计算机程序产品和系统。 可以创建包括关于客户端设备的使用特性的信息的客户端设备的配置文件。 指示客户端设备将被引导的可能性的置信水平可以基于客户端设备的配置文件来确定。 可以在确定是否使适当的服务器刀片执行引导客户端设备的操作系统所涉及的动作时检查数据中心中的信任级别和服务器刀片的资源的利用。 如果适当的服务器刀片在客户端设备的用户尝试引导其操作系统之前执行诸如预先引导客户端设备的操作系统的动作，则可以减少启动时间。

公开(公告)号：US20060100887A1

公开(公告)日：2006-05-11

申请号：US10984420

申请日：2004-11-09

Applicant: David Erickson ,  Joseph Freeman ,  Isaac Karpel ,  Hiroaki Mine ,  James Rutledge ,  Randall Springfield

Inventor： David Erickson ,  Joseph Freeman ,  Isaac Karpel ,  Hiroaki Mine ,  James Rutledge ,  Randall Springfield

IPC: G06Q99/00 ,  G07G1/00 ,  G06F17/30

CPC classification number: G01P15/09 ,  G01P1/127 ,  G06Q10/0637 ,  G06Q30/012

Abstract: An apparatus, system, and method are disclosed for making a motion based business decision. A motion module senses a component of motion such as acceleration or a derivative of acceleration. A log module calculates a motion summary from the motion component and stores the motion summary in a memory module. An analysis module receives the motion summary and makes a business decision based on the motion summary.

Abstract translation: 公开了用于进行基于运动的商业决策的装置，系统和方法。 运动模块检测运动的分量，例如加速度或加速度的导数。 日志模块从运动分量计算运动摘要，并将运动摘要存储在内存模块中。 分析模块接收运动摘要，并根据运动摘要进行业务决策。

公开(公告)号：US20060041932A1

公开(公告)日：2006-02-23

申请号：US10924103

申请日：2004-08-23

Applicant: Daryl Cromer ,  Richard Cheston ,  Steven Goodman ,  Howard Locker ,  Randall Springfield

Inventor： Daryl Cromer ,  Richard Cheston ,  Steven Goodman ,  Howard Locker ,  Randall Springfield

IPC: H04L9/32

CPC classification number: H04L9/3226 ,  H04L9/0897

Abstract: Systems and methods to access password-protected stored data when a corresponding data password has been lost, forgotten, or is otherwise unavailable, and to recover the data password to facilitate access to the password-protected data from a digital memory device such as a hard disk drive associated with a user computer. In some embodiments the computer is communicatively coupled with a network and receives at least one encryption key from a secure computer via the network. In other embodiments the computer is a stand alone computer and receives at least one encryption key from a removable, non-volatile memory such as a CD ROM. The encryption key is used to encrypt the data password and both are stored on the hard disk drive. If the data password becomes lost, forgotten, or otherwise unavailable, the encrypted password is recovered from the hard disk drive and decrypted to recover the data password.

Abstract translation: 当相应的数据密码丢失，被遗忘或不可用时访问受密码保护的存储数据的系统和方法，以及恢复数据密码以便于从诸如硬的数字存储设备访问受密码保护的数据 与用户计算机相关联的磁盘驱动器。 在一些实施例中，计算机与网络通信耦合，并经由网络从安全计算机接收至少一个加密密钥。 在其他实施例中，计算机是独立的计算机，并且从诸如CD ROM的可移除的非易失性存储器接收至少一个加密密钥。 加密密钥用于加密数据密码，两者都存储在硬盘驱动器上。 如果数据密码丢失，忘记或以其他方式不可用，则会从硬盘驱动器恢复加密的密码并解密以恢复数据密码。

公开(公告)号：US20060025965A1

公开(公告)日：2006-02-02

申请号：US10902359

申请日：2004-07-29

Applicant: Joseph Freeman ,  Steven Goodman ,  Randall Springfield

Inventor： Joseph Freeman ,  Steven Goodman ,  Randall Springfield

IPC: G21C17/00

CPC classification number: G06F11/2221 ,  G11B20/1816 ,  G11B27/36 ,  G11B2220/2516

Abstract: There are many files in the current generation of computers, especially on the hardfile, that are not used or used only infrequently during operation. For instance, the system may contain many help text files which may never be accessed. The same applies to the DLL's. Also, some files are accessed only during a boot cycle. The present invention provides a method and program to track the locations of files in a computer which have been accessed so that, when an error occurs, only the files that need to be tested are diagnostically tested for errors, thus saving time and resources.

公开(公告)号：US20050283343A1

公开(公告)日：2005-12-22

申请号：US10871848

申请日：2004-06-18

Applicant: Daryl Cromer ,  Mark Davis ,  Howard Locker ,  Randall Springfield

Inventor： Daryl Cromer ,  Mark Davis ,  Howard Locker ,  Randall Springfield

IPC: G06F15/00 ,  H03F1/26 ,  H04B15/00

CPC classification number: G06F11/348 ,  G06F11/0778 ,  G06F11/1666 ,  G06F11/2015

Abstract: Methods and arrangements for capturing information related to operational conditions are disclosed. Embodiments include volatile memory to quickly record operational parameters via, e.g., basic input output system (BIOS) code, system management interrupt (SMI) code and/or executing applications. Many embodiments provide an alternative power source and a voltage switch to protect against loss of the information between storage in the volatile memory and storage in the non-volatile memory. Some embodiments include a read controller that provides access to the volatile memory when primary power is available. The read controller may also offer direct access to the non-volatile memory in case of a catastrophic failure that renders the processing device substantially non-functional. Further embodiments include a second processing device to generate a usage model and/or to perform diagnostics with the operational parameters.

Abstract translation: 公开了捕获与操作条件有关的信息的方法和布置。 实施例包括通过例如基本输入输出系统（BIOS）代码，系统管理中断（SMI）代码和/或执行应用程序来快速记录操作参数的易失性存储器。 许多实施例提供了替代电源和电压开关，以防止在易失性存储器中的存储器和非易失性存储器中的存储之间的信息丢失。 一些实施例包括在主电源可用时提供对易失性存储器的访问的读取控制器。 在导致处理设备基本上不起作用的灾难性故障的情况下，读控制器还可以提供对非易失性存储器的直接访问。 另外的实施例包括用于生成使用模型和/或使用操作参数执行诊断的第二处理装置。

公开(公告)号：US20050240998A1

公开(公告)日：2005-10-27

申请号：US10830378

申请日：2004-04-22

Applicant: Daryl Cromer ,  Howard Locker ,  Randall Springfield

Inventor： Daryl Cromer ,  Howard Locker ,  Randall Springfield

IPC: G06F21/00 ,  H04L9/00

CPC classification number: G06F21/85 ,  G06F21/57 ,  G06F2221/2153

Abstract: A secure computer system includes a central processing unit in which plural programs reside. The system includes means for verifying whether the at least one program is trusted or not trusted. That means can be an external key device that includes a verification program that can communicate with the programs residing within the central processing unit.

Abstract translation: 安全的计算机系统包括多个程序所在的中央处理单元。 该系统包括用于验证至少一个程序是否被信任或不被信任的装置。 这意味着可以是外部密钥设备，其包括可以与驻留在中央处理单元内的程序进行通信的验证程序。

公开(公告)号：US20050141717A1

公开(公告)日：2005-06-30

申请号：US10749057

申请日：2003-12-30

Applicant: Daryl Cromer ,  Joseph Freeman ,  Steven Goodman ,  Randall Springfield

Inventor： Daryl Cromer ,  Joseph Freeman ,  Steven Goodman ,  Randall Springfield

IPC: G06F21/00 ,  H04L9/00

CPC classification number: G06F21/575 ,  G06F21/62 ,  G06F2221/2107

Abstract: An apparatus, method, and system to seal a data repository to a trusted computing platform is described. The data repository may be sealed by encrypting the data on the repository and sealing a cryptographic key to a specific set of platform resources. With the data repository sealed to the platform, the system boot sequence will fail if the system configuration is compromised, for example by insertion of “snoopware” or a modified BIOS. Additionally, if the computer containing the data repository is lost or stolen, the encrypted data remains secure even if the repository is attached to a system modified to bypass normal safeguards.

Abstract translation: 描述了将数据存储库密封到可信计算平台的装置，方法和系统。 可以通过加密存储库中的数据并将密码密封到特定的一组平台资源来密封数据存储库。 将数据存储库密封到平台，如果系统配置受到威胁，例如插入“snoopware”或修改的BIOS，则系统引导顺序将失败。 另外，如果包含数据存储库的计算机丢失或被盗，加密数据将保持安全，即使存储库附加到修改为绕过正常保护措施的系统。