公开(公告)号：WO2009153625A1

公开(公告)日：2009-12-23

申请号：PCT/IB2008/052452

申请日：2008-06-20

Applicant: CROMER, Daryl Carvis ,  LOCKER, Howard J. ,  SPRINGFIELD, Randall Scott ,  WALTERMANN, Rod D. ,  LENOVO (SINGAPORE) PTE.LTD.

Inventor： CROMER, Daryl Carvis ,  LOCKER, Howard J. ,  SPRINGFIELD, Randall Scott ,  WALTERMANN, Rod D.

IPC: G06F9/445 ,  G06F15/177

CPC classification number: G06F9/45558 ,  G06F2009/45579

Abstract: An arrangement for facilitating remote booting in a diskless client system is described. A hypervisor (140) is first loaded (160) to run under an operating system OS (120). Once loaded, the hypervisor (140) establishes a connection to the central server (170) to load user data, 'hooks disk' access modules and then proceeds along a normal boot path. Each time the OS (120) attempts (175) to access a file on a local hard drive (180), the hypervisor (140) can 'trap' this access, this preventing the communication (185) with the hard drive (180) and reads (190) the requisite data from the server (170). The loading mechanism for the hypervisor utilizes the iSCSI protocol.

Abstract translation: 描述了在无盘客户机系统中促进远程引导的装置。 首先加载管理程序（140）（160）以在操作系统OS（120）下运行。 一旦加载，管理程序（140）建立到中央服务器（170）的连接以加载用户数据，“挂钩磁盘”访问模块，然后沿着正常引导路径行进。 每当OS（120）尝试（175）访问本地硬盘驱动器（180）上的文件时，管理程序（140）可以“陷阱”该访问，这防止与硬盘驱动器（180）的通信（185） 并从服务器（170）读取（190）所需的数据。 虚拟机管理程序的加载机制使用iSCSI协议。

公开(公告)号：WO2006079590A1

公开(公告)日：2006-08-03

申请号：PCT/EP2006/050189

申请日：2006-01-12

Applicant: INTERNATIONAL BUSINESS MACHINES CORPORATION ,  IBM UNITED KINGDOM LIMITED ,  CROMER, Daryl, Carvis ,  LOCKER, Howard, Jeffrey ,  SPRINGFIELD, Randall, Scott ,  WALTERMANN, Rod, David

Inventor： CROMER, Daryl, Carvis ,  LOCKER, Howard, Jeffrey ,  SPRINGFIELD, Randall, Scott ,  WALTERMANN, Rod, David

IPC: H04L12/24 ,  G01R31/08

CPC classification number: H04L41/00 ,  G01R31/08

Abstract: A method and system for remotely isolating faults in computer network devices coupled to a computer network. A plurality of first computer units are coupled to the computer network. The plurality of first computer units are located on a user side of the computer network. A plurality of second computer units are coupled to the computer network. The plurality of second computer units are located on a service provider side of the network. One of the plurality of second computer units is designated to provide computing services to one of the plurality of first computer units. One of the plurality of first computer units experiencing a fault communicating with its designated second computer unit uses another of the plurality of first computer units as a proxy computer unit to remotely isolate the fault.

Abstract translation: 一种用于远程隔离耦合到计算机网络的计算机网络设备中的故障的方法和系统。 多个第一计算机单元耦合到计算机网络。 多个第一计算机单元位于计算机网络的用户侧。 多个第二计算机单元耦合到计算机网络。 多个第二计算机单元位于网络的服务提供方侧。 多个第二计算机单元中的一个被指定为向多个第一计算机单元之一提供计算服务。 经历与其指定的第二计算机单元通信的故障的多个第一计算机单元中的一个使用多个第一计算机单元中的另一个作为代理计算机单元远程隔离故障。

公开(公告)号：WO2005064878A2

公开(公告)日：2005-07-14

申请号：PCT/EP2004/053169

申请日：2004-11-30

Applicant: INTERNATIONAL BUSINESS MACHINES CORPORATION ,  IBM UNITED KINGDOM LIMITED ,  CROMER, Daryl, Carvis ,  JAKES, Philip, John ,  LOCKER, Howard, Jeffrey ,  SPRINGFIELD, Randall, Scott

Inventor： CROMER, Daryl, Carvis ,  JAKES, Philip, John ,  LOCKER, Howard, Jeffrey ,  SPRINGFIELD, Randall, Scott

IPC: H04L29/00

CPC classification number: H04W28/18 ,  H04W8/245 ,  H04W24/00

Abstract: A system and method for autonomic wireless presence ping is presented. An IS administrator wishes to collect capacity requirement information corresponding to a wireless network, such as the number of packets a client sends to and receives from an access point. The IS administrator sends a request to the access point. In turn, the access point sends a control packet to client devices it supports, instructing them to enable an enhanced presence ping bit. Each client enables its enhanced presence ping bit, and collect enhanced status information. Each client device sends the enhanced status information to the access point either when a timer expires, or when the client device receives a ping request from the access point. The access point then forwards the enhanced status information to the IS administrator for analysis.

Abstract translation: 提出了一种用于自主无线存在ping的系统和方法。 IS管理员希望收集与无线网络相对应的容量需求信息，例如客户端发送给接入点并从接入点接收的分组数量。 IS管理员向接入点发送请求。 接入点又会向其支持的客户端设备发送控制数据包，指示它们启用增强型出现ping位。 每个客户端启用其增强状态ping位，并收集增强状态信息。 每当客户端设备收到来自接入点的ping请求时，每个客户端设备都可以在定时器到期时向接入点发送增强状态信息。 接入点然后将增强状态信息转发给IS管理员进行分析。

公开(公告)号：WO2004090701A2

公开(公告)日：2004-10-21

申请号：PCT/GB2004001531

申请日：2004-04-08

Applicant: IBM ,  IBM UK ,  CATHERMAN RYAN CHARLES ,  GOODMAN STEVEN DALE ,  HOFF JAMES PATRICK ,  SPRINGFIELD RANDALL SCOTT ,  WARD JAMES PETER

Inventor： CATHERMAN RYAN CHARLES ,  GOODMAN STEVEN DALE ,  HOFF JAMES PATRICK ,  SPRINGFIELD RANDALL SCOTT ,  WARD JAMES PETER

IPC: G06F21/57 ,  H05K1/18 ,  G06F1/26

CPC classification number: G06F21/57 ,  G06F21/575 ,  H05K1/181

Abstract: A computer system (and a motherboard for a computer system) is presented which provides a trusted platform by which operations can be performed with an increased level trust and confidence. The basis of trust for the computer system (or motherboard) is established by an encryption coprocessor and by code which interfaces with the encryption coprocessor and establishes root of trust metrics for the platform. The encryption coprocessor is built such that certain critical operations are allowed only if physical presence of an operator has been detected. Physical presence is determined by inference based upon the status of registers in the core chipset (e.g. on the motherboard).

Abstract translation: 提供了一种计算机系统（以及用于计算机系统的主板），其提供可信赖的平台，通过该平台可以以更高级别的信任和置信度执行操作。 计算机系统（或主板）的信任基础由加密协处理器和与加密协处理器接口的代码建立，并为平台建立信任度量的根。 构建加密协处理器，使得仅当检测到操作者的物理存在时才允许某些关键操作。 基于核心芯片组（例如在主板上）的寄存器的状态通过推理确定物理存在。

公开(公告)号：WO2005064878A3

公开(公告)日：2005-09-09

申请号：PCT/EP2004053169

申请日：2004-11-30

Applicant: IBM ,  IBM UK ,  CROMER DARYL CARVIS ,  JAKES PHILIP JOHN ,  LOCKER HOWARD JEFFREY ,  SPRINGFIELD RANDALL SCOTT

Inventor： CROMER DARYL CARVIS ,  JAKES PHILIP JOHN ,  LOCKER HOWARD JEFFREY ,  SPRINGFIELD RANDALL SCOTT

IPC: H04L12/28 ,  H04L12/56 ,  H04W8/24 ,  H04W24/00 ,  H04W28/18 ,  H04Q7/34

CPC classification number: H04W28/18 ,  H04W8/245 ,  H04W24/00

Abstract: A system and method for autonomic wireless presence ping is presented. An IS administrator wishes to collect capacity requirement information corresponding to a wireless network, such as the number of packets a client sends to and receives from an access point. The IS administrator sends a request to the access point. In turn, the access point sends a control packet to client devices it supports, instructing them to enable an enhanced presence ping bit. Each client enables its enhanced presence ping bit, and collect enhanced status information. Each client device sends the enhanced status information to the access point either when a timer expires, or when the client device receives a ping request from the access point. The access point then forwards the enhanced status information to the IS administrator for analysis.

Abstract translation: 提出了一种用于自主无线存在ping的系统和方法。 IS管理员希望收集对应于无线网络的容量需求信息，例如客户端从接入点发送和接收的分组数量。 IS管理员向接入点发送请求。 反过来，接入点向其支持的客户端设备发送控制包，指示他们启用增强的存在ping位。 每个客户端使其增强的存在ping位，并收集增强的状态信息。 当定时器到期时，或当客户端设备从接入点接收到ping请求时，每个客户端设备将增强状态信息发送到接入点。 接入点然后将增强状态信息转发给IS管理员进行分析。

公开(公告)号：WO2004090701A3

公开(公告)日：2004-10-21

申请号：PCT/GB2004/001531

申请日：2004-04-08

Applicant: INTERNATIONAL BUSINESS MACHINES CORPORATION ,  IBM UNITED KINGDOM LIMITED ,  CATHERMAN, Ryan, Charles ,  GOODMAN, Steven, Dale ,  HOFF, James, Patrick ,  SPRINGFIELD, Randall, Scott ,  WARD, James, Peter

Inventor： CATHERMAN, Ryan, Charles ,  GOODMAN, Steven, Dale ,  HOFF, James, Patrick ,  SPRINGFIELD, Randall, Scott ,  WARD, James, Peter

IPC: G06F1/00

Abstract: A computer system (and a motherboard for a computer system) is presented which provides a trusted platform by which operations can be performed with an increased level trust and confidence. The basis of trust for the computer system (or motherboard) is established by an encryption coprocessor and by code which interfaces with the encryption coprocessor and establishes root of trust metrics for the platform. The encryption coprocessor is built such that certain critical operations are allowed only if physical presence of an operator has been detected. Physical presence is determined by inference based upon the status of registers in the core chipset (e.g. on the motherboard).