-
公开(公告)号:WO2006008199A3
公开(公告)日:2006-04-13
申请号:PCT/EP2005052192
申请日:2005-05-12
Applicant: IBM , IBM UK , CHALLENER DAVID CARROLL , KARIDIS JOHN PETER
Inventor: CHALLENER DAVID CARROLL , KARIDIS JOHN PETER
CPC classification number: G06F21/564 , G06F21/80
Abstract: A computer system includes a security subsystem which is able to trustfully track which files or storage areas of a storage device have been altered since a last virus scan. The trusted information can then be used to accelerate scans for undesirable code or data such as viruses and invalid or corrupt registry entries. In the case of viruses, files or storage areas which have been altered are scanned against a super-set of virus definitions. Unaltered files or storage areas are scanned against a subset of virus definitions.
Abstract translation: 计算机系统包括安全子系统,其能够可靠地追踪自上次病毒扫描以来存储设备的哪些文件或存储区域已被改变。 然后可信信息可用于加速扫描不需要的代码或数据,如病毒和无效或损坏的注册表项。 对于病毒,已对文件或已更改的存储区域进行扫描以获得超级病毒定义。 针对病毒定义的子集扫描未更改的文件或存储区域。
-
公开(公告)号:JP2008171389A
公开(公告)日:2008-07-24
申请号:JP2007257116
申请日:2007-10-01
Applicant: Internatl Business Mach Corp
, Lenovo Singapore Pte Ltd , インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation , レノボ・シンガポール・プライベート・リミテッド Inventor: KONO SEIICHI , INOUE TADANORI , CHALLENER DAVID CARROLL , CHILDS PHILIP LEE
CPC classification number: H04L63/0815 , G06F21/41
Abstract: PROBLEM TO BE SOLVED: To reduce a risk that a password or the like may be acquired by a malicious user while making it possible to perform domain logon utilizing a cache within a registry. SOLUTION: Processed password information corresponding to user identification information is read out from a secured storage area in which GINA (Graphical Identification and Authentication) to be a part of Windows (R) is and written in the registry. After completing authentication concerned with domain logon, the password information written in the registry is erased. Consequently, user's password information is not left in the registry and is not stored as a system file. COPYRIGHT: (C)2008,JPO&INPIT
Abstract translation: 要解决的问题:为了减少恶意用户可能获得密码等的风险,同时使得可以使用注册表中的缓存来执行域登录。 解决方案:从作为Windows(R)的一部分的GINA(图形识别和认证)的安全存储区域读取与用户识别信息相对应的处理密码信息,并将其写入注册表。 完成有关域登录的认证后,写入注册表的密码信息将被清除。 因此,用户的密码信息不会留在注册表中,不会作为系统文件存储。 版权所有(C)2008,JPO&INPIT
-
公开(公告)号:JP2004038972A
公开(公告)日:2004-02-05
申请号:JP2003182179
申请日:2003-06-26
Applicant: Internatl Business Mach Corp
, インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation Inventor: BANTZ DAVID F , CHALLENER DAVID CARROLL , KARIDIS JOHN PETER
IPC: G06F9/50 , G06F15/16 , G06F15/173 , G06F15/177 , H04L12/24
CPC classification number: G06F9/505 , G06F9/5072
Abstract: PROBLEM TO BE SOLVED: To provide technology for realizing sharing of the insufficiently used resources of a workstation of a computer network by using the known grid computation standard while maintaining the integrity parameters and performance parameters of individual workstations regarding their interactive workloads.
SOLUTION: In a network of the workstations which realizes a grid for sharing workstation resources while maintaining the workloads of local workstations, grid workloads are allocated to the workstations according to the degrees of use in the local workloads. The CPU use rate is monitored by each workstation and the grid workloads are accepted only when they do not affect the interactive performance of the workstations and they can be processed conforming to the user setting of the workstations. In addition, the grid workloads are classified by the degrees of coupling of workstation resources and this classification is used as further input in a grid workload allocation process.
COPYRIGHT: (C)2004,JPO-
公开(公告)号:JP2008052704A
公开(公告)日:2008-03-06
申请号:JP2007127766
申请日:2007-05-14
Applicant: Internatl Business Mach Corp
, Lenovo Singapore Pte Ltd , インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation , レノボ・シンガポール・プライベート・リミテッド Inventor: KONO SEIICHI , INOUE TADANORI , CHALLENER DAVID CARROLL , CHILDS PHILIP LEE , DION NORMAN A II
CPC classification number: H04L9/088
Abstract: PROBLEM TO BE SOLVED: To provide a computer in which passwords of a magnetic disk device and a BIOS (Basic Input/Output System) for protecting security can be shared among a plurality of users, and a shared password management method. SOLUTION: An internal key is encrypted using an external key that can be input only by the users concerned, and the shared passwords are further encrypted using the internal key. The encrypted internal key and shared passwords are stored in a nonvolatile storage means to which read prohibition can be set. Consequently, if the user knows his/her external key, the user can use the computer without knowing the shared passwords and can change the shared passwords. COPYRIGHT: (C)2008,JPO&INPIT
Abstract translation: 要解决的问题:提供一种计算机,其中可以在多个用户之间共享用于保护安全性的磁盘装置和BIOS(基本输入/输出系统)的密码和共享密码管理方法。
解决方案:使用外部密钥对内部密钥进行加密,外部密钥只能由有关用户输入,共享密码使用内部密钥进一步加密。 加密的内部密钥和共享密码存储在可以设置读取禁止的非易失性存储装置中。 因此,如果用户知道他/她的外部密钥,则用户可以在不知道共享密码的情况下使用计算机,并且可以改变共享密码。 版权所有(C)2008,JPO&INPIT
-
公开(公告)号:JP2000311024A
公开(公告)日:2000-11-07
申请号:JP2000076012
申请日:2000-03-17
Applicant: IBM
Inventor: CHALLENER DAVID CARROLL , TIMMONS KENNETH D
Abstract: PROBLEM TO BE SOLVED: To provide a reliable method/system of safety protection of a computer, which a possessor can easily use. SOLUTION: The method contains a step for installing the operation permission zone of a computer, a step for judging whether the possessor of the commuter is permitted to possess it when the computer and the possessor leave the operation permission zone and they pass through a portal and a step for permitting continuous access to the computer without the request of a password if the possessor is permitted. The method and a system are transparent for the possessor and to hide the computer from the portal does not bring any advantage. The method and the system can easily be applied to company environment and are especially suitable for the safety protection of the mobile computer system.
-
Patent Agency Ranking
公开(公告)号:JP2003249927A
公开(公告)日:2003-09-05
申请号:JP2003001774
申请日:2003-01-08
Applicant: IBM
Inventor: CHALLENER DAVID CARROLL
Abstract: PROBLEM TO BE SOLVED: To provide a super secure migratable key by the TCPA (trusted computing platform alliance). SOLUTION: A method for providing security by using a secure chip, includes steps of: creating a migratable key blobe using a first random number, where the migratable key blobe contains a key; wrapping the migratable key blobe with a public key of the key's parent key; encrypting the first random number with a pass phrase for a user of the key; storing the encrypted first random number; and migrating the migratable key blobe from a computer to itself. If the public key of the secure chip is stolen, the thief can only unwrap keys which are ancestors of the key in the migratable key blobe. To obtain the key in the migratable key blobe, the random number used to create it is required. However, the pass phrase of the user is required to decrypt it. This increases the security of the key stored in the migratable key blobe and its slave keys. COPYRIGHT: (C)2003,JPO
-
公开(公告)号:JP2001311885A
公开(公告)日:2001-11-09
申请号:JP2000129316
申请日:2000-04-28
Applicant: IBM
Inventor: MCCONNELL DANIEL , MUNOS BUSTAMANTE CHARLIE , CHALLENER DAVID CARROLL
Abstract: PROBLEM TO BE SOLVED: To provide a device for broadcasting an optical signal in an opto- electric computer network so that the optical signal can be broadcast to plural receivers selected by a broadcaster using a single optical path. SOLUTION: The opto-electric computer network comprises plural computers. Each computer comprises a 1st optical fiber cable for transmitting an optical signal beam and a 2nd optical fiber cable for receiving the optical signal beam. The device for broadcasting the optical signal in the opto-electric computer network comprises a lens and an array of mirrors. The lens is able to split the optical signal beam received from the 1st optical fiber cable of one of the computers into plural optical signal beams. The mirror array is formed of mirrors which can be deformed, and transmits each optical signal beam to individual 2nd optical fiber cables of other computers selected in the network.
-
公开(公告)号:JP2001311884A
公开(公告)日:2001-11-09
申请号:JP2000129211
申请日:2000-04-28
Applicant: IBM
Inventor: MCCONNELL DANIEL , MUNOS BUSTAMANTE CHARLIE , CHALLENER DAVID CARROLL
Abstract: PROBLEM TO BE SOLVED: To provide a device for switching an optical signal in an optical hub of an opto-electric computer network. SOLUTION: The opto-electric computer network comprises plural computers. Each computer comprises a 1st optical fiber cable for transmitting an optical signal beam and a 2nd optical fiber cable for receiving the optical signal beam. According to a preferred embodiment of this invention, a device for broadcasting the optical signal in the opto-electric computer network comprises a prism and an array of mirrors. The prism is able to split the optical signal beam received from the 1st optical fiber cable of one of the computers into plural optical signal beams. Each optical signal beam is an optical signal beam of a specific frequency in an optical spectrum. Next, the mirror array formed of mirrors which can be deformed transmits each optical signal beam to individual 2nd optical fiber cables of the other computers.
-
9.发明专利Authentication password storage method and generation method, user authentication method, and computer 有权认证密码存储方法和生成方法,用户认证方法和计算机
公开(公告)号:JP2008097575A
公开(公告)日:2008-04-24
申请号:JP2007162408
申请日:2007-06-20
Applicant: Internatl Business Mach Corp
, Lenovo Singapore Pte Ltd , インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation , レノボ・シンガポール・プライベート・リミテッド Inventor: KONO SEIICHI , SUGIYAMA YUJI , CHALLENER DAVID CARROLL , CHILDS PHILIP LEE , DION NORMAN A II
CPC classification number: H04L9/3236 , G06F21/46 , H04L9/0894 , H04L9/3226 , H04L2209/127
Abstract: PROBLEM TO BE SOLVED: To enhance protection of an authentication password stored in a database held by a SAM of Windows (R). SOLUTION: A GINA, a part of the OS, receives an authentication password in ASCII codes. The authentication password is converted to first UNICODES, and the first UNICODES are salted with a random number and converted to second UNICODES. The random number used for salting is associated with a user account and a password and stored in a read/write protected non-volatile memory or a non-volatile memory which can be accessed only by a BIOS. An LSA of the Windows (R) can process UNICODES without being changed. COPYRIGHT: (C)2008,JPO&INPIT
Abstract translation: 要解决的问题:加强对由Windows(R)的SAM持有的数据库中存储的认证密码的保护。 解决方案:GINA是操作系统的一部分,以ASCII码接收认证密码。 认证密码被转换成第一个UNICODES,第一个UNICODES用一个随机数进行盐化并转换成第二个UNICODES。 用于盐化的随机数与用户帐户和密码相关联,并存储在只能由BIOS访问的读/写保护的非易失性存储器或非易失性存储器中。 Windows(R)的LSA可以处理UNICODES而不改变。 版权所有(C)2008,JPO&INPIT
-
公开(公告)号:JP2004046820A
公开(公告)日:2004-02-12
申请号:JP2003150787
申请日:2003-05-28
Applicant: Internatl Business Mach Corp
, インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation Abstract: PROBLEM TO BE SOLVED: To provide a validation device and its method for authentication in a computer system.
SOLUTION: In this computer system 10 and its operation method, a second input device 14 requiring second authentication input for enabling authentication of an authentication input from an ordinary keyboard 12 is selectively arranged between the keyboard 12 and a security element related to a system mother board for avoiding possibility of careless disclosure or attachment of an authentication date row.
COPYRIGHT: (C)2004,JPO
-
-
-
-
-
-
-
-
-
Search Results
17
records
(took 0.021 seconds)
