公开(公告)号：JPH11143685A

公开(公告)日：1999-05-28

申请号：JP9183798

申请日：1998-04-03

Applicant: IBM

Inventor： KOBAYASHI YOSHINAO ,  SATO AKASHI ,  MUNETO SEIJI

IPC: G06F7/50 ,  G06F7/508

Abstract: PROBLEM TO BE SOLVED: To provide a high-speed carry skip adder of two or more stages. SOLUTION: Plural ripple adders are provided, at least a part of the ripple adders among the plural ripple adders are grouped and carry signals are transmitted to a certain group or the group of a one higher order. Then, this adder is provided with a circuit for calculating C=C2+F.C1 by using the carry signals C1 from the certain group to the group of the one higher order, signals F for indicating whether or not the output of a full adder within the group of the one higher order is present as 1 and the carry signals C2 relating to the ripple adder of a highest order within the group of the one higher order.

公开(公告)号：JPH10262041A

公开(公告)日：1998-09-29

申请号：JP5948097

申请日：1997-03-13

Applicant: IBM

Inventor： KOBAYASHI YOSHINAO ,  OBA NOBUYUKI ,  MUNETO SEIJI

IPC: H04L9/08 ,  H04L9/10 ,  H04L9/12

Abstract: PROBLEM TO BE SOLVED: To non-specifically execute the exposure/non-exposure mode of a secret key by outputting a presumable bit string, in response to the input of an initial bit string and performing the switching between the enciphering processing and the output processing of input bit strings, when the output of a prescribed trap bit string is detected. SOLUTION: When an initial bit string is loaded into an LFSR(linear feedback shift register) 1, a trap decoder 3 starts its operation to monitor the bit of the LFSR 1. When a trap bit string is detected, the decoder 3 outputs a switch signal and a toggle switch 5 inverts its own output. Then the output of the LFSR 1 continuously serves as the input of an exclusive OR circuit 19, until the decoder 3 outputs a switch signal. At the same time, the output of a shift register 11a undergoes the exclusive OR processing (enciphering processing) by means of a pseudo-random number, i.e., the output of the LFSR 1. Meanwhile, the output of the register 11a is used as it is, when the decoder 3 outputs a switch signal.

公开(公告)号：JPH086736A

公开(公告)日：1996-01-12

申请号：JP13468694

申请日：1994-06-16

Applicant: IBM JAPAN

Inventor： NIIJIMA HIDETO ,  MUNETO SEIJI ,  MURATA HIROKI ,  TAKAHASHI NOBUAKI

IPC: G06F12/16 ,  G06F3/06 ,  G06F11/10 ,  G06F11/18 ,  G06F11/20

Abstract: PURPOSE:To write and read data fast through simple constitution. CONSTITUTION:This disk storage device is equipped with two data buses 100 and 200 for data transfer and an HDD 0 and an HDD 1 are connected fixedly to the data buses 100 and 200, respectively, and an MCU 32 outputs a specific signal to a DPC 10 according to a command from a host, and then multiplexers 20 and 22 connect the HDD 2 and HDD 3 to either of the data buses 100 and 200. Thus, the HDD 2 and HDD 3 are connected to one of the data buses 100 and 200 and data are written on and read out of HDDs 0-3.

公开(公告)号：JP2012212380A

公开(公告)日：2012-11-01

申请号：JP2011078466

申请日：2011-03-31

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： YOSHIHAMA SACHIKO ,  MUNETO SEIJI ,  URAMOTO NAOHIKO ,  SUZUKI SACHIKO ,  HITO SHOHEI

IPC: G06F21/22

CPC classification number: G06F8/65 ,  G06F11/1433 ,  G06F21/566 ,  G06F2221/033

Abstract: PROBLEM TO BE SOLVED: To distinguish between an attack with unauthorized access and a change of behavior resulted from an authorized software update to information processing units.SOLUTION: An inspection apparatus is used for inspecting an information processing unit to which software updates are applied. The inspection apparatus includes a collection component configured to collect behavior, for each of a plurality of software updates, of the information processing unit to which one software update is applied. The apparatus also includes a determination component configured to compare the behaviors collected for each of the plurality of software updates to one another to determine whether the behavior of the information processing unit after the one software update is applied thereto is normal.

Abstract translation: 要解决的问题：区分未经授权的访问攻击和由授权的软件更新到信息处理单元所导致的行为变化。

解决方案：检查装置用于检查应用了软件更新的信息处理单元。 检查装置包括：收集部件，被配置为针对应用了一个软件更新的信息处理单元收集用于多个软件更新中的每一个的行为。 该装置还包括确定部件，其被配置为将针对多个软件更新中的每一个收集的行为彼此进行比较，以确定在一个软件更新之后信息处理单元的行为是否正常。 版权所有（C）2013，JPO＆INPIT

公开(公告)号：JP2007072909A

公开(公告)日：2007-03-22

申请号：JP2005261334

申请日：2005-09-08

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： MUNETO SEIJI ,  NAKAMURA MEGUMI ,  MISHINA TAKUYA ,  YOSHIHAMA SACHIKO

IPC: G06F21/24

Abstract: PROBLEM TO BE SOLVED: To more efficiently control access to secret information. SOLUTION: The system stores an expected value for each hash value of a plurality of components included in the system. Further, the system stores the expected value of certification information which serves as a condition for allowing access to secret information, by associating it with the secret information. The system has a register for storing the certification information for certifying completeness of the plurality of components. First, the system stores a value calculated by inputting each expected value further into a hash function as the certification information before the plurality of components are started. Then, the hash value of a newly started component is calculated, and with the condition that the calculated hash value is different from the expected value, the certification information of the register is updated. Then access to the secret information is allowed with the condition that the expected value of the certification information and the certification information of the register match. COPYRIGHT: (C)2007,JPO&INPIT

Abstract translation: 要解决的问题：更有效地控制对秘密信息的访问。 解决方案：系统存储系统中包括的多个组件的每个散列值的期望值。 此外，系统通过将其与秘密信息相关联来存储用作允许访问秘密信息的条件的认证信息的期望值。 该系统具有用于存储用于证明多个部件的完整性的认证信息的寄存器。 首先，系统将通过将多个期望值进一步输入到散列函数中而计算出的值作为多个分量开始前的认证信息。 然后，计算新启动的分量的散列值，并且在计算出的散列值与预期值不同的条件下，更新寄存器的认证信息。 然后允许访问秘密信息，条件是认证信息的期望值和注册表的认证信息匹配。 版权所有（C）2007，JPO＆INPIT

公开(公告)号：JP2005301550A

公开(公告)日：2005-10-27

申请号：JP2004115003

申请日：2004-04-09

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： TIM EBRINGER ,  YOSHIHAMA SACHIKO ,  MUNETO SEIJI ,  MARUYAMA HIROSHI

IPC: G06F21/22 ,  G06F1/00 ,  G06F11/30 ,  G06F12/14 ,  G06F15/00 ,  G06F21/00 ,  G06F21/20 ,  H04L9/32

CPC classification number: G06F21/57 ,  G06F21/445 ,  G06F21/645 ,  G06F2221/2103 ,  G06F2221/2115 ,  G06F2221/2129 ,  G06F2221/2153

Abstract: PROBLEM TO BE SOLVED: To provide techniques that allow indicating that a platform is reliable, without providing an attacker with information for attacks. SOLUTION: A device for measuring the configuration of a platform includes a configuration register; a means for performing a predetermined operation on the content of the configuration register using given additional values, then applying predetermined hash functions to values obtained from the operation to obtain hash values, and using the hash values as the new content of the configuration register; and measurement expansion means (step S1-S4) for making predetermined measurements on predetermined component elements that constitute the platform to obtain measurements that correspond to the component elements, and for implementing an expansion process using an expansion process means while using the measurements as additional values. The device is provided with a random expansion means (step S5) for implementing an expansion process using the expansion process means while using random values as additional values. COPYRIGHT: (C)2006,JPO&NCIPI

Abstract translation: 要解决的问题：提供允许指示平台可靠的技术，而不向攻击者提供攻击信息。 解决方案：用于测量平台的配置的设备包括配置寄存器; 使用给定的附加值对配置寄存器的内容执行预定操作的装置，然后对从操作获得的值应用预定的散列函数以获得散列值，并使用散列值作为配置寄存器的新内容; 和测量扩展装置（步骤S1-S4），用于对组成平台的预定组件元素进行预定的测量，以获得与组件元件相对应的测量值，并且在使用测量作为附加值的同时使用扩展处理装置实现扩展处理 。 该装置具有随机扩展装置（步骤S5），用于在使用随机值作为附加值时使用扩展处理装置来实现扩展处理。 版权所有（C）2006，JPO＆NCIPI

公开(公告)号：JP2012212391A

公开(公告)日：2012-11-01

申请号：JP2011078533

申请日：2011-03-31

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： MUNETO SEIJI ,  HAYATA YASUHIKO ,  TADA MASAMI ,  DAIMON AKIRA

IPC: G06F21/22 ,  G06F9/46 ,  G06F21/20

CPC classification number: G06F21/554 ,  G06F9/45533 ,  G06F21/74 ,  G06F2221/2127 ,  H04L63/1491

Abstract: PROBLEM TO BE SOLVED: To provide protection against unauthorized access.SOLUTION: A system comprises: a detection unit configured to detect unauthorized access to an information processing apparatus; and a control unit configured to shift modes of the information processing apparatus. A computer executes a first virtual machine and a second virtual machine. When the system is operating normally, the control unit causes the information processing apparatus implemented by the first virtual machine to operate in a normal mode, and causes the information processing apparatus implemented by the second virtual machine to operate in a standby mode. If the unauthorized access is detected, the control unit shifts the information processing apparatus implemented by the first virtual machine into a decoy mode, and shifts the information processing apparatus implemented by the second virtual machine into the normal mode.

Abstract translation: 要解决的问题：防止未经授权的访问。 解决方案：系统包括：检测单元，被配置为检测对信息处理设备的未授权访问; 以及控制单元，被配置为移动所述信息处理设备的模式。 计算机执行第一虚拟机和第二虚拟机。 当系统正常运行时，控制单元使得由第一虚拟机实现的信息处理设备以正常模式运行，并使由第二虚拟机实现的信息处理设备在待机模式下操作。 如果检测到未经授权的访问，则控制单元将由第一虚拟机实现的信息处理设备移动到诱饵模式，并将由第二虚拟机实现的信息处理设备移动到正常模式。 版权所有（C）2013，JPO＆INPIT

公开(公告)号：JP2011108007A

公开(公告)日：2011-06-02

申请号：JP2009262669

申请日：2009-11-18

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： MUNETO SEIJI

IPC: G06F12/16

CPC classification number: G06F11/1662 ,  G06F11/2005 ,  G06F11/2069

Abstract: PROBLEM TO BE SOLVED: To shorten restoration time when a failure is generated in a plurality of memories or the like having multiplex configuration/redundant configuration and to simplify also functions of an IO controller. SOLUTION: There is provided a connection system from a host or the like to a plurality of storage devices by optical link, in more details, concerned with an optical connection system or an optical wiring system for achieving multiplication/redundancy by using the branching of the optical link and one-way directivity of the branching. When optically connecting the host or the like to a plurality of storage devices such as memories via two or more optical couplers, a loop is formed between the two optical couplers by using the branching of the optical couplers and one-way directivity of the branching. According to the loop configuration, a configuration for allowing an IO controller to select a plurality of operation modes is adopted. COPYRIGHT: (C)2011,JPO&INPIT

Abstract translation: 要解决的问题：为了缩短在具有多路复用配置/冗余配置的多个存储器等中产生故障而缩短恢复时间，并且还简化了IO控制器的功能。 解决方案：通过光链路提供从主机等到多个存储设备的连接系统，更详细地涉及用于通过使用以下方式实现乘法/冗余的光学连接系统或光学布线系统： 光链路的分支和分支的单向方向性。 当通过两个或多个光耦合器将主机等光学连接到诸如存储器的多个存储设备时，通过使用光耦合器的分支和分支的单向方向性在两个光耦合器之间形成环路。 根据环路结构，采用允许IO控制器选择多种操作模式的结构。 版权所有（C）2011，JPO＆INPIT

公开(公告)号：JP2005260676A

公开(公告)日：2005-09-22

申请号：JP2004070798

申请日：2004-03-12

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： MARUYAMA HIROSHI ,  MUNETO SEIJI ,  YOSHIHAMA SACHIKO

IPC: G06Q20/00 ,  G06Q20/06 ,  G06Q20/40 ,  G06Q20/42 ,  H04L9/00 ,  H04L9/10 ,  H04L9/32 ,  G06F17/60

CPC classification number: G06Q20/045 ,  G06Q20/40975 ,  H04L9/0894 ,  H04L9/3247 ,  H04L9/3263

Abstract: PROBLEM TO BE SOLVED: To provide a security system, an information processing system, a control method of the security system, a control method of the information processing system, a program capable of implementation in system for performing the control method, and a ticket system. SOLUTION: The security system 12 includes: a non-volatile type storing unit 22 for storing correctness inspection unit including a counter, which is renewed every time a signature function means 30 is called; a non-volatile type storing unit 24 for reading a counter array from an outer non-volatile storing unit for storing the counter array, in which a hash value generated for each signature key and a number-of-signature counter for counting the number of signature formed with the signature key are arranged in pairs, and storing the counter array; and a hash function unit 28 for reading the counter array from the non-volatile storing unit 24, generating a hash value, and feeding the hash value to the correctness inspection unit for correctness checking. COPYRIGHT: (C)2005,JPO&NCIPI

Abstract translation: 要解决的问题：提供安全系统，信息处理系统，安全系统的控制方法，信息处理系统的控制方法，能够在系统中执行用于执行控制方法的程序，以及 票系统。 安全系统12包括：非易失型存储单元22，用于存储包括计数器的正确性检查单元，每当调用签名功能装置30时更新该计数器; 用于从用于存储计数器阵列的外部非易失性存储单元读取计数器阵列的非易失性类型存储单元24，其中为每个签名密钥生成的哈希值和用于计数数字的数量的签名数量计数器 用签名密钥形成的签名成对布置，并存储计数器阵列; 以及用于从非易失性存储单元24读取计数器阵列的哈希函数单元28，产生哈希值，并将哈希值馈送到正确性检查单元以进行正确性检查。 版权所有（C）2005，JPO＆NCIPI

公开(公告)号：JP2016004420A

公开(公告)日：2016-01-12

申请号：JP2014124370

申请日：2014-06-17

Applicant: IBM

Inventor： OBA NOBUYUKI ,  MUNETO SEIJI

IPC: G06F12/06 ,  G06F1/32 ,  G06F12/00 ,  G06F12/16

Abstract: 【課題】DRAM及びNVRAMを含む主メモリを備えるコンピュータの動作状態に応じて主メモリを管理するための方法を提供する。【解決手段】その方法は、(a)コンピュータの起動時において、プログラム等をDRAMにロードし、かつ所定のリードオンリーのデータ等をNVRAMにロードすること、(b)通常動作からサスペンド状態への状態遷移において、DRAMのデータをページ単位でNVRAMに移動すること、(c)サスペンド状態から通常動作への状態遷移において、プログラムの実行のためにNVRAMからページ単位でデータを読み出すこと、(d)NVRAMへのページ単位でのデータの書き込みが発生した場合、データの書き込みを停止し、データの書き込みが行われるNVRAMのデータ領域のデータをページ単位でDRAMに移動させること、及び(e)データの移動後のDRAMにおいて、ページ単位でのデータの書き込みを行うことを含む。【選択図】図1