公开(公告)号：BR9300396A

公开(公告)日：1993-08-31

申请号：BR9300396

申请日：1993-02-01

Applicant: IBM

Inventor： BLACKLEDGE JOHN W JR ,  CLARKE GRANT L JR ,  DAYAN RICHARD A ,  LE KIMTHANH DO ,  MCCOURT PATRICK E ,  MITTELSTEDT MATTHEW T ,  MOELLER DENNIS LEE ,  NEWMAN PALMER E ,  RANDALL DAVE L ,  YODER JOANA B

IPC: G06F11/00 ,  G06F9/06 ,  G06F12/14 ,  G06F21/00 ,  G06F21/06 ,  G06F21/22 ,  G06F21/24 ,  G06F15/20

Abstract: This invention relates to personal computer systems and, more particularly, to such a system having security features enabling control over access to data retained in such a system. In particular, a personal computer system in accordance with this invention has a normally closed enclosure, an erasable memory element for selective activation to active and inactive states and for receiving and storing a privileged access password when in the active state, an option switch operatively connected with the erasable memory element for setting the erasable memory element to the active and inactive states, a tamper detection switch operatively connected with the erasable memory element for detecting opening of the enclosure and for clearing any stored privileged access password from the erasable memory element in response to any switching of the tamper switch, and a system processor operatively connected with the erasable memory element for controlling access to at least certain levels of data stored within the system by distinguishing between the active and inactive states of the memory element and between entry and non-entry of any stored privileged access password. In the presently preferred form of the invention, two non-volatile erasable memory elements are provided, one an EEPROM and the other battery backed CMOS RAM.

公开(公告)号：CA2099026A1

公开(公告)日：1994-03-18

申请号：CA2099026

申请日：1993-06-23

Applicant: IBM

Inventor： BLACKLEDGE JOHN W JR ,  DAYAN RICHARD A ,  MOELLER DENNIS L ,  NEWMAN PALMER E ,  ZUBAY KENNETH J P

IPC: G06F12/14 ,  G06F1/00 ,  G06F21/02 ,  G06F21/24

Abstract: This invention relates to personal computer systems and, more particularly, to such a system having security features enabling control over access to data retained in such a system. This invention contemplates protecting a personal computer system which has the capability of becoming a secure system from being placed into that condition by an attack on an unsecured machine. Additionally, in a network environment, it is important to maintain network security that any given particular system be uniquely identified to the network, in order to guard against the substitution of an insecure "alternate" which would open the network to attack through an insecure system. This invention contemplates provision for such identification in a secure manner.

公开(公告)号：CA2082916A1

公开(公告)日：1993-08-27

申请号：CA2082916

申请日：1992-11-13

Applicant: IBM

Inventor： BLACKLEDGE JOHN W JR ,  CLARKE GRANT L JR ,  DAYAN RICHARD A ,  LE KIMTHANH D ,  MCCOURT PATRICK E ,  MITTELSTEDT MATHEW T ,  MOELLER DENNIS L ,  NEWMAN PALMER E ,  RANDALL DAVE L ,  YODER JOANNA B

IPC: G06F11/00 ,  G06F9/06 ,  G06F12/14 ,  G06F21/00 ,  G06F21/06 ,  G06F21/22 ,  G06F21/24

Abstract: This invention relates to personal computer systems and, more particularly, to such a system having security features enabling control over access to data retained in such a system. In particular, a personal computer system in accordance with this invention has a normally closed enclosure, an erasable memory element for selective activation to active and inactive states and for receiving and storing a privileged access password when in the active state, an option switch operatively connected with the erasable memory element for setting the erasable memory element to the active and inactive states, a tamper detection switch operatively connected with the erasable memory element for detecting opening of the enclosure and for clearing any stored privileged access password from the erasable memory element in response to any switching of the tamper switch, and a system processor operatively connected with the erasable memory element for controlling access to at least certain levels of data stored within the system by distinguishing between the active and inactive states of the memory element and between entry and non-entry of any stored privileged access password. In the presently preferred form of the invention, two non-volatile erasable memory elements are provided, one an EEPROM and the other battery backed CMOS RAM.