公开(公告)号：JP2009089390A

公开(公告)日：2009-04-23

申请号：JP2008248778

申请日：2008-09-26

Applicant: Intel Corp ,  インテル コーポレイション

Inventor： SMITH NED M ,  BRUTCH TASNEEM ,  WISEMAN WILLARD M ,  KUMAR ALOK ,  SCARLATA VINCENT R ,  SIDDIQI FARAZ A

IPC: H04L9/08 ,  G06F21/24 ,  H04L9/14

CPC classification number: G06F21/602 ,  G06F21/57 ,  H04L9/0825 ,  H04L9/0836 ,  H04L9/0897

Abstract: PROBLEM TO BE SOLVED: To solve the problem that conventional PCR bindings can yield very rigid protection of data, where any change to the software that executes on the system results in the inability to access the data.
SOLUTION: This disclosure describes methods for using the TPM's configuration binding capabilities to lock data to a configuration in a manner that is flexible enough to allow the software in that configuration to be upgraded, under a trusted upgrade service, without causing the processing system to lose access to the data. Additionally, a processing system can provide for recovery of data when the processing system is no longer able to get into the predefined safe and approved configuration, e.g., recovery from a failed upgrade is allowed.
COPYRIGHT: (C)2009,JPO&INPIT

Abstract translation: 要解决的问题：为了解决常规PCR绑定可以产生非常严格的数据保护的问题，在系统上执行的软件的任何改变导致无法访问数据。 解决方案：本公开描述了使用TPM的配置绑定功能以足够灵活的方式将数据锁定到配置的方式，以允许在可信升级服务下升级该配置中的软件，而不会导致处理 系统丢失访问数据。 此外，当处理系统不再能够进入预定义的安全和批准的配置时，处理系统可以提供数据的恢复，例如，允许从故障升级恢复。 版权所有（C）2009，JPO＆INPIT

公开(公告)号：WO2004095784A3

公开(公告)日：2004-12-29

申请号：PCT/US2004002722

申请日：2004-01-30

Applicant: INTEL CORP

Inventor： KUMAR ALOK ,  YAVATKAR RAJ

IPC: H04L12/56

CPC classification number: H04L47/10 ,  H04L45/302 ,  H04L45/745 ,  H04L47/2441

Abstract: A packet classifier having a forest of hash tables data structure. The forest of hash tables data structure includes a number of hash tables, each hash table having a bit mask corresponding to an equivalent set of rules. Each hash table includes a number of entries, wherein an entry of a hash table may correspond to a rule. One or more of the hash tables may include a marker in one entry, wherein the marker identifies another one of the hash tables. The hash table identified by the marker is a descendant of the hash table in which the marker is placed.

公开(公告)号：WO2005041503A3

公开(公告)日：2005-07-28

申请号：PCT/US2004034246

申请日：2004-10-15

Applicant: INTEL CORP ,  KOUNAVIS MICHAEL ,  KUMAR ALOK ,  YAVATKAR RAJ ,  VIN HARRICK

Inventor： KOUNAVIS MICHAEL ,  KUMAR ALOK ,  YAVATKAR RAJ ,  VIN HARRICK

IPC: H04L12/56 ,  H04L29/06

CPC classification number: H04L47/10 ,  H04L45/00 ,  H04L47/14 ,  H04L47/20 ,  H04L47/2441 ,  H04L63/0263

Abstract: A method and apparatus for two-stage packet classification, the two-stage packet classification scheme including a first stage and a second stage. In the first classification stage, a packet is classified on the basis of the packet's network path. In the second stage of classification, the packet is classified on the basis of one or more transport (or other) fields of the packet. Also disclosed are embodiments of most specific filter matching and transport level sharing, and either one or both of these techniques may be implemented in the two-stage classification method.

Abstract translation: 一种用于两阶段分组分类的方法和装置，所述两阶段分组方案包括第一阶段和第二阶段。 在第一分类阶段，基于分组的网络路径对分组进行分类。 在分类的第二阶段，基于分组的一个或多个传输（或其他）字段对分组进行分类。 还公开了最具体的滤波器匹配和传输级别共享的实施例，并且这些技术中的一个或两个可以在两级分类方法中实现。

公开(公告)号：WO2004015919A3

公开(公告)日：2004-04-08

申请号：PCT/US0324502

申请日：2003-08-05

Applicant: INTEL CORP

Inventor： KUMAR ALOK ,  YAVATKAR RAJ

IPC: H04L12/56

CPC classification number: H04L45/7457 ,  H04L45/04 ,  H04L45/745

Abstract: The application relates to prefix based routing in IPv6. The routing tables are organized as tire data structures. In some embodiments also the interface identifier part of the address is hashed to obtain additional routing information.

Abstract translation: 该应用涉及IPv6中基于前缀的路由。 路由表被组织为轮胎数据结构。 在一些实施例中，地址的接口标识符部分被散列以获得附加的路由信息​​。

公开(公告)号：GB2453230B

公开(公告)日：2010-01-06

申请号：GB0817350

申请日：2008-09-23

Applicant: INTEL CORP

Inventor： SMITH NED M ,  BRUTCH TASNEEM ,  WISEMAN WILLARD M ,  KUMAR ALOK ,  SCARLATA VINCENT R ,  SIDDIQI FARAZ A

IPC: G06F21/00

Abstract: A processing system with a trusted platform module (TPM) supports migration of digital keys. For instance, an application in the processing system may create a first configuration key as a child of a TPM storage root key (SRK) when the processing system has a first configuration. The application may also create an upgradable root user key associated with an upgrade authority as a child of the first configuration key. The application may also create a user key as a child of the upgradable root user key. When the processing system has a second configuration, the application may create a second configuration key as a child of the SRK. The application may request migration approval from the upgrade authority. In response to receiving the approval from the upgrade authority, the application may migrate the root user key to be a child of the second configuration key. Other embodiments are described and claimed.

公开(公告)号：AT413751T

公开(公告)日：2008-11-15

申请号：AT04809967

申请日：2004-10-15

Applicant: INTEL CORP

Inventor： KOUNAVIS MICHAEL ,  KUMAR ALOK ,  YAVATKAR RAJ ,  VIN HARRICK

IPC: H04L12/56 ,  H04L29/06

Abstract: A method and apparatus for two-stage packet classification, the two-stage packet classification scheme including a first stage and a second stage. In the first classification stage, a packet is classified on the basis of the packet's network path. In the second stage of classification, the packet is classified on the basis of one or more transport (or other) fields of the packet. Also disclosed are embodiments of most specific filter matching and transport level sharing, and either one or both of these techniques may be implemented in the two-stage classification method.

公开(公告)号：DE602004017638D1

公开(公告)日：2008-12-18

申请号：DE602004017638

申请日：2004-10-15

Applicant: INTEL CORP

Inventor： KOUNAVIS MICHAEL ,  KUMAR ALOK ,  YAVATKAR RAJ ,  VIN HARRICK

IPC: H04L12/56 ,  H04L29/06

Abstract: A method and apparatus for two-stage packet classification, the two-stage packet classification scheme including a first stage and a second stage. In the first classification stage, a packet is classified on the basis of the packet's network path. In the second stage of classification, the packet is classified on the basis of one or more transport (or other) fields of the packet. Also disclosed are embodiments of most specific filter matching and transport level sharing, and either one or both of these techniques may be implemented in the two-stage classification method.

公开(公告)号：DE602004008911T2

公开(公告)日：2008-06-19

申请号：DE602004008911

申请日：2004-05-12

Applicant: INTEL CORP

Inventor： KUMAR ALOK ,  YAVATKAR RAJ

IPC: H04L12/56

公开(公告)号：AU2003261378A8

公开(公告)日：2004-02-25

申请号：AU2003261378

申请日：2003-08-05

Applicant: INTEL CORP

Inventor： KUMAR ALOK ,  YAVATKAR RAJ

IPC: H04L12/56

Abstract: According to some embodiments, routing information for an information packet is determined in accordance with a destination address and a device address.

公开(公告)号：DE602005025103D1

公开(公告)日：2011-01-13

申请号：DE602005025103

申请日：2005-03-31

Applicant: INTEL CORP

Inventor： KUMAR ALOK ,  KOUNAVIS MICHAEL ,  YAVATKAR RAJ ,  CHANDRA PRASHANT ,  LAKSHMANAMURTHY SRIDHAR ,  KUO CHEN-CHI ,  VIN HARRICK

IPC: H04L12/56 ,  H04L29/06