公开(公告)号：US12095844B2

公开(公告)日：2024-09-17

申请号：US17069809

申请日：2020-10-13

Applicant: Intel Corporation

Inventor： Francesc Guim Bernat ,  Brinda Ganesh ,  Timothy Verrall ,  Ned Smith ,  Kshitij Doshi

IPC: H04L67/02 ,  G06F9/455 ,  H04L67/1097 ,  H04L67/5682

CPC classification number: H04L67/02 ,  G06F9/45558 ,  H04L67/1097 ,  H04L67/5682 ,  G06F2009/45562 ,  G06F2009/45591 ,  G06F2009/45595

Abstract: Methods, apparatus, systems and articles of manufacture for re-use of a container in an edge computing environment are disclosed. An example method includes detecting that a container executed at an edge node of a cloud computing environment is to be cleaned, deleting user data from the container, the deletion of the user data performed without deleting the container from the memory of the edge node, restoring settings of the container to a default state; and storing information identifying the container, the information including a flavor of the container, the storing of the information to enable the container to be re-used by a subsequent requestor.

公开(公告)号：US20230344873A1

公开(公告)日：2023-10-26

申请号：US18345865

申请日：2023-06-30

Applicant: Intel Corporation

Inventor： Ned Smith ,  Satish Jha ,  S M Iftekharul Alam ,  Vesh Raj Sharma Banjade ,  Kathiravetpillai Sivanesan ,  Arvind Merwaday ,  Liuyang Yang ,  Rajesh Poornachandran

IPC: H04L9/40 ,  G06Q20/38

CPC classification number: H04L63/20 ,  H04L63/107 ,  G06Q20/389

Abstract: Methods and apparatus for secured information transfer are disclosed. An example apparatus includes programmable circuitry to execute instructions to determine characteristics of an asset associated with a first entity that utilizes a first type of decentralized security, assign the asset to a carrier for transport to a second entity that utilizes a second type of decentralized security, obtain attested information for the asset from the carrier, and transmit the attested information to the second entity via a first gateway, the first gateway to transmit the attested information for the asset to a second gateway of the second entity.

公开(公告)号：US11797690B2

公开(公告)日：2023-10-24

申请号：US16845885

申请日：2020-04-10

Applicant: Intel Corporation

Inventor： Ned Smith ,  Kshitij A. Doshi ,  Francesc Guim Bernat ,  Kapil Sood ,  Tarun Viswanathan

IPC: G06F21/60 ,  H04L9/32 ,  G06F15/173

CPC classification number: G06F21/602 ,  G06F15/17331 ,  H04L9/3268

Abstract: Examples herein relate to an interface selectively providing access to a memory region for a work request from an entity by providing selective access to a physical address of the memory region and selective access to a cryptographic key for use by a memory controller to access the memory region. In some examples, providing selective access to a physical address conversion is based on one or more of: validation of a certificate received with the work request and an identifier of the entity being associated with a process with access to the memory region. Access to the memory region can be specified to be one or more of: create, read, update, delete, write, or notify. A memory region can be a page or sub-page sized region. Different access rights can be associated with different sub-portions of the memory region, wherein the access rights comprise one or more of: create, read, update, delete, write, or notify.

公开(公告)号：US11741234B2

公开(公告)日：2023-08-29

申请号：US17321764

申请日：2021-05-17

Applicant: Intel Corporation

Inventor： Ned Smith ,  Samuel Ortiz ,  Manohar Castelino ,  Mikko Ylinen

IPC: G06F21/57 ,  H04L29/06 ,  G06F21/60 ,  G06F9/455 ,  G06F21/74

CPC classification number: G06F21/575 ,  G06F9/45558 ,  G06F21/602 ,  G06F21/74 ,  G06F2009/45562 ,  G06F2009/45587

Abstract: Technologies for fast launch of trusted containers include a computing device having a trusted platform module (TPM). The computing device measures a container runtime with the TPM and executes the container runtime in response to the measurement. The computing device establishes a trust relationship between the TPM and a virtual platform credential, provisions the virtual platform credential to a virtual TPM, and executes a guest environment in response to provisioning the virtual platform credential. The computing device measures a containerized application with the virtual TPM and executes the containerized application in response to the measurement. The computing device may perform a trusted computing operation in the guest environment with the virtual TPM. The virtual TPM and the containerized application may be protected with multi-key total memory encryption (MKTME) support of the computing device. State of the virtual TPM may be encrypted and persisted. Other embodiments are described and claimed.

公开(公告)号：US20230186156A1

公开(公告)日：2023-06-15

申请号：US17917335

申请日：2021-05-17

Applicant: Intel Corporation

Inventor： Ned Smith ,  Rita Chattopadhyay

IPC: G06N20/00 ,  G06N5/02

CPC classification number: G06N20/00 ,  G06N5/02

Abstract: Methods, apparatus, systems and articles of manufacture to train a model using attestation data are disclosed. An example apparatus includes memory, instructions, and at least one processor to execute machine readable instructions to at least access training data originating from an edge device, the training data including telemetry information and attestation information, determine a weighting value to be used for the telemetry information based on the attestation information associated with the edge device, and train a machine learning model based on the telemetry information and the weighting value.

公开(公告)号：US11637687B2

公开(公告)日：2023-04-25

申请号：US16723743

申请日：2019-12-20

Applicant: Intel Corporation

Inventor： Ned Smith ,  Francesc Guim Bernat ,  Sanjay Bakshi ,  Paul O'Neill ,  Ben McCahill ,  Brian A. Keating ,  Adrian Hoban ,  Kapil Sood ,  Mona Vij ,  Nilesh Jain ,  Rajesh Poornachandran ,  Trevor Cooper ,  Kshitij A. Doshi ,  Marcin Spoczynski

IPC: H04L29/06 ,  H04L9/00 ,  G06F16/28 ,  H04L9/06

Abstract: Methods, apparatus, systems and articles of manufacture to determine provenance for data supply chains are disclosed. Example instructions cause a machine to at least, in response to data being generated, generate a local data object and object metadata corresponding to the data; hash the local data object; generate a hash of a label of the local data object; generate a hierarchical data structure for the data including the hash of the local data object and the hash of the label of the local data object; generate a data supply chain object including the hierarchical data structure; and transmit the data and the data supply chain object to a device that requested access to the data.

公开(公告)号：US20220166847A1

公开(公告)日：2022-05-26

申请号：US17542175

申请日：2021-12-03

Applicant: Intel Corporation

Inventor： Francesc Guim Bernat ,  Karthik Kumar ,  Thomas Willhalm ,  Petar Torre ,  Ned Smith ,  Brinda Ganesh ,  Evan Custodio ,  Suraj Prabhakaran

IPC: H04L67/60 ,  H04L12/66 ,  H04L47/70 ,  H04L67/2885 ,  H04L67/5681

Abstract: Technologies for fulfilling service requests in an edge architecture include an edge gateway device to receive a request from an edge device or an intermediate tier device of an edge network to perform a function of a service by an entity hosting the service. The edge gateway device is to identify one or more input data to fulfill the request by the service and request the one or more input data from an edge resource identified to provide the input data. The edge gateway device is to provide the input data to the entity associated with the request.

公开(公告)号：US11271994B2

公开(公告)日：2022-03-08

申请号：US16234718

申请日：2018-12-28

Applicant: Intel Corporation

Inventor： Francesc Guim Bernat ,  Ned Smith ,  Thomas Willhalm ,  Karthik Kumar ,  Timothy Verrall

IPC: H04L29/08 ,  H04L67/1008 ,  H04L67/1021 ,  H04L67/10 ,  H04L67/61 ,  H04L67/63 ,  H04L67/00 ,  H04L67/59

Abstract: Technologies for providing selective offload of execution of an application to the edge include a device that includes circuitry to determine whether a section of an application to be executed by the device is available to be offloaded. Additionally, the circuitry is to determine one or more characteristics of an edge resource available to execute the section. Further, the circuitry is to determine, as a function of the one or more characteristics and a target performance objective associated with the section, whether to offload the section to the edge resource and offload, in response to a determination to offload the section, the section to the edge resource.

公开(公告)号：US11218538B2

公开(公告)日：2022-01-04

申请号：US16234865

申请日：2018-12-28

Applicant: Intel Corporation

Inventor： Francesc Guim Bernat ,  Ned Smith ,  Evan Custodio ,  Suraj Prabhkaran ,  Ignacio Astilleros Diez

IPC: H04L12/927 ,  H04L29/08 ,  H04L12/24 ,  H04L12/14 ,  H04M15/00

Abstract: Technologies for determining a set of edge resources to offload a workload from a client compute device based on a brokering logic provided by a service provider include a device that includes circuitry that is in communication with edge resources. The circuitry is to receive a brokering logic from a service provider receive a request from a client compute device, wherein the request includes a function to be used to execute the request and one or more parameters associated with the client compute device, determine the one or more parameters, select, as a function of the one or more parameters and the brokering logic, a physical implementation to perform the function, wherein the physical implementation indicates a set of edge resources and a performance level for each edge resource of the set of edge resources, and perform, in response to a selection of the physical implementation, the request using the set of edge resources associated with the physical implementation.

公开(公告)号：US20190230191A1

公开(公告)日：2019-07-25

申请号：US16369384

申请日：2019-03-29

Applicant: Intel Corporation

Inventor： Francesc Guim Bernat ,  Karthik Kumar ,  Thomas Willhalm ,  Petar Torre ,  Ned Smith

IPC: H04L29/08 ,  H04L12/911 ,  H04L12/66

Abstract: Technologies for fulfilling service requests in an edge architecture include an edge gateway device to receive a request from an edge device or an intermediate tier device of an edge network to perform a function of a service by an entity hosting the service. The edge gateway device is to identify one or more input data to fulfill the request by the service and request the one or more input data from an edge resource identified to provide the input data. The edge gateway device is to provide the input data to the entity associated with the request.