Abstract: In an embodiment, an apparatus includes a trusted cryptographic processor that includes at least one functional unit. The trusted cryptographic processor also includes a controller to receive a primitive instruction that identifies which of the at least one functional unit is to perform an operation, wherein the controller is to reduce power to the at least one functional unit that is not identified by the primitive instruction. The apparatus includes a trusted power management unit to supply the power based on control from the controller, wherein the control is independent of a processor that is not in a trusted state.

Abstract: A method of inhibiting the disclosure of confidential information through power analysis attacks on processors in cryptographic systems. The method masks a cryptographic operation using a generator G. A secret value, which may be combined with the generator G to form a secret generator is generated. The secret value is divided into a plurality of parts. A random value is generated for association with the plurality of parts. Each of the plurality of parts is combined with the random value to derive a plurality of new values such that the new values when combined are equivalent to the secret value. Each of the new values is used in the cryptographic operation, thereby using the secret generator in place of the generator G in the cryptographic operation. The introduction of randomness facilitates the introduction of noise into algorithms used by cryptographic systems so as to mask the secret value and provide protection against power analysis attacks.

Abstract: The invention disclosed herein is an in-circuit security system for electronic devices. The in-circuit security system incorporates identity credential verification, secure data and instruction storage, and secure data transmission capabilities. It comprises a single semiconductor chip, and is secured using industry-established mechanisms for preventing information tampering or eavesdropping, such as the addition of oxygen reactive layers. This invention also incorporates means for establishing security settings, profiles, and responses for the in-circuit security system and enrolled individuals. The in-circuit security system can be used in a variety of electronic devices, including handheld computers, secure facility keys, vehicle operation/ignition systems, and digital rights management.

Abstract: To provide increased security against differential power analysis attacks, a data processing device is provided with a current converter that draws current from an external supply and cyclically apportions drawn current between a charge storage device and a processor such that the drawn current varies independently of the instantaneous power demand of the processor. The data processing device includes: a processor; a charge storage device coupled to the processor; and a current source for supplying the processor with operating current, and adapted to vary its output current independently of the instantaneous power demand of the processor.

Abstract: Systems and methods of conducting thermal management provide for transmitting average power data to a source device, where the source device has a thermal influence on a target device and the average power data is based on the thermal influence. Adjustable time window data may also be transmitted to the source device, where the time window defines the amount of time for determining and controlling the average power consumption of the source device.

Abstract: A falling protective device for protecting a hard disk of a falling portable computer against damages includes a falling sensor arranged in the portable computer for generating and sending an interrupt signal to a keyboard controller in response to a detected falling state of the computer. An SMI signal line is extended between and connected to the keyboard controller and a system BIOS of the computer. On receipt of the interrupt signal generated by the falling sensor, the keyboard controller sends an SMI signal via the SMI signal line to the system BIOS, which in turn sends a park control signal to park the hard disk or a power-off control signal to terminate the supply of working power to the hard disk. The system BIOS sends a polling signal via a polling signal line to the keyboard controller, so as to poll about a state signal of a default status bit in a default signal port of the keyboard controller.

Abstract: Techniques are disclosed to provide security for user input in which a first, host operating system is used along with a second, high assurance operating system, where the first system provides at least some of the infrastructure for the second system. Two modes are presented. In a first mode, user data is passed to the host operating system. In a second mode, user data is retained in the second operating system for the use of the second operating system or processes running on the second operating system. Transitions between the nodes can be accomplished according to hypothecated user actions such as keystroke combinations, or when the user performs an action which indicates a programmatic activation of a process running in the second operating system.

Abstract: A method for tracking, locating and disabling an electronic device. A method includes checking if an application component operated correctly during last power-up of the device; and placing the device under control of power on self test to proceed with powering-up the device if the application component operated correctly during last device power-up.

Abstract: An exemplary network system includes a remote computer and a network server. The remote computer includes a baseboard management controller (BMC), a south bridge chipset, a power button, and a switching circuit. The switching circuit has a control terminal connected to an output of the BMC, a power terminal connected to a power supply, and also connected to a SB_PWRBTN pin of the south bridge chipset, and a ground terminal connected to ground via the power button. The network server is connected to an input of the BMC of the remote computer, the network server outputs a control signal for forbidding activating the remote computer, the BMC receives the control signal and outputs a low level voltage signal to turn off the transistor, and the remote computer can not be activated.

Abstract: According to one embodiment of the invention, a method comprises detecting an event that suggests unauthorized access to a subscriber device. After such detection, an activity or series of activities are performed in response to detecting the event in order to place the electronic device into a secured operating state.

Abstract: An alarm circuit and method of monitoring a circuit protection device are disclosed. The alarm circuit includes a circuit protection device connected in series at an input voltage of a load. The alarm circuit also includes a programmable circuit connected in parallel to the circuit protection device and including an alarm signal. The programmable circuit is programmed to include a plurality of functional states, and at least one functional state corresponds to activation of the alarm signal. The at least one functional state activating the alarm signal corresponds with an interruption condition in the circuit protection device.

Abstract: A management device of a license management system acquires a usage request of a content from an SD card or a printer via a relay device, analyzes the acquired usage request, acquires usage environment information of the SD card or the printer from the relay device, analyzes the acquired usage environment information, generates license information including a usage rule corresponding to the analysis results of the usage request and the usage environment information, generates instruction information indicating how to handle the license information in the relay device based on the analysis result of the usage environment information, embeds the generated instruction information in the license information, and sends the license information to the relay device.

Abstract: An apparatus, system, and method are disclosed for autonomically disposing a computer such as a workstation. The computer's local persistent storage medium is configured with pre-boot image which is configured with a set of functional modules that facilitate disposal or recycling of the computer to the next user. The disposal and recycle methods are automated, require minimal user intervention, and facilitate moving configuration options and data to a different computer. The entire process may execute from the pre-boot image on the computer's local persistent storage medium without ever booting the primary operating system.

Abstract: A storage apparatus divides and stores firmware which is drive control software to record and reproduce data in a disk medium into a non-volatile memory and a disk medium, and at the time of activating the apparatus, stores and executes firmware read from the non-volatile memory and the disk medium into a volatile memory. A renewal request processing unit, when received a renewal request of the firmware from a host, advises the host of the renewal completion at a point of time when new firmware transferred from the host is received and stored in the buffer memory. The background renewal unit, after the advice of the renewal completion, writes and renews the new firmware into the non-volatile memory and the disk medium as a background processing using the processing idle time of a command issued by the host.

Abstract: A remote control relay device is connected between a network and a controlled device. The controlled device is remotely controlled from an external device over the network. The remote control relay device includes a communication controller, a storage memory, a control memory and a write controller. The communication controller exchanges control data with the external device over the network. The storage memory stores control data. The control memory stores control data used for external device authentication. The write controller controls sending and receiving of control data by the communication controller, reading of control data stored in the storage memory, and writing of control data to the control memory. The write controller reads and writes control data from the storage memory to the control memory only in response to operations that are not executed over the network.

Abstract: A method for deterring unauthorized use of an electronic device is described. The method includes installing security data in a protected storage area, installing a security routine operable to check for the security data, and prompting a user for identity information if the security data is found, before permitting use of the device. In an implementation, the device is shut down if the identity information is incorrect, and manufacturer contact information may be displayed before shutting down. But if the user responds correctly, the activation process is continued to enable normal operation of the device.

Abstract: Power management techniques for a Subscriber Identity Module (SIM) of a wireless communication device (WCD) are described tat make use of a unique identifier for the SIM. In particu1ar a processor within the WCD reads a first unique identifier from the SIM when power is initially supplied to the WCD, and stores the first unique identifier within a computer-readable medium within the WCD. During a power management cycle, where power is terminated and then re-supplied to the SIM, the processor again receives a unique identifier from the SIM and compares the second unique identifier with the stored unique identifier. These tecbniques are useful in detecting whether the attached SIM has been exchanged for a different SIM while powered down during a power management cycle.

Abstract: One embodiment of present invention is a method for preventing the modification of a primary pass-phrase of an electronic system. Access to stored information such as a primary pass-phrase is disabled despite assertion of an override pin of an integrated circuit device of the electronic device when an override disable pin of the integrated circuit device is asserted prior to assertion of the override pin.

Abstract: It is a technological object of the present invention to provide an information processing device, a card and a card system that have a high level of security. In order to achieve the object described above, the present invention provides a data processing apparatus comprising at least a first information processing device and a second information processing device connected to the first information processing device by a signal line, the data processing apparatus having a means for changing power consumption on the signal line during transmission of a signal through the signal line in accordance with an actual state of the power consumption that would be observed when the means were not used.

Abstract: A system for controlling communication-access within a computer network, includes an access-prevention device connected in series with a computer's bi-directional network-communication port for preventing the computer from receiving and/or transmitting any communications from and/or to another computer within the network; and a control device for selectively controlling the access-prevention device. Such an access-prevention device including a control terminal for connection to the control device is disposed within a communication-access control apparatus that may be connected between the computer network and the computer. Alternatively, the access-prevention device is disposed within the computer chassis, the modem, an external network-access terminal or a firewall device. The control device includes a manual switch actuator disposed on a chassis containing the access-prevention device, or a remote-control device, or a computer keyboard or a mouse, or a presence detector, or an inactivity detector.

Abstract: When the computer is powered on, a POST program is executed, and in the setting for enabling a security function, an RFID chip 33 makes Removal Detect Enable a high level and outputs it to the control side of an analog switch 67 and one input of a NAND element 63. The removal of an RF antenna 37 causes a first short-circuit element 36 to be disconnected for shutting off a terminal 71 and a terminal 73, and an INTR signal for prohibiting the keyboard input is outputted by the high-level signal of the element 63 to prohibit access to the computer. If the RF antenna is removed while the power is off, the analog switch 67 is disconnected and the power supplied from a lithium battery to a CMOS memory 50 is shut off, whereby access to the computer can be prohibited.

Abstract: A technique for prohibiting access to a computer having a security function when a security device is illegally removed from the computer. The security device is a hardware component that constitutes a part of a security function for a computer. When the security device is illegally removed from the computer, access to the computer is prohibited. Data indicating that the security device is attached to the computer are stored in a nonvolatile memory. Then, when a specific event, such as a power-ON event, is used as a trigger, the procedure for prohibiting the access to the computer is initiated. Following this, based on the data stored in the memory, it is detected that the security device was once attached to the computer and that it has now been removed. If currently the security device is not attached to the computer, although it was attached before, the access to the computer is prohibited.

Abstract: A repeater amplifier boosts weak control signals on a PLC network, with noise discrimination and signal firewall protection. The AC supply voltage is filtered by a high frequency blocking filter to block external noise signals. Operating power for network signaling devices and the repeater amplifier is derived from the clean AC supply voltage. Noise discrimination and signal firewall protection are provided by amplifying and repeating only those receiver pulse signals that (a) have an analog amplitude that exceeds a predetermined analog threshold value, (b) occur during intervals that control data signal modulation is being applied to the filtered AC supply voltage and (c) occur at a frequency within a predetermined frequency band centered on the transmitted power line carrier (PLC) modulation frequency.