Abstract: In one embodiment, a method of remote attestation for a special mode of operation. The method comprises storing an audit log within protected memory of a platform. The audit log is a listing of data representing each of a plurality of IsoX software modules loaded into the platform. The audit log is retrieved from the protected memory in response to receiving a remote attestation request from a remotely located platform. Then, the retrieved audit log is digitally signed to produce a digital signature for transfer to the remotely located platform.

Abstract: A processor executive (PE) handles an operating system executive (OSE) in a secure environment. The secure environment has a fused key (FK) and is associated with an isolated memory area in the platform. The OSE manages a subset of an operating system (OS) running on the platform. The platform has a processor operating in one of a normal execution mode and an isolated execution mode. The isolated memory area is accessible to the processor in the isolated execution mode. A PE supplement supplements the PE with a PE manifest representing the PE and a PE identifier to identify the PE. A PE handler handles the PE using the FK and the PE supplement.

Abstract: A video source device and a video repeater device cooperatively authenticates said video repeater apparatus to said video source device. In one embodiment, the authentication is performed using an identical authentication process a video sink device would authenticate itself to the video source device. The video repeater device augment the identical process identifying itself as a repeater device. The video repeater device also in cooperation with at least one video sink device authenticates the at least one video sink device. The video repeater device in turn, in cooperation with the video source device, authenticates the at least one video sink device to the video source device. In one embodiment, the video repeater device also in cooperation with another video repeater device, authenticates yet another at least one video sink device to the video repeater device.

Abstract: A method and apparatus for monitoring encrypted communications in a network comprising: establishing a network monitoring digital contract with a network monitoring element, establishing a network use digital contract with a first and a second network element; and transmitting decrypting information to the network monitoring element for decrypting encrypted communications between the first network element and the second network element per terms in the network monitoring digital contract and the network use digital contract.

Abstract: A processor executive (PE) handles an operating system executive (OSE) in a secure environment. The secure environment has a platform key (PK) and is associated with an isolated memory area in the platform. The OSE manages a subset of an operating system (OS) running on the platform. The platform has a processor operating in one of a normal execution mode and an isolated execution mode. The isolated memory area is accessible to the processor in the isolated execution mode. A PE supplement supplements the PE with a PE manifest representing the PE and a PE identifier to identify the PE. A PE handler handles the PE using the PK and the PE supplement.

Abstract: A unique processor serial number may be utilized to augment a device key seed stored in a non-volatile memory. In this way, a relatively secure system may be enabled that facilitates renewing the device key. An integrated circuit may include a transport demultiplexer and key logic. The key logic communicates with the processor using a secure protocol. The key logic can generate random numbers that may be hashed with the processor serial number and the device key seed to generate a device key. The device key may be provided to a head end to facilitate secure communications between the head end and the client.

Abstract: Content is authenticated by generating signature certificates for content that has been successfully watermark screened. When a request is received for importation of content into a secured domain, a search is made in a signature certificates cache for a signature certificate associated with that requested content. If an identified signature certificate authenticates the requested content, the content is imported into the secured domain. If no signature certificate is identified, the content is watermark screened. If the content successfully passes the watermark screening process, a new signature certificate is then added to the signature certificate cache.

Abstract: A method for licensing codecs in accordance with the invention includes initiating a call from a first endpoint, the first endpoint identifying a preferred codec, receiving the call at a second endpoint wherein a licensed copy of the preferred codec is not included, and generating a codec license request from the second endpoint to the first endpoint and/or at least one third party codec provider.

Abstract: A method and system for rapidly accessing viewable graphic icons displayed in a graphic interface within a computer system, wherein the viewable graphic icons are normally selected utilizing a pointing device. Initially, the graphic objects are displayed within the graphic interface, such that the viewable graphic icons may be manipulated by a user to initiate the performance of application functions. An associated accelerator object comprising one or more designated keystrokes, is then displayed proximate to each viewable graphic icon, wherein the associated accelerator objects and/or any "flyover" help, when activated by the user, initiate the performance of application functions associated with the viewable graphic icons, such that any one of the application functions may be rapidly and efficiently selected without the use of a pointing device or searching for accelerator objects maintained in hidden regions within the graphic interface.

Abstract: A system and method for controlling client access to enterprise resources through a middle tier server. Enterprise resource authorizations are maintained in a middle tier server. Users authenticate with the server causing it to map and transform the client access authorization into enterprise resource credentials. Enterprise resources are accessed after authorizing using the transformed credentials.

Abstract: An apparatus and method are disclosed in a network navigator for rapidly returning to a search engine network page while searching through a hierarchy of networked pages displayed within a computer system interface. Initially, a list of commonly utilized search engine network addresses is compiled. Next, a hierarchy of network addresses accessed by the network navigator during a network navigating session is compiled. Thereafter, the hierarchy of network addresses is scanned until a network address among the hierarchy of network addresses is identified that corresponds to a search engine network address listed in the list of commonly utilized search engine network addresses. Finally, the network navigator jumps to the network address corresponding to the search engine network address.