Patents by Inventor Maugan Villatel
Maugan Villatel has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20240097884Abstract: In an example, a computing device is described. The computing device comprises a memory to store a set of states and a corresponding set of non-overlapping time intervals. The computing device further comprises a timing unit to indicate a time at which a signature is to be produced. The computing device further comprises a processor to: identify which time interval of the set of non-overlapping time intervals includes the indicated time; generate a signing key based on a state associated with the identified time interval; and produce a signature, under a stateful signature scheme, with the signing key.Type: ApplicationFiled: August 22, 2023Publication date: March 21, 2024Applicant: Hewlett-Packard Development Company, L.P.Inventors: Thalia May Laing, Maugan Villatel, Pierre Louis Robert Belgarric, Adrian John Baldwin, Adrian Laurence Shaw
-
Publication number: 20240097914Abstract: In an example, a computing device is described. The computing device comprises an interface to receive a request from a signer for a state. The state is to be used as an input to generate a key under a stateful signature scheme. The computing device further comprises a processor. The processor is to identify an available state that the signer is authorized to use in response to the request received via the interface. The available state is identified from a set of states that can be used by the signer to maintain statefulness of the stateful signature scheme. The processor is further to instruct a reply to be sent to the signer via the interface. The reply comprises an indication of the state that the signer is authorized to use.Type: ApplicationFiled: August 21, 2023Publication date: March 21, 2024Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.Inventors: Thalia May Laing, Maugan Villatel, Pierre Louis Robert Belgarric, Adrian John Baldwin, Adrian Laurence Shaw, Remy Husson
-
Publication number: 20240097905Abstract: In an example, a computing device is described. The computing device comprises a processor. The processor is to generate a key using a value as an input to generate the key. The processor is further to, in response to generating the key, exclude the value from future use as the input. The processor is further to store an indication of a subsequent value to use as the input to generate a subsequent key. The indication is cryptographically associated with an entity to control third-party access to the indication.Type: ApplicationFiled: August 23, 2023Publication date: March 21, 2024Applicant: Hewlett-Packard Development Company, L.P.Inventors: Thalia May Laing, Maugan Villatel, Adrian John Baldwin, Pierre Louis Robert Belgarric, Adrian Laurence Shaw
-
Publication number: 20240097913Abstract: In an example, a computing device is described. The computing device comprises a communication interface and a processor. The processor is to determine whether a signature, produced by a signer, is derived from a free state under a stateful signature scheme. The free state is a state that has not been used as an input to generate a signing key. The signature is encrypted by the signer. The processor is further to, in response to determining that the signature is derived from a free state, decrypt the encrypted signature. The processor is further to transmit the decrypted signature to a recipient via the communication interface.Type: ApplicationFiled: August 21, 2023Publication date: March 21, 2024Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.Inventors: Thalia May Laing, Maugan Villatel, Adrian Shaw, Adrian John Baldwin, Pierre Belgarric
-
Patent number: 11556645Abstract: A method for monitoring control-flow integrity in a low-level execution environment, the method comprising receiving, at a monitor, a message from the execution environment indicating that the execution environment has entered a controlled mode of operation, receiving, at the monitor, a data packet representing execution of a selected portion of a control-flow process at the execution environment, identifying, using the data packet, a pathway corresponding to the selected portion of the control-flow process from a set of permissible control-flow pathways and determining whether the identified pathway corresponds to an expected control-flow behaviour.Type: GrantFiled: June 6, 2018Date of Patent: January 17, 2023Assignee: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.Inventors: Ronny Chevalier, Guillaume Hiet, Maugan Villatel, David Plaquin
-
Publication number: 20220342984Abstract: There is described a method including obtaining memory management configuration data, for example, from a memory management unit. The memory management configuration data is used to identify memory locations having a predetermined property. Content is monitored at the identified memory locations.Type: ApplicationFiled: October 25, 2019Publication date: October 27, 2022Applicant: Hewlett-Packard Development Company, L.P.Inventors: Maugan Villatel, David Plaquin, Christopher Ian Dalton
-
Publication number: 20220164442Abstract: There is provided a method for thread allocation in a multi-processor computing system. The method includes determining whether a thread for execution has a security requirement. The thread is allocated to one of a first processing unit or a second processing unit based on the determination. The thread is allocated for execution by the first processing unit based on the thread having the security requirement.Type: ApplicationFiled: August 12, 2019Publication date: May 26, 2022Applicant: Hewlett-Packard Development Company, L.P.Inventors: Christopher Ian Dalton, Maugan Villatel, Pierre Belgarric
-
Patent number: 11328055Abstract: Examples associated with process verification are described. One example includes a process operating in a general operating environment of the system. From an isolated environment, a protection module modifies the behavior of the process by modifying data associated with the process while the process is in operation. The protection module verifies whether the behavior of the process has changed in accordance with the modification. The protection module takes a remedial action upon determining the process has been compromised.Type: GrantFiled: January 31, 2018Date of Patent: May 10, 2022Assignee: Hewlett-Packard Development Company, L.P.Inventors: Maugan Villatel, Adrian Baldwin, Gaetan Wattiau
-
Patent number: 11308202Abstract: An intrusion detection system, comprising a monitor to receive messages from a target over a low-latency communication link comprising a controlled access memory structure logically positioned between the target and the monitor using point-to-point interconnects, the controlled access memory structure to receive a message from the target indicating that the target has entered a controlled mode of operation.Type: GrantFiled: June 7, 2018Date of Patent: April 19, 2022Assignee: Hewlett-Packard Development Company, L.P.Inventors: Ronny Chevalier, David Plaquin, Maugan Villatel, Guillaume Hiet
-
Publication number: 20210357220Abstract: Examples include an example computing system comprising a first storage to store executable code, wherein the executable code comprises a plurality of instructions, a second storage to store a first parameter of the executable code, a processing unit to execute each of the instructions of the code, and a monitoring component to, upon execution of each of the instructions of the code by the processing unit, update a second parameter of the code based on that instruction, wherein the monitoring component is to compare the first parameter and the second parameter, and to control execution of further executable code by the processing unit based on the comparison.Type: ApplicationFiled: July 31, 2018Publication date: November 18, 2021Inventors: Pierre Belgarric, Christopher l. Dalton, David Plaquin, Maugan Villatel, Joshua Serratelli Schiffman
-
Patent number: 11119947Abstract: A method for secure hardware initialization during a start-up process comprises activating a protected portion of a physical memory, allocating a part of the protected portion of the physical memory for use by direct memory access, DMA, drivers and non-DMA related hardware initialization instructions, and using a memory management tool, allocating a first part of the physical memory, accessible by a device via the memory management tool, for use by data.Type: GrantFiled: October 30, 2017Date of Patent: September 14, 2021Assignee: Hewlett-Packard Development Company, L.P.Inventors: Maugan Villatel, Chris Dalton, Carey Huscroft
-
Publication number: 20210182393Abstract: A method for monitoring control-flow integrity in a low-level execution environment, the method comprising receiving, at a monitor, a message from the execution environment indicating that the execution environment has entered a controlled mode of operation, receiving, at the monitor, a data packet representing execution of a selected portion of a control-flow process at the execution environment, identifying, using the data packet, a pathway corresponding to the selected portion of the control-flow process from a set of permissible control-flow pathways and determining whether the identified pathway corresponds to an expected control-flow behaviour.Type: ApplicationFiled: June 6, 2018Publication date: June 17, 2021Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.Inventors: Ronny Chevalier, Guillaume HIET, Maugan VILLATEL, David Plaquin
-
Patent number: 10867045Abstract: Examples herein disclose a processor-based computing system. The system comprises at least one processor, a non-volatile memory comprising a basic input output system (BIOS), wherein the BIOS creates a data structure and sets up at least one verification software component executed by the processor, a controller communicatively linked to the at least one verification software component, and a memory comprising a system management memory coupled to the at least one processor and code which is executable by the processor-based system to cause the processor to validate the BIOS during a runtime of the processor-based system using the at least one verification software component and the controller.Type: GrantFiled: September 30, 2015Date of Patent: December 15, 2020Assignee: Hewlett-Packard Development Company, L.P.Inventors: Jeffrey Kevin Jeansonne, Vali Ali, David Plaquin, Maugan Villatel
-
Publication number: 20200387458Abstract: A method for secure hardware initialization during a start-up process comprises activating a protected portion of a physical memory, allocating a part of the protected portion of the physical memory for use by direct memory access, DMA, drivers and non-DMA related hardware initialization instructions, and using a memory management tool, allocating a first part of the physical memory, accessible by a device via the memory management tool, for use by data.Type: ApplicationFiled: October 30, 2017Publication date: December 10, 2020Inventors: Maugan Villatel, Chris Dalton, Carey Huscroft
-
Publication number: 20200364331Abstract: Examples associated with process verification are described. One example includes a process operating in a general operating environment of the system. From an isolated environment, a protection module modifies the behavior of the process by modifying data associated with the process while the process is in operation. The protection module verifies whether the behavior of the process has changed in accordance with the modification. The protection module takes a remedial action upon determining the process has been compromised.Type: ApplicationFiled: January 31, 2018Publication date: November 19, 2020Inventors: Maugan Villatel, Adrian Baldwin, Gaetan Wattiau
-
Patent number: 10803176Abstract: Examples associated with basic input/output system (BiOS) security are described. One example includes detecting a mismatch between an active BiOS setting and a saved BIOS setting. An update previously applied to the active BiOS setting is validated. The update Is applied to the saved BIOS setting creating an updated BIOS setting. The saved BIOS setting is updated when the updated BIOS setting and the active BIOS setting match. The saved BIOS setting is updated to the active BIOS setting. A security action is taken when the updated BiOS setting and the active BiOS setting differ.Type: GrantFiled: October 21, 2016Date of Patent: October 13, 2020Assignee: Hewlett-Packard Development Company, L.P.Inventors: Maugan Villatel, Boris Balacheff, David Plaquin, Vali Ali, Jeffrey Kevin Jeansonne
-
Patent number: 10747873Abstract: In one example, a system for a system management mode (SMM) privilege architecture includes a computing device comprising: a first portion of SMM instructions to set up a number of resources and implement a privilege architecture for the SMM of a computing device and a second portion of SMM instructions to execute a number of functions during the SMM of the computing device, wherein the privilege architecture assigns the first portion of SMM instructions to a first privilege level and assigns the second portion of SMM instructions to a second privilege level.Type: GrantFiled: January 26, 2016Date of Patent: August 18, 2020Assignee: Hewlett-Packard Development Company, L.P.Inventors: Richard A. Bramley, Jr., David Plaquin, Maugan Villatel, Jeffrey K. Jeansonne
-
Publication number: 20200089870Abstract: An intrusion detection system, comprising a monitor to receive messages from a target over a low-latency communication link comprising a controlled access memory structure logically positioned between the target and the monitor using point-to-point interconnects, the controlled access memory structure to receive a message from the target indicating that the target has entered a controlled mode of operation.Type: ApplicationFiled: June 7, 2018Publication date: March 19, 2020Inventors: Ronny Chevalier, David Plaquin, Maugan Villatel, Guillaume Hiet
-
Patent number: 10534739Abstract: A bus between a requester and a target component includes a portion dedicated to carry information indicating a privilege level, from among a plurality of privilege levels, of machine-readable instructions executed on the requester.Type: GrantFiled: October 31, 2014Date of Patent: January 14, 2020Assignee: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LPInventors: Maugan Villatel, David Plaquin, Chris I. Dalton
-
Patent number: 10275367Abstract: Example implementations relate to command source verification. An example device can include instructions executable to send a command via a predefined path to a predefined location within a memory resource storing instructions executable to verify a source of the command using a predefined protocol and execute the command in response to the source verification.Type: GrantFiled: April 24, 2017Date of Patent: April 30, 2019Assignee: Hewlett-Packard Development Company, L.P.Inventors: Maugan Villatel, Richard A. Bramley, Jr., Valiuddin Y. Ali