Abstract: An anti-skate device for a drive axle of a motor vehicle may include a free-spinning body having an axis of rotation that is generally perpendicular to the drive axle of the vehicle. The free-spinning body may be coupled to the drive axle by a rotational damper.

Abstract: A method for providing eavesdropping detection of an optic fiber communication between two users includes the steps of exchanging both data and probe signals through at least two channels (400, 500) between the users, exchanging probe signals (143) on one channel (500 or 400) between quantum probe signal terminals, extracting a key for authentication from the probe signals, and exchanging data signals (142) between transmission units on another channel (400 or 500). A first portion of the key generated by the quantum probe signal terminals is used to authenticate the terminals, wherein a second portion of the key is dedicated to define commutation occurrences of commutation devices adapted to commutate the use of the channels (400, 500) for data (142) and probe (143) signals, thus detecting an eavesdropping event (300) which triggers an alarm (750). A further portion of the key can be used to encrypt the messages.

Abstract: An apparatus and method for securely suspending and resuming the state of a processor. For example, one embodiment of a method comprises: generating a data structure including at least the monotonic counter value; generating a message authentication code (MAC) over the data structure using a first key; securely providing the data structure and the MAC to a module executed on the processor; the module verifying the MAC, comparing the monotonic counter value with a counter value stored during a previous suspend operation and, if the counter values match, then loading processor state required for the resume operation to complete. Another embodiment of a method comprises: generating a first key by a processor; securely sharing the first key with an off-processor component; and using the first key to generate a pairing ID usable to identify a pairing between the processor and the off-processor component.

Abstract: A method of controlling an isolated high voltage circuit of a vehicle comprising the high voltage circuit and a low voltage circuit wherein the high voltage circuit is isolated from the low voltage circuit, the method comprising: detecting a change in an isolation resistance of the high voltage circuit from the low voltage circuit; determining a speed of the vehicle; operating the high voltage circuit in dependence on the change in the isolation resistance and the speed of the vehicle.

Abstract: Embodiments of an invention for modifying memory permissions in a secure processing environment are disclosed. In one embodiment, a processor includes an instruction unit and an execution unit. The instruction unit is to receive an instruction to modify access permissions for a page in a secure enclave. The execution unit is to execute the instruction. Execution of the instruction includes setting new access permissions in an enclave page cache map entry. Furthermore, the page is immediately accessible from inside the secure enclave according to the new access permissions.

Abstract: An anti-skate device for a drive axle of a motor vehicle may include a free-spinning body having an axis of rotation that is generally perpendicular to the drive axle of the vehicle. The free-spinning body may be coupled to the drive axle by a rotational damper.

Abstract: A battery power supply with extended shelf-life is composed of a plurality of batteries connected in series with a switching element and voltage booster. The switching element is composed of a transistor in parallel with a passive component that produces a voltage drop when the transistor is off. The voltage booster maintains an output voltage at set value when battery capacity deteriorates. A micro-controller is used to monitor voltage potentials to detect the presence of an external load. When no load is detected, all active components are disabled to conserve energy and avoid self-discharge.

Abstract: Embodiments of an invention for secure processing environment measurement and attestation are disclosed. In one embodiment, a processor includes an instruction unit and an execution unit. The instruction unit is to receive a first instruction associated with a build or a rebuild of a secure enclave. The execution unit is to execute the first instruction. Execution of the first instruction, when associated with the build, includes calculation of a first measurement and a second measurement of the secure enclave. Execution of the first instruction, when associated with the rebuild, includes calculation of the second measurement without calculation of the first measurement.

Abstract: An apparatus for sharing information between entities includes a processor and a trusted execution module executing on the processor. The trusted execution module is configured to receive first confidential information from a first client device associated with a first entity, seal the first confidential information within a trusted execution environment, receive second confidential information from a second client device associated with a second entity, seal the second confidential information within the trusted execution environment, and execute code within the trusted execution environment. The code is configured to compute a confidential result based upon the first confidential information and the second confidential information.

Abstract: An apparatus and method for securely suspending and resuming the state of a processor. For example, one embodiment of a method comprises: generating a data structure including at least the monotonic counter value; generating a message authentication code (MAC) over the data structure using a first key; securely providing the data structure and the MAC to a module executed on the processor; the module verifying the MAC, comparing the monotonic counter value with a counter value stored during a previous suspend operation and, if the counter values match, then loading processor state required for the resume operation to complete. Another embodiment of a method comprises: generating a first key by a processor; securely sharing the first key with an off-processor component; and using the first key to generate a pairing ID usable to identify a pairing between the processor and the off-processor component.

Abstract: An apparatus for sharing information between entities includes a processor and a trusted execution module executing on the processor. The trusted execution module is configured to receive first confidential information from a first client device associated with a first entity, seal the first confidential information within a trusted execution environment, receive second confidential information from a second client device associated with a second entity, seal the second confidential information within the trusted execution environment, and execute code within the trusted execution environment. The code is configured to compute a confidential result based upon the first confidential information and the second confidential information.

Abstract: A knife block system is described which in one embodiment includes a block unit having a magnetic core, a plurality of knives secured to the magnetic core of the block unit, a foot supporting the block unit, and at least one chopping board protruding from a surface of the block unit and removable from the block unit for use, the chopping board configured to fit into a chopping board back support attached to the block unit for storage when not in use, the chopping board having a female module formed therein. The system includes a knife sharpener unit removably attachable to the foot for use, the knife sharpener unit having a product logo on a surface thereof that is sized to mate with the female module on the chopping board to secure the knife sharpener unit to the chopping board as both items are in use.

Abstract: Embodiments of an invention for offloading functionality from a secure processing environment are disclosed. In one embodiment, a processor includes an instruction unit and an execution unit. The instruction unit is to receive an instruction to initialize a secure enclave. The execution unit is to execute the instruction. Execution of the instruction includes verifying that a signature structure key matches a hardware key that permits functionality to be offloaded.

Abstract: Embodiments of an invention for modifying memory permissions in a secure processing environment are disclosed. In one embodiment, a processor includes an instruction unit and an execution unit. The instruction unit is to receive an instruction to modify access permissions for a page in a secure enclave. The execution unit is to execute the instruction. Execution of the instruction includes setting new access permissions in an enclave page cache map entry. Furthermore, the page is immediately accessible from inside the secure enclave according to the new access permissions.

Abstract: Indicating fit status of a mask in communication with a respiratory assistance device is disclosed. Upon initiating a therapeutic gas delivery from the respiratory assistance device to the mask, one or more measurements from respective one or more sensors of the respiratory assistance device is received. A leakage value from these measurements is derived, and a mask fit index is assigned. This is based at least upon a correlation of the leakage value to a particular sub-range of predetermined leakage values that corresponds to the mask fit index. The particular sub-range of predetermined leakage values is one among a plurality of sub-ranges, which together comprises an overall mask fit range defined at least by an ideal mask fit region, a loose mask fit region, and a tight mask fit region. A mask fit status based upon the assigned mask fit index is output to an indicator interface.

Abstract: Embodiments of an invention for secure processing environment measurement and attestation are disclosed. In one embodiment, a processor includes an instruction unit and an execution unit. The instruction unit is to receive a first instruction associated with a build or a rebuild of a secure enclave. The execution unit is to execute the first instruction. Execution of the first instruction, when associated with the build, includes calculation of a first measurement and a second measurement of the secure enclave. Execution of the first instruction, when associated with the rebuild, includes calculation of the second measurement without calculation of the first measurement.

Abstract: Embodiments of an invention for feature licensing in a secure processing environment are disclosed. In one embodiment, a processor includes an instruction unit and an execution unit. The instruction unit is to receive an instruction to initialize a secure enclave. The execution unit is to execute the instruction. Execution of the instruction includes determining whether a requested feature is licensed for use in the secure enclave.

Abstract: An apparatus for sharing information between entities includes a processor and a trusted execution module executing on the processor. The trusted execution module is configured to receive first confidential information from a first client device associated with a first entity, seal the first confidential information within a trusted execution environment, receive second confidential information from a second client device associated with a second entity, seal the second confidential information within the trusted execution environment, and execute code within the trusted execution environment. The code is configured to compute a confidential result based upon the first confidential information and the second confidential information.

Abstract: A self-authenticating credit card includes an input device for entering a PIN. The PIN is accepted by a micro-controller that uses the entered PIN as an encryption key for decrypting stored account information. A portion of the account information includes data, that when decrypted, contains an image that is rendered on an integral display, with account information sent to a transaction terminal. A timer is used to limit access to account data while in the unlocked state.

Abstract: A system and method of generating an encryption key in a self-encrypting mass storage device that includes using a manual input device as input for a micro-controller that contains a cyclic counter. An input device event triggers the micro-controller to read the current state of the cyclic counter. An accumulation of cyclic counter values is used as a source of entropy to seed a deterministic random number generator. The output of the deterministic random number generator is used as an encryption key for encryption/decryption processes within the mass storage device.