Patents by Inventor Theodore S. Webb
Theodore S. Webb has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Systems and methods for storing administrator secrets in management controller-owned cryptoprocessor
Patent number: 10148444Abstract: A method may include storing a first set of secrets associated with an information handling system in a credential vault of a management controller configured to be coupled to a processor of a host system of the information handling system in order to provide management of the information handling system via management traffic communicated between the management controller and an external management network such that the first set of secrets are accessible responsive to a verified boot of the management controller and storing a second set of secrets associated with the information handling system in a storage of a cryptoprocessor owned by the management controller such that access to the second set of secrets may be granted in response to an administrator's provision of authorization to the cryptoprocessor, and such that access to the second set of secrets is prevented during runtime of the host system in absence of authorization.Type: GrantFiled: August 4, 2016Date of Patent: December 4, 2018Assignee: Dell Products L.P.Inventors: Johan Rahardjo, Mukund P. Khatri, Theodore S. Webb -
SYSTEMS AND METHODS FOR STORING ADMINISTRATOR SECRETS IN MANAGEMENT CONTROLLER-OWNED CRYPTOPROCESSOR
Publication number: 20180041344Abstract: A method may include storing a first set of secrets associated with an information handling system in a credential vault of a management controller configured to be coupled to a processor of a host system of the information handling system in order to provide management of the information handling system via management traffic communicated between the management controller and an external management network such that the first set of secrets are accessible responsive to a verified boot of the management controller and storing a second set of secrets associated with the information handling system in a storage of a cryptoprocessor owned by the management controller such that access to the second set of secrets may be granted in response to an administrator's provision of authorization to the cryptoprocessor, and such that access to the second set of secrets is prevented during runtime of the host system in absence of authorization.Type: ApplicationFiled: August 4, 2016Publication date: February 8, 2018Applicant: Dell Products L.P.Inventors: Johan RAHARDJO, Mukund P. KHATRI, Theodore S. WEBB -
Patent number: 9792111Abstract: A method includes a service processor of an information handling system downloading code, including device drivers, and transferring the code to an operating system of the information handling system without rebooting the operating system. In some embodiments, a daemon of the operating system may request device drivers for newly-inserted devices and the service processor may make the device drivers available to the operating system in response to the requests. In some embodiments, the service processor may download updated device drivers and may inform the daemon. The updated device drivers may be automatically provided to the operating system or made available upon a request of a user. The service processor may make code available to the operating system by exposing a portion of its non-volatile memory to the operating system as a virtual device.Type: GrantFiled: December 30, 2015Date of Patent: October 17, 2017Assignee: Dell Products, LPInventors: Weijia Zhang, Wayne R. Weilnau, Theodore S. Webb, Syama S. Poluri, Kevin D. Noreen
-
Patent number: 9684789Abstract: A method comprises signing boot code with a public/private cryptographic key pair, and writing to storage the boot code, the public cryptographic key, and the signed boot code.Type: GrantFiled: July 18, 2016Date of Patent: June 20, 2017Assignee: DELL PRODUCTS, LPInventors: Muhammed K. Jaber, Quy N. Hoang, Shawn J. Dube, Theodore S. Webb, III
-
Publication number: 20170111379Abstract: A network interface device includes a memory and a processor operable to receive a malicious packet marker, store the malicious packet marker to the memory, monitor network data packets flowing in the network interface device, determine that a packet matches the malicious packet marker, and store log information from the packet to the memory.Type: ApplicationFiled: December 29, 2016Publication date: April 20, 2017Inventors: Mukund P. Khatri, Theodore S. Webb, Jacqueline H. Wilson, Jon R. Ramsey
-
Patent number: 9560062Abstract: A network interface device includes a memory and a processor operable to receive a malicious packet marker, store the malicious packet marker to the memory, monitor network data packets flowing in the network interface device, determine that a packet matches the malicious packet marker, and store log information from the packet to the memory.Type: GrantFiled: December 3, 2013Date of Patent: January 31, 2017Assignee: SECUREWORKS CORP.Inventors: Mukund P. Khatri, Theodore S. Webb, Jacqueline H. Wilson, Jon R. Ramsey
-
Publication number: 20160328565Abstract: A method comprises signing boot code with a public/private cryptographic key pair, and writing to storage the boot code, the public cryptographic key, and the signed boot code.Type: ApplicationFiled: July 18, 2016Publication date: November 10, 2016Inventors: Muhammed K. Jaber, Quy N. Hoang, Shawn J. Dube, Theodore S. Webb, III
-
Patent number: 9396335Abstract: A method comprises signing boot code with a public/private cryptographic key pair, and writing to storage the boot code, the public cryptographic key, and the signed boot code.Type: GrantFiled: August 28, 2012Date of Patent: July 19, 2016Assignee: DELL PRODUCTS, LPInventors: Muhammed K. Jaber, Quy N. Hoang, Shawn J. Dube, Theodore S. Webb, III
-
Publication number: 20160110184Abstract: A method includes a service processor of an information handling system downloading code, including device drivers, and transferring the code to an operating system of the information handling system without rebooting the operating system. In some embodiments, a daemon of the operating system may request device drivers for newly-inserted devices and the service processor may make the device drivers available to the operating system in response to the requests. In some embodiments, the service processor may download updated device drivers and may inform the daemon. The updated device drivers may be automatically provided to the operating system or made available upon a request of a user. The service processor may make code available to the operating system by exposing a portion of its non-volatile memory to the operating system as a virtual device.Type: ApplicationFiled: December 30, 2015Publication date: April 21, 2016Applicant: DELL PRODUCTS, LPInventors: Weijia Zhang, Wayne R. Weilnau, Theodore S. Webb, Syama S. Poluri, Kevin D. Noreen
-
Patent number: 9319426Abstract: An information handling system includes a processor and a management controller separate from the processor. The management controller is operable to store an anti-virus program and a malicious marker detection program in a memory of the management controller, and to execute the malicious marker detection program. The malicious marker detection program operates to detect a state of a device of the information handling system, determine that the information handling system is under attack from a malicious program in response to detecting the state of the device, and send an alert to a management system coupled to the information handling system, the alert indicating that the information handling system is under attack from the malicious program.Type: GrantFiled: June 18, 2013Date of Patent: April 19, 2016Assignee: DELL PRODUCTS, LPInventors: Theodore S. Webb, Jacqueline H. Wilson, Jon R. Ramsey, Mukund P. Khatri
-
Patent number: 9244695Abstract: A method includes a service processor of an information handling system downloading code, including device drivers, and transferring the code to an operating system of the information handling system without rebooting the operating system. In some embodiments, a daemon of the operating system may request device drivers for newly-inserted devices and the service processor may make the device drivers available to the operating system in response to the requests. In some embodiments, the service processor may download updated device drivers and may inform the daemon. The updated device drivers may be automatically provided to the operating system or made available upon a request of a user. The service processor may make code available to the operating system by exposing a portion of its non-volatile memory to the operating system as a virtual device.Type: GrantFiled: March 15, 2013Date of Patent: January 26, 2016Assignee: Dell Products, LPInventors: Weijia Zhang, Wayne R. Weilnau, Theodore S. Webb, Syama S. Poluri, Kevin D. Noreen
-
Publication number: 20150156212Abstract: A network interface device includes a memory and a processor operable to receive a malicious packet marker, store the malicious packet marker to the memory, monitor network data packets flowing in the network interface device, determine that a packet matches the malicious packet marker, and store log information from the packet to the memory.Type: ApplicationFiled: December 3, 2013Publication date: June 4, 2015Applicant: Dell Products, LPInventors: Mukund P. Khatri, Theodore S. Webb, Jacqueline H. Wilson, Jon R. Ramsey
-
Publication number: 20140373151Abstract: An information handling system includes a processor and a management controller separate from the processor. The management controller is operable to store an anti-virus program and a malicious marker detection program in a memory of the management controller, and to execute the malicious marker detection program. The malicious marker detection program operates to detect a state of a device of the information handling system, determine that the information handling system is under attack from a malicious program in response to detecting the state of the device, and send an alert to a management system coupled to the information handling system, the alert indicating that the information handling system is under attack from the malicious program.Type: ApplicationFiled: June 18, 2013Publication date: December 18, 2014Inventors: Theodore S. Webb, Jacqueline H. Wilson, Jon R. Ramsey, Mukund P. Khatri
-
Publication number: 20140282483Abstract: A method includes a service processor of an information handling system downloading code, including device drivers, and transferring the code to an operating system of the information handling system without rebooting the operating system. In some embodiments, a daemon of the operating system may request device drivers for newly-inserted devices and the service processor may make the device drivers available to the operating system in response to the requests. In some embodiments, the service processor may download updated device drivers and may inform the daemon. The updated device drivers may be automatically provided to the operating system or made available upon a request of a user. The service processor may make code available to the operating system by exposing a portion of its non-volatile memory to the operating system as a virtual device.Type: ApplicationFiled: March 15, 2013Publication date: September 18, 2014Applicant: DELL PRODUCTS, LPInventors: Weijia Zhang, Wayne R. Weilnau, Theodore S. Webb, Syama S. Poluri, Kevin D. Noreen
-
Publication number: 20140068238Abstract: A method comprises signing boot code with a public/private cryptographic key pair, and writing to storage the boot code, the public cryptographic key, and the signed boot code.Type: ApplicationFiled: August 28, 2012Publication date: March 6, 2014Applicant: DELL PRODUCTS, LPInventors: Muhammed K. Jaber, Quy N. Hoang, Shawn J. Dube, Theodore S. Webb, III
-
Patent number: 8474015Abstract: A system to manage a key license includes an information handling system having non-volatile memory accessible to a processor. The non-volatile memory stores feature enablement information related to a feature that the information handling system is adapted to provide. The non-volatile memory stores instructions that are accessible to the processor and executable by the processor to send the feature enablement information to an external system after the information handling system is deployed, and to request the feature enablement information, or other feature enablement information, from the external system in response to receiving a request for the information handling system to provide the feature.Type: GrantFiled: March 9, 2012Date of Patent: June 25, 2013Assignee: Dell Products, LPInventors: Muhammed K. Jaber, Mukund P. Khatri, Theodore S. Webb
-
Publication number: 20120174201Abstract: A system to manage a key license includes an information handling system having non-volatile memory accessible to a processor. The non-volatile memory stores feature enablement information related to a feature that the information handling system is adapted to provide. The non-volatile memory stores instructions that are accessible to the processor and executable by the processor to send the feature enablement information to an external system after the information handling system is deployed, and to request the feature enablement information, or other feature enablement information, from the external system in response to receiving a request for the information handling system to provide the feature.Type: ApplicationFiled: March 9, 2012Publication date: July 5, 2012Applicant: DELL PRODUCTS, LPInventors: Muhammed K. Jaber, Mukund P. Khatri, Theodore S. Webb, III
-
Patent number: 8156540Abstract: A system to manage a key license includes an information handling system having non-volatile memory accessible to a processor. The non-volatile memory stores feature enablement information related to a feature that the information handling system is adapted to provide. The non-volatile memory stores instructions that are accessible to the processor and executable by the processor to send the feature enablement information related to the feature to an external system after the information handling system is deployed, and to request the feature enablement information, or other feature enablement information related to the feature, from the external system in response to receiving a request for the information handling system to provide the feature.Type: GrantFiled: January 28, 2009Date of Patent: April 10, 2012Assignee: Dell Products, LPInventors: Muhammed K. Jaber, Mukund P. Khatri, Theodore S. Webb, III
-
Publication number: 20100191800Abstract: A system to manage a key license includes an information handling system having non-volatile memory accessible to a processor. The non-volatile memory stores feature enablement information related to a feature that the information handling system is adapted to provide. The non-volatile memory stores instructions that are accessible to the processor and executable by the processor to send the feature enablement information related to the feature to an external system after the information handling system is deployed, and to request the feature enablement information, or other feature enablement information related to the feature, from the external system in response to receiving a request for the information handling system to provide the feature.Type: ApplicationFiled: January 28, 2009Publication date: July 29, 2010Applicant: DELL PRODUCTS, LPInventors: Muhammed K. Jaber, Mukund P. Khatri, Theodore S. Webb, III
-
Publication number: 20030236961Abstract: Memory managements systems and methods that may be employed, for example, to provide efficient management of memory for network systems. The disclosed systems and methods may consider cost-benefit trade-off between the cache value of a particular memory unit versus the cost of caching the memory unit and may utilize a multi-layer queue management structure to manage buffer/cache memory in an integrated fashion. The disclosed systems and methods may be implemented as part of an information management system, such as a network proceessing system that is operable to process over-size data objects communicated via a network environment, and that may include a network processor operable to process network-communicated information and a memory management-system operable to manage disposition of individual memory units of over-size data objects based upon one or more parameters, such as one or more parameters reflecting the cost and value associated with maintaining the information in integrated buffer/cache memory.Type: ApplicationFiled: March 1, 2001Publication date: December 25, 2003Inventors: Chaoxin C. Qiu, Mark J. Conrad, Scott C. Johnson, Theodore S. Webb