Loading Initialization Program (e.g., Booting, Rebooting, Warm Booting, Remote Booting, Bios, Initial Program Load (ipl), Bootstrapping) Patents (Class 713/2)
  • Patent number: 11068280
    Abstract: During the user-mode startup of an operating system of a computing system and prior to the execution of a service control manager process, an early retrieval process is launched so as to retrieve (i) decryption keys corresponding to one or more encrypted files, folders or data partitions and/or (ii) an access control policy from a key management server external to the computing system. The retrieved information may be provided to a disk filter driver and/or file system filter driver of the operating system. In order to communicate with the external key management server, the early retrieval process may initialize the network stack of the computing system, since network services is not yet available prior to the execution of the services.exe process.
    Type: Grant
    Filed: September 21, 2017
    Date of Patent: July 20, 2021
    Assignee: HyTrust, Inc.
    Inventors: Babu Katchapalayam, Stephen D. Pate
  • Patent number: 11061691
    Abstract: An apparatus includes a memory and a processor that executes a load process. In the load process, the processor sets, in a storage area of the memory, a first storage area and a second storage area that are smaller than the storage area, creates first notification information that informs that the second storage area is unavailable and the first storage area is available, and allocates an area in the first storage area, based on the first notification information. The processor boots an operating system, and responds to a memory information notification request issued by the booted operating system with second notification information that informs that the second storage area is available.
    Type: Grant
    Filed: May 9, 2019
    Date of Patent: July 13, 2021
    Assignee: FUJITSU LIMITED
    Inventor: Masato Fukumori
  • Patent number: 11061690
    Abstract: A device comprises a first processor and a second processor, the first processor being able to execute a boot loader. The device implements a phase of boot-securing in the event of an electrical anomaly occurring while the boot loader is being updated, the phase of boot-securing being implemented by way of an emergency power supply source acting as a relay for a main power supply, the phase of boot-securing comprising the following steps: stopping (203) the current updating of the boot loader; and invalidating (205) the boot loader. The device implements a phase of delayed booting of the second processor, enabling to boot the device in a boot loader update mode if said stored boot loader is invalid.
    Type: Grant
    Filed: March 29, 2019
    Date of Patent: July 13, 2021
    Assignee: SAGEMCOM BROADBAND SAS
    Inventor: Nicolas Dangy-Caye
  • Patent number: 11064078
    Abstract: A user terminal includes a memory device configured to store a connection setting value and a manager service, the connection setting value being used to connect to a service in an external network by an extended application of the electronic apparatus, the manager service causing the user terminal to send the connection setting value to the electronic apparatus, and a controller circuitry configured to control the communication device to send second communication to the electronic apparatus when the communication device receives the first communication, the second communication indicating that the manager service is ready to send the connection setting value to the electronic apparatus, and control the communication device to send fourth communication to the electronic apparatus when the communication device receives third communication from the electronic apparatus, the third communication requesting to send the connection setting value, the fourth communication sending the connection setting value.
    Type: Grant
    Filed: May 7, 2020
    Date of Patent: July 13, 2021
    Assignee: KYOCERA DOCUMENT SOLUTIONS INC.
    Inventor: Tomoharu Tokunaga
  • Patent number: 11061689
    Abstract: A synchronization method, which is capable of data synchronization in both directions between a storage medium and a storage unit, includes steps of: determining whether first parameter data of the storage medium is identical to default parameter data stored in the storage medium; determining whether a value of a flag stored in the storage unit is equal to a first logical value; and performing data synchronization between the storage unit and the storage medium based on at least one of the two determinations.
    Type: Grant
    Filed: September 17, 2019
    Date of Patent: July 13, 2021
    Assignee: MITAC COMPUTING TECHNOLOGY CORPORATION
    Inventors: Po-Wen Huang, Chen-Nan Hsiao, Xu Zhang, Wei-Lung Shen
  • Patent number: 11048521
    Abstract: A process for using a boot loader to load a set of boot commands to a device such as an embedded system before loading a system application. The process may use a combination of a read-only boot source and a pair of upgradable boot sources. Process also includes a power cycle to put system into a known state. An alternative process may simply use a pair of upgradable boot sources. The processes are resilient to failed updates of an upgradable boot source. After a successful update of an upgradable boot source, a request for a power cycle causes the device to immediately enter a known state and use the updated upgradable boot source.
    Type: Grant
    Filed: September 25, 2019
    Date of Patent: June 29, 2021
    Assignee: ADVA Optical Networking SE
    Inventor: Kevin J. Vasilik
  • Patent number: 11044257
    Abstract: A technology is described for one-time access to a protected resource. In one example, a resource security API (Application Programming Interface) may receive a request for a protected resource. The request may be associated with a launch of a software container in a service provider environment to host a process associated with a customer account. The resource security API may identify a single-use token linked to the software container that allows the resource security API to provide the protected resource. The resource security API may send the protected resource to the software container in response to the request when the single-use token is identified, and the resource security API may disable the single-use token linked to the software container to prevent additional requests associated with the software container from accessing the protected resource.
    Type: Grant
    Filed: November 26, 2018
    Date of Patent: June 22, 2021
    Assignee: Amazon Technologies, Inc.
    Inventors: Robert Paul Heuts, Shufan Kang, Daniel Allen Green, Nikhil Swaminathan
  • Patent number: 11036486
    Abstract: A communication apparatus includes a first communication unit that communicates with a terminal apparatus using a first communication method, a second communication unit that communicates with a server apparatus using a second communication method different from the first communication method, a reception unit that controls receiving update information from the server apparatus in a case where the communication apparatus can communicate with the server apparatus via the second communication unit, an update unit that performs an update process for updating the communication apparatus using the update information, and a progress management unit that controls transmitting a progress status of a process regarding the update information to the terminal apparatus.
    Type: Grant
    Filed: July 13, 2018
    Date of Patent: June 15, 2021
    Assignee: Canon Kabushiki Kaisha
    Inventor: Takashi Matsui
  • Patent number: 11037647
    Abstract: An electronic system such as an imaging system may include processing circuitry and memory circuitry. The memory circuitry may include one-time-programmable memory having error correction code functionalities (e.g., SECDED functionalities). The one-time-programmable memory may have a first set of previously programmed bits and a second set of unprogrammed and unused bits. The processing circuitry may process instructions to update a bit in the second set of bits. To preserve the ECC functionalities (e.g., the ECC check bits associated with the first and second sets of bits, the processing circuitry may also update additional bits in the second set of bits.
    Type: Grant
    Filed: February 19, 2020
    Date of Patent: June 15, 2021
    Assignee: SEMICONDUCTOR COMPONENTS INDUSTRIES, LLC
    Inventor: Sergi Cami Gonzalez
  • Patent number: 11038697
    Abstract: Apparatuses and methods for trusted module execution are proposed, which provide secure boot and trusted execution of system software by using the China commercial cryptography algorithms to establish the SRTM/DRTM. Conventionally, the Intel TXT which uses RSA or SHA-256 cryptography algorithms only authenticates the trusted modules. By contrast, the present application uses the China commercial cryptography algorithms and is able to authenticate the trusted modules and their digital certificates or certificate chains (which has a higher security level than just authenticating the digital certificates).
    Type: Grant
    Filed: November 10, 2016
    Date of Patent: June 15, 2021
    Assignee: VIA ALLIANCE SEMICONDUCTOR CO., LTD.
    Inventors: Kai Li, Yun Shen, Hui Li
  • Patent number: 11030347
    Abstract: Examples disclosed herein relate to protecting a computing device by using hashes. A baseboard management controller is to facilitate taking an inventory of components of the computing device. The baseboard management controller is also to determine a number of times the computing device has been powered on. The baseboard management controller generates a hash using a function of the number of times the computing device has been powered on and the inventory.
    Type: Grant
    Filed: March 14, 2019
    Date of Patent: June 8, 2021
    Assignee: Hewlett Packard Enterprise Development LP
    Inventor: Eric J Gonzalez Mendez
  • Patent number: 11029967
    Abstract: A system includes at least a secure-boot file, a hypervisor, and a host. The secure-boot file is configured to securely boot a VM, where the secure-boot file is signed with a boot private key. The hypervisor is configured to run the VM. The hypervisor includes a boot public key corresponding to the boot private key, such that the hypervisor is configured to validate the secure-boot file, and the hypervisor is signed with a hypervisor private key. A kernel of the host is configured to run the VM, where the kernel includes a hypervisor public key corresponding to the hypervisor private key, such that the host is configured to validate the hypervisor.
    Type: Grant
    Filed: March 8, 2019
    Date of Patent: June 8, 2021
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Patrick Joseph Callaghan, Michael Clark
  • Patent number: 11012097
    Abstract: A method of transmitting a broadcast signal includes encoding mobile data for FEC (Forward Error Correction); encoding signaling information for signaling the mobile data; allocating the encoded mobile data and signaling data into a transmission frame; and transmitting the broadcast signal including the transmission frame, wherein the transmission frame includes a service signaling table having service type information identifying a type of a service of the mobile data and hidden information indicating whether the service of the mobile data is hidden or not.
    Type: Grant
    Filed: August 6, 2019
    Date of Patent: May 18, 2021
    Assignee: LG ELECTRONICS INC.
    Inventors: Chul Soo Lee, In Hwan Choi, Ho Taek Hong, Kook Yeon Kwak, Hyoung Gon Lee, Jae Hyung Song, Jin Pil Kim, Won Gyu Song, Joon Hui Lee, Jin Woo Kim, Byoung Gill Kim, Jong Yeul Suh, Kyu Tae Ahn
  • Patent number: 11012859
    Abstract: A method of securely resetting a first device comprising a UICC, the method comprising providing a secure reset control application to a secure element of the UICC of the first device wherein the secure reset control application is capable of commanding the UICC to provide notification indicative of a secure reset of the first device being requested if a corresponding signal is received from a remote management server; and/or communication between the secure reset control application and a remote management server cannot be established for a predetermined period of time and upon the next first device reset, determine whether a secure reset has been requested.
    Type: Grant
    Filed: June 29, 2017
    Date of Patent: May 18, 2021
    Assignee: SEQUANS COMMUNICATIONS S.A.
    Inventor: Jerome Bertorelle
  • Patent number: 11003758
    Abstract: An information processing method includes, by an information processing device, acquiring a snapshot of data stored in a main storage device of the information processing device in a state where an external device is not authenticated yet, after the information processing device is powered ON; performing first authentication in which the information processing device authenticates the external device after the snapshot is stored in an auxiliary storage device of the information processing device; and performing second authentication in which the information processing device is started up using the snapshot and authenticates the external device after the information processing device is powered ON again.
    Type: Grant
    Filed: June 7, 2018
    Date of Patent: May 11, 2021
    Assignee: TOYOTA JIDOSHA KABUSHIKI KAISHA
    Inventor: Shinichi Suzuki
  • Patent number: 10997296
    Abstract: Operations include restoring a trusted system firmware state. A system stores a set of self-contained secure code in a secure code store. The system stores a set of operational code in an operational code store. The system executes the secure code or the operational code upon system start up, depending whether the system is configured in a secure mode, or in a normal operational mode. When the system is configured in secure mode, the system executes the secure code. In secure mode, the system also overwrites a current version of the operational code stored in the operational code store with a replacement version of the operational code referenced by the secure code. When the system is configured in normal operational mode, the system executes the operational code. During normal operation, the secure code store is electrically isolated.
    Type: Grant
    Filed: March 22, 2017
    Date of Patent: May 4, 2021
    Assignee: Oracle International Corporation
    Inventors: James A. Heck, Ralph P. Valentino, David W. Hartwell
  • Patent number: 10997258
    Abstract: A bot network system may be provided. A system may include a plurality of bot agents, wherein at least one bot agent of the plurality of bot agents is configured to receive a request from a user in natural language. The system may further include a plurality of digital resources including one or more of a software program, a service, a web service and a dataset. Each digital resource of the plurality of digital resources may be configured to communicate with a dedicated bot agent of the plurality of bot agents. Also, each bot agent may be configured to interact with its associated digital resource via an application programming interface (API) of the associated digital resource and translate between the natural language and a language of the associated digital resource.
    Type: Grant
    Filed: February 28, 2018
    Date of Patent: May 4, 2021
    Assignee: FUJITSU LIMITED
    Inventors: Wei-Peng Chen, Lei Liu, Mehdi Bahrami, Samir Parikh, Junhee Park
  • Patent number: 10990292
    Abstract: The present invention provides a flash memory controller, wherein the flash memory controller is arranged to access a flash memory module, the flash memory module includes a plurality of flash memory chips, the flash memory controller includes a buffer memory and a microcontroller, and the buffer memory is arranged to store an in-system programming (ISP) code. When the flash memory controller enters a power saving mode, the microcontroller disables a portion of the buffer memory to make at least one portion of the ISP code disappear; and when the flash memory controller enters a normal mode from the power saving mode, the microcontroller reads said at least one portion of the ISP code from N flash memory chips within the plurality of flash memory chips, wherein N is a positive integer greater than one.
    Type: Grant
    Filed: May 16, 2019
    Date of Patent: April 27, 2021
    Assignee: Silicon Motion, Inc.
    Inventors: Guan-Yao Huang, Yu-Chih Lin, Chang-Wei Shen
  • Patent number: 10990672
    Abstract: Embodiments of the present disclosure disclose a method for obtaining a virus library performed at a computing system. The computing system obtains a sample set, each sample being a malicious installation package. The computing system extracts a group of sample features from each sample as a sample feature set. The computing system performs feature selection on the sample feature set, to obtain at least one group of target features, each target feature meeting a first preset condition. The computing system then updates the at least one group of target features to a virus library. An antivirus platform determines whether the feature of a to-be-detected installation package comprises any group of target features in the virus library and determines that the to-be-detected installation package is a malicious installation package when the feature of the to-be-detected installation package comprises any group of target features in the virus library.
    Type: Grant
    Filed: July 20, 2018
    Date of Patent: April 27, 2021
    Assignee: TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
    Inventor: Peng Jiang
  • Patent number: 10983722
    Abstract: A data storage device includes a nonvolatile memory device, a storage controller and a mapping controller. The nonvolatile memory device stores an execution code that controls operations of the data storage device. The storage controller uploads and stores the execution code from the nonvolatile memory device to a host memory buffer included in an external host device, and downloads the execution code in realtime from the host memory buffer to execute the execution code that is downloaded from the host memory buffer. The mapping controller manages a mapping table including mapping relations between the execution code and host addresses of the host memory buffer at which the execution code is stored. A speed of accessing the execution code is increased and performance of the data storage device is enhanced by using the host memory buffer as storage of the execution code to control the operation of the data storage device.
    Type: Grant
    Filed: July 9, 2019
    Date of Patent: April 20, 2021
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Hyun-Seok Kim, Walter Jun
  • Patent number: 10983802
    Abstract: A change procedure generating device 10 includes: a storage means 11 which stores, for each relation among constituent elements of a system, a plurality of instances of inter-state information which indicates relations among states of the constituent elements wherein a follow-up state limitation is included which represents a relation between a state transition of the constituent elements of the system and prescribed states to which the constituent elements transition after the state transition has been executed, and an appending means 12 which appends the relations among the states of the constituent elements to an inputted system configuration definition, using the inter-state information which corresponds to the relations among the constituent elements which are included in the configuration definition.
    Type: Grant
    Filed: October 5, 2017
    Date of Patent: April 20, 2021
    Assignee: NEC CORPORATION
    Inventor: Manabu Nakanoya
  • Patent number: 10977372
    Abstract: Technologies for bootstrapping virtual network functions in a network functions virtualization (NFV) network architecture include a virtual network function (VNF) bootstrap service (VBS) in secure network communication with a VBS agent of a VNF instance. The VBS agent is configured to execute a secure VNF bootstrap capture protocol in the NFV network architecture. Accordingly, the VBS agent can be configured to register with the VBS via secure communications transmitted between the VBS and the VBS agent. The secure communications include transmitting a security quote from a TEE of a platform on which the VNF instance is instantiated and a security credential request to the VBS, as well as receiving a security credential in response to validating the security quote and the security credential request. Other embodiments are described and claimed.
    Type: Grant
    Filed: August 13, 2019
    Date of Patent: April 13, 2021
    Assignee: Intel Corporation
    Inventors: Kapil Sood, Jesse Walker
  • Patent number: 10976942
    Abstract: A technique versions a configuration of data storage equipment. The technique involves receiving, while the data storage equipment operates in accordance with a first version of the configuration of the data storage equipment, a configuration change command to change the configuration of the data storage equipment. The technique further involves changing the first version of the configuration of the data storage equipment to a second version of the configuration of the data storage equipment in response to the configuration change command. The technique further involves, while the data storage equipment operates in accordance with the second version of the configuration of the data storage equipment, concurrently maintaining access to the first version of the configuration of the data storage equipment and the second version of the configuration of the data storage equipment.
    Type: Grant
    Filed: October 24, 2018
    Date of Patent: April 13, 2021
    Assignee: EMC IP Holding Company LLC
    Inventors: Junping Zhao, Xiangping Chen
  • Patent number: 10963416
    Abstract: A system, computer-readable media and computer-implemented method for automated network adapter activation in connection with fibre channel uplink mapping. The system includes a non-virtualized storage area network switch having a plurality of fibre channel ports. Each of the fibre channel ports is coupled to a corresponding cable to at least partly define a fibre channel uplink. The system also includes a plurality of client devices. Each client device has a network adapter.
    Type: Grant
    Filed: May 29, 2019
    Date of Patent: March 30, 2021
    Assignee: Mastercard International Incorporated
    Inventors: Chase A. Aleshire, Benjamin D. Williams
  • Patent number: 10956345
    Abstract: A method is described. The method includes determining that a first of a plurality of processor cores in a multi-processor computing system has entered an idle state, triggering a SMI for the first processor core, the first processor core entering a system management mode (SMM) and performing one or more platform management operations.
    Type: Grant
    Filed: April 1, 2016
    Date of Patent: March 23, 2021
    Assignee: Intel Corporation
    Inventors: Gaurav Khanna, Prashant Sethi, Venkatesh Ramamurthy
  • Patent number: 10949286
    Abstract: In one example in accordance with the present disclosure, a system for handling memory errors includes a memory module having volatile components and non-volatile components. The system includes a BIOS chip having BIOS code and a BIOS non-volatile (NV) memory. The BIOS NV memory stores error data associated with the memory module that was stored prior to a power-on or reset of the system. The system includes a processor to execute the BIOS code to, after the power-on or reset of the system end before an operating system is loaded; (1) read, from the BIOS NV memory, the error data; and (2) determine, based on the error data, whether to take a corrective action with respect to the memory module.
    Type: Grant
    Filed: January 12, 2015
    Date of Patent: March 16, 2021
    Assignee: Hewlett Packard Enterprise Development LP
    Inventors: Robert J. Volentine, Frank L. Wu
  • Patent number: 10952222
    Abstract: A data transport service of a provider network provide isolated and flexible network data transmission between different computing infrastructure collections of the provider network (e.g., between different geographical regions) for different users. The data transport service may receive a request from a user for assignment of a channel. The request specifies a desired capacity of the channel to transmit data from a computing infrastructure collection to another a computing infrastructure collection. Based on the requested capacity for the channel, the data transport service may reserve, for the channel, network resource capacity to transmit the data between the infrastructures and reserve, for the channel, compute instance capacity to ingest the data and to send the data between the infrastructures using the reserved network resource capacity. The reserved network resource capacity and reserved compute instance capacity are dedicated to the channel and are unavailable for use by other channels.
    Type: Grant
    Filed: June 11, 2019
    Date of Patent: March 16, 2021
    Assignee: Amazon Technologies, Inc.
    Inventors: Jacob Wires, Yuri Zarubin, Leon Thrane, Valeri Atamaniouk, Julien Mascart, Nikolaos Koutsikos Tsatsalmas
  • Patent number: 10936327
    Abstract: The present invention is directed to a method for booting a system-on-chip (SoC) including the steps of directly executing a boot software from an on-chip magnetic random access memory (MRAM) residing on a same semiconductor as the SoC; directly executing an operating system software from an external MRAM by the SoC without loading the operating system into a volatile memory; and directly executing an application software from the external MRAM by the SoC, wherein the external MRAM is coupled to the SoC and is configured for storing the operating system software and the application software.
    Type: Grant
    Filed: March 3, 2020
    Date of Patent: March 2, 2021
    Assignee: Avalanche Technology, Inc.
    Inventors: Ngon Van Le, Ravishankar Tadepalli
  • Patent number: 10931846
    Abstract: An information processing apparatus includes a control unit, a storage unit configured to store a program to be executed by the control unit, a verification unit configured to read the program from the storage unit and to verify the read program, and a light-emitting unit configured to be changed to a predetermined light-emitting state or to be changed from the predetermined light-emitting state based on a result of the verification of the program by the verification unit.
    Type: Grant
    Filed: November 22, 2019
    Date of Patent: February 23, 2021
    Assignee: Canon Kabushiki Kaisha
    Inventor: Shinichi Ono
  • Patent number: 10929146
    Abstract: An embodiment of a semiconductor package apparatus may include technology to determine respective priority levels for one or more boot time events, determine an amount of execution time for the one or more boot time events, and automatically adjust a timer based on the amount of execution time and the priority levels for the one or more boot time events. Other embodiments are disclosed and claimed.
    Type: Grant
    Filed: April 30, 2018
    Date of Patent: February 23, 2021
    Assignee: Intel Corpoartion
    Inventors: Michael Kinney, Michael Rothman, Vincent Zimmer, Mark Doran
  • Patent number: 10929566
    Abstract: An information processing device includes: a medium connection unit that reads first key information from a detachable first recording medium; and a second recording medium storing firmware. The firmware is a program to be executed at a time of start-up of the information processing device and contains second key information. The information processing device includes: a third recording medium storing encrypted data; and a control unit that reads the encrypted data from the third recording medium and decrypts the encrypted data. At the time of start-up of the information processing device, the control unit operates in accordance with the firmware to generate a decryption key for decrypting the encrypted data, from the first key information and the second key information.
    Type: Grant
    Filed: October 23, 2018
    Date of Patent: February 23, 2021
    Assignee: PANASONIC INTELLECTUAL PROPERTY MANAGEMENT CO., LTD.
    Inventor: Masamitsu Murase
  • Patent number: 10929147
    Abstract: A computing environment includes multiple client devices that may each be configured to serve a particular function within the computing environment. The client devices are each coupled to a client management server that communicates with and manages functions of the client devices. When a client device first boots, the client management server communicates with the client device over a network in order to provision the client device with an enrollment image. Using the enrollment image, a client device can become enrolled with the client management server. Once enrolled, the client management server can provision the client device with a functional operating system image. The functional operating system image can support device applications that require a restricted number of runtime states within the client device. A new functional operating system image is downloaded from the client management server and installed on the client device each time the device is rebooted.
    Type: Grant
    Filed: February 6, 2018
    Date of Patent: February 23, 2021
    Assignee: Facebook, Inc.
    Inventors: Oliver Pell, Davide Guerri, Dmitry Vnukov
  • Patent number: 10922197
    Abstract: According to certain aspects, a method of creating customized bootable images for client computing devices in an information management system can include: creating a backup copy of each of a plurality of client computing devices, including a first client computing device; subsequent to receiving a request to restore the first client computing device to the state at a first time, creating a customized bootable image that is configured to directly restore the first client computing device to the state at the first time, wherein the customized bootable image includes system state specific to the first client computing device at the first time and one or more drivers associated with hardware existing at time of restore on a computing device to be rebooted; and rebooting the computing device to the state of the first client computing device at the first time from the customized bootable image.
    Type: Grant
    Filed: April 9, 2020
    Date of Patent: February 16, 2021
    Assignee: Commvault Systems, Inc.
    Inventors: Paramasivam Kumarasamy, Amit Mitkar, Sumedh Pramod Degaonkar
  • Patent number: 10915331
    Abstract: Various aspects include methods for implementing a reduced size firmware storage format on a computing device. Various aspects may include storing a first firmware description table to a first sector of a flash memory, in which the first firmware description table may define a first instance of a firmware including describing a first plurality of firmware images, storing the first plurality of firmware images to a first plurality of consecutive sectors, storing a second firmware description table to a second sector, in which the second firmware description table may define a second instance of the firmware including describing a second plurality of firmware images having a third plurality of firmware images, storing the third plurality of firmware images to a second plurality of consecutive sectors, and booting the computing device using the second firmware description table.
    Type: Grant
    Filed: August 4, 2017
    Date of Patent: February 9, 2021
    Assignee: QUALCOMM Incorporated
    Inventors: Eugen Pirvu, Dhamim Packer Ali, Benish Babu, Leonard Widra, Darshana Advani
  • Patent number: 10915632
    Abstract: According to one or more embodiments of the present invention, an example computer-implemented method for measuring concurrent updates in a security coprocessor includes using a first set of platform configuration registers of the security coprocessor to store and extend measurement of a code-load used during a boot sequence of a computing device. The method further includes using a second set of platform configuration registers of the security coprocessor to store and extend measurement of configuration parameters of the code-load used during the boot sequence. The method further includes using a third set of platform configuration registers of the security coprocessor to store and extend measurements of a concurrent update that changes the code-load that was used during the boot sequence.
    Type: Grant
    Filed: November 27, 2018
    Date of Patent: February 9, 2021
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Kenneth Alan Goldman, Jakob Christopher Lang, Benno Schuepferling, Dennis Zeisberg
  • Patent number: 10908919
    Abstract: A computing device may comprise a first processor and a secondary processor. The first processor may initiate a power management process transitioning the first processor from a first state to a second state and, upon reaching a predetermined step in the power management process, notify the secondary processor of the power management process. The secondary processor may initiate, in response to the notifying, a parallel power management process transitioning the secondary processor from an equivalent first state to an equivalent second state.
    Type: Grant
    Filed: March 1, 2019
    Date of Patent: February 2, 2021
    Assignee: Apple Inc.
    Inventor: Hardik K. Doshi
  • Patent number: 10901858
    Abstract: Methods and systems for recovering a host image of a client machine to a recovery machine comprise comparing a profile of a client machine of a first type to be recovered to a profile of a recovery machine of a second type different from the first type, to which the client machine is to be recovered, by a first processing device. The first and second profiles each comprise at least one property of the first type of client machine and the second type of recovery machine, respectively. At least one property of a host image of the client machine is conformed to at least one corresponding property of the recovery machine. The conformed host image is provided to the recovery machine, via a network. The recovery machine is configured with at least one conformed property of the host image by a second processing device of the recovery machine.
    Type: Grant
    Filed: September 6, 2018
    Date of Patent: January 26, 2021
    Assignee: Falconstor, Inc.
    Inventors: Po-Hsin Wei, Andrew Spyros Malitzis, Andrew Lee Modansky, Sheng-Chang Chang
  • Patent number: 10901863
    Abstract: A primary system is established at a first site. The primary system hosts an application and a primary database for remote users that use the application to manage data of the primary database. A unified data layer is established at a remote site. The unified data layer provides access to data of the primary database without providing access to the primary database. A triggering event that impairs the ability of the primary system to host the application is detected. A recovery system is instantiated in response to detecting the triggering event. The recovery system includes both a recovery instance of the application and a recovery database for the data of the application. The recovery database is populated using the unified data layer. The recovery system is activated such that remote users can access the recovery instance of the application to manage data of the recovery database.
    Type: Grant
    Filed: November 15, 2018
    Date of Patent: January 26, 2021
    Assignee: International Business Machines Corporation
    Inventors: Anjan G. Lukkoor, James D. Spyker
  • Patent number: 10902127
    Abstract: In an aspect of the disclosure, a method, a computer-readable medium, and an apparatus are provided. The apparatus is an embedded-system device. The embedded-system device loads a first boot loader from a read only section of a storage device in an initialization process of the embedded-system device. The embedded-system device also loads, by the first boot loader, a public key from the read only section. The embedded-system device further generates a first verification code for static code and data stored in a first section of the storage device. The embedded-system device then decrypts, by the first boot loader, an encrypted signature stored in the first section by using the public key to obtain a second verification code. The embedded-system device determines integrity of the static code and data based on the first verification code and the second verification code.
    Type: Grant
    Filed: December 5, 2018
    Date of Patent: January 26, 2021
    Assignee: AMERICAN MEGATRENDS INTERNATIONAL, LLC
    Inventors: Aruna Venkataraman, Ryan McCutcheon, Satheesh Thomas, Valantina Arumugam, Hemanthkumar M, Venkatesan Balakrishan, Anurag Bhatia
  • Patent number: 10891181
    Abstract: Techniques are disclosed for performing dump collection on a computing system. One technique includes detecting an error event on the computing system. After detecting the error event, a subset of hardware registers associated with the error event are determined. One or more hardware units within the computing system to capture data from are determined from a set of rules that specify an association between the one or more hardware units and the subset of hardware registers associated with the error event. Data is captured from each of the one or more hardware units.
    Type: Grant
    Filed: October 25, 2018
    Date of Patent: January 12, 2021
    Assignee: International Business Machines Corporation
    Inventors: Meghna Paruthi, Mike C. Duron, Adriana Kobylak, Nagendra K. Gurram, Jason Albert
  • Patent number: 10891172
    Abstract: A method includes modifying a basic input/output system (BIOS) to load a virtual general purpose input/output (GPIO) driver in an operating system, the virtual GPIO driver comprising at least one control method to monitor a system control interrupt (SCI) (202). The method can also include detecting the system control interrupt invoking the virtual GPIO driver (204) and executing the control method corresponding to the system control interrupt, the control method to be identified in the modified BIOS (206). Furthermore, the method can include detecting an error from the execution of the control method (208) and modifying an operating system to prevent the error (208), the modification comprising a modification to the control method.
    Type: Grant
    Filed: December 24, 2015
    Date of Patent: January 12, 2021
    Assignee: Intel Corporation
    Inventors: Yuping Yang, Dujian Wu, Shijie Liu, Daquan Dong
  • Patent number: 10885195
    Abstract: A process for loading a secure memory image for a startup procedure of a microcontroller from an external non-volatile memory has the microcontroller configured to assume a locked state in which execution of any program is prevented pending a restart of the microcontroller when a data section of a secure memory image is faulty. The process includes the following steps: detection of the locked state of the microcontroller by a controller located outside of the microcontroller, institution of precautionary measures that lead to modified read data values of the memory image in a subsequent attempt by the microcontroller to read the memory image; and initiation of a restart of the microcontroller to cancel the locked state, and thus initiation of a renewed attempt to load the memory image. An assembly including a microcontroller, an external non-volatile memory and a controller implements such a process.
    Type: Grant
    Filed: November 16, 2016
    Date of Patent: January 5, 2021
    Inventors: Marc Strünkmann, Ingo Gurlt, Andreas Böckstiegel
  • Patent number: 10884864
    Abstract: A computer-implemented method includes: randomly generating, by a process running on a computer device, a reset time for the process; broadcasting a message to other processes in a cluster, the message including the reset time; entering a running state; receiving another message from one of the processes, the other message including another reset time; comparing the other reset time to the reset time; and in response to the comparing, the process performs one of: continuing in the running state based on the other reset time being different than the reset time; and randomly generating a new reset time for the process based on the other reset time coinciding with the reset time.
    Type: Grant
    Filed: November 29, 2018
    Date of Patent: January 5, 2021
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventor: Michael Treadway
  • Patent number: 10878097
    Abstract: A BIOS (Basic Input/Output System) flashing method and a BIOS image file processing method, belonging to the field of computers, are provided. The methods include: obtaining a BIOS image file, the BIOS image file carrying a first verification parameter and a first file parameter, verifying that the first verification parameter has validity, verifying that the BIOS image file has completeness based on the first file parameter; and performing BIOS flashing employing the BIOS image file verified as having completeness. The present disclosure may improve security and reliability of data servers.
    Type: Grant
    Filed: November 30, 2018
    Date of Patent: December 29, 2020
    Assignee: Alibaba Group Holding Limited
    Inventors: Yingfang Fu, Peng Xiao
  • Patent number: 10872019
    Abstract: A computer implemented method includes executing an image recovery app on a mobile device, initiating a recovery partition transfer between the mobile device and a terminal via the image recovery app and a communication connection between the mobile device and the terminal, and transferring the recovery partition between mobile device memory and the terminal to selectively restore the recover partition to the terminal or save the recovery partition to the mobile device memory.
    Type: Grant
    Filed: December 15, 2018
    Date of Patent: December 22, 2020
    Assignee: NCR Corporation
    Inventors: James Garzon Ponce, Eunice Faith Batuhinay Pude, Glenn Paragoso, Faith Monteroso Ricabo, Mary Jane Sayco
  • Patent number: 10872141
    Abstract: A disclosed program verification method includes: reading out, from a first storage unit, a first value that was calculated before shutdown of the computer for each part of a first program at start of the computer; and determining whether the first program is valid based on the read out first value for each part of the first program and a second value that was calculated for each part of a second program that is valid and is stored in a second storage unit.
    Type: Grant
    Filed: November 17, 2017
    Date of Patent: December 22, 2020
    Assignee: FUJITSU LIMITED
    Inventor: Yasuhiko Abe
  • Patent number: 10866867
    Abstract: A method of error correction in a nonvolatile flash memory of NAND type, the memory including a first and a second, identical, copies of software to be loaded, a page of a block occupied by data of the first copy of the software being corrupted, and a page of a block occupied by data of the second copy of the software being corrupted, the method including: the replacement of the block occupied by the second copy of the software and including a corrupted page with the identical block occupied by the first copy of the software, making it possible to correct the second copy of the software; the re-execution of the boot loading program; the loading of the second copy of the software.
    Type: Grant
    Filed: September 7, 2017
    Date of Patent: December 15, 2020
    Inventor: José De Oliva
  • Patent number: 10869176
    Abstract: Technologies are disclosed herein for utilizing near field communication (“NFC”) to improve the security, performance, and configuration of computing systems. In particular, NFC can be utilized to power an NFC-equipped server computer on or off, to log directly into an operating system executing on the NFC-equipped server computer, to stream firmware debugging data from an NFC-equipped server computer to an NFC-equipped mobile device, to initiate the update or recovery of firmware, to provide hardware inventory data, or to pair hardware devices. Firmware debugging data can also be streamed from a firmware to an NFC-equipped mobile device. NFC can also be utilized to disable functionality provided by a mobile device while the device is in motion, such as when a user of the mobile device is operating a motor vehicle.
    Type: Grant
    Filed: January 25, 2019
    Date of Patent: December 15, 2020
    Assignee: American Megatrends International, LLC
    Inventor: Kai Yau
  • Patent number: 10860425
    Abstract: A method for recovering a basic input/output system (BIOS) image file of a computer system is provided. The method includes steps of: controlling a switch unit of the computer system to switch from a first state to a second state when the BIOS image file is to be updated; reading a current BIOS image file so as to store the same as a backup; controlling the switch unit to switch back to the first state; determining whether a command is received within a first predetermined time period when the BIOS image file is successfully updated to a new version of the BIOS image file; and when negative, controlling the switch unit to switch to the second state and writing the backup of the current version of the BIOS image file.
    Type: Grant
    Filed: May 4, 2018
    Date of Patent: December 8, 2020
    Assignee: MITAC COMPUTING TECHNOLOGY CORPORATION
    Inventor: Shun-Chieh Yang
  • Patent number: 10855498
    Abstract: A packaged semiconductor device includes a substrate and first, second, and third integrated circuit (IC) chips. The first integrated circuit (IC) chip is mounted on the substrate to receive first data and includes a first transfer interface to transmit the first data via first conductors formed in the substrate. The second IC chip mounts on the substrate and has a second transfer interface to receive the first data. The second IC includes on-chip conductors to route the first data on-chip to an output interface. The output interface transmits the first data via second conductors formed on the substrate. A third IC chip mounts on the substrate and has a third transfer interface to receive the first data via the second conductors.
    Type: Grant
    Filed: March 7, 2017
    Date of Patent: December 1, 2020
    Assignee: Marvell Asia Pte, LTD
    Inventors: Ramin Farjadrad, Paul Langner