公开(公告)号：US20230063688A1

公开(公告)日：2023-03-02

申请号：US17758143

申请日：2020-01-31

Applicant: Hewlett-Packard Development Company, L.P.

Inventor： David Plaquin ,  Carey Huscroft

IPC: G01R29/08 ,  G01R31/312

Abstract: In an example, a method includes receiving an indication of an electrical parameter associated with at least part of a computing device. The method further includes determining whether or not the indication is indicative of an expected electric field distribution associated with a specified hardware configuration for the computing device.

公开(公告)号：US11556645B2

公开(公告)日：2023-01-17

申请号：US16077688

申请日：2018-06-06

Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.

Inventor： Ronny Chevalier ,  Guillaume Hiet ,  Maugan Villatel ,  David Plaquin

IPC: G06F21/56 ,  G06F17/18 ,  G06F21/55

Abstract: A method for monitoring control-flow integrity in a low-level execution environment, the method comprising receiving, at a monitor, a message from the execution environment indicating that the execution environment has entered a controlled mode of operation, receiving, at the monitor, a data packet representing execution of a selected portion of a control-flow process at the execution environment, identifying, using the data packet, a pathway corresponding to the selected portion of the control-flow process from a set of permissible control-flow pathways and determining whether the identified pathway corresponds to an expected control-flow behaviour.

公开(公告)号：US11429722B2

公开(公告)日：2022-08-30

申请号：US16479737

申请日：2018-01-29

Applicant: Hewlett-Packard Development Company, L.P.

Inventor： Jeffrey Kevin Jeansonne ,  Rosilet Retnamoni Braduke ,  Joshua Serratelli Schiffman ,  David Plaquin

IPC: G06F21/57 ,  G06F21/55 ,  G06F21/60

Abstract: An example system with a pre-OS (Operating System) environment, the pre-OS environment includes a private memory that is isolated from a processor of the system. The pre-OS environment also includes an embedded controller (EC) coupled to the private memory, where the EC includes an embedded key. The EC is to execute instructions to generate an encryption key based on the embedded key; generate a signature key; obtain data; produce an integrity-verification tag based on a hash of the obtained data, where the hash employs the signature key; encrypt the obtained data based on the encryption key; store the encrypted data in the private memory; and store the integrity-verification tag in the private memory in association with the stored encrypted data.

公开(公告)号：US11328040B2

公开(公告)日：2022-05-10

申请号：US16759224

申请日：2017-10-30

Applicant: Hewlett-Packard Development Company, L.P.

Inventor： Gurchetan Grewal ,  David Plaquin

IPC: G06F21/45 ,  G06F21/31 ,  G06F21/55 ,  H04L29/06

Abstract: A method for monitoring access to a user account comprises receiving a user account login status from a target service in response to a user login request, comparing the user account login status with an expected status value at a user apparatus, and on the basis of the comparison, performing at least one of: synchronising the status value at the user apparatus with the user account login status from the target service, and executing a user login update process at the user apparatus.

公开(公告)号：US11308202B2

公开(公告)日：2022-04-19

申请号：US16486331

申请日：2018-06-07

Applicant: Hewlett-Packard Development Company, L.P.

Inventor： Ronny Chevalier ,  David Plaquin ,  Maugan Villatel ,  Guillaume Hiet

IPC: G06F9/54 ,  G06F21/52 ,  G06F9/455

Abstract: An intrusion detection system, comprising a monitor to receive messages from a target over a low-latency communication link comprising a controlled access memory structure logically positioned between the target and the monitor using point-to-point interconnects, the controlled access memory structure to receive a message from the target indicating that the target has entered a controlled mode of operation.

公开(公告)号：US20210382991A1

公开(公告)日：2021-12-09

申请号：US17055836

申请日：2019-09-27

Applicant: Hewlett-Packard Development Company, L.P.

Inventor： Ronny Chevalier ,  David Plaquin ,  Christopher Ian Dalton ,  Guillaume Hiet

IPC: G06F21/55 ,  G06F21/56

Abstract: The disclosure relates to a data processing apparatus. The data processing apparatus may comprise a memory storing a candidate service level response to an intrusion to an operating system having a plurality of operating system services. The data processing apparatus may comprise processing circuitry coupled to the memory. The data processing apparatus may comprise an output coupled to the processing circuitry. It may be that the processing circuitry is to, depending on an alert indicative of the intrusion: select from the memory, for an operating system service of the said plurality of operating systems, the said operating system service being related to the alert, the candidate service level response to the intrusion; and provide a signal to the output depending on the candidate service level response selected in respect of the said operating system service.

公开(公告)号：US20210182393A1

公开(公告)日：2021-06-17

申请号：US16077688

申请日：2018-06-06

Applicant: Hewlett-Packard Development Company, L.P.

Inventor： Ronny Chevalier ,  Guillaume HIET ,  Maugan VILLATEL ,  David Plaquin

IPC: G06F21/56 ,  G06F21/55 ,  G06F17/18

Abstract: A method for monitoring control-flow integrity in a low-level execution environment, the method comprising receiving, at a monitor, a message from the execution environment indicating that the execution environment has entered a controlled mode of operation, receiving, at the monitor, a data packet representing execution of a selected portion of a control-flow process at the execution environment, identifying, using the data packet, a pathway corresponding to the selected portion of the control-flow process from a set of permissible control-flow pathways and determining whether the identified pathway corresponds to an expected control-flow behaviour.

公开(公告)号：US10803176B2

公开(公告)日：2020-10-13

申请号：US16083818

申请日：2016-10-21

Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.

Inventor： Maugan Villatel ,  Boris Balacheff ,  David Plaquin ,  Vali Ali ,  Jeffrey Kevin Jeansonne

IPC: G06F9/00 ,  G06F21/57 ,  G06F9/4401

Abstract: Examples associated with basic input/output system (BiOS) security are described. One example includes detecting a mismatch between an active BiOS setting and a saved BIOS setting. An update previously applied to the active BiOS setting is validated. The update Is applied to the saved BIOS setting creating an updated BIOS setting. The saved BIOS setting is updated when the updated BIOS setting and the active BIOS setting match. The saved BIOS setting is updated to the active BIOS setting. A security action is taken when the updated BiOS setting and the active BiOS setting differ.

公开(公告)号：US09633231B2

公开(公告)日：2017-04-25

申请号：US14754898

申请日：2015-06-30

Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.

Inventor： Maugan Villatel ,  Boris Balacheff ,  Chris I Dalton ,  David Plaquin ,  Adrian Shaw ,  Simon Kai-Ying Shiu

IPC: G06F21/62 ,  G06F21/74 ,  G06F21/53 ,  G06F9/46 ,  G06F17/30

CPC classification number: G06F21/74 ,  G06F9/46 ,  G06F17/30 ,  G06F21/53 ,  G06F21/62 ,  G06F21/6281 ,  G06F21/629

Abstract: A data processing system supporting a secure domain and a non-secure domain comprises a hardware component, and a processor device having operating modes in the secure domain and non-secure domain, the processor device to execute a secure application in the secure domain. The hardware component has a property having a secure state. The property of the hardware component in the secure state may only be reconfigured responsive to instructions received from the secure domain. The secure application is operative to implement a configuration service to configure the property of the hardware component in the secure state, responsive to a request received from the non-secure domain according to an application programming interface associated with the secure application.