公开(公告)号：US08578201B2

公开(公告)日：2013-11-05

申请号：US13684555

申请日：2012-11-25

Applicant: International Business Machines Corporation

Inventor： Aditya Kumar ,  Kevin Wendzel ,  Alwood P. Williams, III

IPC: G06F1/00 ,  G06F1/04 ,  G06F1/12

CPC classification number: G06F1/14 ,  G06F1/10

Abstract: Method is described for converting received timestamps to a time-recording standard recognized by the receiving computing system. Embodiments of the invention generally include receiving data from an external device that includes a timestamp. If the received data is the first communication from the external device, creating a time base used for converting subsequently received timestamps to a recognized standard. Moreover, the system updates the time base if a counter failure at the external device is detected. When the external device transmits subsequent data, the time base is added to the subsequently received timestamps to convert the subsequent timestamps to a time-recording standard recognized by the computing system.

Abstract translation: 描述了用于将接收的时间戳转换为由接收计算系统识别的时间记录标准的方法。 本发明的实施例通常包括从包括时间戳的外部设备接收数据。 如果接收到的数据是来自外部设备的第一通信，则创建用于将随后接收的时间戳转换为已识别标准的时基。 此外，如果检测到外部设备的计数器故障，系统将更新时基。 当外部设备发送后续数据时，将时基添加到随后接收的时间戳中，以将后续时间戳转换为由计算系统识别的时间记录标准。

公开(公告)号：US20200067912A1

公开(公告)日：2020-02-27

申请号：US16106069

申请日：2018-08-21

Applicant: International Business Machines Corporation

Inventor： Timothy R. Block ,  Elaine R. Palmer ,  Kenneth A. Goldman ,  William E. Hall ,  Hugo M. Krawczyk ,  David D. Sanner ,  Christopher J. Engel ,  Peter A. Sandon ,  Alwood P. Williams, III

IPC: H04L29/06 ,  H04L9/08 ,  G06F9/445 ,  G06F9/455 ,  G06F9/4401

Abstract: A method and computer system for implementing authentication protocol for merging multiple server nodes with trusted platform modules (TPMs) utilizing provisioned node certificates to support concurrent node add and node remove. Each of the multiple server nodes boots an instance of enablement level firmware and extended to a trusted platform module (TPM) on each node as the server nodes are powered up. A hardware secure channel is established between the server nodes for firmware message passing as part of physical configuration of the server nodes to be merged. A shared secret is securely exchanged via the hardware secure channel between the server nodes establishing an initial authentication value shared among all server nodes. All server nodes confirm common security configuration settings and exchange TPM log and platform configuration register (PCR) data to establish common history for future attestation requirements, enabling dynamic changing the server nodes and concurrently adding and removing nodes.

公开(公告)号：US11165766B2

公开(公告)日：2021-11-02

申请号：US16106069

申请日：2018-08-21

Applicant: International Business Machines Corporation

Inventor： Timothy R. Block ,  Elaine R. Palmer ,  Kenneth A. Goldman ,  William E. Hall ,  Hugo M. Krawczyk ,  David D. Sanner ,  Christopher J. Engel ,  Peter A. Sandon ,  Alwood P. Williams, III

IPC: H04L29/06 ,  H04L9/08 ,  G06F9/455 ,  G06F9/4401 ,  G06F9/445

Abstract: A method and computer system for implementing authentication protocol for merging multiple server nodes with trusted platform modules (TPMs) utilizing provisioned node certificates to support concurrent node add and node remove. Each of the multiple server nodes boots an instance of enablement level firmware and extended to a trusted platform module (TPM) on each node as the server nodes are powered up. A hardware secure channel is established between the server nodes for firmware message passing as part of physical configuration of the server nodes to be merged. A shared secret is securely exchanged via the hardware secure channel between the server nodes establishing an initial authentication value shared among all server nodes. All server nodes confirm common security configuration settings and exchange TPM log and platform configuration register (PCR) data to establish common history for future attestation requirements, enabling dynamic changing the server nodes and concurrently adding and removing nodes.