Isolated computing environment anchored into CPU and motherboard

Description

BACKGROUND

Pay-as-you-go or pay-per-use business models have been used in many areas of commerce, from cellular telephones to commercial Laundromats. In developing a pay-as-you go business, a provider, for example, a cellular telephone provider, offers the use of hardware (a cellular telephone) at a lower-than-market cost in exchange for a commitment to remain a subscriber to their network. In this specific example, the customer receives a cellular phone for little or no money in exchange for signing a contract to become a subscriber for a given period of time. Over the course of the contract, the service provider recovers the cost of the hardware by charging the consumer for using the cellular phone.

The pay-as-you-go business model is predicated on the concept that the hardware provided has little or no value, or use, if disconnected from the service provider. To illustrate, should the subscriber mentioned above cease to pay his or her bill, the service provider deactivates their account, and while the cellular telephone may power up, calls cannot be made or received because the service provider will not allow communication to the cellular telephone. The deactivated phone has no “salvage” value, because the phone will not work elsewhere and the component parts do not have a significant street value. When the account is brought current, the service provider will re-allow use of the device to make calls.

This model works well when the service provider, or other entity taking the financing risk, has a tight control on the use of the hardware. The model does not work well when the hardware has substantial uses outside the service provider's span of control, such as that of a computer, where the computer may be useful whether connected to a service provider network or not. Therefore there is a need to monitor and correct unauthorized configuration of a computer that could move the computer beyond the service provider's span of control.

SUMMARY

According to one aspect of the disclosure, an isolated computing environment may provide for securely storing programs and information used to monitor and enforce policies related to configuration and operation of a computer. The isolated computing environment may have a secure memory, for storing or validating verification and enforcement programs, cryptographic keys and other data requiring limited access. The isolated computing environment may further have a clock or timer and a logic circuit responsive to the clock or timer for activating the verification program. When a state of the computer is determined not to be in compliance with terms required under a pay-per-use or other business agreement, the enforcement program may initiate a sanction, to correct or encourage a user to correct the non-compliant state of the computer.

A method for assembling a computer using an isolated computing environment may include disposing the isolated computing environment on a motherboard of the computer, either directly or indirectly, and may include attaching the isolated computing environment to the motherboard in a manner that irreparably damages the computer if removed. The isolated computing environment may also be tested as part of the assembly process.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a simplified and representative block diagram of a computer;

FIG. 2 is a block diagram of a simplified isolated computing environment; and

FIG. 3 is a flow chart depicting a method of binding an associated device to a computer.

DETAILED DESCRIPTION OF VARIOUS EMBODIMENTS

Although the following text sets forth a detailed description of numerous different embodiments, it should be understood that the legal scope of the description is defined by the words of the claims set forth at the end of this disclosure. The detailed description is to be construed as exemplary only and does not describe every possible embodiment since describing every possible embodiment would be impractical, if not impossible. Numerous alternative embodiments could be implemented, using either current technology or technology developed after the filing date of this patent, which would still fall within the scope of the claims.

It should also be understood that, unless a term is expressly defined in this patent using the sentence “As used herein, the term ‘_{——————}’ is hereby defined to mean . . . ” or a similar sentence, there is no intent to limit the meaning of that term, either expressly or by implication, beyond its plain or ordinary meaning, and such term should not be interpreted to be limited in scope based on any statement made in any section of this patent (other than the language of the claims). To the extent that any term recited in the claims at the end of this patent is referred to in this patent in a manner consistent with a single meaning, that is done for sake of clarity only so as to not confuse the reader, and it is not intended that such claim term by limited, by implication or otherwise, to that single meaning. Finally, unless a claim element is defined by reciting the word “means” and a function without the recital of any structure, it is not intended that the scope of any claim element be interpreted based on the application of 35 U.S.C. §112, sixth paragraph.

Much of the inventive functionality and many of the inventive principles are best implemented with or in software programs or instructions and integrated circuits (ICs) such as application specific ICs. It is expected that one of ordinary skill, notwithstanding possibly significant effort and many design choices motivated by, for example, available time, current technology, and economic considerations, when guided by the concepts and principles disclosed herein will be readily capable of generating such software instructions and programs and ICs with minimal experimentation. Therefore, in the interest of brevity and minimization of any risk of obscuring the principles and concepts in accordance to the present invention, further discussion of such software and ICs, if any, will be limited to the essentials with respect to the principles and concepts of the preferred embodiments.

Many prior art high-value computers, personal digital assistants, organizers and the like may not be suitable for use in a pre-pay or pay-for-use business model without additional security. As discussed above, such equipment may have significant functions apart from those requiring a service provider. For example, a personal computer can be disconnected from a provided Internet service and still be useful for word processing, spreadsheets, etc. In the case where a service provider, for example an Internet service provider or other business entity, underwrites the cost of the personal computer with the expectation of future fees, this “untethered value” creates an opportunity for fraudulent applications and theft. Pre-pay business models, where a user pays in advance for use of a subsidized, high value computing system environment is one example of such a risk for fraud and theft.

FIG. 1 illustrates a computing device in the form of a computer 110. Components of the computer 110 may include, but are not limited to a processing unit 120, a system memory 130, and a system bus 121 that couples various system components including the system memory to the processing unit 120. The system bus 121 may be any of several types of bus structures including a memory bus or memory controller, a peripheral bus, and a local bus using any of a variety of bus architectures. By way of example, and not limitation, such architectures include Industry Standard Architecture (ISA) bus, Micro Channel Architecture (MCA) bus, Enhanced ISA (EISA) bus, Video Electronics Standards Association (VESA) local bus, and Peripheral Component Interconnect (PCI) bus also known as Mezzanine bus.

Computer 110 typically includes a variety of computer readable media. Computer readable media can be any available media that can be accessed by computer 110 and includes both volatile and nonvolatile media, removable and non-removable media. By way of example, and not limitation, computer readable media may comprise computer storage media and communication media. Computer storage media includes volatile and nonvolatile, removable and non-removable media implemented in any method or technology for storage of information such as computer readable instructions, data structures, program modules or other data. Computer storage media includes, but is not limited to, RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, digital versatile disks (DVD) or other optical disk storage, magnetic cassettes, magnetic tape, magnetic disk storage or other magnetic storage devices, or any other medium which can be used to store the desired information and which can accessed by computer 110. Communication media typically embodies computer readable instructions, data structures, program modules or other data in a modulated data signal such as a carrier wave or other transport mechanism and includes any information delivery media. The term “modulated data signal” means a signal that has one or more of its characteristics set or changed in such a manner as to encode information in the signal. By way of example, and not limitation, communication media includes wired media such as a wired network or direct-wired connection, and wireless media such as acoustic, radio frequency, infrared and other wireless media. Combinations of the any of the above should also be included within the scope of computer readable media.

The system memory 130 includes computer storage media in the form of volatile and/or nonvolatile memory such as read only memory (ROM) 131 and random access memory (RAM) 132. A basic input/output system 133 (BIOS), containing the basic routines that help to transfer information between elements within computer 110, such as during start-up, is typically stored in ROM 131. RAM 132 typically contains data and/or program modules that are immediately accessible to and/or presently being operated on by processing unit 120. By way of example, and not limitation, FIG. 1 illustrates operating system 134, application programs 135, other program modules 136, and program data 137.

The computer 110 may also include other removable/non-removable, volatile/nonvolatile computer storage media. By way of example only, FIG. 1 illustrates a hard disk drive 141 that reads from or writes to non-removable, nonvolatile magnetic media, a magnetic disk drive 151 that reads from or writes to a removable, nonvolatile magnetic disk 152, and an optical disk drive 155 that reads from or writes to a removable, nonvolatile optical disk 156 such as a CD ROM or other optical media. Other removable/non-removable, volatile/nonvolatile computer storage media that can be used in the exemplary operating environment include, but are not limited to, magnetic tape cassettes, flash memory cards, digital versatile disks, digital video tape, solid state RAM, solid state ROM, and the like. The hard disk drive 141 is typically connected to the system bus 121 through a non-removable memory interface such as interface 140, and magnetic disk drive 151 and optical disk drive 155 are typically connected to the system bus 121 by a removable memory interface, such as interface 150.

The drives and their associated computer storage media discussed above and illustrated in FIG. 1, provide storage of computer readable instructions, data structures, program modules and other data for the computer 110. In FIG. 1, for example, hard disk drive 141 is illustrated as storing operating system 144, application programs 145, other program modules 146, and program data 147. Note that these components can either be the same as or different from operating system 134, application programs 135, other program modules 136, and program data 137. Operating system 144, application programs 145, other program modules 146, and program data 147 are given different numbers here to illustrate that, at a minimum, they are different copies. A user may enter commands and information into the computer 20 through input devices such as a keyboard 162 and pointing device 161, commonly referred to as a mouse, trackball or touch pad. Other input devices (not shown) may include a microphone, joystick, game pad, satellite dish, scanner, or the like. These and other input devices are often connected to the processing unit 120 through a user input interface 160 that is coupled to the system bus, but may be connected by other interface and bus structures, such as a parallel port, game port or a universal serial bus (USB). A monitor 191 or other type of display device is also connected to the system bus 121 via an interface, such as a video interface 190. In addition to the monitor, computers may also include other peripheral output devices such as speakers 197 and printer 196, which may be connected through an output peripheral interface 190.

The computer 110 may operate in a networked environment using logical connections to one or more remote computers, such as a remote computer 180. The remote computer 180 may be a personal computer, a server, a router, a network PC, a peer device or other common network node, and typically includes many or all of the elements described above relative to the computer 110, although only a memory storage device 181 has been illustrated in FIG. 1. The logical connections depicted in FIG. 1 include a local area network (LAN) 171 and a wide area network (WAN) 173, but may also include other networks. Such networking environments are commonplace in offices, enterprise-wide computer networks, intranets and the Internet.

When used in a LAN networking environment, the computer 110 is connected to the LAN 171 through a network interface or adapter 170. When used in a WAN networking environment, the computer 110 typically includes a modem 172 or other means for establishing communications over the WAN 173, such as the Internet. The modem 172, which may be internal or external, may be connected to the system bus 121 via the user input interface 160, or other appropriate mechanism. In a networked environment, program modules depicted relative to the computer 110, or portions thereof, may be stored in the remote memory storage device. By way of example, and not limitation, FIG. 1 illustrates remote application programs 185 as residing on memory device 181.

The communications connections 170 and 172 allow the device to communicate with other devices. The communications connections 170 and 172 are an example of communication media. The communication media typically embodies computer readable instructions, data structures, program modules or other data in a modulated data signal such as a carrier wave or other transport mechanism and includes any information delivery media. A “modulated data signal” may be a signal that has one or more of its characteristics set or changed in such a manner as to encode information in the signal. By way of example, and not limitation, communication media includes wired media such as a wired network or direct-wired connection, and wireless media such as acoustic, RF, infrared and other wireless media. Computer readable media may include both storage media and communication media.

The isolated computing environment 125, discussed in more detail with respect to FIG. 2 may store and cause execution of programs and data. The isolated computing environment 125 may be deployed and configured to enforce the terms of an agreement between a user of the computer 110 and a service provider with an interest in the computer 110.

The isolated computing environment 125 may be instantiated in more than one manner. When implemented by one or more discrete components, the isolated computing environment 125 may be disposed on the motherboard (not depicted) of the computer. The motherboard may be any circuit interconnect and component mounting base technology suitable for a given application and may range from a fiberglass material, to molded epoxy resin, mylar, ceramic, etc. When the isolated computing environment 125 is disposed on or in the motherboard, the isolated computing environment 125 may be coated in an epoxy or buried beneath interconnect layers or components. Coating or burying the isolated computing environment 125 may serve to increase the difficulty of removing or tampering with the isolated computing environment 125 itself, associated power and ground connections to the isolated computing environment 125 or data and address connections to the isolated computing environment 125. Ideally, the removal or de-lidding of the isolated computing environment 125 causes permanent damage to the motherboard and/or surrounding components and renders the computer 110 inoperable.

Another instantiation of the isolated computing environment 125 may be as depicted in FIG. 1, where the isolated computing environment 125 is incorporated in the processing unit 120. Being so disposed in the processing unit may offer advantages of better access to processing unit registers and monitoring of data sequences as well as improved resistance to physical attacks.

Referring to FIG. 2, a simplified and representative isolated computing environment is discussed and described. The isolated computing environment may be or may be similar to the isolated computing environment 125 introduced above. The isolated computing environment 125 may include a memory 202, a logic circuit 204 and a timer or clock 206. The isolated computing environment 125 may further include a digital signature verification circuit 208. When one-way verification of an external entity is required, for example, verification of a server (not depicted), a random number generator 210 may be a part of the digital signature verification circuit 208. Digital signature technology is well known and hashing, signature verification, symmetric and asymmetric algorithms and their respective keys are not discussed here in detail.

The blocks of the isolated computing environment 125 may be coupled by a bus 212. The bus 212 may be separate from a system or processing unit bus 214 used for external access. Separating the busses may improve security by limiting access to data passed by bus 212. The bus 212 may incorporate security precautions such as balanced data lines to make power attacks on cryptographic keys 216 stored in the memory 202 more difficult.

The memory 202, in addition to storing cryptographic keys 216, may store at least one verification program 218 and at least one enforcement program 220. These programs are discussed in more detail below. Other data 222 may be stored in the memory 202, for example, hash codes and/or other digital signature information associated with known BIOS code or application programs. Another example of data 222 that may be stored in memory 202 is certificate information for verification of downloaded updates to verification programs 218 or enforcement programs 220.

The validation and enforcement programs 218 and 220 are shown stored in the isolated computing environment 125, but may also be stored externally, with a digital signature or hash of the programs stored in the isolated computing environment 125, for example, in the data section 222 of the memory 202. When monitoring or measuring an application program, the isolated computing environment 125 may validate a hash or digital signature of the application program before or during the program's execution. Since the programs 218 and 220 and data stored in memory 202 are part of the security associated with the success of the pay-as-you-go, pay-per-use business model, it may be important that the data be protected from unauthorized access and tampering. Unauthorized access of the memory 202 may be limited using either the logic circuit 204 or the digital signature verification circuit 208 or a combination of the two. The access to the memory may be restricted to processes running a known program code, i.e. a program code trusted by the isolated computing environment 125. The program code may be the validation program 218 or the enforcement program 220. However, other programs may be granted access to the memory 202. For example, an application supporting the management of usage credits or balances may use the memory of the isolated computing environment 125. When repair or maintenance is required, access to the memory 202 may be granted to a service process supported on a networked device having proper credentials in order to effect the repair.

The isolated computing environment 125 may have several functions. One function of the isolated computing environment 125 is to protect itself from unauthorized updates and tampering. Programs and data stored in the isolated computing environment 125 may be injected at the time of manufacture or may be downloaded if correctly signed with the signature authenticated by the isolated computing environment 125 itself. Another function may be to monitor and/or measure the state of the computer 110 to determine if a hack or other unauthorized change in the state of the computer 110 is in process or has occurred. Another aspect of monitoring and measuring may be to support legitimate changes of state of the computer 110 related to functions associated with provisioning resources and hosting secure functions such as an event dispatcher or balance manager. A third function may be to validate current BIOS code and validate updates and extensions to BIOS code. Another function of the isolated computing environment 125 may be to provide a reliable clock or timer both as a source of time for metering programs and expiration dates. The clock or timer may also ensure that the isolated computing environment 125 is routinely granted access to the computer 110 and not “starved” for CPU cycles. Another function may be to enforce sanctions when a non-compliant state is determined in the computer 110.

To protect from unauthorized updates and tampering the memory 202 may be secured. To accomplish this, the memory 202 may be made accessible only to a specific program, for example, an update routine authenticated by a digital signature under the control of a secure operating mode of the computer 110. The memory 202 may be made inaccessible to any program executed by another execution environment such as the operating system or the kernel. The kernel typically runs when the computer 110 is booting. By way of example, x86 processors from Intel™ can be operated in several modes, or rings of execution. Ring 0 is occupied by the kernel, Ring 3 is occupied by the operating system. A third mode SMM/SM (system management mode) is occupied by the BIOS. The program with access to the secure memory 202 may be run in the SMM/SM because it is out of reach of the kernel, but would require securing the BIOS.

Another method of securing the memory 202 may be to create another mode of execution, for example, a Mode Z or Ring −1. The memory 202 may be partitioned according to function such that some areas of memory 202 are only accessible by Mode Z, whereas other areas of memory 202 are read-only from Ring 0. There may be case-specific access to memory 202, such as read access from Ring 0, but only when not in Mode Z. For example, keys 216 may be read-only from Ring 0, but are inaccessible when in Mode Z.

The isolated computing environment 125 may serve to host functions related to provisioning and activating licensed or pay-per-use resources. Such resources may include some or all of the above, for example, network connections 170 and 172, hard disk drive 141, or video interface 190. The isolated computing environment 125 may also host a balance manager that maintains an accounting of pay-per-use resources used and available.

The verification program 218 may monitor or measure a state of the computer 110. The state of the computer 110 may be used to determine the level of compliance of the computer 110 with a set of policies or pre-determined conditions. The pre-determined conditions may be both positive and negative, that is, the policy or condition may require the presence of certain elements, be they hardware, software, peripherals, etc. or the policy may prohibit the presence of certain other elements. For example, one policy may require the presence of a given version of a system driver, while another policy may prohibit the presence of an alternative boot device. To determine compliance, the verification program 218 may monitor the state of a resource used by the operating system, the state of an application program, the state of a BIOS structure or a BIOS extension.

The clock 206 may provide a reliable measure for pay-per-use terms involving periods of time, for example, unlimited use for a month. The clock may also act as a trigger to ensure that the verification and/or enforcement programs 218 and 220 of the isolated computing environment 125 receive enough processor execution cycles to perform their respective tasks. The trigger function may cause the logic circuit 204 to force execution of the verification program 218. The logic circuit may force an interrupt that causes the processing unit to execute from the validation program 218 from the appropriate location.

When the verification program determines non-compliance, a corrective action may instituted. For example, the enforcement program may cause a non-compliant driver to be overwritten with a driver from a known location. Conversely, when the non-compliant state is not automatically correctable, a sanction may be imposed to encourage the user to bring the system into compliance. Sanctions may be invoked by the logic circuit 204 activating the enforcement program 220. To carry out the enforcement task, the isolated computing environment 125, under the direction of the enforcement program, may disable or otherwise sanction resources. The policy may vary according to the state of the computer and may include reducing the processing speed of the computer or reducing the functional operation of the computer, such as booting in “safe mode”. The goal of sanctions is that they be recoverable, and more specifically, be recoverable by the user. However, certain policies may exist that call for disabling the computer 110 to the point that qualified service personnel with special equipment are required to restore service. This may be the case when it is determined that repeated hostile attacks have been attempted over a period of time, despite warnings.

FIG. 3 illustrates a method of assembling a computer 110 having an isolated computing environment 125. Along with other structural elements, a motherboard (not depicted) may be provided 302. The motherboard, as discussed above, may be a standard substrate with wiring traces and landing pads for attaching and connecting circuit components. Bare boards, as well as populated and semi-populated motherboards are readily available in the commercial and retail marketplaces. An isolated computing environment 125 may be disposed 304 on the motherboard. The isolated computing environment 125 may be a discrete component, such as a custom integrated circuit, a combination of components, for example, a multi-chip module (MCM), or fully integrated on the processing unit 120 chip.

When disposed on the motherboard, the isolated computing environment 125 may be protected 306 from tampering. Tamper-resistant mechanisms are known, but may include potting in epoxy and sandwiching underneath other components. To discourage key theft, metal coatings may be applied to prevent laser probing. As discussed above, the isolated computing environment 125 itself may have separate measures to protect the integrity of its own circuitry and contents.

Before or after disposing 304 on the motherboard, the isolated computing environment 125 may be initialized 308 with executable code, such as verification and enforcement program code 218 and 220. The function of the verification and enforcement programs is discussed above. In addition, keys and other data, such as certificates and known hash codes may be downloaded or injected. Injection usually occurs early in the manufacturing process, such as during chip testing. Later downloading may require cryptographic authentication and/or secure channels.

When assembled, the computer 110 may be tested. To perform a test of isolated computing environment 125 function, one or more of the states of the computer may be altered 310. The alteration may include attaching an unauthorized peripheral, loading/executing unauthorized code, or configuring the computer 110 to operate past an expiration date. Testing 312 the isolated computing environment 125 may be done by determining correct function of the verification program 218 to identify the non-compliant state and that appropriate sanctions are imposed by the enforcement program 220.

Claims

1. A computer that is adapted for pay-for-use operation, the computer comprising: a first unsecure memory;a display;a processor operatively coupled to the first unsecure memory and the display;an isolated computing environment that is adapted to communicate with the processor and allow the computer to be used in pay-for-use operations, the isolated computing environment including: a second memory that is different than the first unsecure memory, is operably coupled to the processor, and is inaccessible by unauthorized execution environments on the first unsecure memory, the unauthorized execution environments including at least an operating system of the computer,a verification program stored in the second memory that is coded to monitor the computer, including the operating system, for any of a set of non-compliant conditions, the set of non-compliant conditions relating to pay-for-use operation of the computer, the set of non-compliant conditions comprising presence of a prohibited alternative boot device,a logic circuit that causes execution of the verification program,a clock that: provides the verification program with ensured processor cycles on the processor to monitor the computer; andtriggers the logic circuit to force execution of the verification program via an interrupt that causes the processor to execute the verification program using the ensured processor cycles, andan enforcement program stored in the second memory that is coded to, when the verification program determines the presence of an individual non-compliant condition from the set of non-compliant conditions on the computer, initiate a sanction against a user of the computer by maintaining operation of the computer at a reduced function level until the user corrects the individual non-compliant condition of the computer;wherein the isolated computing environment is further designed to support changes of state of the computer related to functions associated with provisioning resources for the pay-for-use operation;wherein the isolated computing environment is further designed so that the clock provides timing intervals for metering programs and expiration dates related to the pay-for-use operation of the computer; andwherein the isolated computing environment, including the second memory, is disposed on a motherboard that forms a part of the computer and is protected from tampering by unauthorized users of the computer by means of a tamper resistant mechanism.
2. The computer of claim 1, wherein the set of non-compliant conditions relate to a state of the operating system and validity of a basic input/output system (BIOS).
3. The computer of claim 1, wherein the verification program is one of a service and an application.
4. The computer of claim 1, wherein the tamper resistant mechanism comprises epoxy.
5. The computer of claim 1, further comprising a system bus connecting the processor and the first unsecure memory and a second, different bus connecting the second memory to the clock.
6. The computer of claim 1, the second memory being partitioned into a first area and a second area, wherein the first area can only be accessed from a first processor mode and the second area can only be accessed by a second, different processor mode.
7. The computer of claim 6, the first processor mode comprising an x86 ring 0 mode.
8. The computer of claim 1, the set of non-compliant conditions comprising noncompliance with a usage policy relating to contractual terms of a pay-per-use contract for the pay-per-use operation of the computer.

Parent Case Info

This application is a continuation-in-part of co-pending application “Method for pay-as-you-go Computer and Dynamic Differential Pricing,” filed Dec. 8, 2004, U.S. patent application Ser. No. 11/006,837, which is a continuation-in-part of co-pending application, “Method and Apparatus for Provisioning Software,” filed Nov. 15, 2004, U.S. patent application Ser. No. 10/989,122.

US Referenced Citations (322)

Number	Name	Date	Kind
4620150	Germer et al.	Oct 1986	A
4750034	Lem	Jun 1988	A
4817094	Lebizay et al.	Mar 1989	A
4855730	Venners et al.	Aug 1989	A
4855922	Huddleston et al.	Aug 1989	A
4857999	Welsh	Aug 1989	A
4910692	Outram et al.	Mar 1990	A
4967273	Greenberg	Oct 1990	A
5001752	Fischer	Mar 1991	A
5012514	Renton	Apr 1991	A
5249184	Woest et al.	Sep 1993	A
5274368	Breeden et al.	Dec 1993	A
5301268	Takeda	Apr 1994	A
5355161	Bird et al.	Oct 1994	A
5369262	Dvorkis et al.	Nov 1994	A
5442704	Holtey	Aug 1995	A
5459867	Adams et al.	Oct 1995	A
5473692	Davis	Dec 1995	A
5500897	Hartman, Jr.	Mar 1996	A
5513319	Finch et al.	Apr 1996	A
5522040	Hofsass et al.	May 1996	A
5530846	Strong	Jun 1996	A
5563799	Brehmer et al.	Oct 1996	A
5568552	Davis	Oct 1996	A
5671412	Christiano	Sep 1997	A
5710706	Markl et al.	Jan 1998	A
5715403	Stefik	Feb 1998	A
5754763	Bereiter	May 1998	A
5758068	Brandt et al.	May 1998	A
5763832	Anselm	Jun 1998	A
5768382	Schneier et al.	Jun 1998	A
5771354	Crawford	Jun 1998	A
5774870	Storey	Jun 1998	A
5793839	Farris et al.	Aug 1998	A
5802592	Chess et al.	Sep 1998	A
5825883	Archibald et al.	Oct 1998	A
5841865	Sudia	Nov 1998	A
5844986	Davis	Dec 1998	A
5845065	Conte et al.	Dec 1998	A
5883670	Sporer et al.	Mar 1999	A
5925127	Ahmad	Jul 1999	A
5948061	Merriman et al.	Sep 1999	A
5949876	Ginter et al.	Sep 1999	A
5953502	Helbig, Sr.	Sep 1999	A
5983238	Becker et al.	Nov 1999	A
5994710	Knee et al.	Nov 1999	A
6021438	Duvvoori	Feb 2000	A
6026293	Osborn	Feb 2000	A
6061794	Angelo et al.	May 2000	A
6101606	Diersch et al.	Aug 2000	A
6147773	Taylor	Nov 2000	A
6148417	da Silva	Nov 2000	A
6158657	Hall, III et al.	Dec 2000	A
6185678	Arbaugh et al.	Feb 2001	B1
6188995	Garst et al.	Feb 2001	B1
6189146	Misra et al.	Feb 2001	B1
6192392	Ginter	Feb 2001	B1
6219652	Carter et al.	Apr 2001	B1
6223291	Puhl	Apr 2001	B1
6226747	Larsson et al.	May 2001	B1
6230185	Salas et al.	May 2001	B1
6233600	Salas et al.	May 2001	B1
6243439	Arai et al.	Jun 2001	B1
6253224	Brice et al.	Jun 2001	B1
6263431	Lovelace et al.	Jul 2001	B1
6272469	Koritzinsky et al.	Aug 2001	B1
6279156	Amberg et al.	Aug 2001	B1
6286051	Becker et al.	Sep 2001	B1
6289319	Lockwood	Sep 2001	B1
6303924	Adan et al.	Oct 2001	B1
6314408	Salas et al.	Nov 2001	B1
6321335	Chu	Nov 2001	B1
6327652	England et al.	Dec 2001	B1
6330670	England et al.	Dec 2001	B1
6334189	Granger et al.	Dec 2001	B1
6363488	Ginter et al.	Mar 2002	B1
6373047	Adan et al.	Apr 2002	B1
6385727	Cassagnol et al.	May 2002	B1
6408170	Schmidt et al.	Jun 2002	B1
6411941	Mullor et al.	Jun 2002	B1
6441813	Ishibashi	Aug 2002	B1
6442529	Krishan et al.	Aug 2002	B1
6442690	Howard, Jr. et al.	Aug 2002	B1
6463534	Geiger et al.	Oct 2002	B1
6496858	Frailong et al.	Dec 2002	B1
6571216	Garg et al.	May 2003	B1
6585158	Norskog	Jul 2003	B2
6587684	Hsu et al.	Jul 2003	B1
6609201	Folmsbee	Aug 2003	B1
6625729	Angelo et al.	Sep 2003	B1
6646244	Aas et al.	Nov 2003	B2
6664948	Crane et al.	Dec 2003	B2
6671803	Pasieka	Dec 2003	B1
6690556	Smola et al.	Feb 2004	B2
6694000	Ung et al.	Feb 2004	B2
6704873	Underwood	Mar 2004	B1
6708176	Strunk et al.	Mar 2004	B2
6711263	Nordenstam et al.	Mar 2004	B1
6738810	Kramer et al.	May 2004	B1
6763458	Watanabe et al.	Jul 2004	B1
6765470	Shinzaki	Jul 2004	B2
6791157	Casto et al.	Sep 2004	B1
6816809	Circenis	Nov 2004	B2
6816900	Vogel et al.	Nov 2004	B1
6834352	Shin	Dec 2004	B2
6839841	Medvinsky et al.	Jan 2005	B1
6844871	Hinckley et al.	Jan 2005	B1
6847942	Land et al.	Jan 2005	B1
6851051	Bolle et al.	Feb 2005	B1
6868433	Philyaw	Mar 2005	B1
6871283	Zurko et al.	Mar 2005	B1
6920567	Doherty et al.	Jul 2005	B1
6934942	Chilimbi	Aug 2005	B1
6954728	Kusumoto et al.	Oct 2005	B1
6957186	Guheen et al.	Oct 2005	B1
6976162	Ellison et al.	Dec 2005	B1
6983050	Yacobi et al.	Jan 2006	B1
6986042	Griffin	Jan 2006	B2
6990174	Eskelinen	Jan 2006	B2
6993648	Goodman et al.	Jan 2006	B2
7000100	Lacombe et al.	Feb 2006	B2
7000829	Harris et al.	Feb 2006	B1
7054468	Yang	May 2006	B2
7076652	Ginter et al.	Jul 2006	B2
7096469	Kubala et al.	Aug 2006	B1
7097357	Johnson et al.	Aug 2006	B2
7103574	Peinado et al.	Sep 2006	B1
7113912	Stefik et al.	Sep 2006	B2
7121460	Parsons et al.	Oct 2006	B1
7143297	Buchheit et al.	Nov 2006	B2
7162645	Iguchi et al.	Jan 2007	B2
7171539	Mansell et al.	Jan 2007	B2
7174457	England et al.	Feb 2007	B1
7207039	Komarla et al.	Apr 2007	B2
7234144	Wilt et al.	Jun 2007	B2
7236455	Proudler et al.	Jun 2007	B1
7266569	Cutter et al.	Sep 2007	B2
7299358	Chateau et al.	Nov 2007	B2
7353402	Bourne et al.	Apr 2008	B2
7359807	Frank et al.	Apr 2008	B2
7360253	Frank et al.	Apr 2008	B2
7392429	Frank et al.	Jun 2008	B2
7395245	Okamoto et al.	Jul 2008	B2
7406446	Frank et al.	Jul 2008	B2
7421413	Frank et al.	Sep 2008	B2
7441121	Cutter, Jr. et al.	Oct 2008	B2
7441246	Auerbach et al.	Oct 2008	B2
7461249	Pearson et al.	Dec 2008	B1
7464103	Siu	Dec 2008	B2
7490356	Lieblich et al.	Feb 2009	B2
7493487	Phillips et al.	Feb 2009	B2
7494277	Setala	Feb 2009	B2
7519816	Phillips et al.	Apr 2009	B2
7539863	Phillips	May 2009	B2
7540024	Phillips et al.	May 2009	B2
7549060	Bourne et al.	Jun 2009	B2
7562220	Frank et al.	Jul 2009	B2
7565325	Lenard et al.	Jul 2009	B2
7568096	Evans et al.	Jul 2009	B2
7596784	Abrams et al.	Sep 2009	B2
7610631	Frank et al.	Oct 2009	B2
7669056	Frank et al.	Feb 2010	B2
7694153	Ahdout et al.	Apr 2010	B2
7770205	Frank	Aug 2010	B2
7809646	Rose	Oct 2010	B2
7814532	Cromer et al.	Oct 2010	B2
7877607	Circenis et al.	Jan 2011	B2
7891007	Waxman et al.	Feb 2011	B2
7958029	Bobich et al.	Jun 2011	B1
7979721	Westerinen et al.	Jul 2011	B2
20010034711	Tashenberg	Oct 2001	A1
20010056413	Suzuki et al.	Dec 2001	A1
20020002597	Morrell, Jr.	Jan 2002	A1
20020007310	Long	Jan 2002	A1
20020023212	Proudler	Feb 2002	A1
20020046098	Maggio	Apr 2002	A1
20020055906	Katz et al.	May 2002	A1
20020091569	Kitaura et al.	Jul 2002	A1
20020107701	Batty et al.	Aug 2002	A1
20020112171	Ginter et al.	Aug 2002	A1
20020123964	Kramer et al.	Sep 2002	A1
20020124212	Nitschke et al.	Sep 2002	A1
20020129359	Lichner	Sep 2002	A1
20020138549	Urien	Sep 2002	A1
20020141451	Gates et al.	Oct 2002	A1
20020147601	Fagan	Oct 2002	A1
20020147782	Dimitrova et al.	Oct 2002	A1
20020147912	Shmueli et al.	Oct 2002	A1
20020184482	Lacombe et al.	Dec 2002	A1
20020184508	Bialick et al.	Dec 2002	A1
20020193101	McAlinden	Dec 2002	A1
20020194132	Pearson et al.	Dec 2002	A1
20030005135	Inoue et al.	Jan 2003	A1
20030014323	Scheer	Jan 2003	A1
20030027549	Kiel et al.	Feb 2003	A1
20030028454	Ooho et al.	Feb 2003	A1
20030035409	Wang et al.	Feb 2003	A1
20030037246	Goodman et al.	Feb 2003	A1
20030040960	Eckmann	Feb 2003	A1
20030046026	Levy et al.	Mar 2003	A1
20030048473	Rosen	Mar 2003	A1
20030056107	Cammack et al.	Mar 2003	A1
20030084104	Salem et al.	May 2003	A1
20030084278	Cromer et al.	May 2003	A1
20030084337	Simionescu et al.	May 2003	A1
20030084352	Schwartz et al.	May 2003	A1
20030088500	Shinohara et al.	May 2003	A1
20030093694	Medvinsky et al.	May 2003	A1
20030097596	Muratov et al.	May 2003	A1
20030115458	Song	Jun 2003	A1
20030126519	Odorcic	Jul 2003	A1
20030131252	Barton et al.	Jul 2003	A1
20030135380	Lehr et al.	Jul 2003	A1
20030149671	Yamamoto et al.	Aug 2003	A1
20030156572	Hui et al.	Aug 2003	A1
20030156719	Cronce	Aug 2003	A1
20030172376	Coffin, III et al.	Sep 2003	A1
20030185395	Lee et al.	Oct 2003	A1
20030188165	Sutton et al.	Oct 2003	A1
20030196102	McCarroll	Oct 2003	A1
20030196106	Erfani et al.	Oct 2003	A1
20030208338	Challener et al.	Nov 2003	A1
20030208573	Harrison et al.	Nov 2003	A1
20030229702	Hensbergen et al.	Dec 2003	A1
20040001088	Stancil et al.	Jan 2004	A1
20040003288	Wiseman et al.	Jan 2004	A1
20040010440	Lenard et al.	Jan 2004	A1
20040019456	Circenis	Jan 2004	A1
20040023636	Gurel et al.	Feb 2004	A1
20040030912	Merkle, Jr. et al.	Feb 2004	A1
20040034816	Richard	Feb 2004	A1
20040039916	Aldis et al.	Feb 2004	A1
20040039924	Baldwin et al.	Feb 2004	A1
20040054907	Chateau et al.	Mar 2004	A1
20040054908	Circenis et al.	Mar 2004	A1
20040059937	Nakano	Mar 2004	A1
20040064707	McCann et al.	Apr 2004	A1
20040067746	Johnson	Apr 2004	A1
20040073670	Chack et al.	Apr 2004	A1
20040088548	Smetters et al.	May 2004	A1
20040093371	Burrows et al.	May 2004	A1
20040093508	Foerstner et al.	May 2004	A1
20040107359	Kawano et al.	Jun 2004	A1
20040107368	Colvin	Jun 2004	A1
20040123127	Teicher et al.	Jun 2004	A1
20040128251	Adam et al.	Jul 2004	A1
20040133794	Kocher et al.	Jul 2004	A1
20040193919	Dabbish et al.	Sep 2004	A1
20040199769	Proudler	Oct 2004	A1
20040205357	Kuo et al.	Oct 2004	A1
20040220858	Maggio	Nov 2004	A1
20040225894	Colvin	Nov 2004	A1
20040255000	Simionescu et al.	Dec 2004	A1
20050021944	Craft et al.	Jan 2005	A1
20050028000	Bulusu et al.	Feb 2005	A1
20050033747	Wittkotter	Feb 2005	A1
20050039013	Bajikar et al.	Feb 2005	A1
20050050355	Graunke	Mar 2005	A1
20050060388	Tatsumi et al.	Mar 2005	A1
20050065880	Amato et al.	Mar 2005	A1
20050080701	Tunney et al.	Apr 2005	A1
20050091104	Abraham	Apr 2005	A1
20050097204	Horowitz et al.	May 2005	A1
20050102181	Scroggie et al.	May 2005	A1
20050108547	Sakai	May 2005	A1
20050108564	Freeman et al.	May 2005	A1
20050125673	Cheng et al.	Jun 2005	A1
20050129296	Setala	Jun 2005	A1
20050138370	Goud et al.	Jun 2005	A1
20050138389	Catherman et al.	Jun 2005	A1
20050138423	Ranganathan	Jun 2005	A1
20050141717	Cromer et al.	Jun 2005	A1
20050144099	Deb et al.	Jun 2005	A1
20050166051	Buer	Jul 2005	A1
20050182921	Duncan	Aug 2005	A1
20050182940	Sutton	Aug 2005	A1
20050188843	Edlund et al.	Sep 2005	A1
20050203801	Morgenstern et al.	Sep 2005	A1
20050213761	Walmsley et al.	Sep 2005	A1
20050216577	Durham et al.	Sep 2005	A1
20050221766	Brizek et al.	Oct 2005	A1
20050235141	Ibrahim et al.	Oct 2005	A1
20050240533	Cutter et al.	Oct 2005	A1
20050246521	Bade et al.	Nov 2005	A1
20050246525	Bade et al.	Nov 2005	A1
20050246552	Bade et al.	Nov 2005	A1
20050257073	Bade	Nov 2005	A1
20050275866	Corlett	Dec 2005	A1
20050278519	Luebke et al.	Dec 2005	A1
20050279827	Mascavage et al.	Dec 2005	A1
20050286476	Crosswy et al.	Dec 2005	A1
20050289177	Hohmann, II	Dec 2005	A1
20050289343	Tahan	Dec 2005	A1
20060010326	Bade et al.	Jan 2006	A1
20060015717	Liu et al.	Jan 2006	A1
20060015718	Liu et al.	Jan 2006	A1
20060015732	Liu	Jan 2006	A1
20060020784	Jonker et al.	Jan 2006	A1
20060026418	Bade	Feb 2006	A1
20060026419	Arndt et al.	Feb 2006	A1
20060026422	Bade et al.	Feb 2006	A1
20060055506	Nicolas	Mar 2006	A1
20060072748	Buer	Apr 2006	A1
20060074600	Sastry et al.	Apr 2006	A1
20060075014	Tharappel et al.	Apr 2006	A1
20060085634	Jain et al.	Apr 2006	A1
20060085637	Pinkas	Apr 2006	A1
20060089917	Strom et al.	Apr 2006	A1
20060100010	Gatto et al.	May 2006	A1
20060106845	Frank et al.	May 2006	A1
20060106920	Steeb et al.	May 2006	A1
20060156008	Frank et al.	Jul 2006	A1
20060165005	Frank et al.	Jul 2006	A1
20060168664	Frank et al.	Jul 2006	A1
20060206618	Zimmer et al.	Sep 2006	A1
20060213997	Frank et al.	Sep 2006	A1
20060282319	Maggio	Dec 2006	A1
20060282899	Raciborski	Dec 2006	A1
20070033102	Frank et al.	Feb 2007	A1
20070280422	Setala	Dec 2007	A1
20090070454	McKinnon, III et al.	Mar 2009	A1
20120137127	Jain	May 2012	A1

Foreign Referenced Citations (70)

Number	Date	Country
1531673	Sep 2004	CN
0635790	Jan 1995	EP
0843449	May 1998	EP
1061465	Dec 2000	EP
1085396	Mar 2001	EP
1387237	Feb 2004	EP
1429224	Jun 2004	EP
1223722	Aug 2004	EP
1460514	Sep 2004	EP
1233337	Aug 2005	EP
2359969	Sep 2001	GB
2378780	Feb 2003	GB
2378780	Feb 2003	GB
H0535461	Feb 1993	JP
H0635718	Feb 1994	JP
H07036559	Feb 1995	JP
H07141153	Jun 1995	JP
H086729	Jan 1996	JP
H08-054952	Feb 1996	JP
2001526550	May 1997	JP
H09185504	Jul 1997	JP
H9251494	Sep 1997	JP
2000293369	Oct 2000	JP
2001051742	Feb 2001	JP
2003510684	Mar 2001	JP
2001101033	Apr 2001	JP
2003510713	Apr 2001	JP
2001184472	Jul 2001	JP
2001312325	Nov 2001	JP
2001331229	Nov 2001	JP
2001338233	Dec 2001	JP
2002108478	Apr 2002	JP
2002108870	Apr 2002	JP
2002374327	Dec 2002	JP
2003507785	Feb 2003	JP
2003140761	May 2003	JP
2003140762	May 2003	JP
2003157335	May 2003	JP
2003208314	Jul 2003	JP
2003248522	Sep 2003	JP
2003296487	Oct 2003	JP
2004031474	Jan 2004	JP
2004062561	Feb 2004	JP
2004118327	Apr 2004	JP
2004164491	Jun 2004	JP
2004295846	Oct 2004	JP
2004304755	Oct 2004	JP
2007525774	Sep 2007	JP
20010000805	Jan 2001	KR
20020037453	May 2002	KR
20050008439	Jan 2005	KR
20050021782	Mar 2005	KR
WO-9721162	Jun 1997	WO
WO-9811478	Mar 1998	WO
WO-0054126	Sep 2000	WO
WO-0135293	May 2001	WO
WO-0145012	Jun 2001	WO
WO-0163512	Aug 2001	WO
WO-0177795	Oct 2001	WO
WO-0193461	Dec 2001	WO
WO-0208969	Jan 2002	WO
WO-02056155	Jul 2002	WO
WO-02103495	Dec 2002	WO
WO-03009115	Jan 2003	WO
WO-03030434	Apr 2003	WO
WO-03073688	Sep 2003	WO
WO-03107585	Dec 2003	WO
WO-03107588	Dec 2003	WO
WO-2004092886	Oct 2004	WO
WO-2007032974	Mar 2007	WO

Non-Patent Literature Citations (138)

Entry
International Search Report for PCT/US05/40950 mailed Nov. 30, 2006.
Written Opinion for PCT/US05/40950 mailed Nov. 30, 2006.
International Search Report for PCT/US2006/034622 mailed Jan. 16, 2007.
Written Opinion for PCT/US2006/034622 mailed Jan. 16, 2007.
“International Search Report and Written Opinion mailed Apr. 22, 2008”, Application No. PCT/US2007/087960, 7 pages.
Eren, H. et al., “Fringe-Effect Capacitive Proximity Sensors for Tamper Proof Enclosures”, Proceedings of 2005 Sensors for Industry Conference, (Feb. 2005),pp. 22-25.
“International Search Report and Written Opinion mailed Nov. 15, 2004”, Application No. PCT/US05/40966, 9 pages.
Schneier, B. “Applied Cryptography, Second Edition: Protocols, Algorithms, and Source Code in C (cloth)”, (Jan. 1, 1996),13 pages.
Goering, Richard “Web Venture Offers Metered Access to EDA Packages—Startup Winds Clocks by the Hour Tools (E*CAD Will Launch Web Site That Provides Pay-Per-Use and Pay-Per-Hour Access to Range of Chip Design Software)”, Electronic Engineering Times, (Nov. 6, 2000),3 pages.
Zemao, Chen et al., “A Malicious Code Immune Model Based on Program Encryption”, IEEE—Wireless Communication, Networking and Mobile Computing, WICOM '08, 4th International Conference on Oct. 12-14, 2008,(2008),5 pages.
Mufti, Dr. Muid et al., “Design and Implementation of a Secure Mobile IP Protocol”, Networking and Communication, INCC 204, International Conference on Jun. 11-13, 2004,(2004),5 pages.
Davida, George I., et al., “UNIX Guardians: Active User Intervention in Data Protection”, Aerospace Computer Security Applications Conference, Fourth Dec. 12-16, (1988),6 pages.
Morales, Tatiana “Understanding Your Credit Score”, http://www.cbsnews.com/stories/2003/04/29/earlyshow/contributors/raymartin/main55152.shtml retrieved from the Intenet on Apr. 23, 2009,3 pages.
“Achieving Peak Performance: Insights from a Global Survey on Credit Risk and Collections Practices”, GCI Group Pamphlet, (2002, 2004),12 pages.
“Equifax Business Solutions—Manage Your Customers”, Retrieved from the Internet from http://www.equifax.com/sitePages/biz/smallBiz/?sitePage=manage Customers on Oct. 14, 2005, 3 pages.
“Prequalification Using Credit Reports”, Retrieved from the Internet at http://www.credco.com/creditreports/prequalification.htm on Oct. 14, 2005, 2 pages.
Gao, Jerry et al., “Online Advertising—Taxonomy and Engineering Perspectives”, http://www.enqr.sjsu.edu/gaojerry/report/OnlineAdvertising%20.pdf, (2002),33 pages.
Oshiba, Takashi et al., “Personalized Advertisement-Duration Control for Streaming Delivery”, ACM Multimedia, (2002),8 pages.
Yue, Wei T., et al., “The Reward Based Online Shopping Community”, Routledge, vol. 10, No. 4, (Oct. 1, 2000),2 pages.
“International Search Report and Written Opinion mailed Nov. 8, 2007”, Application No. PCT/US05/40967, 5 pages.
“Final Office Action mailed Feb. 7, 2011”, U.S. Appl. No. 11/152,214, 15 pages.
“Non-Final OA Mailed Aug. 30, 2010”, U.S. Appl. No. 11/152,214, 12 pages.
“Final Office Action mailed May 11, 2010”, U.S. Appl. No. 11/152,214, 23 pages.
“Non-Final Office Action mailed Jul. 30, 2009”, U.S. Appl. No. 11/152,214, 17 pages.
“Final Office Action mailed Nov. 18, 2008”, U.S. Appl. No. 11/152,214, 16 pages.
“Non-Final Office Action mailed Apr. 15, 2008”, U.S. Appl. No. 11/152,214, 14 pages.
“Advisory Action mailed Jan. 31, 2011”, U.S. Appl. No. 11/006,837, 3 pages.
“Final Office Action mailed Nov. 18, 2010”, U.S. Appl. No. 11/006,837, 22 pages.
“Non-Final Office Action mailed May 12, 2010”, U.S. Appl. No. 11/006,837, 27 pages.
“Advisory Action mailed Mar. 1, 2010”, U.S. Appl. No. 11/006,837, 3 pages.
“Final Office Action mailed Nov. 10, 2009”, U.S. Appl. No. 11/006,837, 24 pages.
“Non-Final Office Action mailed Apr. 10, 2009”, U.S. Appl. No. 11/006,837, 18 pages.
“Notice of Allowance mailed Jun. 18, 2009”, U.S. Appl. No. 10/989,122, 14 pages.
“Non-Final Office Action mailed Feb. 4, 2009”, U.S. Appl. No. 10/989,122, 13 pages.
“Non-Final Office Action mailed Aug. 6, 2008”, U.S. Appl. No. 10/989,122, 12 pages.
“Non-Final Office Action mailed Jan. 16, 2008”, U.S. Appl. No. 10/989,122, 10 pages.
“Final Office Action mailed Mar. 28, 2007”, U.S. Appl. No. 10/989,122, 22 pages.
Qiao, Daji et al., “MiSer: An Optimal Low-Energy Transmission Strategy for IEEE 802.11 a/h”, obtained from ACM, (Sep. 2003),pp. 161-175.
“Non-Final Office Action mailed Aug. 24, 2006”, U.S. Appl. No. 10/989,122, 20 pages.
“European Search Report”, Mailed Date: Dec. 6, 2010, Application No. EP/05820177, Filed Date: Dec. 7, 2010, pp. 8.
“International Search Report and Written Opinion”, Application Serial No. PCT/US05/40940, 18 pages.
“EP Summons to Attend Oral Proceedings mailed Sep. 27, 2007”, Application No. 05110697.9, 7 pages.
“Decision to Refuse a European Application mailed Feb. 15, 2008”, Application No. 05110697.9, 45 pages.
“International Search Report and Written Opinion mailed Sep. 25, 2007”, Application No. PCT/US06/12811, 10 pages.
“Examiner's First Report mailed Sep. 15, 2009”, AU Application No. 2006220489, 2 pages.
“Notice of Acceptance mailed Jan. 25, 2010”, AU Application No. 2006220489, 2 pages.
“The First Office Action mailed Aug. 22, 2008”, CN Application No. 200680006199.2, 23 pages.
“The Second Office Action mailed Feb. 20, 2009”, CN Application No. 200680006199.2, 9 pages.
“The Fourth Office Action mailed Jan. 8, 2010”, CN Application No. 200680006199.2, 10 pages.
“The Fifth Office Action mailed Jul. 14, 2010”, CN Application No. 200680006199.2, 6 pages.
“Notice on Grant of Patent mailed Oct. 20, 2010”, CN Application No. 200680006199.2, 4 pages.
“First Office Action mailed Aug. 21, 2009”, CN Application No. 200680030846.3, 8 pages.
“Notice on the First Office Action mailed Dec. 11, 2009”, CN Application No. 200510127170.7, 16 pages.
“Notice of Rejection mailed Jun. 21, 2011”, JP Application No. 2005-330496, 6 pages.
“The Third Office Action mailed Jun. 5, 2009”, CN Application No. 200680006199.2, 7 pages.
“Notice of Rejection mailed Sep. 9, 2011”, JP Application No. 2007-548385, 9 pages.
Lampson, Butler et al., “Authentication in Distributed Systems: Theory and Practice”, ACM Transactions on Computer Systems, v10, 265,(1992),18 pages.
“DMOD WorkSpace OEM Unique Features”, www.dmod.com/oem—features, Retrieved from the Internet on Jan. 12, 2005,3 pages.
“Office Action mailed Jun. 29, 2009”, Mexican Application No. MX/a/2007/005657, 2 pages.
“Search Report Dated Jan. 11, 2008”, EP Application No. 05820090.8, 7 pages.
“Examination Report mailed Mar. 5, 2008”, EP Application No. 05820090.8, 1 page.
“First Office Action mailed Apr. 11, 2008”, Chinese Application No. 200580038813.9, 11 pages.
“Office Action mailed Jun. 29, 2009”, Mexican Application No. MX/a/2007/005656, 6 pages.
“Office Action mailed Nov. 30, 2009”, Mexican Application No. MX/a/2007/005659, 6 pages.
“Second Office Action mailed Dec. 18, 2009”, Chinese Application No. 200580038812.4, 24 pages.
“Third Office Action mailed Apr. 1, 2010”, Chinese Application No. 200580038812.4, 9 pages.
“Notice on Grant of Patent Right for Invention mailed May 5, 2011”, Chinese Application No. 200580038812.4, 4 pages.
“Office Action mailed Jul. 7, 2009”, Mexican Application No. MX/a/2007/005660, 8 pages.
“Extended European Search Report mailed Aug. 13, 2010”, EP Application No. 05823253.9, 7 pages.
“Notice on the First Office Action mailed Sep. 27, 2010”, Chinese Application No. 20050038745.6, 6 pages.
“Office Action mailed Jul. 8, 2009”, Mexican Application No. MX/a/2007/005662, 7 pages.
“Partial Search Report mailed Jul. 23, 2010”, EP Application No. 05821183.0.
“Extended European Search Report mailed Jan. 7, 2011”, EP Application No. 05821183.0, 9 pages.
“Notice of Allowance mailed Dec. 25, 2009”, Chinese Application No. 200580038773.8, 4 pages.
“Office Action mailed Jun. 26, 2009”, Mexican Application No. MX/a/2007/005655, 5 pages.
“Office Action mailed Feb. 9, 2010”, Mexican Application No. MX/a/2007/005855, 6 pages.
“Office Action mailed Sep. 24, 2010”, Mexican Application No. MX/a/2007/005655, 3 pages.
“Office Action mailed Mar. 19, 2010”, EP Application No. 05819896.1, 1 page.
“Office Action mailed Feb. 10, 2010”, Mexican Applicaiton No. MX/a/2007/005656, 5 pages.
“Office Action mailed Oct. 18, 2010”, Mexican Application No. MX/a/2007/005656, 3 pages.
“Notice on the First Office Action mailed Jul. 30, 2010”, Chinese Application No. 200680033207.2, 7 pages.
“Flonix: USB Desktop OS Solutions Provider, http://www.flonix.com”, Retrieved from the Internet Jun. 1, 2005, (Copyright 2004),2 pages.
“Migo by PowerHouse Technologies Group, http://www.4migo.com”, Retrieved from the Internet Jun. 1, 2005, (Copyright 2003),3 pages.
“WebServUSB, http://www.webservusb.com”, Retrieved from the Internet Jun. 1, 2005, (Copyright 2004),16 pages.
“Notice of Rejection mailed Jul. 5, 2011”, Japanese Application No. 2007-541363, 10 pages.
“Notice of Rejection mailed Aug. 5, 2011”, Japanese Patent Application No. 2007-552142, 8 pages.
“Forward Solutions Unveils Industry's Most Advanced Portable Personal Computing System on USB Flash Memory Device”, Proquest, PR Newswire, http://proquest.umi.com/pqdweb?index=20&did=408811931&SrchMode=1&sid=6&Fmt=3, Retrieved from the Internet Feb. 15, 2008,(Sep. 22, 2003),3 pages.
“Office Action mailed May, 26, 2008”, EP Application No. 05109616.2, 5 pages.
“Notice on Division of Application mailed Aug. 8, 2008”, CN Application No. 200510113398.0, (Aug. 8, 2008),2 pages.
“Notice on First Office Action mailed Dec. 12, 2008”, CN Application No. 200510113398.0.
“The Second Office Action mailed Jul. 3, 2009”, CN Application No. 200510113398.0, 7 pages.
“Notice on Proceeding with the Registration Formalities mailed Oct. 23, 2009”, CN Application No. 200510113398.0, 4 pages.
“Examiner's First Report on Application mailed Jun. 4, 2010”, AU Application No. 2005222507, 2 pages.
“Notice of Acceptance mailed Oct. 14, 2010”, AU Application No. 2005222507, 3 pages.
“Decision on Grant of a Patent for Invention mailed Apr. 29, 2010”, Russian Application No. 2005131911, 31 pages.
“TCG Specification Architecture Overview”, Revision 1.2, (Apr. 28, 2004),55 pages.
“International Search Report and Written Opinion mailed Jun. 19, 2007”, PCT Application No. PCT/US05/46091, 11 pages.
“Notice on Grant of Patent Right for Invention mailed Jan. 29, 2010”, CN Application No. 200580040764.2, 4 pages.
“Notice of Rejection mailed Jun. 17, 2011”, Japanese Application No. 2007-541361 3 pages.
“Extended European Search Report mailed Dec. 6, 2010”, EP Application No. 05820177.3, 8 pages.
“Extended European Search Report mailed Jan. 21, 2010”, EP Application No. 05819896.1, 8 pages.
“Office Action mailed May 22, 2009”, Chinese Application No. 200580038771.9, 5 pages.
“Notice of Rejection mailed Jul. 12, 2011”, JP Application No. 2007-541351, 4 pages.
“Notice of Rejection mailed Jul. 22, 2011”, JP Application No. 2007-541362.
“Notice of Rejection mailed Jul. 15, 2011”, JP Application No. 2007-541356, 4 pages.
“Notice of Rejection mailed Jul. 26, 2011”, JP Application No. 2007-541352, 5 pages.
“Notice of Rejection mailed Jul. 22, 2011”, JP Application No. 2007-541355, 4 pages.
“Non-Final Office Action mailed Dec. 12,2011”, U.S. Appl. No. 10/988,907.
“Notice of Allowance mailed Dec. 30, 2011”, U.S. Appl. No. 11/018,095.
“EP Office Action mailed Mar. 8, 2012”, EP Application No. 05109616.2, 6 pages.
“EP Search Report mailed Mar. 8, 2012”, EP Application No. 05109616.2, 6 pages.
“Notice of Rejection mailed Nov. 11, 2011”, Japanese Application No. 2005-301957, 11 pages.
“Extended European Search Report mailed Dec. 21, 2011”, EP Application No. 05854752.2, 7 pages.
“Final Rejection mailed Jan. 17, 2012”, Japan Application No. 2007/552142, 8 pages.
“Office Action mailed Dec. 7, 2011”, JP Application No. 2008-528054, 7 pages.
“International Search Report and Written Opinion”, Application Serial No. PCT/US05/40940, 18 pages, mailed Jun. 18, 2008.
“International Search Report and Written Opinion mailed Apr. 25, 2007”, Application No. PCT/US05/40965, 5 pages.
“International Search Report and Written Opinion mailed Sep. 25, 2006”, Application No. PCT/US05/40949, 7 pages.
“EP Office Action Mailed Nov. 17, 2006”, Application No. 05110697.9, 6 pages.
“EP Office Action mailed Apr. 5, 2007”, Application No. 05110697.9, 5 pages.
“EP Summons to Attend Oral Proceedings mailed Sep. 27, 2007”, Application No.05110697.9, 7 pages.
“Decision to Refuse a European Application mailed Feb. 15, 2008”, Application No.05110697.9, 45 pages.
“International Search Report and Written Opinion mailed Sep. 8, 2006”, Application No. PCT/US05/40942, 20 pages.
“Notice of Preliminary Rejection mailed May 30, 2012”, Korean Patent Application No. 10-2007-7011069, 1 page.
Mois, Dan et al., “Reconfiguration Security for Hardware Agents in Testing”, Automation Quality and Testing Robotics (AQTR), 2010 IEEE International Conference on Volume: 2, (2010), pp. 1-5.
Zhang, Kai et al., “Reconfigurable Security Protection System Based on Net FPGA and Embedded Soft-Core Technology”, Computer Design and Applications (ICCDA), 2010 International Conference on Volume, (2010), pp. V5-540-V5-544.
Ooi, Joo G., et al., “A Proof of Concept on Defending Cold Boot Attack”, Quality Electronic Design, ASQED 2009, 1st Asia Symposium, (2009), pp. 330-335.
Utagawa, Mari et al., “Creation of Card Application by IC Card OS ‘MULTOS’ Which Can Rewrite Application”, Interface, vol. 29, No. 3, ISSN: 0387-9569, CQ Publishing Co. Ltd., (Mar. 1, 2003), pp. 46-55.
“Notice of Rejection mailed Nov. 11, 2011”, Japanese Application No. 2005-301957, 11 pages (in Japanese).
“Final Rejection mailed Jan. 17, 2012”, Japan Application No. 2007-552142, 8 pages (in Japanese).
“Office Action mailed Jul. 4, 2012”, Korean Application No. 10-2007-7012294, 2 pages.
Extended European Search Report; EP Application No. 05851550.3 of Jul. 5, 2012; 6 pages 6.
“Office Action mailed Jun. 8, 2012”, Japanese Application No. 2005-301957, 8 pages.
Nakajima, S; “Do You Really Know It? Basics of Windows2000/XP, Network, 4th Installment, What Is Logon Like?,” Nikkei Windows for IT professionals, Jan. 2004 (No. 82); pp. 116-121; Nikkei Business Publications, Inc., Jan. 1, 2004; ISSN: 1346-8308.
“First Special Feature, Security-oriented Web Application Development, Part 3, Method for Realizing Secure Session Management,” N+I Network Guide, Jan. 2004 (vol. 4, No. 1, Serial No. 32); pp. 47-59; Softbank Publishing Inc., Jan. 1, 2004.
Reexamination U.S. Appl. No. 90/011,186, filed Aug. 25, 2010.
Chinese PT Appln. 200580044294.7; Second Office Action dated Mar. 4, 2013; 7 pages.
Canadian PT Appln. 2,597,231; Office Action dated Jan. 4, 2013; 4 pages.

Related Publications (1)

	Number	Date	Country
	20060107328 A1	May 2006	US

Continuation in Parts (2)

	Number	Date	Country
Parent	11006837	Dec 2004	US
Child	11022493		US
Parent	10989122	Nov 2004	US
Child	11006837		US

Isolated computing environment anchored into CPU and motherboard

Information

Patent Number

Date Filed

Date Issued

Inventors

Original Assignees

Examiners

CPC

US Classifications

Field of Search

US

International Classifications

Abstract