Method of making multi-project chip
US-2024394417-A1 · Nov 28, 2024 · US
Componentized provisioning
US9922210B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9922210-B2 |
| Application number | US-201314051923-A |
| Country | US |
| Kind code | B2 |
| Filing date | Oct 11, 2013 |
| Priority date | Apr 29, 2013 |
| Publication date | Mar 20, 2018 |
| Grant date | Mar 20, 2018 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A provisioning system can separately and independently provision different components for different purposes on a computing platform, and enforce component-specific purposes associated with the use of the individual provisioned components during operation of the platform. Some versions of the provisioning subsystem may operate on a virtualized mobile computing device and networked devices under control of the computing device. In some embodiments, the provisioning subsystem can enforce a desired “purpose” of a provisioned component while simultaneously denying a corresponding “anti-purpose.”
First claim
Opening claim text (preview).
The invention claimed is: 1. A computer-implemented method, comprising: initiating, on a computing device, a trusted computing base for dynamically provisioning a shared component, wherein the shared component is associated with a shared component rule set, wherein the shared component rule set includes a set of permitted operations associated with a purpose, wherein the shared component is associated with one or more prior requests to interact with the shared component, and wherein the one or more prior requests to interact with the shared component are associated with one or more prior usage descriptions; receiving a new request to provision the shared component, wherein the new request includes a new usage description; determining a new purpose associated with the new request, wherein the new purpose is determined using the new usage description; determining a new set of permitted operations associated with the new purpose; updating the shared component rule set with the new set of permitted operations; and dynamically provisioning the shared component using the updated shared component rule set, wherein provisioning the shared component includes facilitating an interface between a domain and the shared component, and wherein the interface includes the new set of permitted operations. 2. The method of claim 1 , further comprising: monitoring the interface between the domain and the shared component for a purpose enforcement trigger. 3. The method of claim 1 , further comprising, facilitating an interface between a second domain and the shared component. 4. The method of claim 1 , further comprising: accessing a purpose ontology; determining a new set of permitted operations using the purpose ontology; and updating the shared component rule set using the new set of permitted operations. 5. The method of claim 1 , further comprising: receiving a shared component rule set update; and updating the shared component rule set using the shared component rule set update. 6. The method of claim 1 , further comprising: authenticating the shared component, wherein the shared component is associated with a trusted owner and a security key. 7. The method of claim 6 , further comprising: authenticating the shared component rule set, wherein the shared component rule set is associated with the trusted owner and the security key. 8. The method of claim 1 , further comprising: determining an anti-purpose associated with the purpose, wherein the anti-purpose is associated with a set of prohibited operations; identifying an anti-purpose rule set associated with the set of prohibited operations; updating the shared component rule set with the set of prohibited operations; and facilitating an update to the interface between the domain and the shared component, wherein the update includes the set of prohibited operations associated with the anti-purpose. 9. The method of claim 1 , wherein the new request includes a purpose trust token, and wherein the purpose trust token includes an authentication credential. 10. The method of claim 9 , further comprising: verifying the purpose trust token prior to provisioning the shared component. 11. The method of claim 1 , wherein the shared component rule set includes a set of permitted operations associated with a shared component resource. 12. The method of claim 1 , wherein the shared component rule set includes a context specific set of permitted operations. 13. The method of claim 1 , wherein the new request includes an instruction to download a new shared component. 14. A computing device, comprising: one or more processors; and a non-transitory computer-readable medium including instructions that, when executed by the one or more processors, cause the one or more processors to perform operations including: initiating, on the computing device, a trusted computing base for dynamically provisioning a shared component, wherein the shared component is associated with a shared component rule set, wherein the shared component rule set includes a set of permitted operations associated with a purpose, wherein the shared component is associated with one or more prior requests to interact with the shared component, and wherein the one or more prior requests to interact with the shared component are associated with one or more prior usage descriptions; receiving a new request to provision the shared component, wherein the new request includes a new usage description; determining a new purpose associated with the new request, wherein the new purpose is determined using the new usage description; determining a new set of permitted operations associated with the new purpose; updating the shared component rule set with the new set of permitted operations; and dynamically provisioning the shared component using the updated shared component rule set, wherein provisioning the shared component includes facilitating an interface between a domain and the shared component, and wherein the interface includes the new set of permitted operations. 15. The computing device of claim 14 , wherein the non-transitory computer-readable medium further comprises instructions that, when executed by the one or more processors, cause the one or more processors to perform operations including: monitoring the interface between the domain and the shared component for a purpose enforcement trigger. 16. The computing device of claim 14 , wherein the non-transitory computer-readable medium further comprises instructions that, when executed by the one or more processors, cause the one or more processors to perform operations including: facilitating an interface between a second domain and the shared component. 17. The computing device of claim 14 , wherein the non-transitory computer-readable medium further comprises instructions that, when executed by the one or more processors, cause the one or more processors to perform operations including: accessing a purpose ontology; determining a new set of permitted operations using the purpose ontology; and updating the shared component rule set using the new set of permitted operations. 18. The computing device of claim 14 , wherein the non-transitory computer-readable medium further comprises instructions that, when executed by the one or more processors, cause the one or more processors to perform operations including: receiving a shared component rule set update; and updating the shared component rule set using the shared component rule set update. 19. The computing device of claim 14 , wherein the non-transitory computer-readable medium further comprises instructions that, when executed by the one or more processors, cause the one or more processors to perform operations including: authenticating the shared component, wherein the shared component is associated with a trusted owner and a security key. 20. The computing device of claim 19 , wherein the non-transitory computer-readable medium further comprises instructions that, when executed by the one or more processors, cause the one or more processors to perform operations including: authenticating the shared component rule set, wherein the shared component rule set is associated with the trusted owner and the security key. 21. The computing device of claim 14 , wherein the non-transitory computer-readable medium further comprises instructions that, when executed by the one or more processors, cause the one or more processors to perform operations incl
Assignees
Inventors
Classifications
Event management; Broadcasting; Multicasting; Notifications · CPC title
Auditing as a secondary aspect · CPC title
Authentication · CPC title
Access security · CPC title
for managing network security; network security policies in general (filtering policies H04L63/0227) · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9922210B2 cover?
- A provisioning system can separately and independently provision different components for different purposes on a computing platform, and enforce component-specific purposes associated with the use of the individual provisioned components during operation of the platform. Some versions of the provisioning subsystem may operate on a virtualized mobile computing device and networked devices under…
- Who is the assignee on this patent?
- Stanford Res Inst Int
- What technology area does this patent fall under?
- Primary CPC classification G06F21/74. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Mar 20 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).