Security state watcher
First Claim
1. A security device for use with a computer system, said computer system comprising a secure functionality, said device comprising:
- a querier requesting a status from said secure functionality of said computer system, operably connected to said computer system; and
a user alerter operably connected to said querier, said user alerter signaling if an unsatisfactory state of said secure functionality is determined, said user alerter further signaling if said querier fails to retrieve said status.
2 Assignments
0 Petitions
Accused Products
Abstract
A security device watches over the secure functionality in a computer system. This “watcher” security device may be integrated within the computer system or may be separate from it. The security device queries the secure functionality to determine whether the state of the secure functionality is acceptable. If no satisfactory state exists, or if no response is received, then a signal is transmitted. The signal may be auditory (a buzzer) or visual (a flashing light) in order to signal to any user that the secure functionality has been compromised. Optionally, human input devices may be disabled, or a monitoring service notified, in conjunction with or in lieu of the signal. If the secure functionality includes a secret shared between the secure functionality and the user, then the security device may signal the secret. For example, where the secret is visual, the security device may display the secret. Where there is more than one element of secure functionality in the computer system, the security device may separately watch and report on more than one element of secure functionality. The security device may also display status information regarding the computer system. Some or all of the security device may be distributed via a trusted distribution infrastructure.
23 Citations
57 Claims
-
1. A security device for use with a computer system, said computer system comprising a secure functionality, said device comprising:
-
a querier requesting a status from said secure functionality of said computer system, operably connected to said computer system; and
a user alerter operably connected to said querier, said user alerter signaling if an unsatisfactory state of said secure functionality is determined, said user alerter further signaling if said querier fails to retrieve said status. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 13, 14, 15, 16, 17, 18, 19, 21, 22, 24, 25, 28, 29, 31, 32, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 46, 47, 48, 49, 50, 52, 53, 54, 55, 56, 57)
-
-
11. The device of 10 which caches answers from the query to the judgment service.
-
12. The device of 10 which allows the user to specify a judgment service to consult, and a level of paranoia to be used in interpreting an answer provided by the judgment service.
- 20. The security device of 17 which disables one of the human input devices by directly signaling said one of the human input devices.
-
30. A method for signaling information to a user regarding the state of a computer system comprising a first secure functionality, said method comprising:
-
querying said computer system for a status for said first secure functionality;
signaling said user with a first signal if no response is received to said query; and
signaling said user if an unsatisfactory response, or no response, is received from said computer system. - View Dependent Claims (33)
-
-
45. A computer-readable medium containing computer executable instructions to signal information to a user regarding the state of a computer system comprising a first secure functionality, said computer-executable instructions to perform acts comprising:
-
querying said computer system for a status for said first secure functionality;
determining whether a response is received to said query;
signaling said user if no response is received to said query, or if an unsatisfactory response is received from said computer system.
-
-
51. A method for providing for the security of a computer system comprising secure functionality, said method comprising:
-
establishing a trusted distribution infrastructure; and
distributing at least a first part of a security device via said trusted distribution infrastructure, where said security device comprises a querier requesting a status from said secure functionality of said computer system, operably connected to said computer system, and a user alerter operably connected to said querier, said user alerter signaling if an unsatisfactory state of said secure functionality is determined, said user alerter further signaling if said querier fails to retrieve said status.
-
Specification