专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US09106687B1 Mechanism for profiling user and group accesses to content repository 有权
标题翻译：用于对用户和组访问内容存储库的机制
公开(公告)号：US09106687B1
公开(公告)日：2015-08-11
申请号：US13286952
申请日：2011-11-01
申请人： Sanjay Sawhney , Anantharaman Ganesh
发明人： Sanjay Sawhney , Anantharaman Ganesh
IPC分类号： G06F12/14 , G08B23/00 , H04L29/06
CPC分类号： H04L63/1416 , G06F21/316 , H04L12/185 , H04L51/04
摘要： A mechanism for profiling user and group accesses to a content repository is described. The mechanism for profiling accesses may generate baseline profiles and determine if new access behavior deviates from the generated baseline profile. The deviations may be defined in terms of folder and/or user-group distances within a file-system/storage and/or organization hierarchy, respectively. The mechanism also includes an analytics engine for anomaly detection and a recommendation component for recommending access-permissions to files/folders.
摘要翻译：描述用于对用户和组访问内容存储库进行分析的机制。分析访问的机制可能会生成基线配置文件，并确定新的访问行为是否偏离生成的基准配置文件。偏差可以分别根据文件系统/存储和/或组织层次结构中的文件夹和/或用户组距离来定义。该机制还包括用于异常检测的分析引擎和用于推荐对文件/文件夹的访问权限的推荐组件。

2. 发明授权

US08874528B1 Systems and methods for detecting cloud-based data leaks 有权
标题翻译：用于检测基于云的数据泄漏的系统和方法
公开(公告)号：US08874528B1
公开(公告)日：2014-10-28
申请号：US13227873
申请日：2011-09-08
申请人： Deb Banerjee , Sanjay Sawhney , Sharada Sundaram
发明人： Deb Banerjee , Sanjay Sawhney , Sharada Sundaram
IPC分类号： G06F7/00
CPC分类号： G06F21/6227 , G06F17/30306 , G06F2221/2127
摘要： A computer-implemented method for detecting cloud-based data leaks may include (1) identifying a relational database stored on a third-party storage service, the relational database including a plurality of tuples related by an attribute designated for storing contact information, (2) adding at least one deceptive tuple representing an illegitimate contact and including known false contact information stored under the attribute to the relational database, (3) maintaining a data repository identifying the deceptive tuple as containing false contact information, (4) identifying a contact attempt performed by an attempted use of the known false contact information, and then, in response to identifying the contact attempt, and (5) determining, based on the data repository identifying the deceptive tuple as containing false contact information, that an originator of the contact attempt is implicated in a data leak. Various other methods, systems, and computer-readable media are also disclosed.
摘要翻译：用于检测基于云的数据泄漏的计算机实现的方法可以包括：（1）识别存储在第三方存储服务中的关系数据库，所述关系数据库包括与被指定用于存储联系人信息的属性相关的多个元组（2 将至少一个代表非法联系的欺骗性元组添加到该关联数据库中，并将属性下存储的已知虚假联系人信息添加到关系数据库中，（3）将识别欺骗性元组的数据仓库维护为包含虚假联系人信息，（4）通过尝试使用已知的虚假联系人信息，然后响应于识别联系人尝试而执行，以及（5）基于识别欺骗性元组的数据库包含虚假联系人信息来确定联系人的发起者尝试涉及数据泄漏。还公开了各种其它方法，系统和计算机可读介质。

3. 发明授权

US08824677B1 Provably secure and efficient pseudorandom number generation 有权
标题翻译：可靠的高效伪随机数生成
公开(公告)号：US08824677B1
公开(公告)日：2014-09-02
申请号：US12475291
申请日：2009-05-29
申请人： Zulfikar Ramzan , Sanjay Sawhney , Virendra Kumar
发明人： Zulfikar Ramzan , Sanjay Sawhney , Virendra Kumar
IPC分类号： H04L9/06
CPC分类号： H04L9/0869
摘要： A pseudorandom number is generated from a random seed number using a collision-resistant hash function. A iteration input is extracted from the seed number. A hardcore predicate is applied to the iteration input to generate a pseudorandom bit. A pairwise-independent function is identified using a pairwise-independent function identifier extracted from the seed number and applied to the iteration input to produce a randomized iteration input. The collision-resistant hash function is applied to the randomized iteration input to produce a hash result and pad the output. The padded hash result is assigned as the iteration input for the next iteration. The process repeats iteratively and pseudorandom bits are generated using the hardcore predicate in each iteration until a predetermined number of pseudorandom bits are generated. The pseudorandom number is constructed using the generated pseudorandom bits.
摘要翻译：使用防碰撞哈希函数从随机种子号生成伪随机数。从种子号提取迭代输入。硬核谓词应用于迭代输入以生成伪随机位。使用从种子编号提取的并且应用于迭代输入的成对独立函数标识符来识别成对独立函数以产生随机迭代输入。抗冲突散列函数被应用于随机迭代输入以产生散列结果并且填充输出。填充哈希结果被分配为下一次迭代的迭代输入。该过程重复迭代，并且在每次迭代中使用硬核谓词生成伪随机比特，直到生成预定数量的伪随机比特。伪随机数使用生成的伪随机位来构造。

4. 发明授权

US08543861B1 Systems and methods for diagnosing a network configuration of a computing device 有权
标题翻译：用于诊断计算设备的网络配置的系统和方法
公开(公告)号：US08543861B1
公开(公告)日：2013-09-24
申请号：US12753542
申请日：2010-04-02
申请人： Sanjay Sawhney , Anand Kashyap
发明人： Sanjay Sawhney , Anand Kashyap
IPC分类号： G06F11/07
CPC分类号： G06F11/3006 , G06F11/0709 , G06F11/0751 , G06F11/0793 , G06F11/3051 , H04L43/00 , H04L43/50
摘要： A computer-implemented method for diagnosing a network configuration of a computing device is described. A test network configuration is captured. A test network signature is generated from the test network configuration. A label is assigned to the test network signature. A determination is made as to whether the test network signature is labeled as an unsuccessful network signature. If the test network signature is labeled unsuccessful, one or more procedures to change the label are generated.
摘要翻译：描述了用于诊断计算设备的网络配置的计算机实现的方法。捕获测试网络配置。从测试网络配置生成测试网络签名。标签被分配给测试网络签名。确定测试网络签名是否被标记为不成功的网络签名。如果测试网络签名被标记为不成功，则生成一个或多个更改标签的过程。

5. 发明申请

US20110225624A1 Systems and Methods for Providing Network Access Control in Virtual Environments 有权
标题翻译：在虚拟环境中提供网络访问控制的系统和方法
公开(公告)号：US20110225624A1
公开(公告)日：2011-09-15
申请号：US12724414
申请日：2010-03-15
申请人： Sanjay Sawhney , Matthew Conover , Bruce Montague
发明人： Sanjay Sawhney , Matthew Conover , Bruce Montague
IPC分类号： G06F21/00 , G06F9/44
CPC分类号： G06F9/45558 , G06F21/53 , G06F2009/45587
摘要： A computer-implemented method for providing network access control in virtual environments. The method may include: 1) injecting a transient security agent into a virtual machine that is running on a host machine; 2) receiving, from the transient security agent, an indication of whether the virtual machine complies with one or more network access control policies; and 3) controlling network access of the virtual machine based on the indication of whether the virtual machine complies with the one or more network access control policies. Various other methods, systems, and computer-readable media are also disclosed herein.
摘要翻译：一种用于在虚拟环境中提供网络访问控制的计算机实现的方法。该方法可以包括：1）将瞬时安全代理注入到在主机上运行的虚拟机; 2）从瞬态安全代理接收虚拟机是否符合一个或多个网络访问控制策略的指示; 以及3）基于虚拟机是否符合一个或多个网络访问控制策略的指示来控制虚拟机的网络访问。本文还公开了各种其它方法，系统和计算机可读介质。

6. 发明申请

US20050041812A1 Method and system for stateful storage processing in storage area networks 审中-公开
标题翻译：存储区域网状态存储处理方法与系统
公开(公告)号：US20050041812A1
公开(公告)日：2005-02-24
申请号：US10688848
申请日：2003-10-17
申请人： Kumar Sundararajan , Dharmesh Shah , Sanjay Sawhney , Atul Pandit , Aseem Vaid , Richard Moeller
发明人： Kumar Sundararajan , Dharmesh Shah , Sanjay Sawhney , Atul Pandit , Aseem Vaid , Richard Moeller
IPC分类号： H04K1/00 , H04L29/06 , H04L29/08
CPC分类号： H04L63/0428 , H04L63/102 , H04L63/1408 , H04L67/1097
摘要： A system (and methods) for performing a service operation on a Fibre Channel or other like channels. The system has an interface coupled to a Fibre Channel. A classifier is coupled to the interface. The classifier is adapted to receive an initiator frame from the interface. The classifier is adapted to determine header information from the initiator frame and is also adapted to determine source information, destination information, and exchange information from the header information. A flow content addressable memory is coupled to the classifier. The flow content addressable memory is configured to store one or more header information. Each of the one or more header information is associated with a state. The system has a rule content addressable memory coupled to the classifier. The rule content addressable memory is configured to store one of a plurality of policies. A processing module is coupled to the classifier. The processing module is adapted to process an incoming payload associated with the initiator frame and the header information.
摘要翻译：一种用于在光纤通道或其他类似通道上执行服务操作的系统（和方法）。该系统具有耦合到光纤通道的接口。分类器耦合到接口。分类器适于从接口接收发起者帧。分类器适于确定来自发起者帧的报头信息，并且还适于从标题信息确定源信息，目的地信息和交换信息。流内容可寻址存储器耦合到分类器。流内容可寻址存储器被配置为存储一个或多个头信息。一个或多个标题信息中的每一个与状态相关联。该系统具有耦合到分类器的规则内容可寻址存储器。规则内容可寻址存储器被配置为存储多个策略中的一个。处理模块耦合到分类器。处理模块适于处理与发起者帧相关联的传入有效载荷和报头信息。

7. 发明申请

US20050033988A1 Method and system for transparent encryption and authentication of file data protocols over internet protocol 审中-公开
标题翻译：通过互联网协议透明加密和文件数据协议认证的方法和系统
公开(公告)号：US20050033988A1
公开(公告)日：2005-02-10
申请号：US10688204
申请日：2003-10-17
申请人： Ganesan Chandrashekhar , Sanjay Sawhney , Hemant Puri , Aseem Vaid , Dharmesh Shah
发明人： Ganesan Chandrashekhar , Sanjay Sawhney , Hemant Puri , Aseem Vaid , Dharmesh Shah
IPC分类号： H04L9/00 , H04L29/06
CPC分类号： H04L63/0435 , H04L63/08 , H04L63/123
摘要： A method processing one or more files using a security application. The method includes a method processing one or more files using a security application. The method includes connecting the client to a proxy server, which is coupled to one or more NAS servers. The method includes requesting for a file from a client to the proxy server and authenticating a requesting user of the client. The method also includes authorizing the requesting user for the file requested; requesting for the file from the one or more NAS servers after authenticating and authorizing; and requesting for the file from the one or more storage elements. The file is transferred from the one or more storage elements through the NAS server to the proxy server. The method determines header information on the file at the proxy server and identifies a policy based upon the header information at the proxy server. The method also includes processing (e.g., decompressing the file, decrypting the file, and verifying the file) the file according to the policy. The method includes transferring the processed file to the user of the client.
摘要翻译：使用安全应用处理一个或多个文件的方法。该方法包括使用安全应用处理一个或多个文件的方法。该方法包括将客户端连接到代理服务器，代理服务器耦合到一个或多个NAS服务器。该方法包括从客户端向代理服务器请求文件，并验证客户端的请求用户。该方法还包括授权请求用户所请求的文件; 在认证和授权之后，从一个或多个NAS服务器请求文件; 以及从所述一个或多个存储元件请求所述文件。该文件通过NAS服务器从一个或多个存储元件传输到代理服务器。该方法确定代理服务器上的文件的头信息，并根据代理服务器上的头信息识别策略。该方法还包括根据策略处理（例如，解压缩文件，解密文件并验证文件）文件。该方法包括将处理的文件传送到客户端的用户。

8. 发明授权

US06341309B1 Firewall system for quality of service management 失效
标题翻译：防火墙系统为服务质量管理
公开(公告)号：US06341309B1
公开(公告)日：2002-01-22
申请号：US08998314
申请日：1997-12-24
申请人： Aseem Vaid , Sanjay Sawhney
发明人： Aseem Vaid , Sanjay Sawhney
IPC分类号： G06F15173
CPC分类号： H04L43/00 , H04L1/1854 , H04L41/0893 , H04L41/0896 , H04L41/22 , H04L41/5022 , H04L43/0829 , H04L43/0852 , H04L43/087 , H04L43/0888 , H04L47/11 , H04L47/15 , H04L47/20 , H04L47/2441 , H04L47/283 , H04L47/323 , H04L47/70 , H04L47/788 , H04L47/803 , H04L47/805 , H04L47/821 , H04L47/822 , H04L63/0263
摘要： A novel system for a network of computers to improve quality of services using a combination of a bandwidth mangement tool in a firewall. The present system includes, among other elements, a plurality of computers, which are each coupled to each other to form an internal network of computers (e.g., local area network or LAN). The system also includes a server, which has a memory sufficient to store a firewall program. The server is coupled to at least one of the plurality of computers, where the server is also coupled to an outgoing line to a wide area network of computers, which can be, for example, the Intenet. A bandwidth management tool is coupled to or stored in the server, where the bandwidth management tool is capable of monitoring incoming and outgoing information to and from the server.
摘要翻译：一种用于计算机网络的新型系统，其利用防火墙中的带宽管理工具的组合来提高服务质量。除了其他元件之外，本系统还包括多个计算机，每个计算机各自彼此耦合以形成计算机的内部网络（例如，局域网或LAN）。该系统还包括具有足以存储防火墙程序的内存的服务器。服务器耦合到多个计算机中的至少一个计算机，其中服务器还耦合到出口线到计算机的广域网络，其可以是例如Intenet。带宽管理工具耦合到或存储在服务器中，其中，带宽管理工具能够监测来往服务器的进入和离开的信息。

9. 发明授权

US08874522B2 Managing backups of data objects in containers 有权
标题翻译：管理容器中数据对象的备份
公开(公告)号：US08874522B2
公开(公告)日：2014-10-28
申请号：US13285331
申请日：2011-10-31
申请人： Fanglu Guo , Petros Efstathopoulos , Xianbo Zhang , Sanjay Sawhney , Weibao Wu
发明人： Fanglu Guo , Petros Efstathopoulos , Xianbo Zhang , Sanjay Sawhney , Weibao Wu
IPC分类号： G06F17/30 , G06F7/00 , G06F11/14
CPC分类号： G06F11/1448 , G06F11/1451 , G06F11/1469 , G06F2201/81
摘要： Containers that store data objects that were written to those containers during a particular backup are accessed. Then, a subset of the containers is identified; the containers in the subset have less than a threshold number of data objects associated with the particular backup. Data objects that are in containers in that subset and that are associated with the backup are copied to one or more other containers. Those other containers are subsequently used to restore data objects associated with the backup.
摘要翻译：存储在特定备份期间存储写入这些容器的数据对象的容器。然后，识别容器的一个子集; 子集中的容器具有小于阈值数量的与特定备份相关联的数据对象。位于该子集中并与备份关联的容器中的数据对象将复制到一个或多个其他容器。这些其他容器随后用于还原与备份相关联的数据对象。

10. 发明授权

US08762512B1 Providing dynamically shared cloud accounts 有权
标题翻译：提供动态共享的云端帐户
公开(公告)号：US08762512B1
公开(公告)日：2014-06-24
申请号：US13463612
申请日：2012-05-03
申请人： Sharada Sundaram , Sanjay Sawhney , Robert Koeten
发明人： Sharada Sundaram , Sanjay Sawhney , Robert Koeten
IPC分类号： G06F15/173
CPC分类号： H04L63/083 , G06F9/5061 , G06F17/30 , G06F21/00 , G06F21/50 , G06F21/604 , G06F21/62 , G06F21/6218 , H04L9/32 , H04L63/04 , H04L63/08 , H04L63/0815 , H04L63/104 , H04L63/105 , H04L63/107 , H04L67/10
摘要： A computing system identifies shared cloud accounts of a cloud that are created for an entity. The computing system resides outside of the cloud. The number of shared cloud accounts is less than a number of entity users that use the cloud. The computing system determines that one of the users is authorized to use any of the shared cloud accounts in response to a determination that identity information of the user is valid. The computing system receives a request from the user to access the cloud and determines whether one of the shared cloud accounts is available to be assigned to the user. The computing system adds the request to a queue based on a determination that none of the shared cloud accounts is available and assigns one of the cloud accounts to the user based on a determination that one of the shared cloud accounts is available.
摘要翻译：计算系统识别为实体创建的云的共享云帐户。计算系统位于云之外。共享云帐户的数量少于使用云的实体用户数。响应于用户的身份信息有效的确定，计算系统确定其中一个用户被授权使用任何共享云帐户。计算系统接收来自用户访问云的请求，并确定共享云帐户中的一个是否可用于分配给用户。计算系统根据一个共享云帐户可用的确定将队列中的请求添加到队列中，并根据一个共享云帐户可用的确定将一个云帐户分配给用户。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式