专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20090122988A1 METHOD AND APPARATUS FOR SECURELY REGISTERING HARDWARE AND/OR SOFTWARE COMPONENTS IN A COMPUTER SYSTEM 有权
标题翻译：在计算机系统中安全地注册硬件和/或软件组件的方法和装置
公开(公告)号：US20090122988A1
公开(公告)日：2009-05-14
申请号：US11939416
申请日：2007-11-13
申请人： Christoph L. Schuba , James P. Hughes , Daniel F. Smith
发明人： Christoph L. Schuba , James P. Hughes , Daniel F. Smith
IPC分类号： H04L9/14
CPC分类号： H04L9/0825
摘要： A system that securely registers components in a first system is presented. During operation, the first system receives a request from an intermediary system to obtain configuration information related to the components in the first system. In response to the request, the first system: (1) encrypts configuration information for the first system using a first encryption key; (2) encrypts the first encryption key using a second encryption key; and (3) sends the encrypted configuration information and the encrypted first encryption key to the intermediary system so that the intermediary system can forward the encrypted configuration information and the encrypted first encryption key to the second system, whereby the encrypted configuration information is cryptographically opaque to the intermediary system. Next, the second system uses the configuration information to register the components in the first system.
摘要翻译：介绍了在第一个系统中安全地注册组件的系统。在操作期间，第一系统接收来自中间系统的请求以获得与第一系统中的组件相关的配置信息。响应于该请求，第一系统：（1）使用第一加密密钥加密第一系统的配置信息; （2）使用第二加密密钥加密第一加密密钥; 和（3）将加密的配置信息和加密的第一加密密钥发送到中间系统，使得中间系统可以将加密的配置信息和加密的第一加密密钥转发到第二系统，由此加密的配置信息对于中介制度。接下来，第二系统使用配置信息来注册第一系统中的组件。

2. 发明授权

US08064606B2 Method and apparatus for securely registering hardware and/or software components in a computer system 有权
标题翻译：用于在计算机系统中安全地注册硬件和/或软件组件的方法和装置
公开(公告)号：US08064606B2
公开(公告)日：2011-11-22
申请号：US11939416
申请日：2007-11-13
申请人： Christoph L. Schuba , James P. Hughes , Daniel E. Smith
发明人： Christoph L. Schuba , James P. Hughes , Daniel E. Smith
IPC分类号： H04L9/00 , G06Q30/00 , G06F21/00 , H04L9/14 , H04L29/06 , H04M1/68
CPC分类号： H04L9/0825
摘要： A system that securely registers components in a first system is presented. During operation, the first system receives a request from an intermediary system to obtain configuration information related to the components in the first system. In response to the request, the first system: (1) encrypts configuration information for the first system using a first encryption key; (2) encrypts the first encryption key using a second encryption key; and (3) sends the encrypted configuration information and the encrypted first encryption key to the intermediary system so that the intermediary system can forward the encrypted configuration information and the encrypted first encryption key to the second system, whereby the encrypted configuration information is cryptographically opaque to the intermediary system. Next, the second system uses the configuration information to register the components in the first system.
摘要翻译：介绍了在第一个系统中安全地注册组件的系统。在操作期间，第一系统接收来自中间系统的请求以获得与第一系统中的组件相关的配置信息。响应于该请求，第一系统：（1）使用第一加密密钥加密第一系统的配置信息; （2）使用第二加密密钥加密第一加密密钥; 和（3）将加密的配置信息和加密的第一加密密钥发送到中间系统，使得中间系统可以将加密的配置信息和加密的第一加密密钥转发到第二系统，由此加密的配置信息对于中介制度。接下来，第二系统使用配置信息来注册第一系统中的组件。

3. 发明授权

US08225086B2 Method and apparatus for remotely authenticating a command 有权
标题翻译：用于远程认证命令的方法和装置
公开(公告)号：US08225086B2
公开(公告)日：2012-07-17
申请号：US11939412
申请日：2007-11-13
申请人： Christoph L. Schuba , James P. Hughes
发明人： Christoph L. Schuba , James P. Hughes
IPC分类号： H04L29/06
CPC分类号： H04L9/3271 , G06F21/305 , G06F2221/2115 , H04L63/0823 , H04L63/126 , H04L2209/56
摘要： A system that remotely authenticates a command is presented. During operation, an authentication system receives the command from an intermediary system, wherein the command is to be executed on a target system. Next, the authentication system authenticates the intermediary system. If the intermediary system is successfully authenticated, the authentication system authenticates the command using a private key for the authentication system to produce an authenticated command. Next, the authentication system sends the authenticated command to the intermediary system, thereby enabling the intermediary system to send the authenticated command to the target system so that the target system can use a public key for the authentication system to verify and execute the command.
摘要翻译：呈现远程验证命令的系统。在操作期间，认证系统从中间系统接收命令，其中命令将在目标系统上执行。接下来，认证系统认证中间系统。如果中间系统被成功认证，则认证系统使用认证系统的私钥对命令进行认证，以产生认证命令。接下来，认证系统将认证命令发送给中间系统，由此使得中间系统能够将认证命令发送到目标系统，使得目标系统能够使用认证系统的公钥来验证和执行命令。

4. 发明申请

US20090125715A1 METHOD AND APPARATUS FOR REMOTELY AUTHENTICATING A COMMAND 有权
标题翻译：远程认证命令的方法和设备
公开(公告)号：US20090125715A1
公开(公告)日：2009-05-14
申请号：US11939412
申请日：2007-11-13
申请人： Christoph L. Schuba , James P. Hughes
发明人： Christoph L. Schuba , James P. Hughes
IPC分类号： H04L9/00 , G06F21/00
CPC分类号： H04L9/3271 , G06F21/305 , G06F2221/2115 , H04L63/0823 , H04L63/126 , H04L2209/56
摘要： A system that remotely authenticates a command is presented. During operation, an authentication system receives the command from an intermediary system, wherein the command is to be executed on a target system. Next, the authentication system authenticates the intermediary system. If the intermediary system is successfully authenticated, the authentication system authenticates the command using a private key for the authentication system to produce an authenticated command. Next, the authentication system sends the authenticated command to the intermediary system, thereby enabling the intermediary system to send the authenticated command to the target system so that the target system can use a public key for the authentication system to verify and execute the command.
摘要翻译：呈现远程验证命令的系统。在操作期间，认证系统从中间系统接收命令，其中命令将在目标系统上执行。接下来，认证系统认证中间系统。如果中间系统被成功认证，则认证系统使用认证系统的私钥对命令进行认证，以产生认证命令。接下来，认证系统将认证命令发送给中间系统，由此使得中间系统能够将认证命令发送到目标系统，使得目标系统能够使用认证系统的公钥来验证和执行命令。

5. 发明申请

US20120066518A1 CANISTER-BASED STORAGE SYSTEM SECURITY 审中-公开
标题翻译：基于CANISTER的存储系统安全
公开(公告)号：US20120066518A1
公开(公告)日：2012-03-15
申请号：US13196781
申请日：2011-08-02
申请人： Steven H. McCown , Stephen S. Selkirk , Charles A. Milligan , James P. Hughes , Jacques Debiez
发明人： Steven H. McCown , Stephen S. Selkirk , Charles A. Milligan , James P. Hughes , Jacques Debiez
IPC分类号： G06F12/14
CPC分类号： G06F21/80 , G06F21/62 , G06F21/64 , G06F2221/2115
摘要： Security is provided for a data set stored in a data storage canister. The data set has a data size when received for storage within the canister. At least one data security operation is performed on the received data set to generate secure data having a secure data size that may be different than the set data size. The secure data is stored on at least one data storage device within the canister. Any information about the secure data size is kept from the data producer sending the data set for storage.
摘要翻译：为存储在数据存储罐中的数据集提供安全性。当数据集被接收用于存储在罐内时，数据集具有数据大小。对所接收的数据集执行至少一个数据安全操作以生成具有与所设置的数据大小不同的安全数据大小的安全数据。安全数据存储在罐内的至少一个数据存储装置上。关于安全数据大小的任何信息都保留在数据生成器发送用于存储的数据集中。

6. 发明授权

US08050407B2 Method and system for protecting keys 有权
公开(公告)号：US08050407B2
公开(公告)日：2011-11-01
申请号：US11516885
申请日：2006-09-07
申请人： James P. Hughes , Alexander S. Stewart , Dwayne A. Edling
发明人： James P. Hughes , Alexander S. Stewart , Dwayne A. Edling
IPC分类号： H04L9/00
CPC分类号： H04L9/0822 , H04L9/083 , H04L9/0897 , H04L2209/60
摘要： A method of protecting a media key including obtaining the media key, obtaining an auxiliary key, calculating a split key using the media key and the auxiliary key, encrypting the split key using a wrap key to generate an encrypted split key, assembling the encrypted split key and a communication key to obtain a data bundle, and sending the data bundle to a token, where the media key is extracted from the data bundle on the token to protect data on a storage device.

7. 发明授权

US07814316B1 System, method and data storage device for encrypting data 有权
标题翻译：用于加密数据的系统，方法和数据存储设备
公开(公告)号：US07814316B1
公开(公告)日：2010-10-12
申请号：US11500047
申请日：2006-08-07
申请人： James P. Hughes , Alexander Stewart , Dwayne A. Edling , Gregory S. Toles , Bradley E. Whitney , Benjamin J. Baron , Howard H. Rather , Michael E. Foy , Daniel Dauer
发明人： James P. Hughes , Alexander Stewart , Dwayne A. Edling , Gregory S. Toles , Bradley E. Whitney , Benjamin J. Baron , Howard H. Rather , Michael E. Foy , Daniel Dauer
IPC分类号： H04L29/06
CPC分类号： G06F21/78 , G06F21/72 , G06F2221/2143 , H04L9/0822 , H04L9/0897 , H04L9/32 , H04L63/0464 , H04L63/062 , H04L2209/30
摘要： A data encryption system with encryption integrity verification includes an encryption engine configured to receive an unencrypted data packet and generate an encrypted data packet based at least in part on the unencrypted data packet. The system also includes a decryption engine in electronic communication with the encryption engine, the decryption engine configured to receive the encrypted data packet and generate a decrypted data packet based at least in part on the encrypted data packet. The system further includes a comparator in electronic communication with the encryption engine and the decryption engine, the comparator configured to receive the unencrypted and decrypted data packets, determine whether the unencrypted and decrypted data packets are identical, and present the encrypted data packet as an output when the unencrypted and decrypted data packets are identical.
摘要翻译：具有加密完整性验证的数据加密系统包括被配置为接收未加密数据分组并至少部分地基于未加密的数据分组生成加密数据分组的加密引擎。所述系统还包括与所述加密引擎进行电子通信的解密引擎，所述解密引擎被配置为接收所述加密的数据分组，并且至少部分地基于所述加密的数据分组来生成解密的数据分组。该系统还包括与加密引擎和解密引擎进行电子通信的比较器，比较器被配置为接收未加密和解密的数据分组，确定未加密和解密的数据分组是否相同，并将加密的数据分组作为输出当未加密和解密的数据分组是相同的。

8. 发明授权

US07797751B1 Nonce structure for storage devices 有权
标题翻译：存储设备的随机结构
公开(公告)号：US07797751B1
公开(公告)日：2010-09-14
申请号：US11389835
申请日：2006-03-27
申请人： James P. Hughes , Alexander Stewart , Dwayne A. Edling
发明人： James P. Hughes , Alexander Stewart , Dwayne A. Edling
IPC分类号： G06F15/16
CPC分类号： G06F21/79 , G06F21/64
摘要： A multiple field nonce particularly suited for use in encryption algorithms associated with data storage has at least one field unique to each data storage device to avoid the possibility of the same nonce value being used to store more than one data string. Additional fields may be based on the number of times at least one encryption key is associated with the storage device and on a number assigned to the particular string of data.
摘要翻译：特别适用于与数据存储相关联的加密算法中的多字段随机数具有每个数据存储设备唯一的至少一个字段，以避免使用相同的随机值用于存储多个数据串的可能性。附加字段可以基于至少一个加密密钥与存储设备相关联的次数以及分配给特定字符串数据的号码。

9. 发明授权

US07529784B2 Clustered hierarchical file services 有权
标题翻译：集群分层文件服务
公开(公告)号：US07529784B2
公开(公告)日：2009-05-05
申请号：US11143779
申请日：2005-06-02
申请人： Ravi K. Kavuri , Jon M. Holdman , James P. Hughes , Dale R. Eichel , Randall K. Hewitt
发明人： Ravi K. Kavuri , Jon M. Holdman , James P. Hughes , Dale R. Eichel , Randall K. Hewitt
IPC分类号： G06F12/00 , G06F17/01
CPC分类号： G06F3/0664 , G06F3/0605 , G06F3/0607 , G06F3/0631 , G06F3/0649 , G06F3/0685 , G06F11/1458 , G06F11/1461 , G06F17/30082 , Y10S707/99931 , Y10S707/99943 , Y10S707/99944 , Y10S707/99952 , Y10S707/99953 , Y10S707/99955
摘要： A system for object-based archival data storage includes an object-based storage subsystem having respective data storage devices, at least one file presentation interface that interfaces to client platforms, an administration interface having graphical user interface (GUI) and a command line interface (CLI), a meta data subsystem for storing meta data about files, and includes a virtual file subsystem having a virtual file server (VFS), a policy subsystem, and a scalable interconnect to couple the object-based storage subsystem, the at least one file presentation interface, the administration interface, the meta data subsystem, and the policy subsystem, wherein the policy subsystem provides system rules predetermined by a user for at least one of hash based integrity checking, read-only/write-ability/erase-ability control, and duplicate data treatment corresponding to files and file objects.
摘要翻译：一种用于基于对象的存档数据存储的系统包括：基于对象的存储子系统，其具有各自的数据存储设备，至少一个与客户端平台接口的文件呈现界面，具有图形用户界面（GUI）和命令行界面 CLI），用于存储关于文件的元数据的元数据子系统，并且包括具有虚拟文件服务器（VFS）的虚拟文件子系统，策略子系统和用于耦合基于对象的存储子系统的可伸缩互连，所述至少一个文件呈现界面，管理界面，元数据子系统和策略子系统，其中策略子系统提供由用户预先确定的基于散列的完整性检查，只读/写能力/擦除能力控制和复制对应于文件和文件对象的数据处理。

10. 发明授权

US5842040A Policy caching method and apparatus for use in a communication device based on contents of one data unit in a subset of related data units 失效
标题翻译：基于相关数据单元子集中的一个数据单元的内容在通信设备中使用的策略缓存方法和装置
公开(公告)号：US5842040A
公开(公告)日：1998-11-24
申请号：US666638
申请日：1996-06-18
申请人： James P. Hughes , Steve A. Olson
发明人： James P. Hughes , Steve A. Olson
IPC分类号： H04L12/56 , H04L29/06 , H04Q11/04 , G06F13/42
CPC分类号： H04Q11/0478 , H04L63/0254 , H04L63/20 , H04L2012/5619 , H04L2012/5626 , H04L2012/563 , H04L69/18 , H04L69/22
摘要： A policy caching method for use in a communication device is provided. The communication device determines which instance of protocol data unit (PDU) network policy from a plurality of policies is to be applied to related-received PDUs based on contents of one of the related-received PDUs. Subsequently, policy identification information identifying the instance PDU policy is cached for future application to other of the related-received PDUs. Also, a communication device which implemented this policy caching method is provided.
摘要翻译：提供了一种在通信设备中使用的策略缓存方法。通信设备基于相关接收的PDU中的一个的内容，确定来自多个策略的协议数据单元（PDU）网络策略的哪个实例将应用于相关接收的PDU。随后，识别实例PDU策略的策略识别信息被缓存以供将来应用于相关接收的PDU中的其他PDU。此外，提供了实现该策略缓存方法的通信设备。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式