专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

61. 发明申请

US20170019377A1 Secure Network Storage 审中-公开
标题翻译：安全网络存储
公开(公告)号：US20170019377A1
公开(公告)日：2017-01-19
申请号：US14799569
申请日：2015-07-14
申请人： Ty Lindteigen , John Curtis
发明人： Ty Lindteigen , John Curtis
IPC分类号： H04L29/06 , H04L9/08
CPC分类号： H04L63/0428 , G06F21/00 , G06F21/6218 , H04L9/006 , H04L9/0816 , H04L63/00 , H04L63/0272 , H04L63/0442 , H04L63/107 , H04L2209/24
摘要： This invention includes apparatus, systems, and methods to secure data in a remote storage device where an end-point device does not have direct access to the storage device to secure the data, or the end-point device does not trust the storage device to adequately secure the data, comprising securing an authenticated communication between the end-point device and a synchronized storage server via a communication network. The synchronized storage server sends the end-point device a notification including the root folder list. The end-point device compares the sent root folder list to a previously stored root folder list in the end-point devices' memory. If the end-point device detects either a new root folder on the synchronized storage server, a change in an existing folder, or deleted content in a folder the end-point device will determine that a change is required to the stored data. Next the end-point device will synchronize with the synchronized storage server and create a new storage list. Finally, the synchronized storage server will send the end-point device a new encrypted folder encryption key which includes the encrypted file contents along with identifying information such as the server name and revision information.
摘要翻译：本发明包括用于在终端设备不直接访问存储设备以保护数据的远程存储设备中保护数据的装置，系统和方法，或者终端设备不信任存储设备充分保护数据，包括通过通信网络确保终端设备和同步存储服务器之间的认证通信。同步存储服务器向端点设备发送包含根文件夹列表的通知。端点设备将发送的根文件夹列表与端点设备内存中之前存储的根文件夹列表进行比较。如果终点设备检测到同步存储服务器上的新根文件夹，则现有文件夹中的更改或文件夹中已删除的内容将终止设备将确定对存储的数据进行更改。接下来，终端设备将与同步存储服务器同步并创建新的存储列表。最后，同步存储服务器将向端点设备发送一个新的加密文件夹加密密钥，其中包括加密的文件内容以及诸如服务器名称和修订信息之类的标识信息。

62. 发明授权

US09544278B2 Using domain name system security extensions in a mixed-mode environment 有权
标题翻译：在混合模式环境中使用域名系统安全扩展
公开(公告)号：US09544278B2
公开(公告)日：2017-01-10
申请号：US14591121
申请日：2015-01-07
申请人： Red Hat, Inc.
发明人： Tomas Hozza , Petr Spacek , Miloslav Trmac , Prasad J. Pandit , Pavel Simerda , Florian Weimer
IPC分类号： G06F7/04 , H04L29/06 , H04L29/12
CPC分类号： H04L63/0442 , H04L61/1511 , H04L61/303 , H04L63/00 , H04L63/126 , H04L63/1466
摘要： A method relates to generating, by a processing device executing a DNS resolver, a first domain name system (DNS) query comprising a DNS request generated from an application executing on the processing device to query a first DNS server serving a first DNS zone connected to the processing device via a public network, receiving, from the first DNS server, a first resource record comprising a DNS answer to the DNS query, a second resource record comprising a digital signature generated by signing the DNS answer with a first private key of the first DNS zone, a third resource record comprising a first public key for verifying the digital signature, and one or more files for validating a chain of trust of the first public key, determining, by the processing device in view of the one or more files, that the chain of trust of the first public key misses at least one of a trust anchor or a link in the chain of trust, and generating a second DNS query comprising the DNS request to query a second DNS server residing in a private network of the processing device.
摘要翻译：一种方法涉及通过执行DNS解析器的处理设备生成第一域名系统（DNS）查询，其包括从在处理设备上执行的应用程序生成的DNS请求，以查询服务于连接到第一DNS区域的第一DNS区域的第一DNS服务器所述处理设备经由公共网络从所述第一DNS服务器接收包括对所述DNS查询的DNS应答的第一资源记录，所述第二资源记录包括通过使用所述DNS第一私钥对所述DNS应答进行签名而生成的数字签名第一DNS区域，包括用于验证数字签名的第一公钥的第三资源记录和用于验证第一公钥的信任链的一个或多个文件，由处理设备鉴于一个或多个文件所述第一公共密钥的信任链丢失所述信任链中的信任锚或链接中的至少一个，并且生成包括所述DNS请求的第二DNS查询以查询秒驻留在处理设备的专用网络中的ond DNS服务器。

63. 发明申请

US20160380868A1 In-Line Network Tap 有权
标题翻译：在线网络点击
公开(公告)号：US20160380868A1
公开(公告)日：2016-12-29
申请号：US14750900
申请日：2015-06-25
申请人： Microsoft Technology Licensing, LLC
发明人： William K Hollis
IPC分类号： H04L12/26 , H04L12/931
CPC分类号： H04L43/12 , H04L43/062 , H04L47/10 , H04L49/40 , H04L63/00 , H04L63/1408
摘要： An in-line network tap includes a network tap chip that is configured to analyze or otherwise process data packets as the data packets are transmitted within a network. The network tap chip can be embedded within a communication cable, such as an Ethernet or USB cable, either within the flexible cable portion of the cable or within a connector on either end of the communication cable. Alternatively, the network tap chip can be embedded within a transceiver. The in-line network tap can perform various processing including monitoring network performance, facilitating remote troubleshooting, data buffering, and intrusion detection and prevention.
摘要翻译：在线网络抽头包括网络抽头芯片，其配置为在网络内传输数据分组时分析或处理数据分组。网络抽头芯片可以嵌入在电缆的柔性电缆部分内的通信电缆中，例如以太网或USB电缆，或者在通信电缆的任一端的连接器内。或者，网络抽头芯片可以嵌入在收发器内。在线网络点击可以执行各种处理，包括监控网络性能，便于远程故障排除，数据缓冲和入侵检测和预防。

64. 发明授权

US09524382B2 System and method for centralizedly controlling server user rights 有权
标题翻译：集中控制服务器用户权限的系统和方法
公开(公告)号：US09524382B2
公开(公告)日：2016-12-20
申请号：US14585268
申请日：2014-12-30
申请人： TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED
发明人： Tang Zhou , Ang Li , Peng Gao
IPC分类号： G06F17/30 , G06F21/30 , H04L29/06 , G06F21/60
CPC分类号： G06F21/30 , G06F21/604 , H04L63/00 , H04L63/10 , H04L63/20
摘要： Methods and systems for centralizedly controlling server user rights are provided herein. In an exemplary method, a first verification server can receive an instruction sent by a control server. The instruction can include a user-right-processing instruction or a user-right-adding instruction. The first verification server can process stored information of user rights in response to the user-right-processing instruction sent by the control server to generate processed information of the user rights, or the first verification server can store newly added information of the user rights in response to the user-right-adding instruction sent by the control server. The first verification server can then synchronize the processed information of the user rights or the newly added information of the user rights with a second verification server. The second verification server can be in a communication connection with the first verification server.
摘要翻译：本文提供了集中控制服务器用户权限的方法和系统。在示例性方法中，第一验证服务器可以接收由控制服务器发送的指令。该指令可以包括用户权利处理指令或用户权利添加指令。第一验证服务器可以响应于控制服务器发送的用户权限处理指令来处理用户权限的存储信息，以生成用户权限的处理信息，或者第一验证服务器可以将新添加的用户权限的信息存储在响应控制服务器发送的用户右移指令。然后，第一验证服务器可以将用户权限的处理信息或用户权限的新添加的信息与第二验证服务器同步。第二验证服务器可以与第一验证服务器进行通信连接。

65. 发明申请

US20160359728A1 NETWORK DESCRIPTION MECHANISMS FOR ANONYMITY BETWEEN SYSTEMS 有权
标题翻译：网络描述系统之间的无关性的机制
公开(公告)号：US20160359728A1
公开(公告)日：2016-12-08
申请号：US14729810
申请日：2015-06-03
申请人： CISCO TECHNOLOGY, INC.
发明人： Domenico Ficara , Davide Cuda , Amine Choukir
IPC分类号： H04L12/721
CPC分类号： H04L45/14 , H04L45/02 , H04L45/04 , H04L63/00
摘要： Techniques are disclosed for exchanging anonymized information between autonomous systems. In one example, a method comprises accessing an eigenvalue, wherein the eigenvalue is based on topology data associated with the first autonomous system; encoding the eigenvalue into a message; and transmitting, by a network element located in the first autonomous system, the message to an external edge router located in the second autonomous system. A further method can comprise receiving, by a network component located in a first autonomous system, a message, wherein the message comprises an eigenvalue and the message is received from an external network element located in a second autonomous system; accessing another other eigenvalue, the another eigenvalue corresponding to an autonomous system different from the first autonomous system; analyzing the another eigenvalue and the eigenvalue; and executing, by the network element, an action based on the analyzing.
摘要翻译：公开了用于在自治系统之间交换匿名信息的技术。在一个示例中，一种方法包括访问特征值，其中特征值基于与第一自治系统相关联的拓扑数据; 将特征值编码成消息; 以及通过位于所述第一自治系统中的网络单元将所述消息发送到位于所述第二自治系统中的外部边缘路由器。另一方法可以包括通过位于第一自治系统中的网络组件接收消息，其中所述消息包括特征值，并且所述消息是从位于第二自治系统中的外部网络元件接收的; 访问另一个特征值，对应于与第一自治系统不同的自治系统的另一个特征值; 分析另一个特征值和特征值; 并且由网元执行基于分析的动作。

66. 发明授权

US09514307B2 Method for producing a secured data object and system 有权
标题翻译：用于生成安全数据对象和系统的方法
公开(公告)号：US09514307B2
公开(公告)日：2016-12-06
申请号：US13911610
申请日：2013-06-06
申请人： cp.media AG
发明人： Olaf Feller , Burkhardt Brennecke
IPC分类号： G06F21/60 , G06F21/64 , H04L9/00 , H04L29/06
CPC分类号： G06F21/60 , G06F21/64 , H04L9/00 , H04L63/00
摘要： A method is provided for producing a secured data object by means of a data processing device. The method includes: generating a data representation value in each case at the end of an interval having a first interval length which is assigned to the data sets of the respective interval of first length, receiving a first time stamp assigned to the respective data representation value, storing the respective data representation value together with the assigned first time stamp, generating an interval representation value in each case at the end of an interval having a second interval length which is greater than the first interval length which is assigned to the data representation values of the respective interval of second length, receiving a second time stamp assigned to the respective interval representation value and storing the respective interval representation value together with the associated second time stamp.
摘要翻译：提供了一种通过数据处理装置产生安全数据对象的方法。该方法包括：在具有分配给第一长度的相应间隔的数据集的第一间隔长度的间隔结束时，在每种情况下生成数据表示值，接收分配给相应数据表示值的第一时间戳将各个数据表示值与所分配的第一时间戳一起存储，在具有大于分配给数据表示值的第一间隔长度的第二间隔长度的间隔结束时，在每个情况下生成间隔表示值接收分配给相应间隔表示值的第二时间标记，并将相应的间隔表示值与相关联的第二时间戳一起存储。

67. 发明申请

US20160344543A1 SECURITY SYSTEM FORMING PART OF A BITCOIN HOST COMPUTER 有权
标题翻译： BITCOIN HOST计算机的安全系统组成部分
公开(公告)号：US20160344543A1
公开(公告)日：2016-11-24
申请号：US14716100
申请日：2015-05-19
申请人： Coinbase, Inc.
发明人： Andrew E. Alness , James Bradley Hudon
IPC分类号： H04L9/08 , G06Q20/06
CPC分类号： H04L9/0819 , G06Q20/065 , G06Q20/3823 , H04L9/0822 , H04L9/085 , H04L9/0863 , H04L63/00
摘要： A key ceremony application creates bundles for custodians encrypted with their passphrases. Each bundle includes master key share. The master key shares are combined to store an operational master key. The operational master key is used for private key encryption during a checkout process. The operational private key is used for private key decryption for transaction signing in a payment process. The bundles further include TLS keys for authenticated requests to create an API key for a web application to communicate with a service and to unfreeze the system after it has been frozen by an administrator.
摘要翻译：密钥仪式应用程序为使用密码加密的保管人创建捆绑包。每个包包括主密钥共享。主密钥共享组合以存储操作主密钥。操作主密钥在结帐过程中用于私钥加密。操作私钥用于私钥解密，用于支付过程中的交易签名。捆绑包还包括用于认证请求的TLS密钥，以创建用于web应用与服务通信的API密钥，并且在系统被管理员冻结之后解冻。

68. 发明申请

US20160337369A1 CONTROLLING USER ACCESS TO CONTENT 审中-公开
标题翻译：控制用户访问内容
公开(公告)号：US20160337369A1
公开(公告)日：2016-11-17
申请号：US14709257
申请日：2015-05-11
申请人： Adobe Systems Incorporated
发明人： Antonio Sanso
IPC分类号： H04L29/06
CPC分类号： H04L63/102 , G06F21/00 , H04L63/00 , H04L63/04 , H04L63/0442 , H04L63/08 , H04L63/0807 , H04L63/0815 , H04L63/0823 , H04L63/10 , H04L67/1097
摘要： Methods and systems for controlling access to content include an authentication process that provides for increased speed by reducing, or eliminating in some cases, steps in the authentication process. In particular, the systems and methods can encode content paths previously authenticated for a particular user into an authentication token. When the user attempts to access one of the top content paths, the systems and methods can verify the user based on the encoded authentication token rather than following a complete authentication process.
摘要翻译：用于控制对内容的访问的方法和系统包括通过在认证过程中减少或消除某些情况下的步骤来提供增加速度的认证过程。特别地，系统和方法可以将先前针对特定用户认证的内容路径编码为认证令牌。当用户尝试访问顶级内容路径之一时，系统和方法可以基于编码的认证令牌来验证用户，而不是完全认证过程。

69. 发明申请

US20160323098A1 System and Method for High-Assurance Data Storage and Processing based on Homomorphic Encryption 有权
标题翻译：基于同态加密的高保证数据存储和处理的系统和方法
公开(公告)号：US20160323098A1
公开(公告)日：2016-11-03
申请号：US14697785
申请日：2015-04-28
申请人： United States Government as represented by the Secretary of the Navy
发明人： Luis Angel D. Bathen
IPC分类号： H04L9/00 , G06F9/455 , H04L9/08
CPC分类号： H04L9/008 , G06F9/45558 , G06F2009/45587 , H04L63/00 , H04L63/0428 , H04L63/06
摘要： A key value storage (KVS) system comprising: a client-side agent configured to encrypt data; three nodes hosted respectively in three cloud service providers, wherein each node comprises: a management node configured to receive encrypted data from the client-side agent, a homomorphic encryption (HE) key manager configured to fetch a public key of a given object in the KVS system, a homomorphic encryption and processing engine configured to execute commands over the encrypted data without decrypting it, a homomorphic memory store, a hypervisor configured to monitor performance of the management node in order to assess the quality of service of the management node; and wherein each node serves on a rotating basis in a master node role, a secondary node role, or a back-up node role, wherein the nodes rotate their roles when the master node's hypervisor detects a reduced quality of service of the master node's management node.
摘要翻译：一种密钥值存储（KVS）系统，包括：被配置为加密数据的客户端代理; 三个节点分别托管在三个云服务提供商中，其中每个节点包括：管理节点，被配置为从客户端代理接收加密的数据;同态加密（HE）密钥管理器，被配置为在所述客户端代理中提取给定对象的公开密钥 KVS系统，被配置为通过加密数据执行命令而不对其进行解密的同态加密和处理引擎，同态存储器存储器，管理程序，被配置为监视管理节点的性能，以便评估管理节点的服务质量; 并且其中每个节点在主节点角色，辅助节点角色或备用节点角色中以旋转为基础进行服务，其中，当主节点的管理程序检测到主节点的管理降低的服务质量时，节点旋转其角色节点。

70. 发明授权

US09467395B2 Cloud computing nodes for aggregating cloud computing resources from multiple sources 有权
标题翻译：用于从多个来源聚合云计算资源的云计算节点
公开(公告)号：US09467395B2
公开(公告)日：2016-10-11
申请号：US13800543
申请日：2013-03-13
申请人： VMware, Inc.
发明人： Rene W. Schmidt , Jan Moeller , Marc Ryan Sweet
IPC分类号： G06F15/173 , H04L12/911 , G06F9/455 , G06F9/50 , H04L29/06 , G06F21/00 , H04L12/24
CPC分类号： H04L47/827 , G06F9/455 , G06F9/45558 , G06F9/5072 , G06F21/00 , G06F21/6281 , G06F2009/4557 , H04L41/5096 , H04L63/00 , H04L63/0272
摘要： A disclosed example method to aggregate resources in a cloud involves receiving a request for a resource at a first tenant application programming interface provider of an internal cloud service. The example method involves using a virtualization platform application programming interface client of the internal cloud service to access the resource when the resource is an internal resource. When the resource is an external resource, a tenant application programming interface client of the internal cloud service is used to send a second request for the resource to a second tenant application programming interface provider of an external cloud service.
摘要翻译：用于汇集云中的资源的公开的示例方法涉及在内部云服务的第一租户应用编程接口提供商处接收对资源的请求。该示例方法涉及当资源是内部资源时，使用内部云服务的虚拟化平台应用编程接口客户端访问资源。当资源是外部资源时，内部云服务的租户应用编程接口客户端被用于向外部云服务的第二租户应用编程接口提供商发送资源的第二请求。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式