专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20060218406A1 Computer system, storage device, computer software, and storage administrator authentication method 审中-公开
标题翻译：计算机系统，存储设备，计算机软件和存储管理员身份验证方法
公开(公告)号：US20060218406A1
公开(公告)日：2006-09-28
申请号：US11145046
申请日：2005-06-02
申请人： Junji Kinoshita , Masaaki Iwasaki
发明人： Junji Kinoshita , Masaaki Iwasaki
IPC分类号： H04L9/00 , G06F12/14 , H04K1/00 , H04L9/32 , G06F11/30
CPC分类号： G06F21/31 , G06F21/80 , H04L63/08 , H04L63/10 , H04L63/20 , H04L67/1097
摘要： A computer system that can authenticate a user to handle the management of a logical volume and that can restrict logical-volume management operation instructions and management operation objects according to the right given to the user is provided. A computer system includes a computer and a storage device connected to the computer via a network. The computer sends user authentication information so that it is written into a specific area of a specific logical volume of the storage device. The storage device authenticates the user based on the user authentication information stored in the specific area of the specific logical volume.
摘要翻译：提供了一种能够认证用户处理逻辑卷的管理并且可以根据给予用户的权限来限制逻辑卷管理操作指令和管理操作对象的计算机系统。计算机系统包括计算机和经由网络连接到计算机的存储设备。计算机发送用户认证信息，使其被写入存储设备的特定逻辑卷的特定区域。存储设备基于存储在特定逻辑卷的特定区域中的用户认证信息来认证用户。

2. 发明申请

US20080307171A1 SYSTEM AND METHOD FOR INTRUSION PROTECTION OF NETWORK STORAGE 有权
标题翻译：网络存储侵入保护的系统和方法
公开(公告)号：US20080307171A1
公开(公告)日：2008-12-11
申请号：US11761239
申请日：2007-06-11
申请人： Junji Kinoshita , Nobuyuki Osaki
发明人： Junji Kinoshita , Nobuyuki Osaki
IPC分类号： G06F12/14
CPC分类号： G06F3/0637 , G06F3/0622 , G06F3/067 , G06F21/805 , G06F2221/2101
摘要： Protection mechanism is provided for data stored in logical volumes, especially during the time the corresponding host computer is off line. Additionally, integrity check mechanism is provided for logical volume when the host computer is started, so that host computer can detect unauthorized access to its assigned logical volume during off-line period, and execute security check.
摘要翻译：为存储在逻辑卷中的数据提供保护机制，特别是在相应的主机离线时。另外，当主机启动时，为逻辑卷提供了完整性检查机制，使得主机可以在离线期间检测到未分配的对其分配的逻辑卷的访问，并执行安全检查。

3. 发明申请

US20080077752A1 Storage system and audit log management method 审中-公开
标题翻译：存储系统和审计日志管理方法
公开(公告)号：US20080077752A1
公开(公告)日：2008-03-27
申请号：US11641321
申请日：2006-12-18
申请人： Junji Kinoshita
发明人： Junji Kinoshita
IPC分类号： G06F13/00
CPC分类号： G06F11/0775 , G06F11/0727 , G06F11/0787
摘要： The present invention provides a storage system and an audit log management method that achieve the secure and highly-reliable collective storage of audit logs, making easy audit log operation and management possible.A host apparatus sends audit log data for the host apparatus to a storage apparatus via a network, and the storage apparatus writes/reads the audit log data sent from the host apparatus to/from an audit log storage area, consisting of an area for storing audit log data, defined in one or more logical units. This makes it possible to achieve a storage system and an audit log management method that can collectively store audit log data in a secure and highly reliable manner, making audit log operation and management easy.
摘要翻译：本发明提供一种存储系统和审计日志管理方法，其实现了审计日志的安全和可靠的集体存储，使审计日志的操作和管理变得容易。主机装置经由网络将主机装置的审核日志数据发送到存储装置，并且存储装置将从主机装置发送的审核日志数据写入/从审查日志存储区域中，该审核日志数据由存储区域审计日志数据，以一个或多个逻辑单元定义。这样就可以实现一种可以以安全高可靠的方式共同存储审核日志数据的存储系统和审核日志管理方法，从而使审核日志的操作和管理变得容易。

4. 发明申请

US20090276774A1 Access control for virtual machines in an information system 审中-公开
标题翻译：信息系统中虚拟机的访问控制
公开(公告)号：US20090276774A1
公开(公告)日：2009-11-05
申请号：US12149428
申请日：2008-05-01
申请人： Junji Kinoshita
发明人： Junji Kinoshita
IPC分类号： G06F9/455
CPC分类号： G06F21/6218
摘要： An information system includes host computers having virtual machine programs running thereon for generating virtual machines. A storage system in communication with the host computers stores an image file corresponding to each virtual machine running on the host computers. In some embodiments, when the storage system receives an access request to a particular image file corresponding to a particular one of the virtual machines running on one of the host computers, the storage system determines whether the access request is authorized based upon an identifier of the particular virtual machine and a location of the particular virtual machine. In some embodiments, the storage system sends an inquiry to a management computer when determining whether the access request is authorized and, based upon the location of the particular virtual machine and the identifier of the particular virtual machine, the management computer sends a reply as to whether the access request is authorized.
摘要翻译：信息系统包括具有在其上运行的用于生成虚拟机的虚拟机程序的主计算机。与主计算机通信的存储系统存储与在主计算机上运行的每个虚拟机相对应的图像文件。在一些实施例中，当存储系统接收到对应于在其中一个主机计算机上运行的特定虚拟机的特定图像文件的访问请求时，存储系统基于所述主机计算机的标识符来确定访问请求是否被授权特定虚拟机和特定虚拟机的位置。在一些实施例中，当确定访问请求是否被授权时，存储系统向管理计算机发送查询，并且基于特定虚拟机的位置和特定虚拟机的标识符，管理计算机发送关于访问请求是否被授权。

5. 发明申请

US20090013141A1 Information leakage detection for storage systems 审中-公开
标题翻译：存储系统的信息泄露检测
公开(公告)号：US20090013141A1
公开(公告)日：2009-01-08
申请号：US11822131
申请日：2007-07-02
申请人： Junji Kinoshita
发明人： Junji Kinoshita
IPC分类号： G06F12/14
CPC分类号： G06F21/554 , G06F2221/2117
摘要： A storage system compares content of new data received from a host computer with content of existing data already stored in the storage system. If the content of the new data matches the content of the existing data, the storage system determines whether the computer that sent the new data is a registered owner of the new data by determining who the registered owners are of the existing data that has the matching content. If the computer that sent the new data is not a registered owner, unauthorized information sharing is assumed to have taken place. The storage system sends a notification or takes other specified action when the computer that sent the new data is not a registered owner. An administrator or monitoring agent may thus be notified of any unauthorized file sharing or data leakage within the storage system.
摘要翻译：存储系统将从主计算机接收的新数据的内容与已经存储在存储系统中的现有数据的内容进行比较。如果新数据的内容与现有数据的内容相匹配，则存储系统通过确定所登记的所有者是具有匹配的现有数据来确定发送新数据的计算机是否是新数据的注册所有者内容。如果发送新数据的计算机不是注册所有者，则假定未经授权的信息共享已经发生。当发送新数据的计算机不是注册所有者时，存储系统发送通知或采取其他指定的操作。因此，管理员或监视代理可以被通知存储系统内的任何未经授权的文件共享或数据泄漏。

6. 发明申请

US20100042719A1 Content access to virtual machine resource 审中-公开
标题翻译：内容访问虚拟机资源
公开(公告)号：US20100042719A1
公开(公告)日：2010-02-18
申请号：US12222561
申请日：2008-08-12
申请人： Junji Kinoshita
发明人： Junji Kinoshita
IPC分类号： G06F15/16
CPC分类号： G06F3/0665 , G06F3/0605 , G06F3/0664 , G06F3/067 , H04L29/08846 , H04L67/1097
摘要： The storage system extracts virtual machine resource files based on sources of accesses. In one embodiment, a storage system comprises a network attached storage (NAS) device which is connected to a plurality of computer devices via a network. The NAS device is configured, (i) in response to a request to access a virtual machine resource which is recognized by the NAS device through identification information associated with the request as one that does not require content access to the virtual machine resource, to show the virtual machine resource without content access; and (ii) in response to a request to access a virtual machine resource which is recognized by the NAS device through identification information associated with the request as one that requires content access to the virtual machine resource, to show the virtual machine resource with content access.
摘要翻译：存储系统基于访问源提取虚拟机资源文件。在一个实施例中，存储系统包括经由网络连接到多个计算机设备的网络连接存储（NAS）设备。 NAS设备被配置为：（i）响应于通过与该请求相关联的识别信息来识别由NAS设备识别的虚拟机资源的请求，作为不需要对虚拟机资源的内容访问的请求，以显示虚拟机资源无内容访问; 以及（ii）响应于通过与所述请求相关联的识别信息将所述NAS设备识别的虚拟机资源的访问请求作为需要对所述虚拟机资源的内容访问的请求，以显示具有内容访问权的所述虚拟机资源。

7. 发明申请

US20090049236A1 SYSTEM AND METHOD FOR DATA PROTECTION MANAGEMENT FOR NETWORK STORAGE 审中-公开
标题翻译：网络存储数据保护管理系统与方法
公开(公告)号：US20090049236A1
公开(公告)日：2009-02-19
申请号：US11839063
申请日：2007-08-15
申请人： Junji Kinoshita
发明人： Junji Kinoshita
IPC分类号： G06F12/02 , G06F12/14
CPC分类号： H04L63/0428 , G06F3/0605 , G06F3/0631 , G06F3/0637 , G06F3/0689 , G06F21/80 , H04L63/20
摘要： A storage system is defined by multiple hard drives (HDDs) which are divided into several HDD Groups. Each HDD Group consists of one or several HDDs. A storage administrator can set security related attributes to each HDD Group. The storage system may have logical volumes mapped onto corresponding selected HDD Group. When the storage system assigns a logical volume to a host computer, the storage system receives security related requirements for the logical volume from the host computer. The storage system then compares the HDD Groups attributes and to the requirements and assigns an appropriate free space that meets requirements as a logical volume.
摘要翻译：存储系统由被划分成多个HDD组的多个硬盘驱动器（HDD）定义。每个HDD组由一个或多个HDD组成。存储管理员可以将安全相关属性设置为每个HDD组。存储系统可以具有映射到对应的所选HDD组的逻辑卷。当存储系统向主机分配逻辑卷时，存储系统从主机接收与逻辑卷有关的安全性相关要求。然后，存储系统将比较HDD组的属性和要求，并将符合要求的适当可用空间分配为逻辑卷。

8. 发明授权

US07849271B2 System and method for intrusion protection of network storage 有权
标题翻译：网络存储入侵保护的系统和方法
公开(公告)号：US07849271B2
公开(公告)日：2010-12-07
申请号：US11761239
申请日：2007-06-11
申请人： Junji Kinoshita , Nobuyuki Osaki
发明人： Junji Kinoshita , Nobuyuki Osaki
IPC分类号： G06F12/14
CPC分类号： G06F3/0637 , G06F3/0622 , G06F3/067 , G06F21/805 , G06F2221/2101
摘要： Protection mechanism is provided for data stored in logical volumes, especially during the time the corresponding host computer is off line. Additionally, integrity check mechanism is provided for logical volume when the host computer is started, so that host computer can detect unauthorized access to its assigned logical volume during off-line period, and execute security check.
摘要翻译：为存储在逻辑卷中的数据提供保护机制，特别是在相应的主机离线时。另外，当主机启动时，为逻辑卷提供了完整性检查机制，使得主机可以在离线期间检测到未分配的对其分配的逻辑卷的访问，并执行安全检查。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式