专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20120216240A1 PROVIDING DATA SECURITY THROUGH DECLARATIVE MODELING OF QUERIES 审中-公开
标题翻译：通过查询的声明建模来提供数据安全
公开(公告)号：US20120216240A1
公开(公告)日：2012-08-23
申请号：US13029616
申请日：2011-02-17
申请人： Ramakanthachary Gottumukkala , Vijay Kurup , Srinivasan Parthasarathy , Edvardas Budrys , Tanmoy Dutta , Arindam Chatterjee
发明人： Ramakanthachary Gottumukkala , Vijay Kurup , Srinivasan Parthasarathy , Edvardas Budrys , Tanmoy Dutta , Arindam Chatterjee
IPC分类号： G06F17/00
CPC分类号： G06F21/6218
摘要： Data security is implemented through a query based policy constraining a primary table. Nested tables inherit the security policy by implementing the policy queries of the primary table. Operations on nested tables such as join actions execute the security policy queries once due to inheritance from the primary table therefore optimizing query modeling. A security policy may respond to a context or a role by executing queries responsive to the context.
摘要翻译：数据安全性通过限制主表的基于查询的策略实现。嵌套表通过实现主表的策略查询来继承安全策略。因为嵌套表的操作（如连接操作）由于从主表继承而执行安全策略查询，因此优化了查询建模。安全策略可以响应于上下文执行查询来响应上下文或角色。

2. 发明授权

US08683549B2 Secure data storage and retrieval incorporating human participation 有权
标题翻译：安全的数据存储和检索结合人的参与
公开(公告)号：US08683549B2
公开(公告)日：2014-03-25
申请号：US11690685
申请日：2007-03-23
申请人： Arthur H. Baker , Brian J. Guarraci , Andrew Stewart Tucker , Gennady Medvinsky , Tanmoy Dutta
发明人： Arthur H. Baker , Brian J. Guarraci , Andrew Stewart Tucker , Gennady Medvinsky , Tanmoy Dutta
IPC分类号： H04L29/06
CPC分类号： G06F21/31 , H04L9/32
摘要： A computer related security mechanism requires that a human participate in an access verification sequence. Upon a request to access secure data, a puzzle is provided to the requester. Proper solution of the puzzle requires human participation. The puzzle is chosen such that its solution is within the capabilities of a human, but beyond the current state of the art for computer systems. The puzzled can be visually and/or audibly rendered to the user. In one configuration, the puzzle is obtained via a library of pluggable puzzle generators. Puzzle generators in the library can be replaced as the state of the art of computing technology improves.
摘要翻译：计算机相关的安全机制要求人们参与访问验证序列。在请求访问安全数据时，向请求者提供了一个难题。拼图的正确解决需要人类参与。这个难题被选中，使得它的解决方案在人类的能力范围之内，但超越了现有的计算机系统的现状。困惑的可以视觉和/或听觉地呈现给用户。在一个配置中，拼图通过可插拔拼图发生器库获得。随着计算技术的先进水平的提高，图书馆中的拼图发生器可以被替代。

3. 发明授权

US08555069B2 Fast-reconnection of negotiable authentication network clients 有权
标题翻译：快速重新连接可转让认证网络客户端
公开(公告)号：US08555069B2
公开(公告)日：2013-10-08
申请号：US12399615
申请日：2009-03-06
申请人： Liqiang Zhu , Paul J. Leach , Kevin Thomas Damour , David McPherson , Tanmoy Dutta
发明人： Liqiang Zhu , Paul J. Leach , Kevin Thomas Damour , David McPherson , Tanmoy Dutta
IPC分类号： H04L29/06
CPC分类号： H04L9/3271 , H04L9/3234 , H04L63/0428 , H04W12/06
摘要： Modern network communications often require a client application requesting data to authenticate itself to an application providing the data. Such authentication requests can be redundant, especially in the case of stateless network protocols. When a full authentication is performed, a conversation identifier and one or more encryption keys can be agreed upon. Subsequent authentication requests can be answered with a fast reconnect token comprising the conversation identifier and a cryptographically signed version of it using the one or more encryption keys. Should additional security be desirable, a sequence number can be established and incremented in a pre-determined or a random manner to enable detection of replayed fast reconnect tokens. If the recipient can verify the fast reconnect token, the provider can be considered to have been authenticated based on the prior authentication. If an aspect of the fast re-authentication should fail, recourse can be had to the original full authentication process.
摘要翻译：现代网络通信通常需要客户端应用程序请求数据对提供数据的应用程序进行身份验证。这种认证请求可以是冗余的，特别是在无状态网络协议的情况下。当执行完整认证时，可以同意会话标识符和一个或多个加密密钥。随后的认证请求可以用包括会话标识符的快速重新连接令牌和使用该一个或多个加密密钥的加密签名版本来应答。如果需要额外的安全性，则可以以预定或随机的方式建立和递增序列号，以便能够检测重放的快速重新连接令牌。如果收件人可以验证快速重新连接令牌，则可以认为提供商已经根据先前的身份验证进行了身份验证。如果快速重新认证的一个方面应该失败，则可能需要对原始的完整身份验证过程进行追索。

4. 发明授权

US08281368B2 Communicating a password securely 有权
标题翻译：安全地通信密码
公开(公告)号：US08281368B2
公开(公告)日：2012-10-02
申请号：US12038815
申请日：2008-02-28
申请人： Raghavendra Malpani , Cristian Ilac , Tanmoy Dutta , Klaus Schultz
发明人： Raghavendra Malpani , Cristian Ilac , Tanmoy Dutta , Klaus Schultz
IPC分类号： G06F7/04 , G06F15/16 , G06F17/30 , H04L29/06
CPC分类号： G06F21/556
摘要： A secure (e.g., HTTPS) connection is established between a client and a server. Communication over the connection may utilize an application (e.g., a Web browser) that is not part of the client's trusted computing base. A password is sent from the client to the server over the connection such that the clear text password is unavailable to the application. For example, the password can be encrypted and inserted directly into the HTTPS stream from the client's trusted computing base.
摘要翻译：在客户端和服务器之间建立安全（例如HTTPS）连接。通过连接的通信可以利用不是客户机的可信计算基础的一部分的应用（例如，Web浏览器）。密码通过连接从客户端发送到服务器，使得明文密码对应用程序不可用。例如，密码可以被加密并直接从客户端的可信计算基础插入到HTTPS流中。

5. 发明申请

US20110154505A1 UNOBTRUSIVE ASSURANCE OF AUTHENTIC USER INTENT 有权
标题翻译：认证用户信息的全面保证
公开(公告)号：US20110154505A1
公开(公告)日：2011-06-23
申请号：US12645465
申请日：2009-12-22
申请人： Crispin Cowan , Matthew Z. Tamayo-Rios , Tanmoy Dutta , John Lambert , Paul J. Leach , Scott A. Field , Thomas C. Jones
发明人： Crispin Cowan , Matthew Z. Tamayo-Rios , Tanmoy Dutta , John Lambert , Paul J. Leach , Scott A. Field , Thomas C. Jones
IPC分类号： G06F21/22
CPC分类号： G06F21/52 , G06F21/53 , G06F21/62
摘要： Computer-executable instructions that are directed to the performance of consequential actions and automatically elevate to execute at a higher privilege level to do so can perform such consequential actions only after user notification. Doing so can enable monitoring processes to avoid presenting duplicative user notification upon detection of such auto-elevation. In addition, prior to presenting user notification, input from the execution environment can be ignored and access to DLLs for performing consequential actions can be avoided. A static analyzer can identify non-conforming computer-executable instructions. A wrapper can be utilized to provide compliance by otherwise unknown or non-conforming computer-executable instructions.
摘要翻译：针对执行相应操作并自动提升以在较高权限级别执行的计算机可执行指令，只有在用户通知后才能执行此类后续操作。这样做可以实现监控过程，以避免在检测到这种自动升高时呈现重复的用户通知。此外，在呈现用户通知之前，可以忽略来自执行环境的输入，并且可以避免对用于执行相继动作的DLL的访问。静态分析仪可以识别不合格的计算机可执行指令。可以使用包装器来提供否则未知或不合格的计算机可执行指令的符合性。

6. 发明授权

US07711750B1 Systems and methods that specify row level database security 有权
标题翻译：指定行级数据库安全性的系统和方法
公开(公告)号：US07711750B1
公开(公告)日：2010-05-04
申请号：US10903338
申请日：2004-07-30
申请人： Tanmoy Dutta , Girish Chander , James R. Hamilton , Alain C. Comeau
发明人： Tanmoy Dutta , Girish Chander , James R. Hamilton , Alain C. Comeau
IPC分类号： G06F7/00 , G06F17/30
CPC分类号： G06F21/6227 , Y10S707/99933 , Y10S707/99939
摘要： The present invention specifies database security at a row level and, optionally, at a column and table level. The systems and methods cluster one or more sets of rows with similar security characteristics and treat them as a named expression, wherein clustered data is accessed based on associated row-level security. The systems and methods specify a syntax that invokes row(s), column(s) and/or table(s) security via programming statements. Such statements include arbitrary Boolean expressions (predicates) defined over, but not restricted to table columns and/or other contextual data. These statements typically are associated with query initiators, incorporated into queries therefrom, and utilized while querying data. Rows of data that return “true” when evaluated against an aggregate of associated security expressions are said to “satisfy” the security expressions and enable access to the data stored therein. Such security expressions can be created and invoked via the Structured Query Language (SQL) database programming language.
摘要翻译：本发明在行级别和可选地在列和表级别指定数据库安全性。系统和方法集中一组或多组具有相似安全特性的行，并将其视为命名表达式，其中基于关联的行级安全性访问群集数据。系统和方法通过编程语句指定调用行，列和/或表的安全性的语法。这样的语句包括定义在但不限于表列和/或其他上下文数据的任意布尔表达式（谓词）。这些语句通常与查询启动器相关联，并入查询中，并在查询数据时使用。对相对于安全表达式的聚合进行评估时返回“true”的数据行被称为“满足”安全表达式并且能够访问存储在其中的数据。可以通过结构化查询语言（SQL）数据库编程语言创建和调用此类安全表达式。

7. 发明申请

US20090222888A1 COMMUNICATING A PASSWORD SECURELY 有权
标题翻译：传播密码
公开(公告)号：US20090222888A1
公开(公告)日：2009-09-03
申请号：US12038815
申请日：2008-02-28
申请人： Raghavendra Malpani , Cristian Ilac , Tanmoy Dutta , Klaus Schutz
发明人： Raghavendra Malpani , Cristian Ilac , Tanmoy Dutta , Klaus Schutz
IPC分类号： G06F21/00 , H04L9/00
CPC分类号： G06F21/556
摘要： A secure (e.g., HTTPS) connection is established between a client and a server. Communication over the connection may utilize an application (e.g., a Web browser) that is not part of the client's trusted computing base. A password is sent from the client to the server over the connection such that the clear text password is unavailable to the application. For example, the password can be encrypted and inserted directly into the HTTPS stream from the client's trusted computing base.
摘要翻译：在客户端和服务器之间建立安全（例如HTTPS）连接。通过连接的通信可以利用不是客户机的可信计算基础的一部分的应用（例如，Web浏览器）。密码通过连接从客户端发送到服务器，使得明文密码对应用程序不可用。例如，密码可以被加密并直接从客户端的可信计算基础插入到HTTPS流中。

8. 发明申请

US20080059414A1 Encrypted data search 有权
标题翻译：加密数据搜索
公开(公告)号：US20080059414A1
公开(公告)日：2008-03-06
申请号：US11516267
申请日：2006-09-06
申请人： Elena Daniela Cristofor , Laurentiu Bogdan Cristofor , Tanmoy Dutta , Raul Garcia , Sung L. Hsueh
发明人： Elena Daniela Cristofor , Laurentiu Bogdan Cristofor , Tanmoy Dutta , Raul Garcia , Sung L. Hsueh
IPC分类号： G06F17/30
CPC分类号： G06F17/30312 , G06F21/606 , G06F21/6245 , H04L9/3236
摘要： An indexing value may be determined, transparently with respect to a requester, based on a desired plaintext item of data and a cryptographic key. The indexing value may be used to access an entry in an indexing structure to obtain a corresponding database entry which includes a non-deterministically encrypted ciphertext item. In another embodiment, an indexing structure for a database may be accessed. Positions of items of the indexing structure may be based on corresponding plaintext items. References related to the corresponding plaintext items in the indexing structure may be encrypted and other information in the indexing structure may be unencrypted. A portion of the indexing structure may be loaded into a memory and at least one of the encrypted references related to one of the plaintext items may be decrypted. The decrypted reference may be used to access a corresponding non-deterministically encrypted data item from the database.
摘要翻译：基于期望的明文数据项和加密密钥，可以相对于请求者透明地确定索引值。索引值可以用于访问索引结构中的条目以获得包括非确定性加密的密文项目的相应数据库条目。在另一个实施例中，可以访问用于数据库的索引结构。索引结构的项目的位置可以基于相应的明文项目。与索引结构中的相应明文项相关的引用可以被加密，并且索引结构中的其他信息可以是未加密的。索引结构的一部分可以被加载到存储器中，并且与一个明文项目相关的加密引用中的至少一个可以被解密。解密的引用可以用于从数据库访问相应的非确定性加密的数据项。

9. 发明授权

US08850209B2 Schema signing 有权
标题翻译：模式签名
公开(公告)号：US08850209B2
公开(公告)日：2014-09-30
申请号：US11519274
申请日：2006-09-12
申请人： Tanmoy Dutta , Raul Garcia , Steven Richard Gott , Ruslan Pavlovich Ovechkin , Roger Lynn Wolter
发明人： Tanmoy Dutta , Raul Garcia , Steven Richard Gott , Ruslan Pavlovich Ovechkin , Roger Lynn Wolter
IPC分类号： H04L29/06 , H04L9/32
CPC分类号： H04L9/321 , H04L9/3247 , H04L2209/80
摘要： In one embodiment, an object in a database schema may be verified as having a valid digital signature associated with a trusted entity. An application may be permitted access to the object of the database schema only when the object of the database schema is verified to have a valid digital signature associated with the trusted entity. In another embodiment, an object in a database schema may be verified as having a digital signature associated with at least one trusted entity. An application may be permitted access to the object of the database schema only when the digital signature for the object is verified to be associated with the at least one trusted entity.
摘要翻译：在一个实施例中，数据库模式中的对象可以被验证为具有与可信实体相关联的有效数字签名。只有当数据库模式的对象被验证为具有与可信实体相关联的有效数字签名时，才允许应用访问数据库模式的对象。在另一实施例中，数据库模式中的对象可被验证为具有与至少一个可信实体相关联的数字签名。只有当对象的数字签名被验证为与至少一个可信实体相关联时，应用才可以被允许访问数据库模式的对象。

10. 发明授权

US08572716B2 Integrating operating systems with content offered by web based entities 有权
公开(公告)号：US08572716B2
公开(公告)日：2013-10-29
申请号：US11789270
申请日：2007-04-23
申请人： Girish Chander , Tanmoy Dutta , Cristian Ilac , Bronislav Kavsan , Ziquan Li , Andreas K. Luther , Gennady Medvinsky , Liquiang Zhu
发明人： Girish Chander , Tanmoy Dutta , Cristian Ilac , Bronislav Kavsan , Ziquan Li , Andreas K. Luther , Gennady Medvinsky , Liquiang Zhu
IPC分类号： H04L29/06
CPC分类号： H04L63/083 , G06F21/335 , H04L63/08 , H04L63/0807 , H04L63/0884 , H04L63/10 , H04L63/123
摘要： Example embodiments are provided for integrating operating systems with content offered by internet based entities.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式