专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20140075184A1 TRUST SERVICES FOR SECURING DATA IN THE CLOUD 有权
标题翻译：用于保护云端数据的信托服务
公开(公告)号：US20140075184A1
公开(公告)日：2014-03-13
申请号：US13609945
申请日：2012-09-11
申请人： Irina Gorbach , Venkatesh Krishnan , Andrey Shur , Dmitry Denisov , Lars Kuhtz , Sumalatha Adabala , Roy Peter D'Souza , Michael Entin , Michael Ray Clark , Gitika Aggarwal Saubhasik
发明人： Irina Gorbach , Venkatesh Krishnan , Andrey Shur , Dmitry Denisov , Lars Kuhtz , Sumalatha Adabala , Roy Peter D'Souza , Michael Entin , Michael Ray Clark , Gitika Aggarwal Saubhasik
IPC分类号： H04L29/06
CPC分类号： H04L63/04 , G06F8/61 , G06F17/30197 , G06F21/6218 , G06F2221/2107 , G06F2221/2115 , H04L63/06 , H04L63/20 , H04L2463/062
摘要： Embodiments are directed to securing data in the cloud, securely encrypting data that is to be stored in the cloud and to securely decrypting data accessed from the cloud. In one scenario, an instantiated trust service receives information indicating that a trust server is to be instantiated. The trust service instantiates the trust server, which is configured to store key references and encrypted keys. The trust service receives the public key portion of a digital certificate for each publisher and subscriber that is to have access to various specified portions of encrypted data. A data access policy is then defined that specifies which encrypted data portions can be accessed by which subscribers.
摘要翻译：实施例旨在保护云中的数据，安全地加密要存储在云中的数据，并安全地解密从云访问的数据。在一种情况下，实例化的信任服务接收指示信任服务器被实例化的信息。信任服务实例化信任服务器，该服务器被配置为存储密钥引用和加密密钥。信任服务接收每个发布者和订户的数字证书的公共密钥部分，该用户可以访问加密数据的各种指定部分。然后定义数据访问策略，其指定可由哪个订户访问哪些加密数据部分。

2. 发明授权

US09894040B2 Trust services for securing data in the cloud 有权
公开(公告)号：US09894040B2
公开(公告)日：2018-02-13
申请号：US13609945
申请日：2012-09-11
申请人： Irina Gorbach , Venkatesh Krishnan , Andrey Shur , Dmitry Denisov , Lars Kuhtz , Sumalatha Adabala , Roy Peter D'Souza , Michael Entin , Michael Ray Clark , Gitika Aggarwal Saubhasik
发明人： Irina Gorbach , Venkatesh Krishnan , Andrey Shur , Dmitry Denisov , Lars Kuhtz , Sumalatha Adabala , Roy Peter D'Souza , Michael Entin , Michael Ray Clark , Gitika Aggarwal Saubhasik
IPC分类号： H04L29/06 , G06F21/62 , G06F17/30 , G06F9/445
CPC分类号： H04L63/04 , G06F8/61 , G06F17/30197 , G06F21/6218 , G06F2221/2107 , G06F2221/2115 , H04L63/06 , H04L63/20 , H04L2463/062
摘要： Embodiments are directed to securing data in the cloud, securely encrypting data that is to be stored in the cloud and to securely decrypting data accessed from the cloud. In one scenario, an instantiated trust service receives information indicating that a trust server is to be instantiated. The trust service instantiates the trust server, which is configured to store key references and encrypted keys. The trust service receives the public key portion of a digital certificate for each publisher and subscriber that is to have access to various specified portions of encrypted data. A data access policy is then defined that specifies which encrypted data portions can be accessed by which subscribers.

3. 发明申请

US20140075196A1 SECURELY FILTERING TRUST SERVICES RECORDS 有权
标题翻译：安全过滤信托服务记录
公开(公告)号：US20140075196A1
公开(公告)日：2014-03-13
申请号：US13614988
申请日：2012-09-13
申请人： Irina Gorbach , Venkatesh Krishnan , Andrey Shur , Dmitry Denisov , Lars Kuhtz , Sumant Mehta , Marina Galata
发明人： Irina Gorbach , Venkatesh Krishnan , Andrey Shur , Dmitry Denisov , Lars Kuhtz , Sumant Mehta , Marina Galata
IPC分类号： H04L9/32
CPC分类号： H04L9/321 , H04L9/3247 , H04L9/3263 , H04L9/3297 , H04L63/0823
摘要： Embodiments are directed to securely filtering trust services records. In one scenario, a client computer system receives at least one of the following trust services records: a trust services certificate, a principal certificate, a group certificate and a trust services policy. The client computer system performs a time validity check to validate the trust services record's timestamp, performs an integrity check to validate the integrity of the trust services record and performs a signature validity check to ensure that the entity claiming to have created the trust services record is the actual creator of the trust services record. The client computer system then, based on the time validity check, the integrity check and the signature validity check, determines that the trust services record is valid and allows a client computer system user to perform a specified task using the validated trust services record.
摘要翻译：实施例针对安全地过滤信任服务记录。在一种情况下，客户端计算机系统接收以下信任服务记录中的至少一个：信任服务证书，主体证书，组证书和信任服务策略。客户端计算机系统执行时间有效性检查以验证信任服务记录的时间戳，执行完整性检查以验证信任服务记录的完整性，并执行签名有效性检查，以确保声称已创建信任服务记录的实体为信托服务记录的实际创建者。然后，客户计算机系统基于时间有效性检查，完整性检查和签名有效性检查，确定信任服务记录是有效的，并允许客户端计算机系统用户使用经过验证的信任服务记录来执行指定的任务。

4. 发明授权

US08959351B2 Securely filtering trust services records 有权
标题翻译：安全地过滤信任服务记录
公开(公告)号：US08959351B2
公开(公告)日：2015-02-17
申请号：US13614988
申请日：2012-09-13
申请人： Irina Gorbach , Venkatesh Krishnan , Andrey Shur , Dmitry Denisov , Lars Kuhtz , Sumant Mehta , Marina Galata
发明人： Irina Gorbach , Venkatesh Krishnan , Andrey Shur , Dmitry Denisov , Lars Kuhtz , Sumant Mehta , Marina Galata
IPC分类号： H04L9/32
CPC分类号： H04L9/321 , H04L9/3247 , H04L9/3263 , H04L9/3297 , H04L63/0823
摘要： Embodiments are directed to securely filtering trust services records. In one scenario, a client computer system receives at least one of the following trust services records: a trust services certificate, a principal certificate, a group certificate and a trust services policy. The client computer system performs a time validity check to validate the trust services record's timestamp, performs an integrity check to validate the integrity of the trust services record and performs a signature validity check to ensure that the entity claiming to have created the trust services record is the actual creator of the trust services record. The client computer system then, based on the time validity check, the integrity check and the signature validity check, determines that the trust services record is valid and allows a client computer system user to perform a specified task using the validated trust services record.
摘要翻译：实施例针对安全地过滤信任服务记录。在一种情况下，客户端计算机系统接收以下信任服务记录中的至少一个：信任服务证书，主体证书，组证书和信任服务策略。客户端计算机系统执行时间有效性检查以验证信任服务记录的时间戳，执行完整性检查以验证信任服务记录的完整性，并执行签名有效性检查，以确保声称已创建信任服务记录的实体为信托服务记录的实际创建者。然后，客户计算机系统基于时间有效性检查，完整性检查和签名有效性检查，确定信任服务记录是有效的，并允许客户端计算机系统用户使用经过验证的信任服务记录来执行指定的任务。

5. 发明申请

US20130212395A1 MONITORING AND CONTROLLING ACCESS TO ELECTRONIC CONTENT 失效
标题翻译：监控和控制电子内容
公开(公告)号：US20130212395A1
公开(公告)日：2013-08-15
申请号：US13716351
申请日：2012-12-17
申请人： Roy Peter D'Souza , Lars Kuhtz
发明人： Roy Peter D'Souza , Lars Kuhtz
IPC分类号： H04L9/08
CPC分类号： H04L9/14 , H04L9/08 , H04L9/0825 , H04L9/0833 , H04L9/30 , H04L2209/24
摘要： Methods, systems and apparatuses for monitoring and controlling access to an electronic content are disclosed. One method includes creating, by an owner server, a group comprising generating a group public key PKG and a group secret key SKG. The method further includes adding, by the owner server, a member to the group, comprising generating a first share SKG1 from the group secret key SKG and a public key of a member, and a second share SKG2 from the group secret key SKG and a public key of a mediator, and providing, by the owner server, the first share SKG1 to a member server of the member and the second shares SKG2 to a mediator server of the mediator.
摘要翻译：公开了用于监视和控制对电子内容的访问的方法，系统和装置。一种方法包括由所有者服务器创建包括生成组公钥PKG和组密钥SKG的组。该方法还包括由所有者服务器向该组添加成员，包括从组密钥SKG和成员的公钥生成第一共享SKG1，以及从组密钥SKG生成第二共享SKG2和公钥，并由所有者服务器将第一股份SKG1提供给成员的成员服务器，第二股份SKG2提供给调解员的中介服务器。

6. 发明申请

US20140149734A1 MEDIATOR MONITORING AND CONTROLLING ACCESS TO ELECTRONIC CONTENT 有权
标题翻译：中介监测和控制访问电子内容
公开(公告)号：US20140149734A1
公开(公告)日：2014-05-29
申请号：US14171682
申请日：2014-02-03
申请人： Roy Peter D'Souza , Lars Kuhtz
发明人： Roy Peter D'Souza , Lars Kuhtz
IPC分类号： H04L9/30
CPC分类号： H04L9/14 , H04L9/08 , H04L9/0825 , H04L9/0833 , H04L9/30 , H04L2209/24
摘要： Methods, systems and apparatuses for a mediator controlling access to an electronic content, are disclosed. One method includes receiving, by a mediator server of a mediator, a second share SKG2 from an owner server, wherein a first share SKG1 is provided to a member server of a member of a group by the owner server. Further, the mediator receives a request for mediation, including the mediator receiving a dispatch of the header of the encrypted electronic content from the member. Further, the mediator determines whether the member is eligible to decrypt the electronic content, if eligible, the mediator responding to the request for mediation with a member accessible header, wherein the member accessible header includes the header after application of SKG2.
摘要翻译：公开了用于控制对电子内容的访问的调解器的方法，系统和装置。一种方法包括由调解员的中介服务器从所有者服务器接收第二共享SKG2，其中第一共享SKG1由所有者服务器提供给组成员的成员服务器。此外，调解员接收到调解请求，包括调解员从成员接收加密的电子内容的标题的分派。此外，调解员确定该成员是否有资格解密电子内容，如果符合资格，则中介者使用会员可访问头部响应中介请求，其中该会员可访问头部在应用SKG2之后包括头部。

7. 发明授权

US08681992B2 Monitoring and controlling access to electronic content 失效
标题翻译：监控和控制对电子内容的访问
公开(公告)号：US08681992B2
公开(公告)日：2014-03-25
申请号：US13716351
申请日：2012-12-17
申请人： Roy Peter D'Souza , Lars Kuhtz
发明人： Roy Peter D'Souza , Lars Kuhtz
IPC分类号： H04L9/00 , H04L9/32
CPC分类号： H04L9/14 , H04L9/08 , H04L9/0825 , H04L9/0833 , H04L9/30 , H04L2209/24
摘要： Methods, systems and apparatuses for monitoring and controlling access to an electronic content are disclosed. One method includes creating, by an owner server, a group comprising generating a group public key PKG and a group secret key SKG. The method further includes adding, by the owner server, a member to the group, comprising generating a first share SKG1 from the group secret key SKG and a public key of a member, and a second share SKG2 from the group secret key SKG and a public key of a mediator, and providing, by the owner server, the first share SKG1 to a member server of the member and the second shares SKG2 to a mediator server of the mediator.
摘要翻译：公开了用于监视和控制对电子内容的访问的方法，系统和装置。一种方法包括由所有者服务器创建包括生成组公钥PKG和组密钥SKG的组。该方法还包括由所有者服务器向该组添加成员，包括从组密钥SKG和成员的公钥生成第一共享SKG1，以及从组密钥SKG生成第二共享SKG2和公钥，并由所有者服务器将第一股份SKG1提供给成员的成员服务器，第二股份SKG2提供给调解员的中介服务器。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式