专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08462955B2 Key protectors based on online keys 有权
标题翻译：基于在线密钥的主要保护器
公开(公告)号：US08462955B2
公开(公告)日：2013-06-11
申请号：US12793455
申请日：2010-06-03
申请人： Octavian T. Ureche , Nils Dussart , Michael A. Halcrow , Charles G. Jeffries , Nathan T. Lewis , Cristian M. Ilac , Innokentiy Basmov , Magnus Bo Gustaf Nyström , Niels T. Ferguson
发明人： Octavian T. Ureche , Nils Dussart , Michael A. Halcrow , Charles G. Jeffries , Nathan T. Lewis , Cristian M. Ilac , Innokentiy Basmov , Magnus Bo Gustaf Nyström , Niels T. Ferguson
IPC分类号： H04L9/08 , G06F11/30 , G06F12/14
CPC分类号： H04L9/0894 , H04L9/0822 , H04L63/061 , H04L2463/062
摘要： An online key stored by a remote service is generated or otherwise obtained, and a storage media (as it applies to the storage of data on a physical or virtual storage media) master key for encrypting and decrypting a physical or virtual storage media or encrypting and decrypting one or more storage media encryption keys that are used to encrypt a physical or virtual storage media is encrypted based at least in part on the online key. A key protector for the storage media is stored, the key protector including the encrypted master key. The key protector can be subsequently accessed, and the online key obtained from the remote service. The master key is decrypted based on the online key, allowing the one or more storage media encryption keys that are used to decrypt the storage media to be decrypted.
摘要翻译：生成或以其他方式获得由远程服务存储的在线密钥，以及存储介质（适用于存储物理或虚拟存储介质上的数据）主密钥，用于加密和解密物理或虚拟存储介质或加密和至少部分地基于在线密钥来加密用于加密物理或虚拟存储介质的一个或多个存储介质加密密钥的解密。存储存储介质的密钥保护器，密钥保护器包括加密的主密钥。随后可以访问密钥保护器，并从远程服务获取在线密钥。主密钥基于在线密钥解密，允许用于解密存储介质的一个或多个存储介质加密密钥被解密。

2. 发明申请

US20110302398A1 KEY PROTECTORS BASED ON ONLINE KEYS 有权
标题翻译：基于在线的主要保护者
公开(公告)号：US20110302398A1
公开(公告)日：2011-12-08
申请号：US12793455
申请日：2010-06-03
申请人： Octavian T. Ureche , Nils Dussart , Michael A. Halcrow , Charles G. Jeffries , Nathan T. Lewis , Cristian M. Ilac , Innokentiy Basmov , Bo Gustaf Magnus Nystr+e,uml o+ee m , Niels T. Ferguson
发明人： Octavian T. Ureche , Nils Dussart , Michael A. Halcrow , Charles G. Jeffries , Nathan T. Lewis , Cristian M. Ilac , Innokentiy Basmov , Bo Gustaf Magnus Nystr+e,uml o+ee m , Niels T. Ferguson
IPC分类号： H04L9/32 , G06F9/24 , G06F12/02
CPC分类号： H04L9/0894 , H04L9/0822 , H04L63/061 , H04L2463/062
摘要： An online key stored by a remote service is generated or otherwise obtained, and a storage media (as it applies to the storage of data on a physical or virtual storage media) master key for encrypting and decrypting a physical or virtual storage media or encrypting and decrypting one or more storage media encryption keys that are used to encrypt a physical or virtual storage media is encrypted based at least in part on the online key. A key protector for the storage media is stored, the key protector including the encrypted master key. The key protector can be subsequently accessed, and the online key obtained from the remote service. The master key is decrypted based on the online key, allowing the one or more storage media encryption keys that are used to decrypt the storage media to be decrypted.
摘要翻译：生成或以其他方式获得由远程服务存储的在线密钥，以及存储介质（适用于存储物理或虚拟存储介质上的数据）主密钥，用于加密和解密物理或虚拟存储介质或加密和至少部分地基于在线密钥来加密用于加密物理或虚拟存储介质的一个或多个存储介质加密密钥的解密。存储存储介质的密钥保护器，密钥保护器包括加密的主密钥。随后可以访问密钥保护器，并从远程服务获取在线密钥。主密钥基于在线密钥解密，允许用于解密存储介质的一个或多个存储介质加密密钥被解密。

3. 发明申请

US20110314279A1 Single-Use Authentication Methods for Accessing Encrypted Data 有权
标题翻译：访问加密数据的一次性验证方法
公开(公告)号：US20110314279A1
公开(公告)日：2011-12-22
申请号：US12819883
申请日：2010-06-21
申请人： Octavian T. Ureche , Nils Dussart , Charles G. Jeffries , Cristian M. Ilac , Vijay G. Bharadwaj , Innokentiy Basmov , Stefan Thom , Son VoBa
发明人： Octavian T. Ureche , Nils Dussart , Charles G. Jeffries , Cristian M. Ilac , Vijay G. Bharadwaj , Innokentiy Basmov , Stefan Thom , Son VoBa
IPC分类号： H04L9/32 , G06F12/14 , H04L29/06
CPC分类号： H04L63/08 , G06F21/31 , G06F21/57 , G06F21/6218 , G06F2221/2103 , G06F2221/2131 , H04L9/3228 , H04L9/3234 , H04L63/067
摘要： Single-use authentication methods for accessing encrypted data stored on a protected volume of a computer are described, wherein access to the encrypted data involves decrypting a key protector stored on the computer that holds a volume-specific cryptographic key needed to decrypt the protected volume. Such single-use authentication methods rely on the provision of a key protector that can only be used once and/or that requires a new access credential for each use. In certain embodiments, a challenge-response process is also used as part of the authentication method to tie the issuance of a key protector and/or access credential to particular pieces of information that can uniquely identify a user.
摘要翻译：描述用于访问存储在计算机的受保护卷上的加密数据的一次验证方法，其中对加密数据的访问涉及解密存储在计算机上的密钥保护器，其保存解密受保护卷所需的特定于卷的加密密钥。这种一次性认证方法依赖于提供只能使用一次的密钥保护器和/或需要每次使用的新的访问凭证。在某些实施例中，质询 - 响应过程也被用作认证方法的一部分，以将密钥保护器的发行和/或访问凭证与可以唯一地标识用户的特定信息片段相关联。

4. 发明授权

US08745386B2 Single-use authentication methods for accessing encrypted data 有权
标题翻译：用于访问加密数据的一次性认证方法
公开(公告)号：US08745386B2
公开(公告)日：2014-06-03
申请号：US12819883
申请日：2010-06-21
申请人： Octavian T. Ureche , Nils Dussart , Charles G. Jeffries , Cristian M. Ilac , Vijay G. Bharadwaj , Innokentiy Basmov , Stefan Thom , Son VoBa
发明人： Octavian T. Ureche , Nils Dussart , Charles G. Jeffries , Cristian M. Ilac , Vijay G. Bharadwaj , Innokentiy Basmov , Stefan Thom , Son VoBa
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , G06F21/31 , G06F21/57 , G06F21/6218 , G06F2221/2103 , G06F2221/2131 , H04L9/3228 , H04L9/3234 , H04L63/067
摘要： Single-use authentication methods for accessing encrypted data stored on a protected volume of a computer are described, wherein access to the encrypted data involves decrypting a key protector stored on the computer that holds a volume-specific cryptographic key needed to decrypt the protected volume. Such single-use authentication methods rely on the provision of a key protector that can only be used once and/or that requires a new access credential for each use. In certain embodiments, a challenge-response process is also used as part of the authentication method to tie the issuance of a key protector and/or access credential to particular pieces of information that can uniquely identify a user.
摘要翻译：描述用于访问存储在计算机的受保护卷上的加密数据的一次验证方法，其中对加密数据的访问涉及解密存储在计算机上的密钥保护器，其保存解密受保护卷所需的特定于卷的加密密钥。这种一次性认证方法依赖于提供只能使用一次的密钥保护器和/或需要每次使用的新的访问凭证。在某些实施例中，质询 - 响应过程也被用作认证方法的一部分，以将密钥保护器的发行和/或访问凭证与可以唯一地标识用户的特定信息片段相关联。

5. 发明申请

US20090007264A1 SECURITY SYSTEM WITH COMPLIANCE CHECKING AND REMEDIATION 有权
标题翻译：具有合规检查和补救的安全系统
公开(公告)号：US20090007264A1
公开(公告)日：2009-01-01
申请号：US11768596
申请日：2007-06-26
申请人： Arindam Chatterjee , Anders Samuelsson , Nils Dussart , Charles G. Jeffries , Amit R. Kulkarni
发明人： Arindam Chatterjee , Anders Samuelsson , Nils Dussart , Charles G. Jeffries , Amit R. Kulkarni
IPC分类号： G06F11/00
CPC分类号： G06F21/577
摘要： A security system is provided for use with computer systems. In various embodiments, the security system can analyze the state of security of one or more computer systems to determine whether the computer systems comply with expressed security policies and to remediate the computer systems so that they conform with the expressed security policies. In various embodiments, the security system can receive compliance documents, determine whether one or more computer systems comply with portions of security policies specified in the compliance documents, and take actions specified in the compliance documents to cause the computer systems to comply with the specified security policies. The security system may provide a common, unified programming interface that applications or tools can employ to verify or enforce security policies.
摘要翻译：提供了一种用于计算机系统的安全系统。在各种实施例中，安全系统可以分析一个或多个计算机系统的安全状态，以确定计算机系统是否符合所表达的安全策略并修复计算机系统，使得它们符合所表达的安全策略。在各种实施例中，安全系统可以接收合规文件，确定一个或多个计算机系统是否符合合规文件中指定的安全策略的一部分，并采取合规文件中指定的措施，使计算机系统符合指定的安全性政策。安全系统可以提供一个通用的，统一的编程接口，应用程序或工具可以用来验证或执行安全策略。

6. 发明授权

US08661534B2 Security system with compliance checking and remediation 有权
标题翻译：具有合规性检查和修复的安全系统
公开(公告)号：US08661534B2
公开(公告)日：2014-02-25
申请号：US11768596
申请日：2007-06-26
申请人： Arindam Chatterjee , Anders Samuelsson , Nils Dussart , Charles G. Jeffries , Amit R. Kulkarni
发明人： Arindam Chatterjee , Anders Samuelsson , Nils Dussart , Charles G. Jeffries , Amit R. Kulkarni
IPC分类号： H04L29/06
CPC分类号： G06F21/577
摘要： A security system is provided for use with computer systems. In various embodiments, the security system can analyze the state of security of one or more computer systems to determine whether the computer systems comply with expressed security policies and to remediate the computer systems so that they conform with the expressed security policies. In various embodiments, the security system can receive compliance documents, determine whether one or more computer systems comply with portions of security policies specified in the compliance documents, and take actions specified in the compliance documents to cause the computer systems to comply with the specified security policies. The security system may provide a common, unified programming interface that applications or tools can employ to verify or enforce security policies.
摘要翻译：提供了一种用于计算机系统的安全系统。在各种实施例中，安全系统可以分析一个或多个计算机系统的安全状态，以确定计算机系统是否符合所表达的安全策略并修复计算机系统，使得它们符合所表达的安全策略。在各种实施例中，安全系统可以接收合规文件，确定一个或多个计算机系统是否符合合规文件中指定的安全策略的一部分，并采取合规文件中指定的措施，使计算机系统符合指定的安全性政策。安全系统可以提供一个通用的，统一的编程接口，应用程序或工具可以用来验证或执行安全策略。

7. 发明授权

US08364984B2 Portable secure data files 有权
标题翻译：便携式安全数据文件
公开(公告)号：US08364984B2
公开(公告)日：2013-01-29
申请号：US12404007
申请日：2009-03-13
申请人： Charles G. Jeffries , Vijay G. Bharadwaj , Michael J. Grass , Matthew C. Setzer , Gaurav Sinha , Carl M. Ellison
发明人： Charles G. Jeffries , Vijay G. Bharadwaj , Michael J. Grass , Matthew C. Setzer , Gaurav Sinha , Carl M. Ellison
IPC分类号： G06F12/14 , G06F21/00 , G06F11/30
CPC分类号： G06F21/6209 , G06F2221/2107 , G06F2221/2115 , G06F2221/2151
摘要： A portable secure data file includes an encrypted data portion and a metadata portion. When a request associated with a current user of a device to access a portable secure data file is received, one or more records in the metadata portion are accessed to determine whether the current user is permitted to access the file data in the encrypted data portion. If a record indicates the user is permitted to access the file data, a content encryption key in that record is used to decrypt the encrypted data portion.
摘要翻译：便携式安全数据文件包括加密数据部分和元数据部分。当接收到与用于访问便携式安全数据文件的设备的当前用户相关联的请求时，访问元数据部分中的一个或多个记录以确定当前用户是否被允许访问加密数据部分中的文件数据。如果记录指示用户被允许访问文件数据，则使用该记录中的内容加密密钥对加密的数据部分进行解密。

8. 发明授权

US09037620B2 File system active symbolic link 有权
标题翻译：文件系统有效的符号链接
公开(公告)号：US09037620B2
公开(公告)日：2015-05-19
申请号：US12639950
申请日：2009-12-16
申请人： Carl Melvin Ellison , Charles G. Jeffries
发明人： Carl Melvin Ellison , Charles G. Jeffries
IPC分类号： G06F17/30
CPC分类号： G06F17/30126 , G06F17/30091
摘要： Data stored on a storage medium can be referenced by multiple independently addressable active symbolic links, with each active symbolic link representing the data through a different transformation. The active symbolic links can be in the form of file system objects, such as files or directories. A single active symbolic link can reference the data stored in multiple collections, or, conversely, a subset of data from a single collection. Active symbolic links can be automatically created for common data transformations. Searching across active symbolic links referencing encrypted data can be performed by multiple protection-specific search engines, or a single search engine that can generate a protection-level aware search index.
摘要翻译：存储在存储介质上的数据可以由多个可独立寻址的活动符号链接引用，每个活动符号链接通过不同的变换表示数据。活动的符号链接可以是文件系统对象的形式，例如文件或目录。单个有源符号链接可以引用存储在多个集合中的数据，或者相反地，来自单个集合的数据子集。可以自动创建活动的符号链接，用于常见的数据转换。可以通过多个保护专用搜索引擎或可以生成保护级别感知搜索索引的单个搜索引擎执行引用加密数据的活动符号链接的搜索。

9. 发明申请

US20110145296A1 FILE SYSTEM ACTIVE SYMBOLIC LINK 有权
标题翻译：文件系统主动符号链接
公开(公告)号：US20110145296A1
公开(公告)日：2011-06-16
申请号：US12639950
申请日：2009-12-16
申请人： Carl Melvin Ellison , Charles G. Jeffries
发明人： Carl Melvin Ellison , Charles G. Jeffries
IPC分类号： G06F17/30
CPC分类号： G06F17/30126 , G06F17/30091
摘要： Data stored on a storage medium can be referenced by multiple independently addressable active symbolic links, with each active symbolic link representing the data through a different transformation. The active symbolic links can be in the form of file system objects, such as files or directories. A single active symbolic link can reference the data stored in multiple collections, or, conversely, a subset of data from a single collection. Active symbolic links can be automatically created for common data transformations. Searching across active symbolic links referencing encrypted data can be performed by multiple protection-specific search engines, or a single search engine that can generate a protection-level aware search index.
摘要翻译：存储在存储介质上的数据可以由多个可独立寻址的活动符号链接引用，每个活动符号链接通过不同的变换表示数据。活动的符号链接可以是文件系统对象的形式，例如文件或目录。单个有源符号链接可以引用存储在多个集合中的数据，或者相反地，来自单个集合的数据子集。可以自动创建活动的符号链接，用于常见的数据转换。可以通过多个保护专用搜索引擎或可以生成保护级别感知搜索索引的单个搜索引擎执行引用加密数据的活动符号链接的搜索。

10. 发明申请

US20110131659A1 EXTENSIBLE FRAMEWORK FOR SYSTEM SECURITY STATE REPORTING AND REMEDIATION 有权
标题翻译：系统安全状态报告和补救的可扩展框架
公开(公告)号：US20110131659A1
公开(公告)日：2011-06-02
申请号：US13024253
申请日：2011-02-09
申请人： Charles G. Jeffries , Doug Coburn , Barry Gerhardt , Randall K. Winjum , Arindam Chatterjee
发明人： Charles G. Jeffries , Doug Coburn , Barry Gerhardt , Randall K. Winjum , Arindam Chatterjee
IPC分类号： G08B23/00
CPC分类号： G06F11/328
摘要： A security health reporting system provides an application program interface (API) for use by independent software vendors (ISVs) to extend the security health reporting capabilities of the security health reporting system. An ISV security solution can register with the security health reporting system, create a schema that describes a new security class, and use the API to publish an instance of the schema for the new security class with the security health reporting system. When an instance of a schema for a new security class is published, the security health reporting system creates the new security class, and recognizes the definition for the security class within the security health reporting system. Registered ISV security solutions can then use the published schema to report their health statuses for the new security class.
摘要翻译：安全健康报告系统提供应用程序接口（API），供独立软件供应商（ISV）使用，以扩展安全性健康报告系统的安全性状况报告功能。 ISV安全解决方案可以向安全运行状况报告系统注册，创建描述新安全类的模式，并使用API通过安全性状况报告系统发布新安全类的模式实例。当发布新的安全类的模式的实例时，安全性运行状况报告系统将创建新的安全类，并识别安全性状况报告系统中安全类的定义。然后，注册的ISV安全解决方案可以使用已发布的模式来报告其新安全级别的运行状况。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式