-
Patent Agency Ranking
1.发明申请公开(公告)号:US20160254913A1
公开(公告)日:2016-09-01
申请号:US15149830
申请日:2016-05-09
Applicant: Cloudera, Inc.
Inventor: Dustin C. Kirkland , Eduardo Garcia
CPC classification number: H04L9/321 , H04L9/0825 , H04L9/083 , H04L63/0442 , H04L63/10
Abstract: Embodiments of the present disclosure include systems and methods for secure release of secret information over a network. The server can be configured to receive a request from a client to access the deposit of secret information, send an authorization request to at least one designated trustee in the set of designated trustees for the deposit of secret information, receive responses over the network from one or more of the designated trustees in the set of designated trustees and apply a trustee policy to the responses from the one or more designated trustees in the set of trustees to determine if the request is authorized. If the request is authorized, the server can send the secret information to the client. If the request is not authorized, the server denies access by the client to the secret information.
Abstract translation: 本公开的实施例包括用于通过网络安全地释放秘密信息的系统和方法。 服务器可以被配置为从客户端接收访问秘密信息的存取的请求,向所述一组指定受托人中的至少一个指定受托人发送授权请求以存入秘密信息,通过网络从一个 或多于一组指定受托人的指定受托人,并向受托人集合中的一个或多于一个指定受托人的回覆申请受托人政策,以确定该请求是否获得授权。 如果请求被授权,服务器可以将秘密信息发送给客户端。 如果请求未被授权,则服务器拒绝客户端访问秘密信息。
-
2.发明授权公开(公告)号:US09338008B1
公开(公告)日:2016-05-10
申请号:US13854773
申请日:2013-04-01
Applicant: Cloudera, Inc.
Inventor: Dustin C. Kirkland , Eduardo Garcia
CPC classification number: H04L9/321 , H04L9/0825 , H04L9/083 , H04L63/0442 , H04L63/10
Abstract: Embodiments of the present disclosure include systems and methods for secure release of secret information over a network. The server can be configured to receive a request from a client to access the deposit of secret information, send an authorization request to at least one designated trustee in the set of designated trustees for the deposit of secret information, receive responses over the network from one or more of the designated trustees in the set of designated trustees and apply a trustee policy to the responses from the one or more designated trustees in the set of trustees to determine if the request is authorized. If the request is authorized, the server can send the secret information to the client. If the request is not authorized, the server denies access by the client to the secret information.
Abstract translation: 本公开的实施例包括用于通过网络安全地释放秘密信息的系统和方法。 服务器可以被配置为从客户端接收访问秘密信息的存取的请求,向所述一组指定受托人中的至少一个指定受托人发送授权请求以存入秘密信息,通过网络从一个 或多于一组指定受托人的指定受托人,并向受托人集合中的一个或多于一个指定受托人的回覆申请受托人政策,以确定该请求是否获得授权。 如果请求被授权,服务器可以将秘密信息发送给客户端。 如果请求未被授权,则服务器拒绝客户端访问秘密信息。
-
公开(公告)号:US09934382B2
公开(公告)日:2018-04-03
申请号:US14526372
申请日:2014-10-28
Applicant: Cloudera, Inc.
Inventor: Eduardo Garcia
CPC classification number: G06F21/572 , G06F9/4406 , G06F9/45558 , G06F21/575 , G06F2009/45575 , G06F2221/033 , G06F2221/2107 , G06F2221/2115
Abstract: Embodiments of the present disclosure include systems and methods for encrypting a virtual machine image and accessing an encrypted virtual machine image. According to some embodiments an encryption module can encrypt a virtual machine image and place an encryption boot loader. The encryption boot loader may be extracted from the encrypted virtual machine image, be transmitted to, and stored at a key storage system. Upon a request to boot an operating system associated with the encrypted virtual machine image, a pre-boot execution environment may communicate with an image service to retrieve the encryption boot loader from the remote key storage system. The virtual machine image may therefore be decrypted suing the encryption boot loader, which may allow booting of the operating system.
-
公开(公告)号:US20160350535A1
公开(公告)日:2016-12-01
申请号:US14526372
申请日:2014-10-28
Applicant: Cloudera, Inc.
Inventor: Eduardo Garcia
CPC classification number: G06F21/572 , G06F9/4406 , G06F9/45558 , G06F21/575 , G06F2009/45575 , G06F2221/033 , G06F2221/2107 , G06F2221/2115
Abstract: Embodiments of the present disclosure include systems and methods for encrypting a virtual machine image and accessing an encrypted virtual machine image. According to some embodiments an encryption module can encrypt a virtual machine image and place an encryption boot loader. The encryption boot loader may be extracted from the encrypted virtual machine image, be transmitted to, and stored at a key storage system. Upon a request to boot an operating system associated with the encrypted virtual machine image, a pre-boot execution environment may communicate with an image service to retrieve the encryption boot loader from the remote key storage system. The virtual machine image may therefore be decrypted suing the encryption boot loader, which may allow booting of the operating system.
Abstract translation: 本公开的实施例包括用于加密虚拟机映像并访问加密的虚拟机映像的系统和方法。 根据一些实施例,加密模块可加密虚拟机映像并放置加密引导加载程序。 可以从加密的虚拟机映像中提取加密引导加载程序,并将其发送到密钥存储系统并存储在密钥存储系统中。 在请求引导与加密的虚拟机映像相关联的操作系统时,预引导执行环境可以与图像服务通信以从远程密钥存储系统检索加密引导加载程序。 因此,可以对虚拟机映像进行解密,起诉加密引导加载程序,这可能允许启动操作系统。
-
公开(公告)号:US09819491B2
公开(公告)日:2017-11-14
申请号:US15149830
申请日:2016-05-09
Applicant: Cloudera, Inc.
Inventor: Dustin C. Kirkland , Eduardo Garcia
CPC classification number: H04L9/321 , H04L9/0825 , H04L9/083 , H04L63/0442 , H04L63/10
Abstract: Embodiments of the present disclosure include systems and methods for secure release of secret information over a network. The server can be configured to receive a request from a client to access the deposit of secret information, send an authorization request to at least one designated trustee in the set of designated trustees for the deposit of secret information, receive responses over the network from one or more of the designated trustees in the set of designated trustees and apply a trustee policy to the responses from the one or more designated trustees in the set of trustees to determine if the request is authorized. If the request is authorized, the server can send the secret information to the client. If the request is not authorized, the server denies access by the client to the secret information.
-
-
-
-
Search Results
5
records
(took 0.012 seconds)
