公开(公告)号：US08112392B1

公开(公告)日：2012-02-07

申请号：US12371116

申请日：2009-02-13

Applicant: Karl Bunnell ,  Randall R. Cook ,  Jeremy Hurren

Inventor： Karl Bunnell ,  Randall R. Cook ,  Jeremy Hurren

IPC: G06F7/00

CPC classification number: G06F17/30233 ,  G06F9/45558

Abstract: A method may include identifying a virtualized application that has a read-only virtualization sublayer and a read-write virtualization sublayer. The read-only virtualization sublayer may represent a base state of the virtualized application and the read-write virtualization sublayer may be configured to store changes to the base state of the virtualized application. The method may also include determining a first difference between the read-only virtualization sublayer and the read-write virtualization sublayer at a first point in time and using the first difference between the read-only virtualization sublayer and the read-write virtualization sublayer to create a first snapshot that represents a state of the virtualized application at the first point in time. Various other methods, systems, and computer-readable media are also disclosed.

Abstract translation: 一种方法可以包括识别具有只读虚拟化子层和读写虚拟化子层的虚拟化应用。 只读虚拟化子层可以表示虚拟应用的基本状态，并且读写虚拟化子层可以被配置为存储对虚拟应用的基本状态的改变。 该方法还可以包括在第一时间点确定只读虚拟化子层和读写虚拟化子层之间的第一差异，并使用只读虚拟化子层和读写虚拟化子层之间的第一个差异来创建 表示第一时间点的虚拟化应用程序状态的第一个快照。 还公开了各种其它方法，系统和计算机可读介质。

公开(公告)号：US20110145806A1

公开(公告)日：2011-06-16

申请号：US12058782

申请日：2008-03-31

Applicant: Randall R. Cook

Inventor： Randall R. Cook

IPC: G06F9/44

CPC classification number: G06F8/67 ,  G06F8/61 ,  G06F8/65 ,  G06F8/656 ,  G06F17/30067

Abstract: The disclosure is directed to dynamic insertion and removal of virtual software sub-layers. In one example, a virtual layer associated with a software application is virtually installed and activated in a computing device. A virtual sub-layer associated with a component of the software application is dynamically inserted in the virtual layer. The virtual layer remains active during the dynamic insertion of the virtual sub-layer. In certain embodiments, a process is executed from the virtual layer, a determination is made as to whether the process launched before or after the insertion of the virtual sub-layer, and the inserted virtual sub-layer is selectively made visible or invisible to the process based on the determination.

Abstract translation: 本公开旨在动态插入和移除虚拟软件子层。 在一个示例中，与计算设备虚拟地安装并激活与软件应用相关联的虚拟层。 与软件应用的组件相关联的虚拟子层被动态地插入到虚拟层中。 虚拟层在动态插入虚拟子层期间保持活动状态。 在某些实施例中，从虚拟层执行处理，确定在虚拟子层的插入之前或之后启动的进程以及插入的虚拟子层是否被选择性地使其可见或不可见 过程基于确定。

公开(公告)号：US6105069A

公开(公告)日：2000-08-15

申请号：US970069

申请日：1997-11-13

Applicant: Nicholas Huston Franklin ,  Bill Guy Bodine ,  Randall R. Cook ,  Calvin R. Gaisford ,  Matthew G. Brooks ,  Carla M. Heesch ,  Kelly E. Sonderegger

Inventor： Nicholas Huston Franklin ,  Bill Guy Bodine ,  Randall R. Cook ,  Calvin R. Gaisford ,  Matthew G. Brooks ,  Carla M. Heesch ,  Kelly E. Sonderegger

IPC: G06F1/00 ,  G06F21/00 ,  G06F15/173 ,  G06F17/00

CPC classification number: G06F21/6218 ,  G06F21/10 ,  G06F21/121 ,  G06F21/53 ,  G06F2221/2135 ,  G06F2221/2141

Abstract: A directory services system includes a resource object, such as an application object for accessing a resource associated with the resource object. Attributes of the resource object contain licensing control information. The licensing attributes may be used by executables to control access by a user to properly licensed instances of a resource corresponding to the resource object. Also, a utility may be provided to manage the licensing attributes in the resource object. A licensing function may thus control a resource, via its resource object in the directory services database. Licensing maybe easily implemented by setting a new disabling attribute in the object.

Abstract translation: 目录服务系统包括资源对象，例如用于访问与资源对象相关联的资源的应用对象。 资源对象的属性包含许可控制信息。 可执行文件可以使用许可属性来控制用户对与资源对象相对应的资源的适当许可的实例的访问。 另外，可以提供一个实用程序来管理资源对象中的许可属性。 因此许可功能可以通过目录服务数据库中的资源对象来控制资源。 许可可以通过在对象中设置一个新的禁用属性来轻松实现。

公开(公告)号：US09081644B2

公开(公告)日：2015-07-14

申请号：US13551576

申请日：2012-07-17

Applicant: Randall R. Cook

Inventor： Randall R. Cook

IPC: G06F9/44 ,  G06F9/445 ,  G06F17/30

CPC classification number: G06F8/67 ,  G06F8/61 ,  G06F8/65 ,  G06F8/656 ,  G06F17/30067

Abstract: The disclosure is directed to dynamic insertion and removal of virtual software sub-layers. In one example, a virtual layer associated with a software application is virtually installed and activated in a computing device. A virtual sub-layer associated with a component of the software application is dynamically inserted in the virtual layer. The virtual layer remains active during the dynamic insertion of the virtual sub-layer. In certain embodiments, a process is executed from the virtual layer, a determination is made as to whether the process launched before or after the insertion of the virtual sub-layer, and the inserted virtual sub-layer is selectively made visible or invisible to the process based on the determination.

Abstract translation: 本公开旨在动态插入和移除虚拟软件子层。 在一个示例中，与计算设备虚拟地安装并激活与软件应用相关联的虚拟层。 与软件应用的组件相关联的虚拟子层被动态地插入到虚拟层中。 虚拟层在动态插入虚拟子层期间保持活动状态。 在某些实施例中，从虚拟层执行处理，确定在虚拟子层的插入之前或之后启动的进程以及插入的虚拟子层是否被选择性地使其可见或不可见 过程基于确定。

公开(公告)号：US09003542B1

公开(公告)日：2015-04-07

申请号：US12966307

申请日：2010-12-13

Applicant: Paul F. MacKay ,  Randall R. Cook ,  Bill G. Bodine

Inventor： Paul F. MacKay ,  Randall R. Cook ,  Bill G. Bodine

IPC: G06F21/60 ,  G06F21/50 ,  G06F21/00 ,  H04W12/02

CPC classification number: G06F21/50 ,  G06F21/62 ,  G06F2221/2111

Abstract: A computer-implemented method for replacing sensitive information stored within non-secure environments with secure references to the same may include (1) identifying sensitive information stored within a non-secure environment on a computing device, (2) removing the sensitive information from the non-secure environment, (3) storing the sensitive information within a secure environment, (4) replacing the sensitive information originally stored within the non-secure environment with a reference that identifies the sensitive information stored within the secure environment, (5) identifying a request to access at least a portion of the sensitive information identified in the reference, (6) determining that at least a portion of the request satisfies a data-loss-prevention policy, and then (7) providing access to at least a portion of the sensitive information via the secure environment. Various other systems, methods, and computer-readable media are also disclosed.

Abstract translation: 用于以安全参考的方式替换存储在非安全环境中的敏感信息的计算机实现的方法可以包括（1）识别存储在计算设备上的非安全环境中的敏感信息，（2）从 （3）将敏感信息存储在安全环境中，（4）用存储在安全环境中的敏感信息的引用替代最初存储在非安全环境中的敏感信息，（5）识别 访问参考中标识的敏感信息的至少一部分的请求，（6）确定请求的至少一部分满足数据丢失防止策略，然后（7）提供对至少一部分的访问 的敏感信息通过安全的环境。 还公开了各种其它系统，方法和计算机可读介质。

公开(公告)号：US08650166B1

公开(公告)日：2014-02-11

申请号：US13179809

申请日：2011-07-11

Applicant: Randall R. Cook ,  Bruce McCorkendale

Inventor： Randall R. Cook ,  Bruce McCorkendale

IPC: G06F7/00 ,  G06F17/00

CPC classification number: G06F17/30082 ,  G06F17/3012

Abstract: A computer-implemented method for classifying files may include identifying data to be written to a file on a storage system. The method may also include, before the data is written to the storage system, 1) identifying a characteristic of the data, 2) determining, based on the characteristic of the data, a classification for the file, and 3) using the classification of the file to select a location within the storage system where the file should be stored. The method may further include writing the data to the file at the selected location within the storage system. Various other methods, systems, and computer-readable media are also disclosed herein.

Abstract translation: 用于分类文件的计算机实现的方法可以包括识别要写入存储系统上的文件的数据。 该方法还可以包括在将数据写入存储系统之前，1）识别数据的特性，2）基于该数据的特征确定该文件的分类，以及3）使用 该文件选择存储系统中应存储文件的位置。 该方法还可以包括将数据写入存储系统内所选位置的文件。 本文还公开了各种其它方法，系统和计算机可读介质。

公开(公告)号：US08302108B1

公开(公告)日：2012-10-30

申请号：US11960706

申请日：2007-12-20

Applicant: Jeremy Hurren ,  Randall R. Cook

Inventor： Jeremy Hurren ,  Randall R. Cook

IPC: G06F3/00 ,  G06F9/44 ,  G06F9/46 ,  G06F13/00

CPC classification number: G06F9/445 ,  G06F8/61 ,  G06F9/44568 ,  G06F9/45504

Abstract: The disclosure is directed to feature based software virtualization. In one example, a first virtual sub-layer associated with a first feature set of a software package is virtually installed to a computing device. The first feature set includes a first subset of features associated with the software package. The first virtual sub-layer is enabled to activate the first feature set. A second virtual sub-layer associated with a second feature set of the software package is virtually installed to the computing device. The second feature set includes a second subset of the features associated with the software package. The second virtual sub-layer is enabled to activate the second feature set. In certain embodiments, a first fee is charged for the first feature set and a second fee is charged for the second feature set.

Abstract translation: 本公开涉及基于特征的软件虚拟化。 在一个示例中，与软件包的第一特征集相关联的第一虚拟子层虚拟地安装到计算设备。 第一特征集包括与软件包相关联的特征的第一子集。 启用第一个虚拟子层激活第一个功能集。 与软件包的第二特征集相关联的第二虚拟子层虚拟地安装到计算设备。 第二特征集包括与软件包相关联的特征的第二子集。 启用第二虚拟子层激活第二个特征集。 在某些实施例中，针对第一特征集收取第一费用，并且为第二特征集收取第二费用。

公开(公告)号：US08291407B2

公开(公告)日：2012-10-16

申请号：US11901327

申请日：2007-09-17

Applicant: Mark A. Greenwood ,  Randall R. Cook ,  Scott G. Hopwood ,  Robert P. Palethorpe

Inventor： Mark A. Greenwood ,  Randall R. Cook ,  Scott G. Hopwood ,  Robert P. Palethorpe

IPC: G06F9/445

CPC classification number: G06F8/65 ,  G06F8/656

Abstract: The disclosure is directed to systems and methods for patching computer programs. In one example, a patch is virtually installed to a computing device having a base file system and configuration, a computer program, and a patch layering subsystem. The virtual installation may include storing content of the patch to a patch layer, and generating and storing mapping data defining at least one relationship between the content in the patch layer and content in the base file system and configuration. The virtually installed patch may be enabled, including applying the mapping data to the patch layering subsystem such that the patch layering subsystem is configured for selectively redirecting access requests from the base file system and configuration to the patch layer. In certain embodiments, the enabled patch may be disabled by reversing the application of the mapping data to the patch layering subsystem.

Abstract translation: 本公开涉及用于修补计算机程序的系统和方法。 在一个示例中，补丁虚拟地安装到具有基本文件系统和配置，计算机程序和补丁分层子系统的计算设备。 虚拟安装可以包括将补丁的内容存储到补丁层，以及生成和存储定义补丁层中的内容与基本文件系统和配置中的内容之间的至少一个关系的映射数据。 可以启用虚拟安装的补丁，包括将映射数据应用于补丁分层子系统，使得补丁分层子系统被配置用于将访问请求从基本文件系统和配置重定向到补丁层。 在某些实施例中，可以通过将映射数据的应用反转到补丁分层子系统来禁用启用的补丁。

公开(公告)号：US08225316B1

公开(公告)日：2012-07-17

申请号：US12369512

申请日：2009-02-11

Applicant: Karl Bunnell ,  Randall R. Cook ,  Jeremy Hurren

Inventor： Karl Bunnell ,  Randall R. Cook ,  Jeremy Hurren

IPC: G06F9/455 ,  G06F9/46

CPC classification number: G06F8/658 ,  G06F9/45558

Abstract: A method may include identifying a first version of a virtualized application. The first version of the virtualized application may include a first read-only virtualization sublayer, and the first read-only virtualization sublayer may provide a base state of the first version of the virtualized application. The method may also include identifying a second version of the virtualized application. The second version of the virtualized application may include a second read-only virtualization sublayer, which may provide a base state of the second version of the virtualized application. The method may further include determining a difference between the first read-only virtualization sublayer and the second read-only virtualization sublayer and using the difference to create a patch configured to update an instance of the first version of the virtualized application to an instance of the second version of the virtualized application. Various other methods, systems, and computer-readable media are also disclosed.

Abstract translation: 方法可以包括识别虚拟化应用的第一版本。 虚拟化应用的第一版本可以包括第一只读虚拟化子层，并且第一只读虚拟化子层可以提供虚拟化应用的第一版本的基本状态。 该方法还可以包括识别虚拟化应用的第二版本。 虚拟化应用的第二版本可以包括第二只读虚拟化子层，其可以提供虚拟化应用的第二版本的基本状态。 该方法还可以包括确定第一只读虚拟化子层和第二只读虚拟化子层之间的差异，并且使用该差异来创建配置成将虚拟化应用的第一版本的实例更新为实例的补丁 虚拟化应用程序的第二个版本。 还公开了各种其它方法，系统和计算机可读介质。

公开(公告)号：US08032556B1

公开(公告)日：2011-10-04

申请号：US12044633

申请日：2008-03-07

Applicant: Randall R. Cook ,  Jeremy Hurren

Inventor： Randall R. Cook ,  Jeremy Hurren

IPC: G06F17/30 ,  G06F7/00 ,  G06F3/00

CPC classification number: G06F17/30899

Abstract: Systems and methods for delivery of user profile data are disclosed. An exemplary method includes detecting a request for a full copy of a user profile data package maintained by a user profile data source subsystem, creating an illusion that the request has been fulfilled, and copying on demand a portion of the user profile data package from the source subsystem to a target location for access by a data consuming subsystem. In certain embodiments, the method further includes utilizing the copied portion of the user profile data package for execution of a computing operation, without fully copying the user profile data package from the source subsystem. In certain embodiments, the portion of the user profile data package is streamed from the source subsystem to the target location over a network connection.

Abstract translation: 公开了用于传送用户简档数据的系统和方法。 一种示例性方法包括检测由用户简档数据源子系统维护的用户简档数据包的完整副本的请求，产生已经满足请求的错觉，并且根据需要复制来自用户简档数据包的一部分的用户简档数据包 源子系统到数据消耗子系统访问的目标位置。 在某些实施例中，该方法还包括利用用户简档数据包的复制部分来执行计算操作，而没有从源子系统完全复制用户简档数据包。 在某些实施例中，用户简档数据包的部分通过网络连接从源子系统流传输到目标位置。