公开(公告)号：US08095542B1

公开(公告)日：2012-01-10

申请号：US11324642

申请日：2006-01-03

申请人： Tom Teugels ,  Stephen J. Todd ,  Jan F. Van Riel ,  Michael Kilian

发明人： Tom Teugels ,  Stephen J. Todd ,  Jan F. Van Riel ,  Michael Kilian

IPC分类号： G06F17/30 ,  G06F12/00

CPC分类号： G06F17/30091 ,  G06F17/30109 ,  G11C15/00

摘要： In one aspect, two ways of accessing a content unit stored on a CAS are provided, wherein the content unit has a content address that is computed based, at least in part, on at least a portion of its content. A first interface is provided to a file system in which the content unit is logically stored as a logical unit identified by a logical identifier, wherein the content unit is accessed in response to a request to the first interface to access the logical unit and identifying the content unit via the logical identifier. A second interface is provided through which the content unit can be accessed via the content address, wherein the content unit is accessed in response to a request to the second interface to access the content unit and identifying the content unit by the content address.

摘要翻译： 一方面，提供了访问存储在CAS上的内容单元的两种方式，其中所述内容单元具有至少部分地基于其内容的至少一部分来计算的内容地址。 将第一接口提供给文件系统，其中内容单元被逻辑地存储为由逻辑标识符标识的逻辑单元，其中响应于对第一接口的请求访问内容单元以访问逻辑单元并且识别 内容单元通过逻辑标识符。 提供第二接口，通过该内容单元可以经由内容地址访问内容单元，其中响应于向第二接口请求访问内容单元并通过内容地址识别内容单元来访问内容单元。

公开(公告)号：US07526553B1

公开(公告)日：2009-04-28

申请号：US11519950

申请日：2006-09-12

申请人： Stephen J. Todd ,  Michael Kilian ,  Tom Teugels ,  Jan F. Van Riel

发明人： Stephen J. Todd ,  Michael Kilian ,  Tom Teugels ,  Jan F. Van Riel

IPC分类号： G06F15/173 ,  G06F12/00

CPC分类号： G06F12/0862 ,  G06F2212/601

摘要： Caching techniques for use in a computer system comprising a core and at least one edge device. The core comprises at least one object addressable storage (OAS) system that stores a plurality of content units and provides an interface that enables content units to be accessed via object identifiers. The at least one edge device is configured to access at least some of the content units. At least one cache is configured to be disposed logically between the core and the at least one edge device and to temporarily store a subset of the content units. The at least one cache is further configured to have a limit on a maximum number of content units that can be stored on the at least one cache simultaneously.

摘要翻译： 用于包括核心和至少一个边缘设备的计算机系统中的缓存技术。 核心包括存储多个内容单元的至少一个对象可寻址存储（OAS）系统，并且提供允许通过对象标识符访问内容单元的接口。 所述至少一个边缘设备被配置为访问所述内容单元中的至少一些。 至少一个缓存被配置为逻辑地布置在核心和至少一个边缘设备之间，并临时存储内容单元的子集。 所述至少一个高速缓存进一步被配置为对可以同时存储在所述至少一个高速缓存上的最大数量的内容单元具有限制。

公开(公告)号：US07451225B1

公开(公告)日：2008-11-11

申请号：US11519390

申请日：2006-09-12

申请人： Stephen J. Todd ,  Michael Kilian ,  Tom Teugels ,  Jan F. Van Riel

发明人： Stephen J. Todd ,  Michael Kilian ,  Tom Teugels ,  Jan F. Van Riel

IPC分类号： G06F15/16 ,  G06F12/00

CPC分类号： G06F12/0862 ,  G06F12/126 ,  H04L67/28 ,  H04L67/2847 ,  H04L67/2852

摘要： Caching techniques for use in a computer system comprising a core and at least one edge device. The core comprises at least one object addressable storage system. At least one cache is disposed logically between the core and the at least one edge device. The cache has a prefetch policy that selects from among the content units based upon at least one prefetch criterion selected from the group consisting of: a source that wrote an evaluated content unit; a size of an evaluated content unit; a content type of an evaluated content unit; when the prefetch is performed subsequent to a request to access at least one of the plurality of content units, an identity of the requestor; when the prefetch is performed subsequent to a request to access at least one of the content units stored at a first time, proximity of a time at which an evaluated content unit was stored relative to the first time; and metadata written with the evaluated content unit.

摘要翻译： 用于包括核心和至少一个边缘设备的计算机系统中的缓存技术。 核心包括至少一个目标可寻址存储系统。 至少一个缓存器逻辑地布置在所述核心和所述至少一个边缘设备之间。 高速缓存具有预取策略，其基于从由以下组成的组中选择的至少一个预取准则从内容单元中进行选择：写入评估内容单元的源; 评估内容单元的大小; 评估内容单元的内容类型; 当在访问所述多个内容单元中的至少一个内容单元的请求之后执行所述预取时，所述请求者的身份; 当在第一次存储的存储单元中的至少一个访问请求之后执行预取时，相对于第一次存储评估内容单元的时间的接近度; 以及用评估的内容单元写入的元数据。

公开(公告)号：US09497062B1

公开(公告)日：2016-11-15

申请号：US13556862

申请日：2012-07-24

申请人： Paul R. Carpentier ,  Jan F. Van Riel ,  Tom Teugels

发明人： Paul R. Carpentier ,  Jan F. Van Riel ,  Tom Teugels

IPC分类号： H04L29/06 ,  H04L29/00 ,  G06F21/00 ,  G06F17/00

CPC分类号： H04L29/00 ,  G06F17/3061 ,  G06F21/00 ,  G06F21/60 ,  G06F21/64 ,  H04L9/0861 ,  H04L9/0894 ,  H04L9/3236 ,  Y10S707/99931 ,  Y10S707/99953

摘要： An algorithm (such as the MD5 hash function) is applied to a file to produce an intrinsic unique identifier (IUI) for the file (or message digest). The file is encrypted using its IUI as the key for the encryption algorithm. An algorithm is then applied to the encrypted file to produce an IUI for the encrypted file. The encrypted file is safely stored or transferred within a network and is uniquely identifiable by its IUI. The encrypted file is decrypted using the IUI of the plaintext file as the key. The IUI serves as both a key to decrypt the file and also as verification that the integrity of the plaintext file has not been compromised. IUIs for any number of such encrypted files may be assembled into a descriptor file that includes meta data for each file, the IUI of the plaintext file and the IUI of the encrypted file. An algorithm is applied to the descriptor file to produce an IUI for the descriptor file. The plaintext descriptor file is then encrypted using the descriptor file IUI as a key for the encryption algorithm. An algorithm is applied to the encrypted descriptor file to produce an IUI for the encrypted descriptor file. The IUI of the encrypted descriptor file is a location-independent identifier to locate the encrypted descriptor file. A flattened descriptor file includes the IUIs of encrypted data files and the IUI of the encrypted descriptor file. An algorithm is applied to the flattened descriptor file to produce its own IUI.

摘要翻译： 一个算法（如MD5哈希函数）被应用于文件以产生文件（或消息摘要）的固有唯一标识符（IUI）。 该文件使用其IUI作为加密算法的密钥进行加密。 然后将一个算法应用于加密文件，以生成加密文件的IUI。 加密的文件在网络中安全地存储或传输，并由其IUI唯一标识。 使用明文文件的IUI作为密钥解密加密文件。 IUI既可用于解密文件，也可用作验证明文文件的完整性尚未被泄露。 可以将任何数量的这种加密文件的IUI组装成包括每个文件的元数据，明文文件的IUI和加密文件的IUI的描述符文件。 一个算法应用于描述符文件以产生描述符文件的IUI。 然后使用描述符文件IUI作为加密算法的密钥来加密明文描述符文件。 将一种算法应用于加密的描述符文件，以生成加密描述符文件的IUI。 加密描述符文件的IUI是一个位置无关的标识符来定位加密的描述符文件。 扁平化描述符文件包括加密数据文件的IUI和加密描述符文件的IUI。 一个算法应用于展平描述符文件以产生自己的IUI。

公开(公告)号：US07904557B1

公开(公告)日：2011-03-08

申请号：US11728539

申请日：2007-03-26

申请人： Jan F. Van Riel ,  Tom Teugels ,  Michael Kilian ,  Stephen J. Todd

发明人： Jan F. Van Riel ,  Tom Teugels ,  Michael Kilian ,  Stephen J. Todd

IPC分类号： G06F15/173

CPC分类号： G06F21/6218

摘要： Aspects of the invention relate to sharing content stored on an object addressable storage (OAS) system among a plurality of users of the OAS system and authenticating users to an OAS system. In some embodiments, a user may store content units on the OAS system and control access by other users to these content units. In some embodiments, when a user grants one or more other users access to a content unit stored on the OAS system, the OAS system may send a notification of grant of access to the other user(s).

摘要翻译： 本发明的方面涉及在OAS系统的多个用户之间共享存储在对象可寻址存储（OAS）系统上的内容，并向OAS系统认证用户。 在一些实施例中，用户可以在OAS系统上存储内容单元并且控制其他用户对这些内容单元的访问。 在一些实施例中，当用户授权一个或多个其他用户访问存储在OAS系统上的内容单元时，OAS系统可以向另一个用户发送授权访问的通知。

公开(公告)号：US07734886B1

公开(公告)日：2010-06-08

申请号：US11728540

申请日：2007-03-26

申请人： Jan F. Van Riel ,  Tom Teugels ,  Michael Kilian ,  Stephen J. Todd

发明人： Jan F. Van Riel ,  Tom Teugels ,  Michael Kilian ,  Stephen J. Todd

IPC分类号： G06F12/08

CPC分类号： G06F21/6218

摘要： Aspects of the invention relate to sharing content stored on an object addressable storage (OAS) system among a plurality of users of the OAS system and authenticating users to an OAS system. In some embodiments, a user may store content units on the OAS system and control access by other users to these content units. In some embodiments, when a user grants one or more other users access to a content unit stored on the OAS system, the OAS system may send a notification of grant of access to the other user(s).

摘要翻译： 本发明的方面涉及在OAS系统的多个用户之间共享存储在对象可寻址存储（OAS）系统上的内容，并向OAS系统认证用户。 在一些实施例中，用户可以在OAS系统上存储内容单元并且控制其他用户对这些内容单元的访问。 在一些实施例中，当用户授权一个或多个其他用户访问存储在OAS系统上的内容单元时，OAS系统可以向另一个用户发送授权访问的通知。

公开(公告)号：US07506157B2

公开(公告)日：2009-03-17

申请号：US11197854

申请日：2005-08-05

申请人： Paul R. Carpentier ,  Jan F. Van Riel ,  Tom Teugels

发明人： Paul R. Carpentier ,  Jan F. Van Riel ,  Tom Teugels

IPC分类号： H04L9/00

CPC分类号： G06F17/30097 ,  G06F11/1451 ,  G06F11/1453 ,  G06F11/1464 ,  G06Q50/22 ,  H04L12/1854 ,  H04L63/0428 ,  H04L63/065 ,  H04L63/12 ,  H04L67/104 ,  H04L67/1068 ,  H04L67/108 ,  H04L67/28 ,  H04L67/2833 ,  H04L67/2842

摘要： Access to content addressable data on a network is facilitated using digital information storing devices or data repositories (“silos”) that monitor broadcast data requests over the network. A number of silos automatically monitor both data requests and data itself that are broadcast over a network. The silos selectively store data. Each silo responds to data requests broadcast over the network with data the silo has previously intercepted. A content addressable file scheme is used to enable the data repositories to reliably identify data being requested. When a data request is received, each silo evaluates whether it has all or a portion of the data being requested and responds to requests when it has the data. Requests for data are implemented by broadcasting a cryptographic hash data identifier of the data file needed. The data identifier is used by a silo to determine which data to receive and store. A silo includes a network interface, a digital asset collector, an asset request list, asset storage, an asset identifier processor and an asset supplier. The asset identifier processor computes a cryptographic hash asset identifier for a received asset and compares it to an asset identifier on its asset request list to verify it has the correct asset. A hash of a list of assets is also computed and broadcast over the network. When the hash of the list of assets is received by a silo, it places all the assets in its asset request list.

摘要翻译： 使用通过网络监视广播数据请求的数字信息存储设备或数据存储库（“孤岛”）来促进访问网络上的内容可寻址数据。 许多孤岛自动监视通过网络广播的数据请求和数据本身。 仓库有选择地存储数据。 每个筒仓响应数据请求，通过网络传播数据，该数据先前已被拦截。 内容可寻址文件方案用于使数据存储库可靠地识别正在请求的数据。 当接收到数据请求时，每个silo评估它是否具有所请求的全部或一部分数据，并且在具有数据时响应请求。 通过广播所需数据文件的加密哈希数据标识符来实现数据请求。 数据标识符由筒仓使用以确定要接收和存储的数据。 仓库包括网络接口，数字资产收集器，资产请求列表，资产存储，资产标识符处理器和资产提供者。 资产标识处理器计算接收到的资产的加密哈希资产标识符，并将其与其资产请求列表上的资产标识符进行比较，以验证其具有正确的资产。 资产列表的散列也被计算并通过网络进行广播。 当资产清单的散列由仓库接收时，它将所有资产放在其资产请求列表中。

公开(公告)号：US06976165B1

公开(公告)日：2005-12-13

申请号：US09391360

申请日：1999-09-07

申请人： Paul R. Carpentier ,  Jan F. Van Riel ,  Tom Teugels

发明人： Paul R. Carpentier ,  Jan F. Van Riel ,  Tom Teugels

IPC分类号： G06F12/14 ,  G06F1/00 ,  G06F12/00 ,  G06F17/30 ,  G06F21/24 ,  H04L9/06 ,  H04L9/32 ,  G06F11/30

CPC分类号： H04L29/00 ,  G06F17/3061 ,  G06F21/00 ,  G06F21/60 ,  G06F21/64 ,  H04L9/0861 ,  H04L9/0894 ,  H04L9/3236 ,  Y10S707/99931 ,  Y10S707/99953

摘要： An algorithm (such as the MD5 hash function) is applied to a file to produce an intrinsic unique identifier (IUI) for the file (or message digest). The file is encrypted using its IUI as the key for the encryption algorithm. An algorithm is then applied to the encrypted file to produce an IUI for the encrypted file. The encrypted file is safely stored or transferred within a network and is uniquely identifiable by its IUI. The encrypted file is decrypted using the IUI of the plaintext file as the key. The IUI serves as both a key to decrypt the file and also as verification that the integrity of the plaintext file has not been compromised. IUIs for any number of such encrypted files may be assembled into a descriptor file that includes meta data for each file, the IUI of the plaintext file and the IUI of the encrypted file. An algorithm is applied to the descriptor file to produce an IUI for the descriptor file. The plaintext descriptor file is then encrypted using the descriptor file IUI as a key for the encryption algorithm. An algorithm is applied to the encrypted descriptor file to produce an IUI for the encrypted descriptor file. The IUI of the encrypted descriptor file is a location-independent identifier to locate the encrypted descriptor file. A flattened descriptor file includes the IUIs of encrypted data files and the IUI of the encrypted descriptor file. An algorithm is applied to the flattened descriptor file to produce its own IUI.

摘要翻译： 将一种算法（如MD 5散列函数）应用于文件以产生文件（或消息摘要）的固有唯一标识符（IUI）。 该文件使用其IUI作为加密算法的密钥进行加密。 然后将一个算法应用于加密文件，以生成加密文件的IUI。 加密的文件在网络中安全地存储或传输，并由其IUI唯一标识。 使用明文文件的IUI作为密钥解密加密文件。 IUI既可用于解密文件，也可用作验证明文文件的完整性尚未被泄露。 可以将任何数量的这种加密文件的IUI组装成包括每个文件的元数据，明文文件的IUI和加密文件的IUI的描述符文件。 一个算法应用于描述符文件以产生描述符文件的IUI。 然后使用描述符文件IUI作为加密算法的密钥来加密明文描述符文件。 将一种算法应用于加密的描述符文件，以生成加密描述符文件的IUI。 加密描述符文件的IUI是一个位置无关的标识符来定位加密的描述符文件。 扁平化描述符文件包括加密数据文件的IUI和加密描述符文件的IUI。 一个算法应用于展平描述符文件以产生自己的IUI。

公开(公告)号：US06807632B1

公开(公告)日：2004-10-19

申请号：US09236366

申请日：1999-01-21

申请人： Paul R. Carpentier ,  Jan F. Van Riel ,  Tom Teugels

发明人： Paul R. Carpentier ,  Jan F. Van Riel ,  Tom Teugels

IPC分类号： H04L900

CPC分类号： G06F17/30097 ,  G06F11/1451 ,  G06F11/1453 ,  G06F11/1464 ,  G06Q50/22 ,  H04L12/1854 ,  H04L63/0428 ,  H04L63/065 ,  H04L63/12 ,  H04L67/104 ,  H04L67/1068 ,  H04L67/108 ,  H04L67/28 ,  H04L67/2833 ,  H04L67/2842

摘要： Representing a number of assets on an originating computer begins with selecting the assets to be represented. Cryptographic hash asset identifiers are generated; each of the asset identifiers is computed using the contents of a particular asset. The asset identifier is a content-based or content-addressable asset name for the asset and is location independent. An asset list is generated that includes the asset identifiers computed from the assets. A cryptographic hash asset list identifier is generated that is computed from the asset list. The asset list identifier is stored for later retrieval. The assets selected are also stored for safekeeping either locally or on a computer network. In the event of loss of the files from the originating computer, the asset list identifier is retrieved. Using the asset list identifier, the original asset list is found and retrieved from its safe location. The asset identifiers from the retrieved asset list are used to find and retrieve the individual assets from their backup locations. The assets are verified by recomputing the cryptographic hash asset identifier for each asset retrieved and comparing it to the asset identifier from the asset list. The MD5 algorithm is used for the cryptographic hash function. Assets are retrieved using a multicast protocol. A series of importer programs searches for assets to retrieve in progressively more remote locations. Assets are retrieved whole or in segments.

摘要翻译： 代表始发计算机上的一些资产开始于选择要表征的资产。 生成加密散列资产标识符; 使用特定资产的内容计算每个资产标识符。 资产标识符是资产的基于内容或内容可寻址的资产名称，与位置无关。 生成包含从资产计算的资产标识符的资产列表。 生成从资产列表计算的加密哈希资产列表标识符。 存储资产列表标识符以供以后检索。 所选择的资产也存储在本地或计算机网络上进行保管。 在从始发计算机丢失文件的情况下，检索资产列表标识符。 使用资产列表标识符，从其安全位置找到并检索原始资产列表。 来自检索资产列表的资产标识符用于从其备份位置查找和检索单个资产。 通过重新计算所检索的每个资产的加密哈希资产标识符并将其与资产列表中的资产标识符进行比较来验证资产。 MD5算法用于密码散列函数。 使用多播协议检索资产。 一系列进口商计划搜索资产，以便在逐渐偏远的地区进行检索。 资产全部或分段检索。

公开(公告)号：US07930550B2

公开(公告)日：2011-04-19

申请号：US10893839

申请日：2004-07-19

申请人： Paul R. Carpentier ,  Jan F. Van Riel ,  Tom Teugels

发明人： Paul R. Carpentier ,  Jan F. Van Riel ,  Tom Teugels

IPC分类号： H04L9/00

CPC分类号： G06F17/30097 ,  G06F11/1451 ,  G06F11/1453 ,  G06F11/1464 ,  G06Q50/22 ,  H04L12/1854 ,  H04L63/0428 ,  H04L63/065 ,  H04L63/12 ,  H04L67/104 ,  H04L67/1068 ,  H04L67/108 ,  H04L67/28 ,  H04L67/2833 ,  H04L67/2842

摘要： Representing a number of assets on an originating computer begins with selecting the assets to be represented. Cryptographic hash asset identifiers are generated; each of the asset identifiers is computed using the contents of a particular asset. The asset identifier is a content-based or content-addressable asset name for the asset and is location independent. An asset list is generated that includes the asset identifiers computed from the assets. A cryptographic hash asset list identifier is generated that is computed from the asset list. The asset list identifier is stored for later retrieval. The assets selected are also stored for safekeeping either locally or on a computer network. In the event of loss of the files from the originating computer, the asset list identifier is retrieved. Using the asset list identifier, the original asset list is found and retrieved from its safe location. The asset identifiers from the retrieved asset list are used to find and retrieve the individual assets from their backup locations. The assets are verified by recomputing the cryptographic hash asset identifier for each asset retrieved and comparing it to the asset identifier from the asset list. The MD5 algorithm is used for the cryptographic hash function. Assets are retrieved using a multicast protocol. A series of importer programs searches for assets to retrieve in progressively more remote locations. Assets are retrieved whole or in segments.

摘要翻译： 代表始发计算机上的一些资产开始于选择要表征的资产。 生成加密散列资产标识符; 使用特定资产的内容计算每个资产标识符。 资产标识符是资产的基于内容或内容可寻址的资产名称，与位置无关。 生成包含从资产计算的资产标识符的资产列表。 生成从资产列表计算的加密哈希资产列表标识符。 存储资产列表标识符以供以后检索。 所选择的资产也存储在本地或计算机网络上进行保管。 在从始发计算机丢失文件的情况下，检索资产列表标识符。 使用资产列表标识符，从其安全位置找到并检索原始资产列表。 来自检索资产列表的资产标识符用于从其备份位置查找和检索单个资产。 通过重新计算所检索的每个资产的加密哈希资产标识符并将其与资产列表中的资产标识符进行比较来验证资产。 MD5算法用于密码散列函数。 使用多播协议检索资产。 一系列进口商计划搜索资产，以便在逐渐偏远的地区进行检索。 资产全部或分段检索。