利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

152 条记录 (耗时 0.039 秒)

    Secure recovery in a serverless distributed file system
    31.
    发明授权
    Secure recovery in a serverless distributed file system 有权
    在无服务器分布式文件系统中安全恢复

    公开(公告)号:US07428751B2

    公开(公告)日:2008-09-23

    申请号:US10310440

    申请日:2002-12-05

    申请人: Miguel Oom Temudo de Castro Atul Adya John R. Douceur William J. Bolosky

    发明人: Miguel Oom Temudo de Castro Atul Adya John R. Douceur William J. Bolosky

    IPC分类号: H04L29/00 G06F21/00

    CPC分类号: H04L63/0435 G06F17/30194 G06F21/40 G06F21/62 G06F2221/2101 H04L9/3236 H04L9/3247 H04L9/3255 H04L63/0442 H04L63/0823

    摘要: Systems and methods for secure file writes after a catastrophic event are allowed over an unauthenticated channel in a serverless distributed file system if an authenticator accompanies the secure file writes. The authenticator can be a power-of-attorney certificate with time limitations, a vector of message authenticated code, or a single message authenticator with secured with a secret shared among members of the serverless distributed file system. The serverless distributed file system includes at least 3f+1 participating computer members, with f representing a number of faults tolerable by the system. The group requires at least one authenticator for file creation and file uploads. Any changes to files stored among the members can be made over an unauthenticated channel if the file changes are secured by the authenticator and the group is able to verify the authenticator.

    摘要翻译: 如果认证者伴随着安全文件写入,则在无故障分布式文件系统中,通过未经身份验证的通道允许灾难性事件之后的安全文件写入的系统和方法。 验证器可以是具有时间限制的授权证书,消息认证代码的向量,或者具有在无服务器分布式文件系统的成员之间共享的秘密的单个消息认证器。 无服务器分布式文件系统至少包括3f + 1个参与的计算机成员,其中f表示系统可容忍的许多故障。 该组至少需要一个身份验证器用于文件创建和文件上传。 如果文件更改由验证者保护,并且该组能够验证验证器,则可以通过未经身份验证的通道对存储在成员中的文件进行任何更改。

    On-disk file format for a serverless distributed file system
    32.
    发明授权
    On-disk file format for a serverless distributed file system 失效

    公开(公告)号:US07043637B2

    公开(公告)日:2006-05-09

    申请号:US09814259

    申请日:2001-03-21

    申请人: William J. Bolosky Gerald Cermak Atul Adya John R. Douceur

    发明人: William J. Bolosky Gerald Cermak Atul Adya John R. Douceur

    IPC分类号: G06F11/30

    CPC分类号: G06F17/30097 G06F19/00 H04L9/0656 H04L9/3239 H04L9/3249 H04L2209/20 H04L2209/38 H04L2209/60

    摘要: A file format for a serverless distributed file system is composed of two parts: a primary data stream and a metadata stream. The data stream contains a file that is divided into multiple blocks. Each block is encrypted using a hash of the block as the encryption key. The metadata stream contains a header, a structure for indexing the encrypted blocks in the primary data stream, and some user information. The indexing structure defines leaf nodes for each of the blocks. Each leaf node consists of an access value used for decryption of the associated block and a verification value used to verify the encrypted block independently of other blocks. In one implementation, the access value is formed by hashing the file block and encrypting the resultant hash value using a randomly generated key. The key is then encrypted using the user's key as the encryption key. The verification value is formed by hashing the associated encrypted block using a one-way hash function. The file format supports verification of individual file blocks without knowledge of the randomly generated key or any user keys. To verify a block of the file, the file system traverses the tree to the appropriate leaf node associated with a target block to be verified. The file system hashes the target block and if the hash matches the access value contained in the leaf node, the block is authentic.

    Exclusive encryption
    34.
    发明授权
    Exclusive encryption 有权
    独家加密

    公开(公告)号:US07770023B2

    公开(公告)日:2010-08-03

    申请号:US11275186

    申请日:2005-12-16

    申请人: John R. Douceur Atul Adya Josh D. Benaloh Gideon A. Yuval

    发明人: John R. Douceur Atul Adya Josh D. Benaloh Gideon A. Yuval

    IPC分类号: H04L9/32

    CPC分类号: H04L63/0428 G06F21/6209 G06F21/6218 G06F2221/2107

    摘要: An exclusive encryption system is established using multiple computing devices. The exclusive encryption system allows for the exclusion of certain plaintext (e.g., by one of the computing devices) and ciphertext (e.g., by another of the computing devices) while at the same time maintaining the privacy created by the encryption (e.g., so the other computing device cannot see the plaintext). The exclusive encryption system may be implemented as part of a serverless distributed file system with directory entries (e.g., file names or folder names) being the plaintext, or alternatively as part of other systems.

    摘要翻译: 使用多个计算设备建立专用加密系统。 专用加密系统允许排除某些明文(例如,由计算设备之一)和密文(例如,由计算设备中的另一个),同时保持由加密产生的隐私(例如,因此, 其他计算设备看不到明文)。 独占加密系统可以被实现为具有目录条目(例如,文件名或文件夹名称)为明文,或作为其他系统的一部分的无服务器分布式文件系统的一部分。

    Method and system for regulating background tasks using performance measurements
    39.
    发明授权
    Method and system for regulating background tasks using performance measurements 有权
    使用性能测量来调整后台任务的方法和系统

    公开(公告)号:US07716672B2

    公开(公告)日:2010-05-11

    申请号:US11009655

    申请日:2004-12-10

    申请人: John R. Douceur William J. Bolosky

    发明人: John R. Douceur William J. Bolosky

    IPC分类号: G06F9/46

    CPC分类号: G06F9/4881

    摘要: A method and system for regulating tasks of background processes so as to reduce interference with foreground processes. The progress rate of a background task (e.g., amount of work performed per unit time) is measured and evaluated against a target amount. If the progress rate appears degraded, the background task is suspended for a computed time interval so as to back off from its interference with a foreground process. Each time the progress rate appears degraded, the time interval is exponentially increased from its previous value up to a maximum, however if the performance appears normal, the time interval is reset to a minimum. Evaluation of the work is statistically based so as to eliminate variations in measurements, and automatic calibration of the target amount is provided, as is a mechanism for prioritizing multiple background tasks.

    摘要翻译: 一种用于调整后台进程任务的方法和系统,以减少对前台进程的干扰。 根据目标量测量和评估后台任务的进度(例如,每单位时间执行的工作量)。 如果进度速率出现降级,则后台任务将暂停计算的时间间隔,以避免其与前台进程的干扰。 每次进度出现退化时,时间间隔从先前的值到最大值都呈指数级增长,但是如果性能出现正常,则时间间隔被重置为最小值。 工作的评估是统计学的,以便消除测量中的变化,并且提供目标量的自动校准,以及用于优先考虑多个后台任务的机制。

    Continuous media file server system and method for scheduling network resources to play multiple files having different data transmission rates
    40.
    发明授权
    Continuous media file server system and method for scheduling network resources to play multiple files having different data transmission rates 失效
    连续媒体文件服务器系统和方法,用于调度网络资源,播放具有不同数据传输速率的多个文件

    公开(公告)号:US6134596A

    公开(公告)日:2000-10-17

    申请号:US934972

    申请日:1997-09-18

    申请人: William J. Bolosky John R. Douceur

    发明人: William J. Bolosky John R. Douceur

    IPC分类号: H04L12/56 H04L29/06 H04L29/08 H04N21/21 H04N21/23 G06F15/16 G06F15/167

    CPC分类号: H04L65/4084 H04L29/06 H04L49/90 H04L67/1097 H04L67/325 H04L69/329 H04N21/21 H04N21/23 H04L29/06027

    摘要: A continuous media file server system has a controller connected to multiple data servers. Each data server supports at least one storage disk. Data files are distributed across the data servers so that data blocks of the data files are stored on each of the storage disks. The data files have different data transmission rates at which they are served over a network to clients in the form of data streams. A scheduling unit maintains a network schedule that provides a relative ordering of transmission times of requested data streams. The transmission times indicate when the data servers are to transmit corresponding data blocks of the requested data files over the network to stream the data to clients. The block play times for all data files have a fixed duration, with the size of the data blocks from data file to data file varying according to the data transmission rates of the files. When a transmission time for a data file block approaches, the scheduling unit instructs the appropriate data server to read a data block for that data file from the disk prior to the transmission time in the network schedule. In this manner, disk reads are scheduled implicitly according to the network schedule. The data is temporarily stored in buffer memory, and later transmitted over the network. When a request for a new data stream is received, the scheduling unit evaluates whether the new data stream can be inserted into the network schedule without overburdening the data servers' ability to serve the existing data streams on the network schedule.

    摘要翻译: 连续的媒体文件服务器系统具有连接到多个数据服务器的控制器。 每个数据服务器至少支持一个存储磁盘。 数据文件分布在数据服务器上,使数据文件的数据块存储在每个存储磁盘上。 数据文件具有不同的数据传输速率,它们以数据流的形式通过网络向客户端提供服务。 调度单元维护提供所请求数据流的传输时间的相对排序的网络调度。 传输时间表示数据服务器何时通过网络传输所请求的数据文件的相应数据块,以将数据流传输到客户端。 所有数据文件的块播放时间具有固定的持续时间,数据块的数据块的大小根据文件的数据传输速率而变化。 当数据文件块的传输时间接近时,调度单元指示适当的数据服务器在网络调度中的发送时间之前从盘读取该数据文件的数据块。 以这种方式,磁盘读取根据网络调度隐含调度。 数据临时存储在缓冲存储器中,然后通过网络传输。 当接收到对新的数据流的请求时,调度单元评估新数据流是否可以被插入到网络调度中,而不会使数据服务器在网络调度上服务于现有数据流的能力过高。