-
公开(公告)号:US20120233455A1
公开(公告)日:2012-09-13
申请号:US13453730
申请日:2012-04-23
申请人: David Ray Kahler , Anjul Mathur , Richard Anthony Ripberger , Jacob Lee Sheppard , Glen Alan Jaquette
发明人: David Ray Kahler , Anjul Mathur , Richard Anthony Ripberger , Jacob Lee Sheppard , Glen Alan Jaquette
IPC分类号: H04L9/28
CPC分类号: H04L9/083 , H04L9/0825
摘要: Provided are a computer program product, system and method for a redundant key server encryption environment. A key server receives from at least one remote key server public keys associated with the at least one remote key server. The key server receives a request for an encryption key from a requesting device and generates the encryption key for use by the requesting device to unlock a storage. The key server generates a first wrapped encryption key by encrypting the encryption key with a requesting device public key, a second wrapped encryption key by encrypting the encryption key with a public key associated with the key server, and at least one additional wrapped encryption key by encrypting the encryption key with the at least one public key provided by the at least one remote key server. The key server transmits the generated keys to the requesting device.
摘要翻译: 提供了一种用于冗余密钥服务器加密环境的计算机程序产品,系统和方法。 密钥服务器从至少一个远程密钥服务器接收与所述至少一个远程密钥服务器相关联的公钥。 密钥服务器从请求设备接收到加密密钥的请求,并生成加密密钥以供请求设备使用以解锁存储。 密钥服务器通过用请求设备公钥加密加密密钥来生成第一包装加密密钥,第二包装加密密钥通过用与密钥服务器相关联的公钥加密加密密钥,以及至少一个附加的包装加密密钥由 使用由所述至少一个远程密钥服务器提供的所述至少一个公共密钥加密所述加密密钥。 密钥服务器将生成的密钥发送到请求设备。
-
公开(公告)号:US08254577B2
公开(公告)日:2012-08-28
申请号:US12034604
申请日:2008-02-20
申请人: Ahmed M. Almoustafa , Brian Gerard Goodman , Paul Merrill Greco , Glen Alan Jaquette , Leonard George Jesionowski , Aaron S. Palazzolo , Michael L. Taylor , An Thien Tran
发明人: Ahmed M. Almoustafa , Brian Gerard Goodman , Paul Merrill Greco , Glen Alan Jaquette , Leonard George Jesionowski , Aaron S. Palazzolo , Michael L. Taylor , An Thien Tran
摘要: A label corresponding to a cryptographic key is stored at a first computational device. A user provided label is received at a second computational device. The user provided label is sent from the second computational device to the first computational device. The user provided label is compared to the label stored at the first computational device. The cryptographic key is used to perform cryptographic operations on data, in response to determining that the user provided label matches the label stored at the first computational device.
摘要翻译: 对应于加密密钥的标签被存储在第一计算设备。 在第二计算设备处接收用户提供的标签。 用户提供的标签从第二计算设备发送到第一计算设备。 将用户提供的标签与存储在第一计算设备处的标签进行比较。 响应于确定用户提供的标签与存储在第一计算设备上的标签相匹配,密码密钥用于对数据执行加密操作。
-
公开(公告)号:US08130959B2
公开(公告)日:2012-03-06
申请号:US11470994
申请日:2006-09-07
CPC分类号: H04L9/0891 , H04L9/0822 , H04L9/083
摘要: Provided are a method, system, and article of manufacture for rekeying encryption keys for removable storage media. A rekey request is received for a coupled removable storage media, wherein encryption on the coupled removable storage media uses a first key and wherein the rekey request indicates a second key. The first key and the second key are accessed in response to the rekey request. The first key is used to perform decryption for the coupled removable storage media and the second key is used to perform encryption for the coupled removable storage media.
摘要翻译: 提供了用于对用于可移动存储介质的加密密钥进行密钥密钥的方法,系统和制品。 接收到用于耦合的可移动存储介质的重新密钥请求,其中耦合的可移动存储介质上的加密使用第一密钥,并且其中重新密钥请求指示第二密钥。 响应重新密钥请求访问第一个密钥和第二个密钥。 第一个密钥用于对耦合的可移动存储介质执行解密,第二个密钥用于对耦合的可移动存储介质执行加密。
-
公开(公告)号:US08108065B2
公开(公告)日:2012-01-31
申请号:US11971087
申请日:2008-01-08
IPC分类号: G06F7/00 , G05B15/00 , G05B19/418
CPC分类号: G11B15/6835
摘要: A method is provided for utilizing target of opportunity to perform at least one special operation while a removable storage medium is mounted within a data storage drive for another purpose. A target of opportunity is recognized by determining if at least one special operation may be performed by the data storage drive. If it is determined that at least one special operation may be performed then a first notification that the data storage drive is to remain in a not ready state is sent in response. At least one special operation is performed, and in response to the at least one special operation being performed, a second notification is sent that the removable storage medium is in a ready state or an error state.
摘要翻译: 提供了一种用于利用机会目标执行至少一个特殊操作的方法,同时可移动存储介质安装在用于另一目的的数据存储驱动器内。 通过确定数据存储驱动器是否可以执行至少一个特殊操作来识别机会的目标。 如果确定可以执行至少一个特殊操作,则响应地发送数据存储驱动器将保持未就绪状态的第一通知。 执行至少一个特殊操作,并且响应于所执行的至少一个特殊操作,发送第二通知,使得可移动存储介质处于就绪状态或错误状态。
-
公开(公告)号:US20110261964A1
公开(公告)日:2011-10-27
申请号:US12767723
申请日:2010-04-26
申请人: David Ray Kahler , Anjul Mathur , Richard Anthony Ripberger , Jacob Lee Sheppard , Glen Alan Jaquette
发明人: David Ray Kahler , Anjul Mathur , Richard Anthony Ripberger , Jacob Lee Sheppard , Glen Alan Jaquette
CPC分类号: H04L9/083 , H04L9/0825
摘要: Provided are a computer program product, system and method for a redundant key server encryption environment. A key server transmits public keys associated with the key server and at least one device to at least one remote key server. The key server receives from the at least one remote key server public keys associated with the at least one remote key server. The key server receives a request for an encryption key from a requesting device comprising one of the at least one device and generates the encryption key for use by the requesting device to unlock a storage. The key server generates a first wrapped encryption key by encrypting the encryption key with a requesting device public key associated with the requesting device. The key server generates a second wrapped encryption key by encrypting the encryption key with a public key associated with the key server. At least one additional wrapped encryption key is generated for each of the at least one remote key server by encrypting the encryption key with the at least one public key provided by the at least one remote key server. The key server transmits the first, second and the at least one additional wrapped encryption key to the requesting device.
摘要翻译: 提供了一种用于冗余密钥服务器加密环境的计算机程序产品,系统和方法。 密钥服务器将与密钥服务器和至少一个设备相关联的公钥传送到至少一个远程密钥服务器。 密钥服务器从与至少一个远程密钥服务器相关联的至少一个远程密钥服务器公钥接收。 密钥服务器从包括至少一个设备之一的请求设备接收到对加密密钥的请求,并且生成加密密钥以供请求设备使用以解锁存储。 密钥服务器通过使用与请求设备相关联的请求设备公钥对加密密钥进行加密来生成第一封包加密密钥。 密钥服务器通过使用与密钥服务器相关联的公钥加密加密密钥来生成第二封包加密密钥。 通过利用由至少一个远程密钥服务器提供的至少一个公共密钥对加密密钥进行加密,为至少一个远程密钥服务器中的每一个生成至少一个附加的包装加密密钥。 密钥服务器将第一,第二和至少一个附加的包装加密密钥发送到请求设备。
-
76.发明授权Method, system, and program for securely providing keys to encode and decode data in a storage cartridge 失效用于安全地提供密钥以对存储盒中的数据进行编码和解码的方法,系统和程序公开(公告)号:US07865440B2
公开(公告)日:2011-01-04
申请号:US09977159
申请日:2001-10-11
申请人: Glen Alan Jaquette
发明人: Glen Alan Jaquette
IPC分类号: G06F17/00
CPC分类号: G06F21/805 , G06F21/6218 , G06F21/80 , G06F2221/2121
摘要: Provided is a method, system, and program for enabling access to data in a storage medium within one of a plurality of storage cartridges capable of being mounted into a interface device. An association is provided of at least one coding key to a plurality of storage cartridges. A determination is made of one coding key associated with one target storage cartridge, wherein the coding key is capable of being used to access data in the storage medium within the target storage cartridge. The determined coding key is encrypted. The coding key is subsequently decrypted to use to decode and code data stored in the storage medium.
摘要翻译: 提供了一种方法,系统和程序,用于能够访问能够被安装到接口设备中的多个存储盒之一内的存储介质中的数据。 向多个存储盒提供至少一个编码密钥的关联。 确定与一个目标存储盒相关联的一个编码密钥,其中编码密钥能够用于访问目标存储盒中的存储介质中的数据。 所确定的编码密钥被加密。 随后将编码密钥解密以用于解码和编码存储在存储介质中的数据。
-
公开(公告)号:US07752463B2
公开(公告)日:2010-07-06
申请号:US11530013
申请日:2006-09-07
CPC分类号: G06F21/6209 , G06F21/73
摘要: Provided are techniques for filling a drive table. A key request including at least one of a drive serial number and a world wide node name is received from a data storage drive. It is determined whether the drive serial number or a world wide node name are in an entry in a drive table. In response to determining that the drive serial number or a world wide node name are not in an entry in a drive table, a new entry is automatically added in the drive table that includes the at least one of a drive serial number and a world wide node name.
摘要翻译: 提供了用于填充驱动器表的技术。 从数据存储驱动器接收到包括驱动器序列号和世界范围节点名称中的至少一个的关键请求。 确定驱动器序列号或全球节点名称是否在驱动器表中的条目中。 响应于确定驱动器序列号或全球节点名称不在驱动器表中的条目中,新的条目被自动添加到驱动器表中,该驱动器表包括驱动器序列号和世界范围中的至少一个 节点名称。
-
公开(公告)号:US20090327746A1
公开(公告)日:2009-12-31
申请号:US11733669
申请日:2007-04-10
CPC分类号: G06F12/1408 , G06F21/602 , G06F21/72 , G06F2212/1052 , G06F2212/402 , G09C1/00 , H04L9/0618 , H04L9/083 , H04L9/14 , H04L9/30 , H04L9/3247 , H04L63/061 , H04L63/0823 , H04L2209/12
摘要: Provided is a data storage drive for encrypting data, comprising a microprocessor and circuitry coupled to the microprocessor and adapted to receive a session encrypted data key and to decrypt the session encrypted data key using a session key, wherein a result is a data key that is capable of being used to encrypt clear text and to decrypt cipher text written to a storage medium. Also provided is a system, comprising a microprocessor and circuitry coupled to the microprocessor and adapted to receive a session encrypted data key and to decrypt the session encrypted data key using a private key, wherein a result is a secret key that is capable of being used to encrypt clear text and to decrypt cipher text written to a storage medium.
摘要翻译: 提供了一种用于加密数据的数据存储驱动器,包括微处理器和耦合到微处理器的电路,并适于接收会话加密的数据密钥,并使用会话密钥对会话加密的数据密钥进行解密,其中结果是数据密钥, 能够用于加密明文和解密写入存储介质的密文。 还提供了一种系统,其包括微处理器和耦合到微处理器并适于接收会话加密数据密钥的电路,并使用专用密钥解密会话加密数据密钥,其中结果是能够被使用的密钥 加密明文和解密写入存储介质的密文。
-
公开(公告)号:US20090208017A1
公开(公告)日:2009-08-20
申请号:US12034604
申请日:2008-02-20
申请人: Ahmed M. Almoustafa , Brian Gerard Goodman , Paul Merrill Greco , Glen Alan Jaquette , Leonard George Jesionowski , Aaron S. Palazzolo , Michael L. Taylor , An Thien Tran
发明人: Ahmed M. Almoustafa , Brian Gerard Goodman , Paul Merrill Greco , Glen Alan Jaquette , Leonard George Jesionowski , Aaron S. Palazzolo , Michael L. Taylor , An Thien Tran
IPC分类号: H04L9/06
摘要: A label corresponding to a cryptographic key is stored at a first computational device. A user provided label is received at a second computational device. The user provided label is sent from the second computational device to the first computational device. The user provided label is compared to the label stored at the first computational device. The cryptographic key is used to perform cryptographic operations on data, in response to determining that the user provided label matches the label stored at the first computational device.
摘要翻译: 对应于加密密钥的标签被存储在第一计算设备。 在第二计算设备处接收用户提供的标签。 用户提供的标签从第二计算设备发送到第一计算设备。 将用户提供的标签与存储在第一计算设备处的标签进行比较。 响应于确定用户提供的标签与存储在第一计算设备上的标签相匹配,密码密钥用于对数据执行加密操作。
-
80.发明授权公开(公告)号:US07522680B2
公开(公告)日:2009-04-21
申请号:US11054060
申请日:2005-02-09
申请人: David Berman , Evangelos S. Eleftherion , Robert Allen Hutchins , Glen Alan Jaquette , Constantin M. Melas , Sedat Oelcer
发明人: David Berman , Evangelos S. Eleftherion , Robert Allen Hutchins , Glen Alan Jaquette , Constantin M. Melas , Sedat Oelcer
IPC分类号: H04L27/06
CPC分类号: G11B20/10009 , G11B20/10046 , G11B20/10296 , G11B2220/2516
摘要: An apparatus, system, and method are disclosed for asymmetric maximum likelihood detection. An initialization module initializes a plurality of branch metrics and a plurality of path memories. A coefficient module calculates a plurality of coefficients. A computation module calculates a first and second specified likelihood function. A selection module calculates a third specified branch metric as the maximum of the first and second specified likelihood functions. A path metrics module calculates a third specified path memory from a first and second specified path memory. A results module identifies a data output value from one or more path memories.
摘要翻译: 公开了用于非对称最大似然检测的装置,系统和方法。 初始化模块初始化多个分支度量和多个路径存储器。 系数模块计算多个系数。 计算模块计算第一和第二特定似然函数。 选择模块计算第三指定分支量度作为第一和第二指定似然函数的最大值。 路径度量模块从第一和第二指定路径存储器计算第三指定路径存储器。 结果模块识别来自一个或多个路径存储器的数据输出值。
-
-
-
-
-
-
-
-
-
搜索结果
126 条记录 (耗时 0.028 秒)
