公开(公告)号：US08621649B1

公开(公告)日：2013-12-31

申请号：US13077153

申请日：2011-03-31

申请人： Marten Van Dijk ,  Ari Juels ,  Brian William Fitzgerald ,  George Matthews

发明人： Marten Van Dijk ,  Ari Juels ,  Brian William Fitzgerald ,  George Matthews

IPC分类号： H04L29/06

CPC分类号： H04L29/06 ,  G06F21/60 ,  G06F2221/2149 ,  H04L63/102

摘要： A technique provides a security-sensitive environment. The technique involves establishing a first secure channel from a trusted server to a first data source DA. The technique further involves establishing a second secure channel from the trusted server to a second data source DB. The technique further involves, while the trusted server performs a set of collaborative operations in which the trusted server (i) accesses the first data source through the first secure channel (ii) accesses the second data source through the second secure channel, and (iii) generates a set of collaborative results based on information from the first and second data sources (i.e., the output of f(DA,DB)), running a set of security policy compliance operations in the trusted server to inhibit unauthorized leakage of data in the set of collaborative results.

摘要翻译： 技术提供了一个安全敏感的环境。 该技术涉及从可信服务器建立到第一数据源DA的第一安全通道。 该技术还涉及建立从可信服务器到第二数据源DB的第二安全通道。 该技术还涉及当可信服务器执行一组协作操作时，可信服务器（i）通过第一安全信道访问第一数据源（ii）通过第二安全信道访问第二数据源，并且（iii ）基于来自第一和第二数据源（即，f（DA，DB）的输出）的信息生成一组协作结果，在可信服务器中运行一组安全策略合规性操作，以防止未经授权的数据泄漏 一套合作成果。