公开(公告)号：US20230350953A1

公开(公告)日：2023-11-02

申请号：US17734930

申请日：2022-05-02

Applicant: Kelsey L. Bruso ,  Brian A. Wegleitner ,  Michael T. Kain

Inventor： Kelsey L. Bruso ,  Brian A. Wegleitner ,  Michael T. Kain

IPC: G06F16/907 ,  H04L9/08 ,  H04L9/32

CPC classification number: G06F16/907 ,  H04L9/0825 ,  H04L9/3236 ,  H04L9/3252

Abstract: A processor-based method for securing meta-data through a persistent signature, comprising: identifying meta-data for a file; selecting a private key, a certificate identifier and a hash algorithm identifier for the meta-data; creating an encrypted hash of the meta-data using the hash algorithm and private key; and creating a persistent, independent signature for the meta-data that identifies the meta-data, certificate identifier, hash algorithm identifier, and the encrypted hash value for the meta-data.

公开(公告)号：US20150052347A9

公开(公告)日：2015-02-19

申请号：US13294336

申请日：2011-11-11

Applicant: Michael T. Kain

Inventor： Michael T. Kain

IPC: H04L29/06 ,  H04L9/00 ,  G06F21/00

CPC classification number: H04L63/04 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/166 ,  H04L63/20 ,  H04L69/162 ,  H04L69/326

Abstract: A data communication security system is disclosed that includes a network interface including a first security module implementing a first security architecture, and a second security module implementing a second security architecture different from the first security architecture. The network interface further includes a file-based application programming interface defining a plurality of attributes of the network interface and including at least one attribute associated with data security managed by one of the first and second security modules. The file-based application programming interface includes at least one attribute from among the plurality of attributes that is associated with selecting between the first or second security modules.

Abstract translation: 公开了一种数据通信安全系统，其包括包括实现第一安全架构的第一安全模块的网络接口和实现与第一安全架构不同的第二安全架构的第二安全模块。 网络接口还包括定义网络接口的多个属性的基于文件的应用编程接口，并且包括与第一和第二安全模块之一管理的数据安全性相关联的至少一个属性。 基于文件的应用编程接口包括与在第一或第二安全模块之间进行选择相关联的多个属性中的至少一个属性。

公开(公告)号：US20230353384A1

公开(公告)日：2023-11-02

申请号：US17734942

申请日：2022-05-02

Applicant: Kelsey L. Bruso ,  Brian A. Wegleitner ,  Michael T. Kain

Inventor： Kelsey L. Bruso ,  Brian A. Wegleitner ,  Michael T. Kain

IPC: H04L9/32

CPC classification number: H04L9/3247 ,  H04L9/3242 ,  H04L9/3268

Abstract: A processor-based method for verifying a secured file, directory, or meta-data, comprising: extracting a persistent, independent signature for a secured file, directory, or meta-data from a directory signature file, the signature identifying a certificate identifier, a hash algorithm identifier, and an encrypted hash value for that secured file, directory, or meta-data; retrieving a public key corresponding to the certificate identifier; decrypting the encrypted hash using the public key and a decryption tool, resulting in a clear text hash value; creating a new hash value for the secured file, directory, or meta-data, the hash creation corresponding to the hash algorithm identifier; and verifying the signature when the new hash value for the secured file, directory, or meta-data matches the unencrypted hash value from the persistent, independent signature for the secured file, directory, or meta-data,

公开(公告)号：US20230353372A1

公开(公告)日：2023-11-02

申请号：US17734936

申请日：2022-05-02

Applicant: Kelsey L. Bruso ,  Brian A. Wegleitner ,  Michael T. Kain

Inventor： Kelsey L. Bruso ,  Brian A. Wegleitner ,  Michael T. Kain

IPC: H04L9/32 ,  H04L9/40

CPC classification number: H04L9/3236 ,  H04L9/3247 ,  H04L63/0823

Abstract: A processor-based method for securing directories through a persistent signature, comprising: selecting a directory; selecting a private key, a certificate identifier and a hash algorithm identifier for each selected directory; creating an encrypted hash of the directory using the hash algorithm and private key; and creating a persistent, independent signature for the directory that identifies the directory, certificate identifier, hash algorithm identifier, and the encrypted hash value for that directory.

公开(公告)号：US20130124852A1

公开(公告)日：2013-05-16

申请号：US13294338

申请日：2011-11-11

Applicant: Michael T. Kain ,  Ralph Armstrong

Inventor： Michael T. Kain ,  Ralph Armstrong

IPC: H04L29/06

CPC classification number: H04L69/162 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/166 ,  H04L63/20 ,  H04L69/326

Abstract: A data communication security system is disclosed that includes a network interface configured for transport layer protocol communications at a communication port. The network interface includes a security module configured to provide secure shell (SSH) data security on a transport layer data path, and which is communicatively connected to the transport layer data path. The data communication security system also includes a file-based application programming interface defining a plurality of attributes of the network interface and including at least one attribute configured for selection of the security module and accessible for use in logical I/O operations.

Abstract translation: 公开了一种数据通信安全系统，其包括被配置用于在通信端口处的传输层协议通信的网络接口。 网络接口包括被配置为在传输层数据路径上提供安全壳（SSH）数据安全性并且通信地连接到传输层数据路径的安全模块。 数据通信安全系统还包括定义网络接口的多个属性的基于文件的应用程序编程接口，并且包括被配置用于选择安全模块并可访问以用于逻辑I / O操作的至少一个属性。

公开(公告)号：US06757744B1

公开(公告)日：2004-06-29

申请号：US09310543

申请日：1999-05-12

Applicant: Anthony Narisi ,  Lois B. Coyne ,  Susan Jennion ,  Michael T. Kain ,  Charles Austin Parker

Inventor： Anthony Narisi ,  Lois B. Coyne ,  Susan Jennion ,  Michael T. Kain ,  Charles Austin Parker

IPC: G06F1516

CPC classification number: H04L29/06 ,  H04L67/10 ,  H04L69/10 ,  H04L69/22 ,  H04L69/32 ,  H04L69/329

Abstract: Methods and apparatus that enable a transport protocol executing on a first computer system to be utilized by applications executing on a second computer system which is directly interconnected and closely coupled to the first computer system. An interconnection couples an input/output (I/O) subsystem of the first computer system to an I/O subsystem of the second computer system and provides a path over which data can be transmitted between the first and second computer systems independent of a network interface card, and an interconnection messaging system executing on the first and second computer systems provides general purpose transport interfaces between said first and second computer systems. A distributed transport communications manager executing on the first and second computer systems controls use of the interconnection messaging system to establish a dialog through which the transport protocol of the first computer system may be used by an application executing on the second computer system in a manner which is transparent to the application. The transport protocol executing on the first computer system may be utilized by a plurality of networked computer systems including the second computer system, where the interconnection messaging system establishes dialogs through which the transport protocol of the first computer system may be used by applications executing on the networked computer systems. Conversely, applications executing on the second computer system may utilize transport protocols executing on a plurality of networked computer systems including the first computer system.

公开(公告)号：US06233619B1

公开(公告)日：2001-05-15

申请号：US09126920

申请日：1998-07-31

Applicant: Anthony Narisi ,  Michael T. Kain ,  Gary Salamon ,  Susan Jennion ,  Lois B. Coyne

Inventor： Anthony Narisi ,  Michael T. Kain ,  Gary Salamon ,  Susan Jennion ,  Lois B. Coyne

IPC: G06F1300

CPC classification number: H04L29/06 ,  H04L69/32 ,  H04L69/325

Abstract: Methods and apparatus that enable network applications executing on respective directly interconnected computer systems to communicate at high speed, with low latency, over the interconnection therebetween such that both systems may use their native mechanisms to communicate with each other without change in those mechanisms, rather than over conventional network communication paths such as Ethernet. Communication between applications in co-resident, closely coupled processing environments is provided by replacing the conventional TCP transport layer and the conventional IP network layer with a reliable messaging subsystem (“MSS”) for data transfers between the closely coupled systems which provides an interface which is independent of the communication protocol of the interconnect and a virtual transport layer (“VTL”) which simulates a known transport layer protocol, such as TCP/IP, to the network applications. MSS is a system interconnect independent messaging transport which presents to its users many different delivery and notification mechanisms for the transfer of both control and data information between different heterogeneous environments, while VTL uses the MSS connection to provide a consistent, interconnect independent interface to the session layer.

Abstract translation: 使得能够在相应的直接互连的计算机系统上执行的网络应用程序能够以较低的等待时间通过它们之间的互连进行通信，使得两个系统可以使用它们的本机机制来彼此通信而不改变那些机制，而不是 超过常规的网络通信路径，如以太网。 通过用可靠的消息传送子系统（“MSS”）代替传统的TCP传输层和传统的IP网络层，提供了共同驻留，紧密耦合的处理环境中的应用之间的通信，用于在紧密耦合的系统之间进行数据传输， 独立于互连的通信协议和将网络应用程序模拟已知的传输层协议（如TCP / IP）的虚拟传输层（“VTL”）。 MSS是一种系统互连独立的消息传输，向用户提供了许多不同的传递和通知机制，用于在不同异构环境之间传输控制和数据信息，而VTL使用MSS连接为会话提供一致的互连独立接口 层。

公开(公告)号：US20250047482A1

公开(公告)日：2025-02-06

申请号：US18229740

申请日：2023-08-03

Applicant: Michael T. Kain

Inventor： Michael T. Kain

IPC: H04L9/30 ,  H04L9/32

Abstract: A method of verifying a file includes selecting a file and header, extracting a signature; retrieving a public key associated with the signature; decrypting an encrypted hash to get a clear text value; creating a new hash value; and determining if the clear text value matches the new hash value and if a matched is detected, verifying the signature, and if a match is not detected failing the verification.

公开(公告)号：US20230353377A1

公开(公告)日：2023-11-02

申请号：US17734927

申请日：2022-05-02

Applicant: Kelsey L. Bruso ,  Brian A. Wegleitner ,  Michael T. Kain

Inventor： Kelsey L. Bruso ,  Brian A. Wegleitner ,  Michael T. Kain

IPC: H04L9/32

CPC classification number: H04L9/3242 ,  H04L9/3247 ,  H04L9/3268

Abstract: A processor-based method for securing files through a persistent signature includes: selecting a file of any file type; selecting a private key, a certificate identifier and a hash algorithm identifier for the file; creating an encrypted hash of the file using the hash algorithm and private key for the file; and creating a persistent, independent signature for each selected file that identifies the file, certificate identifier, hash algorithm identifier, and the encrypted hash value for the file.

公开(公告)号：US20230353373A1

公开(公告)日：2023-11-02

申请号：US17734947

申请日：2022-05-02

Applicant: Kelsey L Bruso ,  Brian A. Wegleitner ,  Michael T. Kain

Inventor： Kelsey L Bruso ,  Brian A. Wegleitner ,  Michael T. Kain

IPC: H04L9/32

CPC classification number: H04L9/3236

Abstract: A processor-based method for creating a persistent directory signature file, comprising: selecting a private key, a certificate identifier and a hash algorithm identifier for the directory signature file; concatenating one or more persistent, independent signatures wherein a persistent independent signature includes a file name, sub-directory indicator, or meta-data indicator, and a certificate identifier, and a hash identifier, and an encrypted hash; creating an encrypted hash of the one or more concatenated signatures using the hash algorithm and private key chosen for the directory signature file; and concatenating the encrypted hash of the one or more concatenated signatures with the concatenated signatures and the certificate identifier, and hash algorithm identifier chosen for the directory signature file to create a persistent, independent signature for the directory signature file. A persistent directory signature file includes a directory signature file certificate identifier; a directory signature file hash identifier; a file name; a file certificate identifier; a file hash identifier; a file hash value encrypted; and a directory signature file hash value encrypted.