-
公开(公告)号:US09613220B2
公开(公告)日:2017-04-04
申请号:US13024804
申请日:2011-02-10
IPC分类号: H04L29/00 , G06F21/62 , G06F21/31 , G06F21/32 , G06F21/33 , G06F21/40 , G06F21/41 , G06F21/60 , G06Q20/02 , G06Q20/04 , G06Q20/12 , G06Q20/38 , G07F7/10 , H04L29/06 , H04L9/08 , H04L9/32
CPC分类号: G06F21/62 , G06F21/31 , G06F21/32 , G06F21/33 , G06F21/40 , G06F21/41 , G06F21/60 , G06F21/602 , G06F2221/2113 , G06F2221/2115 , G06F2221/2117 , G06Q20/02 , G06Q20/04 , G06Q20/12 , G06Q20/38215 , G06Q20/3823 , G06Q20/3829 , G07F7/1016 , H04L9/0816 , H04L9/085 , H04L9/0894 , H04L9/3231 , H04L9/3247 , H04L9/3263 , H04L63/0428 , H04L63/0853 , H04L63/10 , H04L63/105 , H04L2209/24 , H04L2209/56 , H04L2209/68 , H04L2209/805
摘要: The present invention provides a method and system for securing sensitive data from unauthorized access or use. The method and system of the present invention is useful in a wide variety of settings, including commercial settings generally available to the public which may be extremely large or small with respect to the number of users. The method and system of the present invention is also useful in a more private setting, such as with a corporation or governmental agency, as well as between corporation, governmental agencies or any other entity.
-
公开(公告)号:US09397827B2
公开(公告)日:2016-07-19
申请号:US13403142
申请日:2012-02-23
CPC分类号: H04L63/061 , G06F21/44 , G06F21/45 , G06F21/606 , H04L9/083 , H04L9/0844 , H04L9/085 , H04L9/32 , H04L9/3213 , H04L63/0807 , H04L63/0815 , H04L63/18
摘要: A common interface for managing cryptographic keys is provided. A request to manage a cryptographic key may be received in a first interface format, translated to a common interface format, and then executed remotely from the first interface. Return arguments may then be translated from the common interface format to a format compatible with the first interface and communicated securely to the first interface. The cryptographic keys may be used in connection with a secure data parser that secures data by randomly distributing data within a data set into two or more shares.
摘要翻译: 提供了一个管理加密密钥的通用界面。 管理加密密钥的请求可以以第一接口格式接收,转换为公共接口格式,然后从第一接口远程执行。 然后可以将返回参数从公共接口格式转换为与第一接口兼容的格式,并且安全地传送到第一接口。 加密密钥可以与安全数据解析器结合使用,该安全数据解析器通过将数据集中的数据随机分配到两个或多个共享中来保护数据。
-
公开(公告)号:US09275071B2
公开(公告)日:2016-03-01
申请号:US13209167
申请日:2011-08-12
申请人: Mark S. O'Hare , Rick L. Orsini , Don Martin
发明人: Mark S. O'Hare , Rick L. Orsini , Don Martin
CPC分类号: G06F11/1458 , G06F9/3834 , G06F9/3863 , G06F11/1453 , G06F11/1469 , G06F11/1471 , G06F17/30212 , G06F2201/805 , H04L67/1095 , H04L67/1097
摘要: Systems and methods are provided for transmitting data to at least one storage system. A request is received to store a data set in a storage location. In response, a first plurality of shares is generated, each containing a distribution of data from the data set, and at least one share is stored in a local memory configured for backup in at least one remote storage system. At least one share is transmitted to the at least one remote storage system. Systems and methods are also provided for improving data availability. In response to a restoration event, if insufficient shares of data are available to reconstruct a data set, a read instruction in a journaling message is transmitted to a remote storage system requesting an additional share. The additional share is received and stored in a local storage, and the data set is reconstructed.
摘要翻译: 提供了用于将数据发送到至少一个存储系统的系统和方法。 接收到将数据集存储在存储位置中的请求。 作为响应,生成第一多个共享,每个共享包含来自数据集的数据分布,并且至少一个共享被存储在配置为在至少一个远程存储系统中进行备份的本地存储器中。 至少一个共享被发送到至少一个远程存储系统。 还提供了系统和方法来提高数据可用性。 响应于恢复事件,如果不足够的数据共享可用于重建数据集,则日志消息中的读取指令被发送到请求附加共享的远程存储系统。 附加共享被接收并存储在本地存储器中,并且重构数据集。
-
公开(公告)号:US09009848B2
公开(公告)日:2015-04-14
申请号:US13468605
申请日:2012-05-10
申请人: Rick L. Orsini , Mark S. O'Hare , Roger Davenport , Steven Winick
发明人: Rick L. Orsini , Mark S. O'Hare , Roger Davenport , Steven Winick
CPC分类号: H04L63/0428 , G06F11/1092 , G06F17/30312 , G06F21/602 , G06F21/606 , G06F21/62 , G06F21/6218 , H04L9/085 , H04L9/3226 , H04L9/3263 , H04L63/04 , H04L63/08 , H04L63/0823 , H04L63/0876 , H04L67/108 , H04L69/14 , H04L2209/80
摘要: A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to protect data in motion by splitting original data into portions of data that may be communicated using multiple communications paths.
摘要翻译: 提供了可以集成到用于安全地存储和传送数据的任何合适的系统中的安全数据解析器。 安全数据解析器解析数据,然后将数据分割成多个部分,这些部分被清楚地存储或通信。 原始数据的加密,数据的部分或两者可以用于额外的安全性。 安全数据解析器可以用于通过将原始数据分割成可以使用多个通信路径传送的数据的部分来保护运动中的数据。
-
公开(公告)号:US08769270B2
公开(公告)日:2014-07-01
申请号:US13237781
申请日:2011-09-20
CPC分类号: G06F21/6209 , G06F21/6218 , G06F2221/2107 , H04L9/085 , H04L9/0861 , H04L9/3231 , H04L9/3268 , H04L63/10 , H04L63/102 , H04L2209/24 , H04L2209/42 , H04L2209/56 , H04L2209/80
摘要: Systems and methods are provided for creating and using a sharable file-level key to secure data files. The sharable file-level key is generated based on a workgroup key associated with the data file, as well as unique information associated with the data file. The sharable file-level key may be used to encrypt and split data using a Secure Parser. Systems and methods are also provided for sharing data without replicating the data on the machine of the end user. Data is encrypted and split across an external/consumer network and an enterprise/producer network. Access to the data is provided using a computing image generated by a server in the enterprise/producer network and then distributed to end users of the external/consumer network. This computing image may include preloaded files that provide pointers to the data that was encrypted and split. No access or replication of the data on the enterprise/producer network is needed in order for a user of the external/consumer network to access the data.
摘要翻译: 提供了系统和方法来创建和使用可共享的文件级密钥来保护数据文件。 可共享的文件级密钥是基于与数据文件相关联的工作组密钥以及与数据文件相关联的唯一信息生成的。 可共享文件级密钥可用于使用安全解析器加密和分割数据。 还提供了系统和方法用于共享数据,而不复制最终用户机器上的数据。 数据在外部/消费者网络和企业/生产者网络上进行加密和拆分。 使用由企业/生产者网络中的服务器生成的计算图像来提供对数据的访问,然后分发给外部/消费者网络的最终用户。 该计算图像可以包括提供指向被加密和分割的数据的指针的预加载文件。 为了外部/消费者网络的用户访问数据,不需要对企业/生产者网络上的数据进行访问或复制。
-
公开(公告)号:US08677148B2
公开(公告)日:2014-03-18
申请号:US13360385
申请日:2012-01-27
IPC分类号: H04L29/06
CPC分类号: G06F21/602 , G06F21/32 , H04L63/0428 , H04L67/1097
摘要: Systems and methods are provided for securing data. A processing device receives a data set and identifies a first subset of data from a first dimension of a multi-dimensional representation of the data set. The processing device encrypts the first subset of data using a first encryption technique to yield a first encrypted subset of data and replaces the first subset of data in the multi-dimensional representation of the data set with the first subset of encrypted data. The processing device then identifies a second subset of data from a second dimension of the multi-dimensional representation of the data set, with the second subset of data including at least a portion of the first subset of encrypted data, and encrypts the second subset of data using a second encryption technique to yield a second encrypted subset of data.
摘要翻译: 提供了系统和方法来保护数据。 处理设备从数据集的多维表示的第一维度接收数据集并识别数据的第一子集。 处理设备使用第一加密技术来加密数据的第一子集,以产生数据的第一加密子集,并且用加密数据的第一子集替换数据集的多维表示中的第一数据子集。 处理设备然后从数据集的多维表示的第二维度识别数据的第二子集,其中第二数据子集包括加密数据的第一子集的至少一部分,并加密第二子集 使用第二加密技术的数据产生数据的第二加密子集。
-
公开(公告)号:US08656167B2
公开(公告)日:2014-02-18
申请号:US12391025
申请日:2009-02-23
申请人: Stephen C. Bono , Matthew D. Green , Gabriel D. Landau , Rick L. Orsini , Mark S. O'Hare , Roger Davenport
发明人: Stephen C. Bono , Matthew D. Green , Gabriel D. Landau , Rick L. Orsini , Mark S. O'Hare , Roger Davenport
IPC分类号: H04L29/06
CPC分类号: H04L9/0822 , H04L63/0428 , H04L63/061 , H04L63/065 , H04L63/067 , H04L63/068 , H04L63/0846 , H04L2209/24
摘要: A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser may split or share a data set into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to protect data in motion by splitting an original data set into portions of data that may be communicated using one or more communications paths. Secure workgroup communication is supported through the secure distribution and management of a workgroup key for use with the secure data parser.
摘要翻译: 提供了可以集成到用于安全地存储和传送数据的任何合适的系统中的安全数据解析器。 安全数据解析器可以将数据集拆分或共享多个被明确存储或传送的部分。 原始数据的加密,数据的部分或两者可以用于额外的安全性。 安全数据解析器可以用于通过将原始数据集分成可以使用一个或多个通信路径传送的数据的部分来保护运动中的数据。 通过安全分发和管理与安全数据解析器一起使用的工作组密钥来支持安全工作组通信。
-
公开(公告)号:US08473756B2
公开(公告)日:2013-06-25
申请号:US12349897
申请日:2009-01-07
申请人: Rick L. Orsini , Mark S. O'Hare , Mihir Bellare , Phillip Rogaway
发明人: Rick L. Orsini , Mark S. O'Hare , Mihir Bellare , Phillip Rogaway
IPC分类号: G06F12/14
CPC分类号: H04L63/065 , G06F21/6209 , H04L9/0822 , H04L9/085 , H04L9/321 , H04L9/3226 , H04L9/3263 , H04L63/062 , H04L2209/56 , H04L2209/80
摘要: A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to protect data in motion by splitting original data into portions of data, that may be communicated using multiple communications paths. A keyed information dispersal algorithm (keyed IDA) may also be used. The key for the keyed IDA may additionally be protected by an external workgroup key, resulting in a multi-factor secret sharing scheme.
-
公开(公告)号:US08271802B2
公开(公告)日:2012-09-18
申请号:US13371361
申请日:2012-02-10
IPC分类号: H04L9/00
CPC分类号: H04L63/0428 , G06F11/1092 , G06F17/30312 , G06F21/602 , G06F21/606 , G06F21/62 , G06F21/6218 , H04L9/085 , H04L9/3226 , H04L9/3263 , H04L63/04 , H04L63/08 , H04L63/0823 , H04L63/0876 , H04L67/108 , H04L69/14 , H04L2209/80
摘要: A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to protect data in motion by splitting original data into portions of data, that may be communicated using multiple communications paths.
-
公开(公告)号:US20090097661A1
公开(公告)日:2009-04-16
申请号:US12209703
申请日:2008-09-12
申请人: Rick L. Orsini , Mark S. O'Hare , Roger Davenport
发明人: Rick L. Orsini , Mark S. O'Hare , Roger Davenport
CPC分类号: H04L63/061 , G06F21/44 , G06F21/45 , G06F21/606 , H04L9/083 , H04L9/0844 , H04L9/085 , H04L9/32 , H04L9/3213 , H04L63/0807 , H04L63/0815 , H04L63/18
摘要: A common interface for managing cryptographic keys is provided. A request to manage a cryptographic key may be received in a first interface format, translated to a common interface format, and then executed remotely from the first interface. Return arguments may then be translated from the common interface format to a format compatible with the first interface and communicated securely to the first interface. The cryptographic keys may be used in connection with a secure data parser that secures data by randomly distributing data within a data set into two or more shares.
摘要翻译: 提供了一个管理加密密钥的通用界面。 管理加密密钥的请求可以以第一接口格式接收,转换为公共接口格式,然后从第一接口远程执行。 然后可以将返回参数从公共接口格式转换为与第一接口兼容的格式,并且安全地传送到第一接口。 加密密钥可以与安全数据解析器结合使用,该安全数据解析器通过将数据集中的数据随机分配到两个或多个共享中来保护数据。
-
-
-
-
-
-
-
-
-
搜索结果
69 条记录 (耗时 0.065 秒)
