公开(公告)号：US20150149772A1

公开(公告)日：2015-05-28

申请号：US14087045

申请日：2013-11-22

Applicant: Cisco Technology, Inc.

Inventor： Nicholas Read Leavy ,  Venkata Krishna Sashank Dara

IPC: H04L9/08

CPC classification number: H04L9/0822 ,  H04L63/0428 ,  H04L63/0442 ,  H04L63/06 ,  H04L2209/24 ,  H04L2463/062

Abstract: Embodiments generally provide techniques for managing data security. One embodiment includes providing, at a client system, an encrypted private key that can be decrypted using a locker key. Encrypted data is received from a remote system, and embodiment determine that the received encrypted data can be decrypted using a private key recovered by decrypting the encrypted private key. A request is transmitted to the remote system for the locker key corresponding to the encrypted private key, and the requested locker key is received from the remote system. Embodiments decrypt the encrypted private key using the received locker key to recover the private key, and decrypt the encrypted data, using the private key.

Abstract translation: 实施例通常提供用于管理数据安全性的技术。 一个实施例包括在客户端系统处提供可以使用更衣室密钥进行解密的加密专用密钥。 从远程系统接收加密的数据，并且实施例确定可以使用通过解密加密的私钥恢复的专用密钥来解密所接收的加密数据。 向远程系统发送对应于加密私钥的锁匙的请求，并从远程系统接收所请求的锁匙。 实施例使用接收到的锁定密钥解密加密的私钥以恢复私钥，并且使用私钥对加密的数据进行解密。

公开(公告)号：US09246676B2

公开(公告)日：2016-01-26

申请号：US14087045

申请日：2013-11-22

Applicant: Cisco Technology, Inc.

Inventor： Nicholas Read Leavy ,  Venkata Krishna Sashank Dara

IPC: H04L29/06 ,  H04L9/08

CPC classification number: H04L9/0822 ,  H04L63/0428 ,  H04L63/0442 ,  H04L63/06 ,  H04L2209/24 ,  H04L2463/062

Abstract: Embodiments generally provide techniques for managing data security. One embodiment includes providing, at a client system, an encrypted private key that can be decrypted using a locker key. Encrypted data is received from a remote system, and embodiment determine that the received encrypted data can be decrypted using a private key recovered by decrypting the encrypted private key. A request is transmitted to the remote system for the locker key corresponding to the encrypted private key, and the requested locker key is received from the remote system. Embodiments decrypt the encrypted private key using the received locker key to recover the private key, and decrypt the encrypted data, using the private key.

Abstract translation: 实施例通常提供用于管理数据安全性的技术。 一个实施例包括在客户端系统处提供可以使用更衣室密钥进行解密的加密专用密钥。 从远程系统接收加密的数据，并且实施例确定可以使用通过解密加密的私钥恢复的专用密钥来解密所接收的加密数据。 向远程系统发送对应于加密私钥的锁匙的请求，并从远程系统接收所请求的锁匙。 实施例使用接收到的锁定密钥解密加密的私钥以恢复私钥，并且使用私钥对加密的数据进行解密。

公开(公告)号：US20160253378A1

公开(公告)日：2016-09-01

申请号：US14632470

申请日：2015-02-26

Applicant: Cisco Technology, Inc.

Inventor： Itay Marom ,  Hanoch Haim ,  Nicholas Read Leavy ,  Kobi Kobi Vaknin

IPC: G06F17/30

CPC classification number: G06F16/245 ,  G06F16/24568

Abstract: A system, computer-readable media, and methods are disclosed for searching a data stream for one or more regular expressions. The method can include receiving a data stream and a regular expression and parsing the regular expression to create a prefix portion and a suffix portion. The method can also include executing a first search of at least a portion of the data stream for the prefix portion using a first search algorithm, the first search algorithm being stored in a computer readable medium and executed by a processor. The method also include executing a second search of at least a portion of the data stream for the suffix portion using a second search algorithm, the second search algorithm being stored in a computer readable medium and executed by a processor. Further, the method includes determining whether the data stream contains the regular expression based on the first search and the second search.

Abstract translation: 公开了一种用于搜索一个或多个正则表达式的数据流的系统，计算机可读介质和方法。 该方法可以包括接收数据流和正则表达式并解析正则表达式以创建前缀部分和后缀部分。 该方法还可以包括使用第一搜索算法对前缀部分的数据流的至少一部分执行第一搜索，第一搜索算法被存储在计算机可读介质中并由处理器执行。 该方法还包括使用第二搜索算法对后缀部分的数据流的至少一部分进行第二次搜索，第二搜索算法被存储在计算机可读介质中并由处理器执行。 此外，该方法包括基于第一搜索和第二搜索确定数据流是否包含正则表达式。