利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

9 条记录 (耗时 0.022 秒)

    Location independent files
    1.
    发明授权
    Location independent files 有权
    位置独立文件

    公开(公告)号:US09195666B2

    公开(公告)日:2015-11-24

    申请号:US13351987

    申请日:2012-01-17

    申请人: Deric S. Horn Jeffrey D. Chung Wenguang Wang

    发明人: Deric S. Horn Jeffrey D. Chung Wenguang Wang

    IPC分类号: G06F17/30

    CPC分类号: G06F17/30073 G06F17/30174 G06F17/30194

    摘要: Managing data units by converting the data units into data segments and access files describing how to retrieve the data segments using hash values for the data segments. In a data store operation, the data unit is divided into data segments and an access file is generated. The access file includes segmenting scheme information for the data segments, hashing scheme information for the hash values, hash identification information describing the hash values, and location information identifying the locations at which the data segments are available. In a data retrieval operation, data from the data unit is retrieved by accessing the data segments and extracting the data therefrom, where the data segments are retrieved based on the access file for the data unit.

    摘要翻译: 通过将数据单元转换为数据段并访问描述如何使用数据段的哈希值检索数据段的文件来管理数据单元。 在数据存储操作中,将数据单元划分成数据段,生成访问文件。 访问文件包括用于数据段的分段方案信息,散列值的散列方案信息,描述哈希值的散列识别信息,以及标识数据段可用位置的位置信息。 在数据检索操作中,通过访问数据段并从其中提取数据来检索来自数据单元的数据,其中基于数据单元的访问文件检索数据段。

    LOCATION INDEPENDENT FILES
    2.
    发明申请
    LOCATION INDEPENDENT FILES 有权
    位置独立文件

    公开(公告)号:US20130185266A1

    公开(公告)日:2013-07-18

    申请号:US13351987

    申请日:2012-01-17

    申请人: Deric S. Horn Jeffrey D. Chung Wenguang Wang

    发明人: Deric S. Horn Jeffrey D. Chung Wenguang Wang

    IPC分类号: G06F17/30 G06F7/00

    CPC分类号: G06F17/30073 G06F17/30174 G06F17/30194

    摘要: Managing data units by converting the data units into data segments and access files describing how to retrieve the data segments using hash values for the data segments. In a data store operation, the data unit is divided into data segments and an access file is generated. The access file includes segmenting scheme information for the data segments, hashing scheme information for the hash values, hash identification information describing the hash values, and location information identifying the locations at which the data segments are available. In a data retrieval operation, data from the data unit is retrieved by accessing the data segments and extracting the data therefrom, where the data segments are retrieved based on the access file for the data unit.

    摘要翻译: 通过将数据单元转换为数据段并访问描述如何使用数据段的哈希值检索数据段的文件来管理数据单元。 在数据存储操作中,将数据单元划分成数据段,生成访问文件。 访问文件包括用于数据段的分段方案信息,散列值的散列方案信息,描述哈希值的散列识别信息,以及标识数据段可用位置的位置信息。 在数据检索操作中,通过访问数据段并从其中提取数据来检索来自数据单元的数据,其中基于数据单元的访问文件检索数据段。

    Method and system for obscuring user access patterns using a buffer memory
    3.
    发明授权
    Method and system for obscuring user access patterns using a buffer memory 失效
    使用缓冲存储器模糊用户访问模式的方法和系统

    公开(公告)号:US07277961B1

    公开(公告)日:2007-10-02

    申请号:US09703213

    申请日:2000-10-31

    申请人: Jonathan M. Smith Salvatore J. Stolfo Jeffrey C. Sherwin Jeffrey D. Chung Andreas L. Prodromidis

    发明人: Jonathan M. Smith Salvatore J. Stolfo Jeffrey C. Sherwin Jeffrey D. Chung Andreas L. Prodromidis

    IPC分类号: G06F15/173

    CPC分类号: G06Q20/20 G06F21/6245 H04L63/0407

    摘要: A method and system for obscuring user requests for information in a computer network. A user request for information, aimed at another network member, is routed to a first cache memory. If the first cache memory contains the requested information, the cache returns the requested information in response to the user request without releasing the user request to the network member. If the first cache memory does not contain the requested information, a first reference editing function edits user identity information contained in the request, resulting in an edited request with obscured identity information. The edited request is then released to the network member and the requested information is received by the user from the network member. A copy of the requested information is stored in the first cache memory. In this method and system, user privacy is enhanced because user requests for information that can be satisfied by information stored in the cache memory are not revealed to other network members, and user requests that cannot be satisfied by the cache memory are obscured by the reference editing function prior to release to other network members. A software program and system for implementing the method are also disclosed.

    摘要翻译: 一种用于遮蔽用户在计算机网络中的信息请求的方法和系统。 针对另一网络成员的用户对信息的请求被路由到第一高速缓冲存储器。 如果第一高速缓存存储器包含所请求的信息,则高速缓存响应于用户请求返回所请求的信息,而不向网络成员释放用户请求。 如果第一高速缓冲存储器不包含所请求的信息,则第一参考编辑功能编辑包含在请求中的用户身份信息,导致编辑的请求具有隐蔽的身份信息。 所编辑的请求然后被释放到网络成员,并且所请求的信息被用户从网络成员接收。 所请求信息的副本存储在第一高速缓冲存储器中。 在该方法和系统中,增强了用户隐私,因为用户对存储在高速缓冲存储器中的信息可以满足的信息请求不会被其他网络成员泄露,并且高速缓冲存储器不能满足的用户请求被参考 编辑功能之前发布给其他网络成员。 还公开了一种用于实现该方法的软件程序和系统。

    Method and system for monitoring integrity of running computer system
    6.
    发明授权
    Method and system for monitoring integrity of running computer system 有权
    监控运行计算机系统完整性的方法和系统

    公开(公告)号:US08732824B2

    公开(公告)日:2014-05-20

    申请号:US11656453

    申请日:2007-01-23

    申请人: William A. Arbaugh Jeffrey D. Chung Nick L. Petroni Bryan Boot

    发明人: William A. Arbaugh Jeffrey D. Chung Nick L. Petroni Bryan Boot

    IPC分类号: G06F11/00 G06F12/14 G06F12/16 G08B23/00

    CPC分类号: G06F21/57

    摘要: Monitoring integrity of a running computer system is based on creating a Test Model which includes predicates descriptive of invariant properties of security relevant objects and their attributes in the monitored structure known-to-be “healthy”, acquiring memory image of a portion of the running monitored structure, decomposing the acquired memory image to retrieve representation of the security relevant objects of interest, by implementing the attributes of the Test Model, and verifying, by implementing the predicates, whether the invariant properties defined in the Test Model remain unchanged for the running host system. If a discrepancy is detected, a signal indicative of a detected discrepancy is transmitted to a management entity for analysis and formulating a course of action.

    摘要翻译: 监视正在运行的计算机系统的完整性是基于创建一个测试模型,该测试模型包括描述安全相关对象的不变属性的谓词,以及在被称为“健康”的已监测结构中的属性,获取运行的一部分的内存映像 监测结构,通过实施测试模型的属性来分解所获取的存储器图像以检索安全相关对象的表示,并且通过实现测试模型来验证测试模型中定义的不变性质是否保持不变 主机系统。 如果检测到差异,则指示检测到的差异的信号被发送到管理实体以进行分析和制定行动过程。

    Architecture for providing block-level storage access over a computer network
    9.
    发明授权
    Architecture for providing block-level storage access over a computer network 失效
    通过计算机网络提供块级存储访问的架构

    公开(公告)号:US07392291B2

    公开(公告)日:2008-06-24

    申请号:US09927894

    申请日:2001-08-10

    申请人: Douglas E. Jewett Adam J. Radford Bradley D. Strand Jeffrey D. Chung Joel D. Jacobson Robert B. Haigler Rod S. Thompson Thomas L. Couch

    发明人: Douglas E. Jewett Adam J. Radford Bradley D. Strand Jeffrey D. Chung Joel D. Jacobson Robert B. Haigler Rod S. Thompson Thomas L. Couch

    IPC分类号: G06F15/167 G06F12/00

    CPC分类号: G06F3/0626 G06F3/0644 G06F3/0655 G06F3/067 G06F3/0689 G06F21/80 H04L63/08 H04L67/1097 H04L69/329

    摘要: A network-based storage system comprises one or more block-level storage servers that connect to, and provide disk storage for, one or more host computers (“hosts”) over logical network connections (preferably TCP/IP sockets). In one embodiment, each host can maintain one or more socket connections to each storage server, over which multiple I/O operations may be performed concurrently in a non-blocking manner. The physical storage of a storage server may optionally be divided into multiple partitions, each of which may be independently assigned to a particular host or to a group of hosts. Host driver software presents these partitions to user-level processes as one or more local disk drives. When a host initially connects to a storage server in one embodiment, the storage server initially authenticates the host, and then notifies the host of the ports that may be used to establish data connections and of the partitions assigned to that host.

    摘要翻译: 基于网络的存储系统包括通过逻辑网络连接(优选TCP / IP套接字)连接到一个或多个主机计算机(“主机”)并提供磁盘存储的一个或多个块级存储服务器。 在一个实施例中,每个主机可以维护到每个存储服务器的一个或多个套接字连接,多个I / O操作可以以非阻塞的方式同时执行。 存储服务器的物理存储可以可选地被划分成多个分区,每个分区可以独立地分配给特定主机或一组主机。 主机驱动程序软件将这些分区作为一个或多个本地磁盘驱动器呈现给用户级进程。 当主机在一个实施例中最初连接到存储服务器时,存储服务器最初认证主机,然后通知主机可用于建立数据连接的端口和分配给该主机的分区。