-
公开(公告)号:US20050114643A1
公开(公告)日:2005-05-26
申请号:US10994384
申请日:2004-11-23
申请人: Donald Bryant-Rich , Ittai Golde , Yaakov Tsvi , Erez Baum , Daniel Yerushalmi
发明人: Donald Bryant-Rich , Ittai Golde , Yaakov Tsvi , Erez Baum , Daniel Yerushalmi
IPC分类号: G06F20060101 , G06F9/445 , G06F15/177 , G06F21/00
CPC分类号: G06F9/44584 , G06F9/44594 , G06F21/62 , G06F2221/2143
摘要: When a non-volatile memory device is reversibly operationally connected to a computer, the computer executes an application that is stored on the device. The execution causes changes to a non-volatile memory of the computer. After the execution terminates, all such changes are undone, either immediately if the termination was normal or upon rebooting the computer if the termination was abnormal. Before or during the execution, information related to the changes is recorded. The undoing of the changes is based on that information. Examples of such information recorded before the execution include a list of expected changes and a partial or full copy of the computer's non-volatile memory.
摘要翻译: 当非易失性存储设备可逆地操作地连接到计算机时,计算机执行存储在设备上的应用。 执行会导致对计算机的非易失性存储器的更改。 执行终止后,如果终止正常或重新启动计算机,如果终止异常,所有这些更改将被撤销。 在执行之前或执行期间,记录与更改相关的信息。 更改的撤销基于该信息。 在执行之前记录的这种信息的示例包括计算机的非易失性存储器的预期变化和部分或完整副本的列表。
-
公开(公告)号:US07296144B2
公开(公告)日:2007-11-13
申请号:US10994384
申请日:2004-11-23
IPC分类号: G06F1/24
CPC分类号: G06F9/44584 , G06F9/44594 , G06F21/62 , G06F2221/2143
摘要: When a non-volatile memory device is reversibly operationally connected to a computer, the computer executes an application that is stored on the device. The execution causes changes to a non-volatile memory of the computer. After the execution terminates, all such changes are undone, either immediately if the termination was normal or upon rebooting the computer if the termination was abnormal. Before or during the execution, information related to the changes is recorded. The undoing of the changes is based on that information. Examples of such information recorded before the execution include a list of expected changes and a partial or full copy of the computer's non-volatile memory.
摘要翻译: 当非易失性存储设备可逆地操作地连接到计算机时,计算机执行存储在设备上的应用。 执行会导致对计算机的非易失性存储器的更改。 执行终止后,如果终止正常或重新启动计算机,如果终止异常,所有这些更改将被撤销。 在执行之前或执行期间,记录与更改相关的信息。 更改的撤销基于该信息。 在执行之前记录的这种信息的示例包括计算机的非易失性存储器的预期变化和部分或完整副本的列表。
-
公开(公告)号:US20080250488A1
公开(公告)日:2008-10-09
申请号:US11769760
申请日:2007-06-28
申请人: Ittai Golde , Alexander Paley , Leonid Shmulevich
发明人: Ittai Golde , Alexander Paley , Leonid Shmulevich
IPC分类号: H04L9/00
摘要: The present invention discloses methods for protecting a host system from information-security risks posed by a URD, the method including the steps of: operationally connecting the URD to the host system; communicating, between the URD and the host system, via a network protocol, through a firewall residing in the host system; and configuring said firewall to provide security measures related to the URD. Preferably, the firewall is a software firewall or a hardware firewall. A method for protecting a host system from information-security risks posed by a URD, the method including the steps of: operationally connecting the URD to the host system; communicating, between the URD and the host system, via a network protocol, through a firewall residing in the host system; and configuring said firewall to restrict access of at least one application to the URD. Preferably, the firewall is a software firewall or a hardware firewall.
摘要翻译: 本发明公开了一种保护主机系统免受URD所构成的信息安全风险的方法,该方法包括以下步骤:将URD与主机系统实际连接; 通过网络协议,通过驻留在主机系统中的防火墙在URD和主机系统之间进行通信; 并配置所述防火墙以提供与URD相关的安全措施。 防火墙最好是软件防火墙或硬件防火墙。 一种用于保护主机系统免受URD所构成的信息安全风险的方法,所述方法包括以下步骤:将所述URD与所述主机系统进行操作连接; 通过网络协议,通过驻留在主机系统中的防火墙在URD和主机系统之间进行通信; 以及配置所述防火墙以限制至少一个应用到URD的访问。 防火墙最好是软件防火墙或硬件防火墙。
-
公开(公告)号:US20080250487A1
公开(公告)日:2008-10-09
申请号:US11769757
申请日:2007-06-28
申请人: Ittai Golde , Alexander Paley , Leonid Shmulevich
发明人: Ittai Golde , Alexander Paley , Leonid Shmulevich
摘要: The present invention discloses a URD including: a non-volatile storage memory having program code, wherein said program code is configured to enable a network protocol for communicating with a host system; and a controller for controlling operations performed on said storage memory. Preferably, the storage memory includes flash memory. A URD including: a host system having a firewall; and a URD having a non-volatile storage memory, wherein said storage memory includes program code, and wherein said program code is configured to enable a network protocol, said URD operationally connected to said host system; wherein said firewall is configured to provide security measures related to said URD. Preferably, the firewall is a software firewall or a hardware firewall.
摘要翻译: 本发明公开了一种URD,包括:具有程序代码的非易失性存储存储器,其中所述程序代码被配置为使网络协议能够与主机系统进行通信; 以及控制器,用于控制对所述存储存储器执行的操作。 优选地,存储存储器包括闪存。 URD包括:具有防火墙的主机系统; 以及具有非易失性存储存储器的URD,其中所述存储器包括程序代码,并且其中所述程序代码被配置为启用网络协议,所述URD可操作地连接到所述主机系统; 其中所述防火墙被配置为提供与所述URD相关的安全措施。 防火墙最好是软件防火墙或硬件防火墙。
-
公开(公告)号:US08589341B2
公开(公告)日:2013-11-19
申请号:US11944639
申请日:2007-11-26
申请人: Ittai Golde , Kobi Ben Tzi , Oron Vexler , Itzhak Pomerantz
发明人: Ittai Golde , Kobi Ben Tzi , Oron Vexler , Itzhak Pomerantz
CPC分类号: G06F9/4486
摘要: A system and method to protect a target file from data damage wherein a wrapper application transparently intercepts a write call operative to affect the target file and stores the pertinent data in a delta file. Occasionally the target file is backed up in a temporary file and then updated. The wrapper application also intercepts a read call operative to access the target file and merges the update information with data from the target file in a temporary file. The resulting merged data is returned as read results data.
摘要翻译: 一种用于保护目标文件免受数据损坏的系统和方法,其中包装应用程序透明地拦截可操作以影响目标文件并且将相关数据存储在增量文件中的写入呼叫。 有时候,目标文件将被备份在一个临时文件中,然后更新。 包装应用程序还拦截操作以访问目标文件的读取呼叫,并将更新信息与来自目标文件的数据合并到临时文件中。 生成的合并数据作为读取结果数据返回。
-
公开(公告)号:US08806604B2
公开(公告)日:2014-08-12
申请号:US11769760
申请日:2007-06-28
申请人: Ittai Golde , Alexander Paley , Leonid Shmulevich
发明人: Ittai Golde , Alexander Paley , Leonid Shmulevich
IPC分类号: G06F15/16
摘要: The present invention discloses methods for protecting a host system from information-security risks posed by a URD, the method including the steps of: operationally connecting the URD to the host system; communicating, between the URD and the host system, via a network protocol, through a firewall residing in the host system; and configuring said firewall to provide security measures related to the URD. Preferably, the firewall is a software firewall or a hardware firewall. A method for protecting a host system from information-security risks posed by a URD, the method including the steps of: operationally connecting the URD to the host system; communicating, between the URD and the host system, via a network protocol, through a firewall residing in the host system; and configuring said firewall to restrict access of at least one application to the URD. Preferably, the firewall is a software firewall or a hardware firewall.
摘要翻译: 本发明公开了一种保护主机系统免受URD所构成的信息安全风险的方法,该方法包括以下步骤:将URD与主机系统实际连接; 通过网络协议,通过驻留在主机系统中的防火墙在URD和主机系统之间进行通信; 并配置所述防火墙以提供与URD相关的安全措施。 防火墙最好是软件防火墙或硬件防火墙。 一种用于保护主机系统免受URD所构成的信息安全风险的方法,所述方法包括以下步骤:将所述URD与所述主机系统进行操作连接; 通过网络协议,通过驻留在主机系统中的防火墙在URD和主机系统之间进行通信; 以及配置所述防火墙以限制至少一个应用到URD的访问。 防火墙最好是软件防火墙或硬件防火墙。
-
公开(公告)号:US20100125591A1
公开(公告)日:2010-05-20
申请号:US12274145
申请日:2008-11-19
申请人: Yaakov Ben Tsvi , Ittai Golde , Judah Gamliel Hahn
发明人: Yaakov Ben Tsvi , Ittai Golde , Judah Gamliel Hahn
IPC分类号: G06F17/30
CPC分类号: G06F17/30067
摘要: A client designates and transfers a file to a server in distinct chunks. The number of data chunks equals the number of communication sessions that are required to complete the transfer of the designated file to the server, that number being dependent on the number of times the communication session between the client and the server is interrupted. If the designated file includes several concatenated client files, each chunk of the designated file may include one or more such client files. Each chunk of the designated file may include some part of a client file and one or more whole client files. The byte-wise size or length of a chunk depends on the duration of the related communication session: the longer a communication session, the larger the related chunk. By transferring the designated file to the server as distinctly recognizable chunks, the need to retransmit large files to the server is avoided.
摘要翻译: 客户端以不同的块指定和传输文件到服务器。 数据块的数量等于完成将指定文件传输到服务器所需的通信会话的数量,该数量取决于客户端和服务器之间的通信会话被中断的次数。 如果指定的文件包括几个连接的客户端文件,则指定文件的每个块可以包括一个或多个这样的客户端文件。 指定文件的每个块可以包括客户端文件的一部分和一个或多个整体客户端文件。 块的字节大小或长度取决于相关通信会话的持续时间:通信会话越长,相关块越大。 通过将指定的文件传输到服务器作为可识别的块,避免了向服务器重传大文件的需要。
-
公开(公告)号:US08103631B2
公开(公告)日:2012-01-24
申请号:US12274145
申请日:2008-11-19
申请人: Yaakov Ben Tsvi , Ittai Golde , Judah Gamliel Hahn
发明人: Yaakov Ben Tsvi , Ittai Golde , Judah Gamliel Hahn
CPC分类号: G06F17/30067
摘要: A client designates and transfers a file to a server in distinct chunks. The number of data chunks equals the number of communication sessions that are required to complete the transfer of the designated file to the server, that number being dependent on the number of times the communication session between the client and the server is interrupted. If the designated file includes several concatenated client files, each chunk of the designated file may include one or more such client files. Each chunk of the designated file may include some part of a client file and one or more whole client files. The byte-wise size or length of a chunk depends on the duration of the related communication session: the longer a communication session, the larger the related chunk. By transferring the designated file to the server as distinctly recognizable chunks, the need to retransmit large files to the server is avoided.
摘要翻译: 客户端以不同的块指定和传输文件到服务器。 数据块的数量等于完成将指定文件传输到服务器所需的通信会话的数量,该数量取决于客户端和服务器之间的通信会话被中断的次数。 如果指定的文件包括几个连接的客户端文件,则指定文件的每个块可以包括一个或多个这样的客户端文件。 指定文件的每个块可以包括客户端文件的一部分和一个或多个整体客户端文件。 块的字节大小或长度取决于相关通信会话的持续时间:通信会话越长,相关块越大。 通过将指定的文件传输到服务器作为可识别的块,避免了向服务器重传大文件的需要。
-
公开(公告)号:US20080250489A1
公开(公告)日:2008-10-09
申请号:US11776627
申请日:2007-07-12
申请人: Ittai Golde , Alexander Paley , Leonid Shmulevich
发明人: Ittai Golde , Alexander Paley , Leonid Shmulevich
IPC分类号: G06F9/00
摘要: The present invention discloses a URD including: a non-volatile storage memory having program code, wherein said program code is configured to enable a network protocol for communicating with a host system; and a controller for controlling operations performed on said storage memory. Preferably, the storage memory includes flash memory. A URD including: a host system having a firewall; and a URD having a nonvolatile storage memory, wherein said storage memory includes program code, and wherein said program code is configured to enable a network protocol, said URD operationally connected to said host system; wherein said firewall is configured to provide security measures related to said URD. Preferably, the firewall is a software firewall or a hardware firewall.
摘要翻译: 本发明公开了一种URD,包括:具有程序代码的非易失性存储存储器,其中所述程序代码被配置为使网络协议能够与主机系统进行通信; 以及控制器,用于控制对所述存储存储器执行的操作。 优选地,存储存储器包括闪存。 URD包括:具有防火墙的主机系统; 以及具有非易失性存储存储器的URD,其中所述存储器包括程序代码,并且其中所述程序代码被配置为启用网络协议,所述URD可操作地连接到所述主机系统; 其中所述防火墙被配置为提供与所述URD相关的安全措施。 防火墙最好是软件防火墙或硬件防火墙。
-
公开(公告)号:US20080134163A1
公开(公告)日:2008-06-05
申请号:US11944639
申请日:2007-11-26
申请人: Ittai Golde , Kobi Ben Tzvi , Oron Vexler , Yitzhak Pomerantz
发明人: Ittai Golde , Kobi Ben Tzvi , Oron Vexler , Yitzhak Pomerantz
CPC分类号: G06F9/4486
摘要: A system and method to protect a target file from data damage wherein a wrapper application transparently intercepts a write call operative to affect the target file and stores the pertinent data in a delta file. Occasionally the target file is backed up in a temporary file and then updated. The wrapper application also intercepts a read call operative to access the target file and merges the update information with data from the target file in a temporary file. The resulting merged data is returned as read results data.
摘要翻译: 一种用于保护目标文件免受数据损坏的系统和方法,其中包装应用程序透明地拦截可操作以影响目标文件并且将相关数据存储在增量文件中的写入呼叫。 有时候,目标文件将被备份在一个临时文件中,然后更新。 包装应用程序还拦截操作以访问目标文件的读取呼叫,并将更新信息与来自目标文件的数据合并到临时文件中。 生成的合并数据作为读取结果数据返回。
-
-
-
-
-
-
-
-
-