公开(公告)号：US20170286698A1

公开(公告)日：2017-10-05

申请号：US15477063

申请日：2017-04-01

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Shishir Sharma ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski ,  Krishanu Lahiri

IPC分类号： G06F21/60 ,  H04L9/06 ,  H04L29/06 ,  H04L9/14 ,  H04L9/08

CPC分类号： H04L63/0281 ,  G06F16/1748 ,  G06F16/182 ,  G06F21/6218 ,  H04L9/0822 ,  H04L9/0897 ,  H04L9/3263 ,  H04L63/0209 ,  H04L63/0272 ,  H04L63/0471 ,  H04L67/10 ,  H04L67/1097 ,  H04L2463/062

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.

公开(公告)号：US20170286697A1

公开(公告)日：2017-10-05

申请号：US15476488

申请日：2017-03-31

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Krishanu Lahiri ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski

IPC分类号： G06F21/60 ,  H04L29/06 ,  H04L9/08 ,  H04L9/14 ,  H04L9/06

CPC分类号： H04L63/0281 ,  G06F16/1748 ,  G06F16/182 ,  G06F21/6218 ,  H04L9/0822 ,  H04L9/0897 ,  H04L9/3263 ,  H04L63/0209 ,  H04L63/0272 ,  H04L63/0471 ,  H04L67/10 ,  H04L67/1097 ,  H04L2463/062

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.

公开(公告)号：US20150350326A1

公开(公告)日：2015-12-03

申请号：US14824931

申请日：2015-08-12

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Krishna Sankar ,  Amrit Jassal ,  Kalpesh Patel ,  Shishir Sharma

IPC分类号： H04L29/08 ,  G06F17/30

CPC分类号： H04L67/1097 ,  G06F11/1402 ,  G06F11/142 ,  G06F11/1464 ,  G06F17/30117 ,  G06F17/30194 ,  G06F17/30203 ,  G06F17/30233 ,  G06F17/30864 ,  G06F17/30876 ,  G06F2201/80 ,  H04L67/02 ,  H04L67/10 ,  H04L67/1002 ,  H04L67/1095 ,  H04L67/141

摘要： A method for storing objects in an object storage system includes the steps of establishing a network connection with a client over an inter-network, receiving an upload request indicating an object to be uploaded by the client, selecting at least two storage nodes on which the object will be stored, receiving the object from the client via the network connection, and streaming the object to each of the selected storage nodes such that the object is stored on each of the selected storage nodes. The method can also include writing an object record associating the object and the selected storage nodes to a shard of an object database and generating a Universally Unique Identifier (UUID). The UUID indicates the shard and the object ID of the object record, such that the object record can be quickly retrieved. Object storage infrastructures are also disclosed.

摘要翻译： 一种用于存储对象存储系统中的对象的方法包括以下步骤：通过网络间建立与客户端的网络连接，接收指示客户要上传的对象的上载请求，选择至少两个存储节点， 对象将被存储，经由网络连接从客户端接收对象，并且将对象流传送到每个所选择的存储节点，使得对象被存储在每个选定的存储节点上。 该方法还可以包括将对象和所选择的存储节点相关联的对象记录写入对象数据库的分片并生成通用唯一标识符（UUID）。 UUID指示对象记录的分片和对象ID，使得可以快速检索对象记录。 还公开了对象存储基础设施。

公开(公告)号：US11582198B2

公开(公告)日：2023-02-14

申请号：US15477063

申请日：2017-04-01

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Shishir Sharma ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski ,  Krishanu Lahiri

IPC分类号： H04L9/40 ,  H04L9/08 ,  G06F21/62 ,  H04L9/32 ,  H04L67/10 ,  G06F16/174 ,  H04L67/1097 ,  G06F16/182

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.

公开(公告)号：US10805273B2

公开(公告)日：2020-10-13

申请号：US15476376

申请日：2017-03-31

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Krishanu Lahiri ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski ,  Shishir Sharma

IPC分类号： H04L29/06 ,  H04L9/08 ,  G06F21/62 ,  H04L9/32 ,  H04L29/08 ,  G06F16/174 ,  G06F16/182

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.

公开(公告)号：US20170177613A1

公开(公告)日：2017-06-22

申请号：US15388038

申请日：2016-12-22

申请人： Egnyte, Inc.

发明人： Shishir Sharma ,  Debjit Bhattacharjee ,  Amrit Jassal ,  Kalpesh Patel ,  Deepak Mehta ,  Przemek Grzedzielski ,  Sachin Shetty ,  Krzysztof Gardo ,  Daniil Iaitskov ,  Harikesavan Krishnan ,  Manish Marathe

IPC分类号： G06F17/30

CPC分类号： G06F21/45

摘要： Cloud storage systems and methods are described for providing event-based user state synchronization among the various cloud elements. A global user directory is maintained on a remote cloud storage system. The global user directory includes a plurality of global user definitions associated with a plurality of user accounts, where each of the user accounts has access to at least one of a remote file system (RFS) hosted by the remote cloud storage system and a local file system (LFS) hosted by a local cloud storage system. As global user definition are altered on the remote cloud storage system, user events are generated and communicated to the local cloud storage system, where they are applied to synchronize the local user definitions with the global user definitions. The invention facilitates centralized control of user definitions, near real-time event delivery to local cloud storage systems, and separation of authentication processes from customers' active directory services.

公开(公告)号：US20150347453A1

公开(公告)日：2015-12-03

申请号：US14824824

申请日：2015-08-12

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Krishna Sankar ,  Amrit Jassal ,  Kalpesh Patel ,  Shishir Sharma

IPC分类号： G06F17/30 ,  G06F11/14 ,  H04L29/08

CPC分类号： H04L67/1097 ,  G06F11/1402 ,  G06F11/142 ,  G06F11/1464 ,  G06F17/30117 ,  G06F17/30194 ,  G06F17/30203 ,  G06F17/30233 ,  G06F17/30864 ,  G06F17/30876 ,  G06F2201/80 ,  H04L67/02 ,  H04L67/10 ,  H04L67/1002 ,  H04L67/1095 ,  H04L67/141

摘要： A method for storing objects in an object storage system includes the steps of establishing a network connection with a client over an inter-network, receiving an upload request indicating an object to be uploaded by the client, selecting at least two storage nodes on which the object will be stored, receiving the object from the client via the network connection, and streaming the object to each of the selected storage nodes such that the object is stored on each of the selected storage nodes. The method can also include writing an object record associating the object and the selected storage nodes to a shard of an object database and generating a Universally Unique Identifier (UUID). The UUID indicates the shard and the object ID of the object record, such that the object record can be quickly retrieved. Object storage infrastructures are also disclosed.

公开(公告)号：US20240265092A1

公开(公告)日：2024-08-08

申请号：US18407147

申请日：2024-01-08

申请人： Egnyte, Inc.

发明人： Shishir Sharma ,  Debjit Bhattacharjee ,  Amrit Jassal ,  Kalpesh Patel ,  Deepak Mehta ,  Przemek Grzedzielski ,  Sachin Shetty ,  Krzysztof Gardo ,  Daniil Iaitskov ,  Harikesavan Krishnan ,  Manish Marathe

IPC分类号： G06F21/45 ,  G06F16/27

CPC分类号： G06F21/45 ,  G06F16/27

摘要： Cloud storage systems and methods are described for providing event-based user state synchronization among the various cloud elements. A global user directory is maintained on a remote cloud storage system. The global user directory includes a plurality of global user definitions associated with a plurality of user accounts, where each of the user accounts has access to at least one of a remote file system (RFS) hosted by the remote cloud storage system and a local file system (LFS) hosted by a local cloud storage system. As global user definition are altered on the remote cloud storage system, user events are generated and communicated to the local cloud storage system, where they are applied to synchronize the local user definitions with the global user definitions. The invention facilitates centralized control of user definitions, near real-time event delivery to local cloud storage systems, and separation of authentication processes from customers' active directory services.

公开(公告)号：US20230117023A1

公开(公告)日：2023-04-20

申请号：US17890654

申请日：2022-08-18

申请人： Egnyte, Inc.

发明人： Shishir Sharma ,  Debjit Bhattacharjee ,  Amrit Jassal ,  Kalpesh Patel ,  Deepak Mehta ,  Przemek Grzedzielski ,  Sachin Shetty ,  Krzysztof Gardo ,  Daniil Laitskov ,  Harikesavan Krishnan ,  Manish Marathe

IPC分类号： G06F21/45 ,  G06F16/27

摘要： Cloud storage systems and methods are described for providing event-based user state synchronization among the various cloud elements. A global user directory is maintained on a remote cloud storage system. The global user directory includes a plurality of global user definitions associated with a plurality of user accounts, where each of the user accounts has access to at least one of a remote file system (RFS) hosted by the remote cloud storage system and a local file system (LFS) hosted by a local cloud storage system. As global user definition are altered on the remote cloud storage system, user events are generated and communicated to the local cloud storage system, where they are applied to synchronize the local user definitions with the global user definitions. The invention facilitates centralized control of user definitions, near real-time event delivery to local cloud storage systems, and separation of authentication processes from customers' active directory services.

公开(公告)号：US20180068112A1

公开(公告)日：2018-03-08

申请号：US15808425

申请日：2017-11-09

申请人： Egnyte, Inc.

发明人： Shishir Sharma ,  Debjit Bhattacharjee ,  Amrit Jassal ,  Kalpesh Patel ,  Deepak Mehta ,  Przemek Grzedzielski ,  Sachin Shetty ,  Krzysztof Gardo ,  Daniil Iaitskov ,  Harikesavan Krishnan ,  Manish Marathe

IPC分类号： G06F21/45

CPC分类号： G06F21/45

摘要： Cloud storage systems and methods are described for providing event-based user state synchronization among the various cloud elements. A global user directory is maintained on a remote cloud storage system. The global user directory includes a plurality of global user definitions associated with a plurality of user accounts, where each of the user accounts has access to at least one of a remote file system (RFS) hosted by the remote cloud storage system and a local file system (LFS) hosted by a local cloud storage system. As global user definition are altered on the remote cloud storage system, user events are generated and communicated to the local cloud storage system, where they are applied to synchronize the local user definitions with the global user definitions. The invention facilitates centralized control of user definitions, near real-time event delivery to local cloud storage systems, and separation of authentication processes from customers' active directory services.