公开(公告)号：US11582198B2

公开(公告)日：2023-02-14

申请号：US15477063

申请日：2017-04-01

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Shishir Sharma ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski ,  Krishanu Lahiri

IPC分类号： H04L9/40 ,  H04L9/08 ,  G06F21/62 ,  H04L9/32 ,  H04L67/10 ,  G06F16/174 ,  H04L67/1097 ,  G06F16/182

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.

公开(公告)号：US10805273B2

公开(公告)日：2020-10-13

申请号：US15476376

申请日：2017-03-31

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Krishanu Lahiri ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski ,  Shishir Sharma

IPC分类号： H04L29/06 ,  H04L9/08 ,  G06F21/62 ,  H04L9/32 ,  H04L29/08 ,  G06F16/174 ,  G06F16/182

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.

公开(公告)号：US20170286698A1

公开(公告)日：2017-10-05

申请号：US15477063

申请日：2017-04-01

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Shishir Sharma ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski ,  Krishanu Lahiri

IPC分类号： G06F21/60 ,  H04L9/06 ,  H04L29/06 ,  H04L9/14 ,  H04L9/08

CPC分类号： H04L63/0281 ,  G06F16/1748 ,  G06F16/182 ,  G06F21/6218 ,  H04L9/0822 ,  H04L9/0897 ,  H04L9/3263 ,  H04L63/0209 ,  H04L63/0272 ,  H04L63/0471 ,  H04L67/10 ,  H04L67/1097 ,  H04L2463/062

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.

公开(公告)号：US20170286697A1

公开(公告)日：2017-10-05

申请号：US15476488

申请日：2017-03-31

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Krishanu Lahiri ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski

IPC分类号： G06F21/60 ,  H04L29/06 ,  H04L9/08 ,  H04L9/14 ,  H04L9/06

CPC分类号： H04L63/0281 ,  G06F16/1748 ,  G06F16/182 ,  G06F21/6218 ,  H04L9/0822 ,  H04L9/0897 ,  H04L9/3263 ,  H04L63/0209 ,  H04L63/0272 ,  H04L63/0471 ,  H04L67/10 ,  H04L67/1097 ,  H04L2463/062

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.

公开(公告)号：US20230362133A1

公开(公告)日：2023-11-09

申请号：US18097878

申请日：2023-01-17

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Shishir Sharma ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski ,  Krishanu Lahiri

IPC分类号： H04L9/40 ,  H04L9/08 ,  G06F21/62 ,  H04L9/32 ,  H04L67/10 ,  G06F16/174 ,  H04L67/1097 ,  G06F16/182

CPC分类号： H04L63/0281 ,  H04L9/0822 ,  G06F21/6218 ,  H04L9/0897 ,  H04L9/3263 ,  H04L63/0471 ,  H04L67/10 ,  G06F16/1748 ,  H04L67/1097 ,  G06F16/182 ,  H04L63/0209 ,  H04L2463/062 ,  H04L63/0272

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.

公开(公告)号：US10601782B2

公开(公告)日：2020-03-24

申请号：US15476488

申请日：2017-03-31

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Krishanu Lahiri ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski

IPC分类号： H04L29/06 ,  H04L9/08 ,  G06F21/62 ,  H04L9/32 ,  H04L29/08 ,  G06F16/174 ,  G06F16/182

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.

公开(公告)号：US10812452B2

公开(公告)日：2020-10-20

申请号：US15476223

申请日：2017-03-31

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Krishanu Lahiri ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski ,  Shishir Sharma

IPC分类号： G06F21/60 ,  H04L29/06 ,  H04L9/08 ,  G06F21/62 ,  H04L9/32 ,  H04L29/08 ,  G06F16/174 ,  G06F16/182

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.

公开(公告)号：US20170286696A1

公开(公告)日：2017-10-05

申请号：US15476376

申请日：2017-03-31

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Krishanu Lahiri ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski ,  Shishir Sharma

IPC分类号： G06F21/60 ,  H04L9/06 ,  H04L29/06 ,  H04L9/14 ,  H04L9/08

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.

公开(公告)号：US20170286695A1

公开(公告)日：2017-10-05

申请号：US15476223

申请日：2017-03-31

申请人： Egnyte, Inc.

发明人： Sachin Shetty ,  Amrit Jassal ,  Krishanu Lahiri ,  Yogesh Rai ,  Manoj Chauhan ,  Leszek Jakubowski ,  Shishir Sharma

IPC分类号： G06F21/60 ,  H04L29/06 ,  H04L9/08 ,  H04L9/14 ,  H04L9/06

摘要： Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.