-
公开(公告)号:US20230350953A1
公开(公告)日:2023-11-02
申请号:US17734930
申请日:2022-05-02
IPC分类号: G06F16/907 , H04L9/08 , H04L9/32
CPC分类号: G06F16/907 , H04L9/0825 , H04L9/3236 , H04L9/3252
摘要: A processor-based method for securing meta-data through a persistent signature, comprising: identifying meta-data for a file; selecting a private key, a certificate identifier and a hash algorithm identifier for the meta-data; creating an encrypted hash of the meta-data using the hash algorithm and private key; and creating a persistent, independent signature for the meta-data that identifies the meta-data, certificate identifier, hash algorithm identifier, and the encrypted hash value for the meta-data.
-
公开(公告)号:US20230353384A1
公开(公告)日:2023-11-02
申请号:US17734942
申请日:2022-05-02
IPC分类号: H04L9/32
CPC分类号: H04L9/3247 , H04L9/3242 , H04L9/3268
摘要: A processor-based method for verifying a secured file, directory, or meta-data, comprising: extracting a persistent, independent signature for a secured file, directory, or meta-data from a directory signature file, the signature identifying a certificate identifier, a hash algorithm identifier, and an encrypted hash value for that secured file, directory, or meta-data; retrieving a public key corresponding to the certificate identifier; decrypting the encrypted hash using the public key and a decryption tool, resulting in a clear text hash value; creating a new hash value for the secured file, directory, or meta-data, the hash creation corresponding to the hash algorithm identifier; and verifying the signature when the new hash value for the secured file, directory, or meta-data matches the unencrypted hash value from the persistent, independent signature for the secured file, directory, or meta-data,
-
公开(公告)号:US20230353372A1
公开(公告)日:2023-11-02
申请号:US17734936
申请日:2022-05-02
CPC分类号: H04L9/3236 , H04L9/3247 , H04L63/0823
摘要: A processor-based method for securing directories through a persistent signature, comprising: selecting a directory; selecting a private key, a certificate identifier and a hash algorithm identifier for each selected directory; creating an encrypted hash of the directory using the hash algorithm and private key; and creating a persistent, independent signature for the directory that identifies the directory, certificate identifier, hash algorithm identifier, and the encrypted hash value for that directory.
-
4.发明公开公开(公告)号:US20230353377A1
公开(公告)日:2023-11-02
申请号:US17734927
申请日:2022-05-02
IPC分类号: H04L9/32
CPC分类号: H04L9/3242 , H04L9/3247 , H04L9/3268
摘要: A processor-based method for securing files through a persistent signature includes: selecting a file of any file type; selecting a private key, a certificate identifier and a hash algorithm identifier for the file; creating an encrypted hash of the file using the hash algorithm and private key for the file; and creating a persistent, independent signature for each selected file that identifies the file, certificate identifier, hash algorithm identifier, and the encrypted hash value for the file.
-
公开(公告)号:US20230353373A1
公开(公告)日:2023-11-02
申请号:US17734947
申请日:2022-05-02
IPC分类号: H04L9/32
CPC分类号: H04L9/3236
摘要: A processor-based method for creating a persistent directory signature file, comprising: selecting a private key, a certificate identifier and a hash algorithm identifier for the directory signature file; concatenating one or more persistent, independent signatures wherein a persistent independent signature includes a file name, sub-directory indicator, or meta-data indicator, and a certificate identifier, and a hash identifier, and an encrypted hash; creating an encrypted hash of the one or more concatenated signatures using the hash algorithm and private key chosen for the directory signature file; and concatenating the encrypted hash of the one or more concatenated signatures with the concatenated signatures and the certificate identifier, and hash algorithm identifier chosen for the directory signature file to create a persistent, independent signature for the directory signature file. A persistent directory signature file includes a directory signature file certificate identifier; a directory signature file hash identifier; a file name; a file certificate identifier; a file hash identifier; a file hash value encrypted; and a directory signature file hash value encrypted.
-
6.发明申请FILE-BASED APPLICATION PROGRAMMING INTERFACE PROVIDING SELECTABLE SECURITY FEATURES 审中-公开基于文件的应用编程接口提供可选择的安全特性公开(公告)号:US20150052347A9
公开(公告)日:2015-02-19
申请号:US13294336
申请日:2011-11-11
申请人: Michael T. Kain
发明人: Michael T. Kain
CPC分类号: H04L63/04 , H04L63/0428 , H04L63/08 , H04L63/166 , H04L63/20 , H04L69/162 , H04L69/326
摘要: A data communication security system is disclosed that includes a network interface including a first security module implementing a first security architecture, and a second security module implementing a second security architecture different from the first security architecture. The network interface further includes a file-based application programming interface defining a plurality of attributes of the network interface and including at least one attribute associated with data security managed by one of the first and second security modules. The file-based application programming interface includes at least one attribute from among the plurality of attributes that is associated with selecting between the first or second security modules.
摘要翻译: 公开了一种数据通信安全系统,其包括包括实现第一安全架构的第一安全模块的网络接口和实现与第一安全架构不同的第二安全架构的第二安全模块。 网络接口还包括定义网络接口的多个属性的基于文件的应用编程接口,并且包括与第一和第二安全模块之一管理的数据安全性相关联的至少一个属性。 基于文件的应用编程接口包括与在第一或第二安全模块之间进行选择相关联的多个属性中的至少一个属性。
-
7.发明申请System and method for providing dynamic network firewall with default deny 审中-公开提供动态网络防火墙与默认拒绝的系统和方法公开(公告)号:US20070255861A1
公开(公告)日:2007-11-01
申请号:US11498624
申请日:2006-08-03
IPC分类号: G06F3/00
CPC分类号: H04L63/029 , H04L63/0218 , H04L63/0263
摘要: A computing system having host computer and an I/O processor (IOP) provides firewall services to the host computer. When the host computer and the IOP are initialized, all of the communication ports are reset to a closed state. Application programs are loaded into memory of the host computer for execution and provide the identity of communication ports to be used by the application. The identity of the requested communication ports are used to instruct the IOP to open the communication port to accept network data packets that use the particular port. When the application terminates operation, the communication ports used by the application are closed to provide dynamic control over communication ports. This process ensures that only ports currently used by applications currently executing within the host computer are open without administrator action.
摘要翻译: 具有主计算机和I / O处理器(IOP)的计算系统向主计算机提供防火墙服务。 当主计算机和IOP被初始化时,所有通信端口都被复位到关闭状态。 将应用程序加载到主计算机的存储器中以供执行,并提供要由应用程序使用的通信端口的标识。 所请求的通信端口的身份用于指示IOP打开通信端口以接受使用特定端口的网络数据包。 当应用程序终止操作时,应用程序使用的通信端口关闭,以提供对通信端口的动态控制。 此过程确保当前正在主机中执行的应用程序当前使用的端口在没有管理员操作的情况下打开。
-
8.发明授权Distributed transport communications manager with messaging subsystem for high-speed communications between heterogeneous computer systems 有权分布式传输通信管理器,具有消息子系统,用于异构计算机系统之间的高速通信公开(公告)号:US06810431B1
公开(公告)日:2004-10-26
申请号:US09418083
申请日:1999-10-14
IPC分类号: G06F1516
摘要: Methods and apparatus that enable a transport protocol executing on a first computer system to be utilized by applications executing on a second computer system which is directly interconnected and closely coupled to the first computer system. An interconnection couples an input/output (I/O) subsystem of the first computer system to an I/O subsystem of the second computer system and provides a path over which data can be transmitted between the first and second computer systems independent of a network interface card, and an interconnection messaging system executing on the first and second computer systems provides general purpose transport interfaces between said first and second computer systems. A distributed transport communications manager executing on the first and second computer systems controls use of the interconnection messaging system to establish a dialog through which the transport protocol of the first computer system may be used by an application executing on the second computer system in a manner which is transparent to the application. The transport protocol executing on the first computer system may be utilized by a plurality of networked computer systems including the second computer system, where the interconnection messaging system establishes dialogs through which the transport protocol of the first computer system may be used by applications executing on the networked computer systems. Conversely, applications executing on the second computer system may utilize transport protocols executing on a plurality of networked computer systems including the first computer system.
摘要翻译: 使得能够在第一计算机系统上执行的传输协议被在第二计算机系统上执行的应用程序使用,所述第二计算机系统直接互连并紧密地耦合到第一计算机系统。 互连将第一计算机系统的输入/输出(I / O)子系统耦合到第二计算机系统的I / O子系统,并且提供在第一和第二计算机系统之间独立于网络的数据可以传输的路径 接口卡和在第一和第二计算机系统上执行的互连消息传送系统提供所述第一和第二计算机系统之间的通用传输接口。 在第一和第二计算机系统上执行的分布式传输通信管理器控制互连消息传送系统的使用以建立对话,通过该对话可以由在第二计算机系统上执行的应用程序使用第一计算机系统的传输协议, 对应用程序是透明的。 在第一计算机系统上执行的传输协议可以由包括第二计算机系统的多个联网计算机系统利用,其中互连消息系统建立对话,第一计算机系统的传输协议可以由第一计算机系统上执行的应用使用 联网计算机系统。 相反,在第二计算机系统上执行的应用可以利用在包括第一计算机系统的多个联网的计算机系统上执行的传输协议。
-
公开(公告)号:US20130124851A1
公开(公告)日:2013-05-16
申请号:US13294336
申请日:2011-11-11
申请人: Michael T. Kain
发明人: Michael T. Kain
CPC分类号: H04L63/04 , H04L63/0428 , H04L63/08 , H04L63/166 , H04L63/20 , H04L69/162 , H04L69/326
摘要: A data communication security system is disclosed that includes a network interface including a first security module implementing a first security architecture, and a second security module implementing a second security architecture different from the first security architecture. The network interface further includes a file-based application programming interface defining a plurality of attributes of the network interface and including at least one attribute associated with data security managed by one of the first and second security modules. The file-based application programming interface includes at least one attribute from among the plurality of attributes that is associated with selecting between the first or second security modules.
-
10.发明申请FILE-BASED APPLICATION PROGRAMMING INTERFACE PROVIDING SSH-SECURED COMMUNICATION 审中-公开基于文件的应用编程接口提供SSH安全通信公开(公告)号:US20130124852A1
公开(公告)日:2013-05-16
申请号:US13294338
申请日:2011-11-11
申请人: Michael T. Kain , Ralph Armstrong
发明人: Michael T. Kain , Ralph Armstrong
IPC分类号: H04L29/06
CPC分类号: H04L69/162 , H04L63/0428 , H04L63/08 , H04L63/166 , H04L63/20 , H04L69/326
摘要: A data communication security system is disclosed that includes a network interface configured for transport layer protocol communications at a communication port. The network interface includes a security module configured to provide secure shell (SSH) data security on a transport layer data path, and which is communicatively connected to the transport layer data path. The data communication security system also includes a file-based application programming interface defining a plurality of attributes of the network interface and including at least one attribute configured for selection of the security module and accessible for use in logical I/O operations.
摘要翻译: 公开了一种数据通信安全系统,其包括被配置用于在通信端口处的传输层协议通信的网络接口。 网络接口包括被配置为在传输层数据路径上提供安全壳(SSH)数据安全性并且通信地连接到传输层数据路径的安全模块。 数据通信安全系统还包括定义网络接口的多个属性的基于文件的应用程序编程接口,并且包括被配置用于选择安全模块并可访问以用于逻辑I / O操作的至少一个属性。
-
-
-
-
-
-
-
-
-
搜索结果
12 条记录 (耗时 0.018 秒)
