-
公开(公告)号:US20100080391A1
公开(公告)日:2010-04-01
申请号:US12240742
申请日:2008-09-29
CPC分类号: H04L9/0822 , G06F17/30371 , G06F21/64 , H04L9/0894 , H04L9/321 , H04L9/3221 , H04L9/3242 , H04L9/3271
摘要: Various approaches are described for auditing integrity of stored data. In one approach, a data set is provided from a client to a storage provider, and the data set is stored at a first storage arrangement by the storage provider. An auditor determines whether the data set stored at the first storage arrangement is corrupt without reliance on any part of the data set and any derivative of any part of the data set stored by the client. While the auditor is determining whether the data set stored at the first storage arrangement is corrupt, the auditor is prevented from being exposed to information specified by the data set. The auditor outputs data indicative of data corruption in response to determining that the data set stored at the first storage arrangement is corrupt.
摘要翻译: 描述了各种方法来审计存储数据的完整性。 在一种方法中,从客户端向存储提供者提供数据集,并且数据集由存储提供商存储在第一存储装置中。 审核员确定存储在第一存储装置中的数据集是否破坏而不依赖于数据集的任何部分以及由客户机存储的数据集的任何部分的任何导数。 虽然审核员正在确定存储在第一存储装置中的数据集是否损坏,但是防止了审核员暴露于由数据集指定的信息。 响应于确定存储在第一存储装置处的数据集已损坏,审计员输出指示数据损坏的数据。
-
公开(公告)号:US08392708B2
公开(公告)日:2013-03-05
申请号:US12240742
申请日:2008-09-29
IPC分类号: H04L9/32
CPC分类号: H04L9/0822 , G06F17/30371 , G06F21/64 , H04L9/0894 , H04L9/321 , H04L9/3221 , H04L9/3242 , H04L9/3271
摘要: Various approaches are described for auditing integrity of stored data. In one approach, a data set is provided from a client to a storage provider, and the data set is stored at a first storage arrangement by the storage provider. An auditor determines whether the data set stored at the first storage arrangement is corrupt without reliance on any part of the data set and any derivative of any part of the data set stored by the client. While the auditor is determining whether the data set stored at the first storage arrangement is corrupt, the auditor is prevented from being exposed to information specified by the data set. The auditor outputs data indicative of data corruption in response to determining that the data set stored at the first storage arrangement is corrupt.
摘要翻译: 描述了各种方法来审计存储数据的完整性。 在一种方法中,从客户端向存储提供者提供数据集,并且数据集由存储提供商存储在第一存储装置中。 审核员确定存储在第一存储装置中的数据集是否破坏而不依赖于数据集的任何部分以及由客户机存储的数据集的任何部分的任何导数。 虽然审核员正在确定存储在第一存储装置中的数据集是否损坏,但是防止了审核员暴露于由数据集指定的信息。 响应于确定存储在第一存储装置处的数据集已损坏,审计员输出指示数据损坏的数据。
-
3.发明授权公开(公告)号:US09405921B1
公开(公告)日:2016-08-02
申请号:US11888381
申请日:2007-07-31
IPC分类号: G06F21/62
CPC分类号: G06F21/6218 , G06F21/604 , G06F2221/2141
摘要: One embodiment relates to a computer-implemented method for role discovery in access control systems. User accounts are selected according to a predetermined algorithm. For each selected user account, a new role is created covering a set of permissions including all permissions which the user account needs but is not yet covered by another role that the user account has. The new role is given to the user account so that all permissions needed by the user account are covered. Any additional user accounts which still need the set of permissions covered by the new role are also found, and the new role is given to these additional user accounts, if any. Other features, aspects and embodiments are also disclosed.
摘要翻译: 一个实施例涉及用于访问控制系统中角色发现的计算机实现的方法。 根据预定算法选择用户账户。 对于每个选定的用户帐户,创建一个新角色,覆盖一组权限,包括用户帐户所需的所有权限,但尚未被用户帐户所具有的其他角色覆盖。 给用户帐户赋予新角色,以覆盖用户帐户所需的所有权限。 还会找到仍然需要新角色所涵盖的一组权限的任何其他用户帐户,并将新角色授予这些其他用户帐户(如果有)。 还公开了其它特征,方面和实施例。
-
4.发明授权Auditor assisted extraction and verification of client data returned from a storage provided while hiding client data from the auditor 有权审计员协助提取和验证从提供的存储返回的客户端数据,同时隐藏审核员的客户端数据公开(公告)号:US08281151B2
公开(公告)日:2012-10-02
申请号:US12243134
申请日:2008-10-01
申请人: Mehul A. Shah , Ram Swaminathan
发明人: Mehul A. Shah , Ram Swaminathan
IPC分类号: H04L29/06
CPC分类号: H04L9/0894 , H04L9/0822 , H04L9/0825 , H04L9/321 , H04L9/3218 , H04L9/3221 , H04L9/3242
摘要: Various approaches for extracting client's data from a storage provider are presented. In one approach, an auditor is initialized with a verification data set that confirms that an initial version of a data set stored by the storage provider is intact. The auditor extracts a second version of the data set from the storage provider; the second version hides information specified by the data set from the auditor. The auditor determines whether the second version matches the initial version. The second version is returned to the client if the initial version matches the second version. The auditor is prevented from recovering the information specified by the data set using the state information, and the client need not store any state information related to the initial and second versions needed to recover the information specified by the data set. If the initial version does not match the second version, the auditor outputs data indicative of data corruption.
摘要翻译: 介绍了从存储提供商提取客户端数据的各种方法。 在一种方法中,审核员被初始化为验证数据集,确认存储提供商存储的数据集的初始版本是完整的。 审核员从存储提供商提取数据集的第二版本; 第二个版本隐藏由审核员指定的数据集的信息。 审核员确定第二个版本是否与初始版本相匹配。 如果初始版本与第二个版本匹配,则第二个版本将返回给客户端。 防止审核员使用状态信息恢复由数据集指定的信息,并且客户端不需要存储与恢复由数据集指定的信息所需的初始和第二版本相关的任何状态信息。 如果初始版本与第二个版本不匹配,则审核员将输出指示数据损坏的数据。
-
公开(公告)号:US10817390B2
公开(公告)日:2020-10-27
申请号:US14343010
申请日:2011-09-14
摘要: A transactional memory system uses a volatile memory as primary storage for transactions. Data is selectively stored in a non-volatile memory to impart durability to the transactional memory system to allow the transactional memory system to be restored to a consistent state in the event of data loss to the volatile memory.
-
公开(公告)号:US09176860B2
公开(公告)日:2015-11-03
申请号:US12370551
申请日:2009-02-12
CPC分类号: G06F12/0246 , G06F17/30498 , G06F2212/7202
摘要: Computer-implemented systems and associated operating methods implement a fast join for databases which is adapted for usage with flash storage. A system comprises a processor that performs a join of two tables stored in a storage in pages processed in a column orientation wherein column values for all rows on a page are co-located in mini-pages within the page. The processor reduces input/output operations of the join by accessing only join columns and mini-pages containing join results.
摘要翻译: 计算机实现的系统和相关的操作方法为适用于闪存存储的数据库实现快速连接。 一种系统包括一个处理器,该处理器执行存储在一个列方向处理的页面中的存储在存储器中的两个表的连接,其中页面上所有行的列值共同位于该页内的小页面中。 处理器通过仅访问连接列和包含连接结果的小页面来减少连接的输入/输出操作。
-
公开(公告)号:US08707098B2
公开(公告)日:2014-04-22
申请号:US13259221
申请日:2010-01-14
申请人: Eric A. Anderson , Xiaozhou Li , Mehul A. Shah , John J. Wylie
发明人: Eric A. Anderson , Xiaozhou Li , Mehul A. Shah , John J. Wylie
IPC分类号: G06F11/00
CPC分类号: G06F11/2094 , G06F11/106 , G06F2211/1088
摘要: A method of recovering a value in a data storage system includes maintaining a list of entries corresponding to values that have been inserted into the data storage system, determining whether the values are at an At Maximum Redundancy (AMR) state, and if not, the converging the values to the AMR state.
摘要翻译: 恢复数据存储系统中的值的方法包括维护与已经插入到数据存储系统中的值相对应的条目列表,确定值是否处于At最大冗余(AMR)状态,如果不是,则 将值收敛到AMR状态。
-
公开(公告)号:US20130238576A1
公开(公告)日:2013-09-12
申请号:US13416603
申请日:2012-03-09
IPC分类号: G06F7/00
CPC分类号: G06F17/30961
摘要: A distributed balanced tree having a plurality of nodes distributed across a plurality of servers is accessed. Version information associated with a node of the distributed balanced tree is retrieved. Validity of a lookup transaction performed on the balanced tree is determined by verifying a version value of only the leaf node accessed during the lookup operation against the retrieved version information.
摘要翻译: 访问分布在多个服务器上的多个节点的分布式平衡树被访问。 检索与分布式平衡树的节点相关联的版本信息。 在平衡树上执行的查找事务的有效性是通过仅针对检索到的版本信息检查在查找操作期间访问的叶节点的版本值来确定的。
-
公开(公告)号:US20130111147A1
公开(公告)日:2013-05-02
申请号:US13285735
申请日:2011-10-31
CPC分类号: G06F12/0802 , G06F8/4442 , G06F12/1027 , G06F2212/502 , G06F2212/6024 , Y02D10/13
摘要: Example methods, apparatus, and articles of manufacture to access memory are disclosed. A disclosed example method involves receiving at least one runtime characteristic associated with accesses to contents of a memory page and dynamically adjusting a memory fetch width for accessing the memory page based on the at least one runtime characteristic.
摘要翻译: 公开了用于访问存储器的示例性方法,装置和制品。 所公开的示例性方法包括接收与对存储器页面的内容的访问相关联的至少一个运行时特性,并且基于至少一个运行时特性动态地调整用于访问存储器页面的存储器提取宽度。
-
公开(公告)号:US20070288587A1
公开(公告)日:2007-12-13
申请号:US11450987
申请日:2006-06-12
IPC分类号: G06F15/167
CPC分类号: G06F9/466 , G06F9/526 , G06F2209/521
摘要: A transactional shared memory system has a plurality of discrete application nodes; a plurality of discrete memory nodes; a network interconnecting the application nodes and the memory nodes, and a controller for directing transactions in a distributed system utilizing the shared memory. The memory nodes collectively provide an address space of shared memory that is provided to the application nodes via the network. The controller has instructions to transfer a batched transaction instruction set from an application node to at least one memory node. This instruction set includes one or more write, compare and read instruction subsets, and/or combinations thereof. At least one subset has a valid non null memory node identifier and memory address range. The memory node identifier may be indicated by the memory address range. The controller controls the memory node responsive to receipt of the batched transaction instruction set, to safeguard the associated memory address range during execution of the transaction instruction set. The batched transaction instruction set is collectively executed atomically. A notification instruction set may also be used to establish a notification, triggered upon a subsequent write event upon at least a portion of a specified address range.
摘要翻译: 交易共享存储器系统具有多个离散应用节点; 多个离散存储器节点; 互连应用节点和存储器节点的网络,以及用于在利用共享存储器的分布式系统中指导事务的控制器。 存储器节点共同地提供通过网络提供给应用节点的共享存储器的地址空间。 控制器具有将批处理交易指令集从应用节点传送到至少一个存储器节点的指令。 该指令集包括一个或多个写入,比较和读取指令子集,和/或其组合。 至少一个子集具有有效的非空存储器节点标识符和存储器地址范围。 存储器节点标识符可以由存储器地址范围指示。 所述控制器响应于接收到所述批处理指令集来控制所述存储器节点,以在所述事务指令集的执行期间保护所述相关联的存储器地址范围。 批量事务指令集合是以原子方式共同执行的。 也可以使用通知指令集来建立在指定地址范围的至少一部分上的后续写入事件时触发的通知。
-
-
-
-
-
-
-
-
-
搜索结果
43 条记录 (耗时 0.03 秒)
