-
1.发明申请METHOD AND APPARATUS FOR RESTORING ENCRYPTED FILES TO AN ENCRYPTING FILE SYSTEM BASED ON DEPRECATED KEYSTORES 失效将加密文件恢复到基于删除键盘的加密文件系统的方法和装置公开(公告)号:US20090110198A1
公开(公告)日:2009-04-30
申请号:US11929103
申请日:2007-10-30
IPC分类号: H04L9/00
CPC分类号: G06F21/6218 , G06F21/6209
摘要: The present invention provides a computer implemented method, data processing system, and computer program product to restore an encrypted file. A computer receives a command to restore an encrypted file, wherein the encrypted file was previously backed up. The computer identifies a user associated with the encrypted file. The computer looks up a first keystore of the user based on the user, the first keystore having an active private key. The computer determines that a public key of the encrypted file fails to match an active public key of the first keystore. The computer restores a second keystore of the user to form a restored private key, wherein the second keystore was previously backed up. The computer responsive to a determination that the public key of the encrypted file fails to match the active public key of the first keystore, decrypts the encrypted file encryption key based on the restored private key to form a file encryption key. The computer encrypts the file encryption key with the active private key of the first keystore.
摘要翻译: 本发明提供了一种计算机实现的方法,数据处理系统和用于恢复加密文件的计算机程序产品。 计算机接收恢复加密文件的命令,其中先前备份了加密文件。 计算机识别与加密文件相关联的用户。 计算机基于用户查找用户的第一密钥库,第一密钥库具有活动的私钥。 计算机确定加密文件的公钥不能匹配第一密钥库的活动公钥。 计算机恢复用户的第二密钥库以形成恢复的私钥,其中先前备份了第二密钥库。 该计算机响应于确定加密文件的公开密钥与第一密钥库的活动公钥匹配的确定,基于恢复的私钥对加密的文件加密密钥进行解密以形成文件加密密钥。 计算机使用第一个密钥库的活动私钥对文件加密密钥进行加密。
-
2.发明授权Method and apparatus for restoring encrypted files to an encrypting file system based on deprecated keystores 失效基于不推荐的密钥库将加密文件恢复到加密文件系统的方法和装置公开(公告)号:US08494167B2
公开(公告)日:2013-07-23
申请号:US11929103
申请日:2007-10-30
CPC分类号: G06F21/6218 , G06F21/6209
摘要: The present invention provides a computer implemented method, data processing system, and computer program product to restore an encrypted file. A computer receives a command to restore an encrypted file, wherein the encrypted file was previously backed up. The computer identifies a user associated with the encrypted file. The computer looks up a first keystore of the user based on the user, the first keystore having an active private key. The computer determines that a public key of the encrypted file fails to match an active public key of the first keystore. The computer restores a second keystore of the user to form a restored private key, wherein the second keystore was previously backed up. The computer responsive to a determination that the public key of the encrypted file fails to match the active public key of the first keystore, decrypts the encrypted file encryption key based on the restored private key to form a file encryption key. The computer encrypts the file encryption key with the active private key of the first keystore.
摘要翻译: 本发明提供了一种计算机实现的方法,数据处理系统和用于恢复加密文件的计算机程序产品。 计算机接收恢复加密文件的命令,其中先前备份了加密文件。 计算机识别与加密文件相关联的用户。 计算机基于用户查找用户的第一密钥库,第一密钥库具有活动的私钥。 计算机确定加密文件的公钥不能匹配第一密钥库的活动公钥。 计算机恢复用户的第二密钥库以形成恢复的私钥,其中先前备份了第二密钥库。 该计算机响应于确定加密文件的公开密钥与第一密钥库的活动公钥匹配的确定,基于恢复的私钥对加密的文件加密密钥进行解密以形成文件加密密钥。 计算机使用第一个密钥库的活动私钥对文件加密密钥进行加密。
-
公开(公告)号:US20050015415A1
公开(公告)日:2005-01-20
申请号:US10619986
申请日:2003-07-14
申请人: Neeta Garimella , Alexei Kojenov
发明人: Neeta Garimella , Alexei Kojenov
CPC分类号: G06F3/0637 , G06F3/0623 , G06F3/0656 , G06F3/067
摘要: Provided are a method, system, and program for performing an Input/Output (I/O) operation with respect to a logical device capable of being accessed by multiple host systems. Metadata in the logical device that is required in order to access the data in the logical device is overwritten to prevent at least one host system from accessing the data in the logical device represented by the overwritten metadata. An I/O operation is performed with respect to the logical device. Valid metadata is written to the logical device to enable host systems to access the data in the logical device represented by the metadata.
-
4.发明授权Method, system, and program for performing an input/output operation with respect to a logical storage device 失效用于执行关于逻辑存储设备的输入/输出操作的方法,系统和程序公开(公告)号:US06938136B2
公开(公告)日:2005-08-30
申请号:US10619986
申请日:2003-07-14
申请人: Neeta Garimella , Alexei Kojenov
发明人: Neeta Garimella , Alexei Kojenov
CPC分类号: G06F3/0637 , G06F3/0623 , G06F3/0656 , G06F3/067
摘要: Provided are a method, system, and program for performing an Input/Output (I/O) operation with respect to a logical device capable of being accessed by multiple host systems. Metadata in the logical device that is required in order to access the data in the logical device is overwritten to prevent at least one host system from accessing the data in the logical device represented by the overwritten metadata. An I/O operation is performed with respect to the logical device. Valid metadata is written to the logical device to enable host systems to access the data in the logical device represented by the metadata.
摘要翻译: 提供了一种用于对能够被多个主机系统访问的逻辑设备执行输入/输出(I / O)操作的方法,系统和程序。 覆盖为了访问逻辑设备中的数据所需的逻辑设备中的元数据被覆盖,以防止至少一个主机系统访问由被覆盖的元数据表示的逻辑设备中的数据。 相对于逻辑设备执行I / O操作。 将有效元数据写入逻辑设备,以使主机系统能够访问由元数据表示的逻辑设备中的数据。
-
5.发明授权Retaining disk identification in operating system environment after a hardware-driven snapshot restore from a snapshot-LUN created using software-driven snapshot architecture 失效从使用软件驱动的快照架构创建的快照LUN中恢复硬件驱动的快照后,在操作系统环境中保留磁盘标识公开(公告)号:US08266402B2
公开(公告)日:2012-09-11
申请号:US13208500
申请日:2011-08-12
申请人: Neeta Garimella
发明人: Neeta Garimella
CPC分类号: G06F11/1435 , G06F11/1456 , G06F11/1469 , G06F2201/84
摘要: A program, method and system are disclosed for managing a snapshot backup restore through a hardware snapshot interface, i.e. a hardware-driven snapshot restore, based upon a software-driven snapshot backup, e.g. created with software such as volume shadow copy service (VSS). When conventional hardware-driven snapshot restores are performed using a snapshot backup that was created using the VSS-based software such as copy services, data access issues can arise, due to the operating system assigning of a new disk signature to the disk being restored. This problem can be overcome by temporarily storing the original disk signature and then overwriting the new, incorrect disk signature after initializing the restore. This can ensure that the operating system identifies the source LUNs (and accordingly, the drive letter and mount points of the disk) using the same disk signature as before the restore.
摘要翻译: 公开了一种程序,方法和系统,用于通过硬件快照接口管理快照备份还原,即基于软件驱动的快照备份的硬件驱动的快照恢复。 使用卷影复制服务(VSS)等软件创建。 当使用使用基于VSS的软件(如复制服务)创建的快照备份来执行传统的硬件驱动快照还原时,由于操作系统将新的磁盘签名分配给要还原的磁盘,可能会导致数据访问问题。 可以通过临时存储原始磁盘签名,然后在初始化还原后覆盖新的不正确的磁盘签名来克服此问题。 这可以确保操作系统使用与恢复之前相同的磁盘签名识别源LUN(并因此识别磁盘的驱动器号和安装点)。
-
6.发明申请Temporarily providing higher privileges for computing system to user identifier 有权暂时为计算系统提供更高的权限给用户标识符公开(公告)号:US20110083163A1
公开(公告)日:2011-04-07
申请号:US12574562
申请日:2009-10-06
CPC分类号: H04L63/0884 , G06F8/65 , G06F21/30 , G06F21/31 , G06F21/57 , G06F21/60 , G06F21/62 , G06F21/6218 , G06F2221/2141 , G06F2221/2145 , G06F2221/2149 , H04L63/083 , H04L63/10
摘要: A root user identifier of a computing system is disabled. Thereafter, and in response to determining that a problem with the computing system requires root privileges to the computing system to solve, a code patch for installation on the computing system is received from a third party. The code patch is installed on the computing system, resulting in a user identifier temporarily having the root privileges to the computing system. The user identifier is different than the root user identifier is. A password for the user identifier is provided to the third party to permit the third party to solve the problem with the computing system using the root privileges, via the user identifier temporarily having the root privileges to the computing system. The code patch is computer code installable on the computing system.
摘要翻译: 计算系统的根用户标识符被禁用。 此后,响应于确定计算系统的问题需要计算系统的root权限来解决,则从第三方接收用于在计算系统上安装的代码补丁。 代码补丁安装在计算系统上,导致用户标识符暂时具有计算系统的root权限。 用户标识符与根用户标识符不同。 将用户标识符的密码提供给第三方,以允许第三方通过临时具有计算系统的根特权的用户标识符,使用根特权解决计算系统的问题。 代码补丁是可以在计算系统上安装的计算机代码。
-
7.发明授权Apparatus, system, and method for differential backup using snapshot on-write data 有权使用快照写入数据进行差异备份的设备,系统和方法公开(公告)号:US07284019B2
公开(公告)日:2007-10-16
申请号:US10920964
申请日:2004-08-18
CPC分类号: G06F11/1451 , G06F11/1469 , G06F2201/84 , Y10S707/99953
摘要: An apparatus, system, and method are disclosed for differential data backup using snapshot on-write data. A snapshot module maintains an on-write data structure that captures a point-in-time or temporal instance of a data set by tracking modifications to data blocks of a data set. A backup module copies the data set to a backup data storage device as a full data set backup. In addition, the backup module copies each modified data block indicated by the on-write data structure and a differential time stamp to the backup data storage device as a differential data set backup. The full data set backup and one or more differential data set backups form a plurality of temporal instances of the data set. In one embodiment, a restore module recovers a selected instance of the data set responsive to receiving a restore command by copying the full data set backup to a target data storage device. In addition, the restore module may copy the differential data set backup to the target data storage device if the differential time stamp corresponds to a target time value.
摘要翻译: 公开了使用快照写入数据进行差分数据备份的装置,系统和方法。 快照模块维护写入数据结构,通过跟踪对数据集的数据块的修改来捕获数据集的时间点或时间实例。 备份模块将数据集复制到备份数据存储设备作为完整数据集备份。 此外,备份模块将由写入数据结构指示的每个修改的数据块和差分时间戳复制到备份数据存储设备作为差分数据集备份。 完整数据集备份和一个或多个差分数据集备份形成数据集的多个时间实例。 在一个实施例中,恢复模块响应于通过将完整数据集备份复制到目标数据存储设备来接收恢复命令来恢复数据集的选定实例。 此外,如果差分时间戳对应于目标时间值,则还原模块可以将差分数据集备份复制到目标数据存储设备。
-
公开(公告)号:US09460277B2
公开(公告)日:2016-10-04
申请号:US12960866
申请日:2010-12-06
CPC分类号: G06F21/31 , G06F2221/2101
摘要: An identity of a user performing an operation with respect to an application is propagated, from a point at which the user authenticates, to one or more other applications in a multi-product environment. The application may be a management console associated with an information cluster. In an embodiment, an administrator logs on to a management console (using an identity) and invokes a management operation. The management console then performs a programmatic remote access login (e.g., using SSH/RXA) to one or more nodes using a system account, invokes an application, and passes in the identity. As the application performs one or more management operations, audit events are logged, and these events each contain the identity that has been passed in by the management console during the SSH/RXA login. The technique thus provides a method for identity-based auditing in an environment having a plurality of applications, where each application typically has a respective authentication process or mechanism and distinct identity registries.
摘要翻译: 执行相对于应用的操作的用户的身份从用户认证的点传播到多产品环境中的一个或多个其他应用。 该应用可以是与信息集群相关联的管理控制台。 在一个实施例中,管理员登录到管理控制台(使用身份)并且调用管理操作。 然后,管理控制台使用系统帐户执行到一个或多个节点的编程远程访问登录(例如,使用SSH / RXA),调用应用程序并传入身份。 当应用程序执行一个或多个管理操作时,将记录审核事件,并且这些事件每个都包含管理控制台在SSH / RXA登录期间传递的身份。 因此,该技术提供了在具有多个应用的环境中的基于身份的审计的方法,其中每个应用通常具有相应的认证过程或机制和不同的身份注册表。
-
9.发明授权Temporarily providing higher privileges for computing system to user identifier 有权暂时为计算系统提供更高的权限给用户标识符公开(公告)号:US09043877B2
公开(公告)日:2015-05-26
申请号:US12574562
申请日:2009-10-06
CPC分类号: H04L63/0884 , G06F8/65 , G06F21/30 , G06F21/31 , G06F21/57 , G06F21/60 , G06F21/62 , G06F21/6218 , G06F2221/2141 , G06F2221/2145 , G06F2221/2149 , H04L63/083 , H04L63/10
摘要: A root user identifier of a computing system is disabled. Thereafter, and in response to determining that a problem with the computing system requires root privileges to the computing system to solve, a code patch for installation on the computing system is received from a third party. The code patch is installed on the computing system, resulting in a user identifier temporarily having the root privileges to the computing system. The user identifier is different than the root user identifier is. A password for the user identifier is provided to the third party to permit the third party to solve the problem with the computing system using the root privileges, via the user identifier temporarily having the root privileges to the computing system. The code patch is computer code installable on the computing system.
摘要翻译: 计算系统的根用户标识符被禁用。 此后,响应于确定计算系统的问题需要计算系统的root权限来解决,则从第三方接收用于在计算系统上安装的代码补丁。 代码补丁安装在计算系统上,导致用户标识符暂时具有计算系统的root权限。 用户标识符与根用户标识符不同。 将用户标识符的密码提供给第三方,以允许第三方通过临时具有计算系统的根特权的用户标识符来解决计算系统使用根特权的问题。 代码补丁是可以在计算系统上安装的计算机代码。
-
10.发明授权Developing software components and capability testing procedures for testing coded software component 失效开发用于测试编码软件组件的软件组件和功能测试程序公开(公告)号:US08561024B2
公开(公告)日:2013-10-15
申请号:US11626274
申请日:2007-01-23
申请人: Jason Ferris Basler , James Michael Dile , Neeta Garimella , Avishai Haim Hochberg , Ursula Richter , Jean Elizabeth Vargas , Mark L. Yakushev
发明人: Jason Ferris Basler , James Michael Dile , Neeta Garimella , Avishai Haim Hochberg , Ursula Richter , Jean Elizabeth Vargas , Mark L. Yakushev
IPC分类号: G06F9/44
CPC分类号: G06F8/73 , G06F8/20 , G06F11/3684
摘要: Capability test programs are generated implementing the capability test test cases for the components, wherein component developers use the capability test programs to test components during the development and coding of the components. Documentation is generated describing component abstract test cases incorporating information on capability test test cases. Component test programs are generated implementing the component abstract test cases for the components and utilizing capability test programs, wherein each component test program tests one component for at least one test case specified in the component abstract test case documentation for the component. The capability test programs and component test programs are stored in a shared repository. A software development program is deployed to enable the developers and testers to execute groups of component test programs in the shared repository to test the components during different phases of the development of the software product.
摘要翻译: 生成能力测试程序,实现组件的能力测试测试用例,其中组件开发人员使用能力测试程序在组件的开发和编码期间测试组件。 生成文档,描述组合抽象测试用例,并结合有关能力测试测试用例的信息。 生成组件测试程序,实现组件的组件抽象测试用例并利用能力测试程序,其中每个组件测试程序针对组件的组件抽象测试用例文档中指定的至少一个测试用例测试一个组件。 能力测试程序和组件测试程序存储在共享存储库中。 部署软件开发程序,使开发人员和测试人员能够在共享存储库中执行组件测试程序组,以在软件产品开发的不同阶段测试组件。
-
-
-
-
-
-
-
-
-
搜索结果
40 条记录 (耗时 0.026 秒)
