-
公开(公告)号:US20190087600A1
公开(公告)日:2019-03-21
申请号:US15742498
申请日:2016-05-07
Applicant: PRIVATE MACHINES INC.
Inventor: Radu Sion , Sumeet Vijay Bajaj , Jan Wojciech Kasiak
Abstract: A secure data management system and method which separates query processing operations from transaction management and data storage operations to provides secure outsourced data management assurances while remaining practically viable for commercial deployment. The secure data management system and method includes a untrusted database module which performs transaction management and data storage operations on encrypted data from at least one network accessible computer and a trusted database module which processes user generated queries and commands on a secure client device by selectively accessing, decrypting and re-encrypting the encrypted data on the at least one network accessible computer. In this regard, total privacy can be maintained while still outsourcing transaction management and data storage operations to untrusted third parties because all sensitive operations are performed in a secure environment and the transaction management and data storage operations can only access encrypted data.
-
公开(公告)号:US11003787B2
公开(公告)日:2021-05-11
申请号:US15742498
申请日:2016-05-07
Applicant: PRIVATE MACHINES INC.
Inventor: Radu Sion , Sumeet Vijay Bajaj , Jan Wojciech Kasiak
IPC: G06F21/62 , H04L9/08 , H04L29/06 , G06F16/21 , G06F16/22 , G06F16/903 , G06F16/178 , G06F16/13 , H04L29/08
Abstract: A secure data management system and method which separates query processing operations from transaction management and data storage operations to provides secure outsourced data management assurances while remaining practically viable for commercial deployment. The secure data management system and method includes a untrusted database module which performs transaction management and data storage operations on encrypted data from at least one network accessible computer and a trusted database module which processes user generated queries and commands on a secure client device by selectively accessing, decrypting and re-encrypting the encrypted data on the at least one network accessible computer. In this regard, total privacy can be maintained while still outsourcing transaction management and data storage operations to untrusted third parties because all sensitive operations are performed in a secure environment and the transaction management and data storage operations can only access encrypted data.
-
公开(公告)号:US10762229B2
公开(公告)日:2020-09-01
申请号:US15742497
申请日:2016-05-06
Applicant: PRIVATE MACHINES INC.
Inventor: Radu Sion , Sumeet Vijay Bajaj , Jan Wojciech Kasiak
IPC: G06F17/00 , G06F21/62 , H04L9/08 , H04L29/06 , G06F16/21 , G06F16/22 , G06F16/903 , G06F16/178 , G06F16/13 , H04L29/08
Abstract: A secure searchable and shareable remote storage system and method which utilizes client side processing to enable search capability of the stored data, allow the synchronizing of stored data between multiple discrete devices, and allow sharing of stored data between multiple discrete users. Such a remote storage system and method includes a networked remote computer server which receives and stores encrypted data and manages access thereto and a client device configured to index data to be stored, upload secured data and related information, perform searches on the stored data and related information locally, and implement cryptographic protocols which allow the stored data and related information to be synchronized with other desired client devices. Advantageously, since trusted client-side search code may directly access mostly plaintext data, it may operate orders of magnitude faster than the equivalent server code which may access encrypted data only.
-
公开(公告)号:US20190087432A1
公开(公告)日:2019-03-21
申请号:US15742497
申请日:2016-05-06
Applicant: PRIVATE MACHINES INC.
Inventor: Radu Sion , Sumeet Vijay Bajaj
CPC classification number: G06F21/6227 , G06F16/13 , G06F16/178 , G06F16/21 , G06F16/2246 , G06F16/2272 , G06F16/903 , G06F21/62 , G06F21/6218 , H04L9/0861 , H04L9/0891 , H04L63/0428 , H04L63/10 , H04L67/1097
Abstract: A secure searchable and shareable remote storage system and method which utilizes client side processing to enable search capability of the stored data, allow the synchronizing of stored data between multiple discrete devices, and allow sharing of stored data between multiple discrete users. Such a remote storage system and method includes a networked remote computer server which receives and stores encrypted data and manages access thereto and a client device configured to index data to be stored, upload secured data and related information, perform searches on the stored data and related information locally, and implement cryptographic protocols which allow the stored data and related information to be synchronized with other desired client devices. Advantageously, since trusted client-side search code may directly access mostly plaintext data, it may operate orders of magnitude faster than the equivalent server code which may access encrypted data only.
-
-
-
Search Results
4
records
(took 0.013 seconds)
