公开(公告)号：US09710664B2

公开(公告)日：2017-07-18

申请号：US13606979

申请日：2012-09-07

申请人： Shiju Sathyadevan ,  P. Venkat Rangan ,  Krishnashree Achuthan

发明人： Shiju Sathyadevan ,  P. Venkat Rangan ,  Krishnashree Achuthan

IPC分类号： G06F7/04 ,  G06F21/62 ,  G06F21/55 ,  G06F17/30

CPC分类号： G06F21/6218 ,  G06F21/554

摘要： A system for protecting data managed in a cloud-computing network from malicious data operations includes an Internet-connected server and software executing on the server from a non-transitory physical medium, the software providing a first function for generating one or more security tokens that validate one or more computing operations to be performed on the data, a second function for generating a hash for each token generated, the hash detailing, in a secure fashion, the operation type or types permitted by the one or more tokens, a third function for brokering two-party signature of the one or more tokens, and a fourth function for dynamically activating the one or more signed tokens for a specific time window required to perform the operations permitted by the token.

公开(公告)号：US20140075568A1

公开(公告)日：2014-03-13

申请号：US13606979

申请日：2012-09-07

申请人： Shiju Sathyadevan ,  P. Venkat Rangan ,  Krishnashree Achuthan

发明人： Shiju Sathyadevan ,  P. Venkat Rangan ,  Krishnashree Achuthan

IPC分类号： G06F21/24

CPC分类号： G06F21/6218 ,  G06F21/554

摘要： A system for protecting data managed in a cloud-computing network from malicious data operations includes an Internet-connected server and software executing on the server from a non-transitory physical medium, the software providing a first function for generating one or more security tokens that validate one or more computing operations to be performed on the data, a second function for generating a hash for each token generated, the hash detailing, in a secure fashion, the operation type or types permitted by the one or more tokens, a third function for brokering two-party signature of the one or more tokens, and a fourth function for dynamically activating the one or more signed tokens for a specific time window required to perform the operations permitted by the token.

摘要翻译： 用于保护在云计算网络中管理的数据免受恶意数据操作的系统包括互联网连接的服务器和从非暂时物理介质在服务器上执行的软件，该软件提供用于生成一个或多个安全令牌的第一功能， 验证要对数据执行的一个或多个计算操作，用于为所生成的每个令牌生成散列的第二功能，以安全的方式，所述一个或多个令牌允许的操作类型或类型的散列细节，第三功能 用于代理一个或多个令牌的两方签名，以及用于在执行令牌所允许的操作所需的特定时间窗口中动态激活一个或多个签名令牌的第四功能。