-
公开(公告)号:US10108807B2
公开(公告)日:2018-10-23
申请号:US14546887
申请日:2014-11-18
Applicant: Security First Corp.
Inventor: Mark S. O'Hare , Rick L. Orsini , Roger S. Davenport , Steven Winick
Abstract: A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to protect data in motion by splitting original data into portions of data, that may be communicated using multiple communications paths.
-
公开(公告)号:US09992170B2
公开(公告)日:2018-06-05
申请号:US13915081
申请日:2013-06-11
Applicant: Security First Corp.
Inventor: Mark S. O'Hare , Rick L. Orsini , Roger S. Davenport , Steven Winick
IPC: G06F7/04 , H04L29/06 , H04L29/08 , G06F21/60 , G06F21/62 , H04L9/08 , H04L9/32 , G06F17/30 , G06F11/10
CPC classification number: H04L63/0428 , G06F11/1092 , G06F17/30312 , G06F21/602 , G06F21/606 , G06F21/62 , G06F21/6218 , H04L9/085 , H04L9/3226 , H04L9/3263 , H04L63/04 , H04L63/08 , H04L63/0823 , H04L63/0876 , H04L67/108 , H04L69/14 , H04L2209/80
Abstract: A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to protect data in motion by splitting original data into portions of data that may be communicated using multiple communications paths.
-
公开(公告)号:US20180150649A1
公开(公告)日:2018-05-31
申请号:US15882694
申请日:2018-01-29
Applicant: Security First Corp.
Inventor: Mark S. O'Hare , Rick L. Orsini , Roger S. Davenport
CPC classification number: G06F21/6227 , G06F21/6218 , H04L9/065 , H04L9/085 , H04L9/3226 , H04L9/3234
Abstract: The systems and methods disclosed herein transparently provide data security using a cryptographic file system layer that selectively intercepts and modifies (e.g., by encrypting) data to be stored in a designated director. The cryptographic file system layer can be used in combination with one or more cryptographic approaches to provide a server-based secure data solution that makes data more secure and accessible, while eliminating the need for multiple perimeter hardware and software technologies.
-
公开(公告)号:US09589148B2
公开(公告)日:2017-03-07
申请号:US15223917
申请日:2016-07-29
Applicant: Security First Corp.
Inventor: Mark S. O'Hare , Rick L. Orsini
CPC classification number: G06F21/6218 , G06F11/1076 , G06F11/182 , G06F11/2094 , G06F21/60 , G06F21/602 , G06F21/6227 , G06F21/72 , G06F2221/2101 , G06F2221/2107 , H04L9/085 , H04L9/0894 , H04L63/0428 , H04L63/08 , H04L63/0861 , H04L67/1097
Abstract: The systems and methods of the present invention provide a solution that makes data provably secure and accessible—addressing data security at the bit level—thereby eliminating the need for multiple perimeter hardware and software technologies. Data security is incorporated or weaved directly into the data at the bit level. The systems and methods of the present invention enable enterprise communities of interest to leverage a common enterprise infrastructure. Because security is already woven into the data, this common infrastructure can be used without compromising data security and access control. In some applications, data is authenticated, encrypted, and parsed or split into multiple shares prior to being sent to multiple locations, e.g., a private or public cloud. The data is hidden while in transit to the storage location, and is inaccessible to users who do not have the correct credentials for access.
Abstract translation: 本发明的系统和方法提供了一种解决方案,使得数据可靠地安全和可访问 - 在位级别处理数据安全性,从而消除对多周边硬件和软件技术的需要。 将数据安全性直接并入或编织在位级别的数据中。 本发明的系统和方法使企业社区能够利用共同的企业基础架构。 由于安全性已经被编入数据,因此可以使用这种通用的基础架构,而不会影响数据安全性和访问控制。 在某些应用中,数据在被发送到多个位置(例如私有云或公共云)之前被认证,加密和解析或分割成多个共享。 数据在传输到存储位置时被隐藏,并且对于没有正确凭据进行访问的用户无法访问。
-
公开(公告)号:US20160379005A1
公开(公告)日:2016-12-29
申请号:US15223917
申请日:2016-07-29
Applicant: Security First Corp.
Inventor: Mark S. O'Hare , Rick L. Orsini
CPC classification number: G06F21/6218 , G06F11/1076 , G06F11/182 , G06F11/2094 , G06F21/60 , G06F21/602 , G06F21/6227 , G06F21/72 , G06F2221/2101 , G06F2221/2107 , H04L9/085 , H04L9/0894 , H04L63/0428 , H04L63/08 , H04L63/0861 , H04L67/1097
Abstract: The systems and methods of the present invention provide a solution that makes data provably secure and accessible—addressing data security at the bit level—thereby eliminating the need for multiple perimeter hardware and software technologies. Data security is incorporated or weaved directly into the data at the bit level. The systems and methods of the present invention enable enterprise communities of interest to leverage a common enterprise infrastructure. Because security is already woven into the data, this common infrastructure can be used without compromising data security and access control. In some applications, data is authenticated, encrypted, and parsed or split into multiple shares prior to being sent to multiple locations, e.g., a private or public cloud. The data is hidden while in transit to the storage location, and is inaccessible to users who do not have the correct credentials for access.
Abstract translation: 本发明的系统和方法提供了一种解决方案,使得数据可靠地安全和可访问 - 在位级别处理数据安全性,从而消除对多周边硬件和软件技术的需要。 将数据安全性直接并入或编织在位级别的数据中。 本发明的系统和方法使企业社区能够利用共同的企业基础架构。 由于安全性已经被编入数据,因此可以使用这种通用的基础架构,而不会影响数据安全性和访问控制。 在某些应用中,数据在被发送到多个位置(例如私有云或公共云)之前被认证,加密和解析或分割成多个共享。 数据在传输到存储位置时被隐藏,并且对于没有正确凭据进行访问的用户无法访问。
-
Patent Agency Ranking
公开(公告)号:US09465952B2
公开(公告)日:2016-10-11
申请号:US14659008
申请日:2015-03-16
Applicant: Security First Corp.
Inventor: Mark S. O'Hare , Rick L. Orsini , Matt Staker
CPC classification number: G06F12/1408 , G06F13/1663 , G06F21/6218 , G06F2212/1052 , H04L9/085 , H04L9/0894 , H04L9/14 , H04L9/3231 , H04L9/3247 , H04L9/3263 , H04L63/061
Abstract: Systems and methods are provided for transmitting data for secure storage. For each of two or more data sets, a plurality of shares are generated containing a distribution of data from an encrypted version of the data set. The shares are then stored in a shared memory device, wherein a data set may be reconstructed from a threshold number of the associated plurality of shares using an associated key. Also provided are systems and methods for providing access to secured data. A plurality of shares containing a distribution of data from an encrypted version of a data set are stored in a memory device. A client is provided with a virtual machine that indicates the plurality of shares, and the capability to reconstruct the data set from the plurality of shares using an associated key.
-
公开(公告)号:US09411524B2
公开(公告)日:2016-08-09
申请号:US14057902
申请日:2013-10-18
Applicant: Security First Corp.
Inventor: Mark S. O'Hare , Rick L. Orsini , Lawrence A. Laurich , Stephen Paul Sample , Michael H. Wang , Babu Rao Kandimalla , Don Martin , Steven Mark Casselman
CPC classification number: G06F13/102 , G06F3/061 , G06F3/0619 , G06F3/0646 , G06F3/0659 , G06F3/067 , G06F21/602 , G06F21/72 , G06F21/76 , G06F21/78 , G06F21/85 , H04L63/0428 , H04L63/08 , H04L63/20 , H04L67/06 , H04L67/1097 , H04L69/12 , H04L69/14
Abstract: Data processing and an accelerator system therefore are described. An embodiment relates generally to a data processing system. In such an embodiment, a bus and an accelerator are coupled to one another. The accelerator has an application function block. The application function block is to process data to provide processed data to storage. A network interface is coupled to obtain the processed data from the storage for transmission.
-
公开(公告)号:US20160132401A1
公开(公告)日:2016-05-12
申请号:US14969651
申请日:2015-12-15
Applicant: Security First Corp.
Inventor: Mark S. O'Hare , Rick L. Orsini , Don Martin
IPC: G06F11/14
CPC classification number: G06F11/1458 , G06F9/3834 , G06F9/3863 , G06F11/1453 , G06F11/1469 , G06F11/1471 , G06F16/184 , G06F2201/805 , H04L67/1095 , H04L67/1097
Abstract: Systems and methods are provided for transmitting data to at least one storage system. A request is received to store a data set in a storage location. In response, a first plurality of shares is generated, each containing a distribution of data from the data set, and at least one share is stored in a local memory configured for backup in at least one remote storage system. At least one share is transmitted to the at least one remote storage system. Systems and methods are also provided for improving data availability. In response to a restoration event, if insufficient shares of data are available to reconstruct a data set, a read instruction in a journaling message is transmitted to a remote storage system requesting an additional share. The additional share is received and stored in a local storage, and the data set is reconstructed.
Abstract translation: 提供了用于将数据发送到至少一个存储系统的系统和方法。 接收到将数据集存储在存储位置中的请求。 作为响应,生成第一多个共享,每个共享包含来自数据集的数据分布,并且至少一个共享被存储在配置为在至少一个远程存储系统中进行备份的本地存储器中。 至少一个共享被发送到至少一个远程存储系统。 还提供了系统和方法来提高数据可用性。 响应于恢复事件,如果不足够的数据共享可用于重建数据集,则日志消息中的读取指令被发送到请求附加共享的远程存储系统。 附加共享被接收并存储在本地存储器中,并且重构数据集。
-
公开(公告)号:US20150381582A1
公开(公告)日:2015-12-31
申请号:US14828377
申请日:2015-08-17
Applicant: Security First Corp.
Inventor: Mark S. O'Hare , Rick L. Orsini
CPC classification number: H04L63/0428 , G06F11/1092 , G06F16/22 , G06F21/602 , G06F21/606 , G06F21/62 , G06F21/6218 , H04L9/085 , H04L9/3226 , H04L9/3263 , H04L63/04 , H04L63/08 , H04L63/0823 , H04L63/0876 , H04L67/108 , H04L69/14 , H04L2209/80
Abstract: A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to protect data in motion by splitting original data into portions of data that may be communicated using multiple communications paths.
Abstract translation: 提供了可以集成到用于安全地存储和传送数据的任何合适的系统中的安全数据解析器。 安全数据解析器解析数据,然后将数据分割成多个部分,这些部分被清楚地存储或通信。 原始数据的加密,数据的部分或两者可以用于额外的安全性。 安全数据解析器可以用于通过将原始数据分割成可以使用多个通信路径传送的数据的部分来保护运动中的数据。
-
公开(公告)号:US20140304503A1
公开(公告)日:2014-10-09
申请号:US14253588
申请日:2014-04-15
Applicant: SECURITY FIRST CORP.
Inventor: Mark S. O'Hare , Rick L. Orsini , Stephen C. Bono , Gabriel D. Landau , Seth James Nielson
IPC: H04L9/08
CPC classification number: H04L63/062 , G06F21/602 , H04L9/00 , H04L9/0816 , H04L9/085 , H04L9/3263 , H04L12/4641 , H04L63/0272 , H04L63/029 , H04L63/0428 , H04L63/061 , H04L63/08 , H04L63/0823
Abstract: Two approaches are provided for distributing trust among certificate authorities. Each approach may be used to secure data in motion. One approach provides methods and systems in which a secure data parser is used to distribute trust in a set of certificate authorities during initial negotiation (e.g., the key establishment phase) of a connection between two devices. Another approach of the present invention provides methods and systems in which the secure data parser is used to disperse packets of data into shares. A set of tunnels is established within a communication channel using a set of certificate authorities, keys developed during the establishment of the tunnels are used to encrypt shares of data for each of the tunnels, and the shares of data are transmitted through each of the tunnels. Accordingly, trust is distributed among a set of certificate authorities in the structure of the communication channel itself.
-
-
-
-
-
-
-
-
-
Search Results
95
records
(took 0.069 seconds)
