公开(公告)号：US10902145B2

公开(公告)日：2021-01-26

申请号：US16292115

申请日：2019-03-04

Applicant: salesforce.com, inc.

Inventor： David Movshovitz

IPC: H04L9/06 ,  G06F21/62 ,  H04L9/08 ,  H04L9/00 ,  H04L9/32

Abstract: Techniques for sorting encrypted data within a software as a service (SaaS) environment. Data is encrypted on a per symbol basis with a symbol based encryption module. Sort and search functionality preserving encryption that allows other modules to sort tokens and to search for tokens is provided. Encrypted tokens that have been encrypted by the symbol based encryption module are stored in a database. Access to the encrypted tokens is provided through the SaaS environment.

公开(公告)号：US09740871B2

公开(公告)日：2017-08-22

申请号：US14921387

申请日：2015-10-23

Applicant: salesforce.com, inc.

Inventor： David Movshovitz

IPC: H04L29/06 ,  G06F21/60 ,  G09C1/00 ,  G06F17/30

CPC classification number: G06F21/602 ,  G06F17/30312 ,  G09C1/00

Abstract: Computer systems and applications are provided for encrypting data that preserves the ability to process the encrypted data. The method includes receiving data in unencrypted form. The method further includes encrypting the data in accordance with an encryption dictionary generated by arranging the plurality of plaintext symbols in lexicographical order; defining a first subset comprising a first plurality of the lexicographically arranged symbols; defining a second subset comprising a second plurality of the lexicographically arranged symbols; defining a first set with a first plurality of unique random tokens within a first token space for use with the first plurality of symbols; and defining a second set with a second plurality of unique random tokens within a second token space for use with the second plurality of symbols such that the second plurality of unique random tokens is non-linear with respect to the first plurality of unique random tokens.

公开(公告)号：US09734350B2

公开(公告)日：2017-08-15

申请号：US14740124

申请日：2015-06-15

Applicant: salesforce.com, inc.

Inventor： David Movshovitz

IPC: G06F12/14 ,  G06F21/62 ,  H04L9/06 ,  H04L9/08 ,  H04L9/28 ,  H04L9/00

CPC classification number: G06F21/6227 ,  H04L9/00 ,  H04L9/0618 ,  H04L9/0662 ,  H04L9/0891 ,  H04L9/3213

Abstract: Techniques for sorting encrypted data within a software as a service (SaaS) environment. Data is encrypted on a per symbol basis with a symbol based encryption module. Sort and search functionality preserving encryption that allows other modules to sort tokens and to search for tokens is provided. Encrypted tokens that have been encrypted by the symbol based encryption module are stored in a database. Access to the encrypted tokens is provided through the SaaS environment.

公开(公告)号：US09195835B2

公开(公告)日：2015-11-24

申请号：US13767546

申请日：2013-02-14

Applicant: salesforce.com, inc.

Inventor： David Movshovitz

IPC: H04L29/06 ,  G06F21/60 ,  G09C1/00

CPC classification number: G06F21/602 ,  G06F17/30312 ,  G09C1/00

Abstract: Computer systems and applications are provided for encrypting data in a manner which preserves the ability to process the encrypted data. The method includes arranging a plurality of plaintext symbols in lexicographical order; defining respective first and second subsets of the lexicographically arranged symbols; defining a first and a second set of random tokens for use with the first and second subsets of symbols, respectively; adding a first random constant value to each token in the first set of random tokens; adding a second random constant value to each token in the second set of random tokens; defining the first set of random tokens comprises establishing a first average distance between tokens; and defining the second set of random tokens comprises establishing a second average distance between tokens; wherein the second average distance is different than the first average distance, and the second random constant value is greater than the first random constant value.

Abstract translation: 提供计算机系统和应用程序，以保护处理加密数据的能力的方式对数据进行加密。 该方法包括以字典顺序排列多个明文符号; 定义词典排列符号的相应第一和第二子集; 定义分别与第一和第二符号子集一起使用的第一和第二组随机令牌; 向第一组随机标记中的每个标记添加第一随机常数值; 在第二组随机令牌中向每个令牌添加第二随机常数值; 定义第一组随机令牌包括建立令牌之间的第一平均距离; 并且定义所述第二组随机令牌包括建立令牌之间的第二平均距离; 其中所述第二平均距离不同于所述第一平均距离，并且所述第二随机常数值大于所述第一随机常数值。

公开(公告)号：US20150278544A1

公开(公告)日：2015-10-01

申请号：US14740124

申请日：2015-06-15

Applicant: salesforce.com, inc.

Inventor： David Movshovitz

IPC: G06F21/62 ,  H04L9/00

CPC classification number: G06F21/6227 ,  H04L9/00 ,  H04L9/0618 ,  H04L9/0662 ,  H04L9/0891 ,  H04L9/3213

Abstract: Techniques for sorting encrypted data within a software as a service (SaaS) environment. Data is encrypted on a per symbol basis with a symbol based encryption module. Sort and search functionality preserving encryption that allows other modules to sort tokens and to search for tokens is provided. Encrypted tokens that have been encrypted by the symbol based encryption module are stored in a database. Access to the encrypted tokens is provided through the SaaS environment.

Abstract translation: 在软件即服务（SaaS）环境中对加密数据进行排序的技术。 使用基于符号的加密模块，以每个符号为基础对数据进行加密。 提供了保存加密功能的排序和搜索功能，允许其他模块对令牌进行排序和搜索令牌。 通过基于符号的加密模块加密的加密令牌存储在数据库中。 通过SaaS环境提供对加密令牌的访问。

公开(公告)号：US20130232341A1

公开(公告)日：2013-09-05

申请号：US13767546

申请日：2013-02-14

Applicant: SALESFORCE.COM, INC.

Inventor： David Movshovitz

IPC: G06F21/60

CPC classification number: G06F21/602 ,  G06F17/30312 ,  G09C1/00

Abstract: Computer systems and applications are provided for encrypting data in a manner which preserves the ability to process the encrypted data. The method includes arranging a plurality of plaintext symbols in lexicographical order; defining respective first and second subsets of the lexicographically arranged symbols; defining a first and a second set of random tokens for use with the first and second subsets of symbols, respectively; adding a first random constant value to each token in the first set of random tokens; adding a second random constant value to each token in the second set of random tokens; defining the first set of random tokens comprises establishing a first average distance between tokens; and defining the second set of random tokens comprises establishing a second average distance between tokens; wherein the second average distance is different than the first average distance, and the second random constant value is greater than the first random constant value.

Abstract translation: 提供计算机系统和应用程序，以保护处理加密数据的能力的方式对数据进行加密。 该方法包括以字典顺序排列多个明文符号; 定义词典排列符号的相应第一和第二子集; 定义分别与第一和第二符号子集一起使用的第一和第二组随机令牌; 向第一组随机标记中的每个标记添加第一随机常数值; 在第二组随机令牌中向每个令牌添加第二随机常数值; 定义第一组随机令牌包括建立令牌之间的第一平均距离; 并且定义所述第二组随机令牌包括建立令牌之间的第二平均距离; 其中所述第二平均距离不同于所述第一平均距离，并且所述第二随机常数值大于所述第一随机常数值。

公开(公告)号：US10223546B2

公开(公告)日：2019-03-05

申请号：US15676876

申请日：2017-08-14

Applicant: salesforce.com, inc.

Inventor： David Movshovitz

IPC: G06F12/14 ,  G06F21/62 ,  H04L9/06 ,  H04L9/08 ,  H04L9/00 ,  H04L9/32

Abstract: Techniques for sorting encrypted data within a software as a service (SaaS) environment. Data is encrypted on a per symbol basis with a symbol based encryption module. Sort and search functionality preserving encryption that allows other modules to sort tokens and to search for tokens is provided. Encrypted tokens that have been encrypted by the symbol based encryption module are stored in a database. Access to the encrypted tokens is provided through the SaaS environment.

公开(公告)号：US20160042187A1

公开(公告)日：2016-02-11

申请号：US14921387

申请日：2015-10-23

Applicant: salesforce.com, inc.

Inventor： David Movshovitz

IPC: G06F21/60 ,  G06F17/30

CPC classification number: G06F21/602 ,  G06F17/30312 ,  G09C1/00

Abstract: Computer systems and applications are provided for encrypting data that preserves the ability to process the encrypted data. The method includes receiving data in unencrypted form. The method further includes encrypting the data in accordance with an encryption dictionary generated by arranging the plurality of plaintext symbols in lexicographical order; defining a first subset comprising a first plurality of the lexicographically arranged symbols; defining a second subset comprising a second plurality of the lexicographically arranged symbols; defining a first set with a first plurality of unique random tokens within a first token space for use with the first plurality of symbols; and defining a second set with a second plurality of unique random tokens within a second token space for use with the second plurality of symbols such that the second plurality of unique random tokens is non-linear with respect to the first plurality of unique random tokens.

Abstract translation: 提供计算机系统和应用程序用于加密数据，以保护处理加密数据的能力。 该方法包括以未加密形式接收数据。 该方法还包括根据通过按照字典顺序排列多个明文符号而生成的加密字典加密数据; 定义第一子集，其包括第一多个所述词典排列符号; 定义第二子集，其包括第二多个所述词典排列符号; 在第一令牌空间内定义具有与所述第一多个符号一起使用的第一多个唯一随机令牌的第一集合; 以及在第二令牌空间内定义具有第二多个唯一随机令牌的第二集合，以便与所述第二多个符号一起使用，使得所述第二多个唯一随机令牌相对于所述第一多个唯一随机令牌是非线性的。

公开(公告)号：US09100183B2

公开(公告)日：2015-08-04

申请号：US13855761

申请日：2013-04-03

Applicant: SALESFORCE.COM, INC.

Inventor： David Movshovitz

IPC: H04L9/00 ,  H04L9/28 ,  H04L9/06 ,  H04L9/08

CPC classification number: G06F21/6227 ,  H04L9/00 ,  H04L9/0618 ,  H04L9/0662 ,  H04L9/0891 ,  H04L9/3213

Abstract: A method for processing symbols by a first computerized entity, the method may include receiving, by a first computerized entity and over a communication network, text that comprises multiple random tokens and a plurality of plaintext symbols; wherein the multiple random tokens are generated by a second computerized entity; wherein a value of each random token that represents a plaintext symbol is responsive to values of random tokens that represents plaintext symbols that have a lower lexicographic value than the plaintext symbol; and processing the text by the first computerized entity.

Abstract translation: 一种用于由第一计算机化实体处理符号的方法，所述方法可包括由第一计算机化实体和通过通信网络接收包括多个随机令牌和多个明文符号的文本; 其中所述多个随机令牌由第二计算机化实体生成; 其中表示明文符号的每个随机标记的值响应于表示具有比所述明文符号更低的词典值的明文符号的随机令牌的值; 并由第一计算机实体处理文本。