-
公开(公告)号:US20210067338A1
公开(公告)日:2021-03-04
申请号:US17035415
申请日:2020-09-28
Applicant: Advanced New Technologies Co., Ltd.
Inventor: Chaofan Yu , Lei Wang , Aihui Zhou , Ning Zhang , Hongliang Tian , Junxian Xiao
Abstract: This disclosure relates to providing a high availability computing service in a distributed system. In one aspect, a method includes sending, by a computing unit of multiple computing units that are each executing a respective copy of a computing task, a certificate request to a trusted certificate generator. The request includes authentication information. The authentication information includes a code hash of the computing task. The computing unit receives a certificate report including a public key certificate in a certificate chain generated for the code hash and a private key corresponding to the public key certificate. The public key certificate and the private key form a certificate pair. The certificate chain includes multiple certificates including the public key certificate and a root certificate corresponding to the public key certificate. The computing unit is used as a TLS server. The certificate pair is set as a certificate pair of the TLS server.
-
2.发明授权公开(公告)号:US11728978B2
公开(公告)日:2023-08-15
申请号:US17401064
申请日:2021-08-12
Applicant: Advanced New Technologies Co., Ltd.
Inventor: Aihui Zhou , Qunshan Huang , Chaofan Yu , Weiwen Cai , Lei Wang
CPC classification number: H04L9/083 , H04L9/0822 , H04L9/0825 , H04L9/0861 , H04L9/3215
Abstract: Some embodiments of the present specification provide a method and an apparatus for establishing a trusted channel between a user and a trusted computing cluster. According to the method, when a user wants to establish a trusted channel with a trusted computing cluster, the user only negotiates a session key with any first trusted computing unit in the cluster to establish the trusted channel. Then, the first trusted computing unit encrypts the session key using a cluster key common to the trusted computing cluster to which the first trusted computing unit belongs, and sends the encrypted session key to a cluster manager. The cluster manager transmits the encrypted session key in the trusted computing cluster, so that other trusted computing units in the cluster obtain the session key and join the trusted channel. Thus, the user establishes a trusted channel with the entire trusted computing cluster.
-
3.发明授权公开(公告)号:US11228450B2
公开(公告)日:2022-01-18
申请号:US17244854
申请日:2021-04-29
Applicant: Advanced New Technologies Co., Ltd.
Inventor: Chaofan Yu , Lei Wang , Aihui Zhou , Ning Zhang , Hongliang Tian , Junxian Xiao
Abstract: Disclosed herein are methods, systems, and apparatus, including computer programs encoded on computer storage media, for providing certifications. One of the methods includes: receiving, from a computing unit, a certificate request, wherein the computing unit comprises at least one processor and a memory communicably coupled to the at least one processor, wherein the memory stores programming instructions associated with a computing task executable by the at least one processor, and wherein the certificate request comprises a group of identifiers of a group of computing tasks and authentication information that comprises a hash value of the programming instructions; authenticating the computing unit based on the authentication information; in response to the computing unit is authenticated, determining, based on the hash value, that a computing task is included in the group of computing tasks; obtaining a certificate chain and a private key pre-generated for the group of identifiers; and sending a certificate report to the computing unit.
-
4.发明申请公开(公告)号:US20210250183A1
公开(公告)日:2021-08-12
申请号:US17244854
申请日:2021-04-29
Applicant: Advanced New Technologies Co., Ltd.
Inventor: Chaofan Yu , Lei Wang , Aihui Zhou , Ning Zhang , Hongliang Tian , Junxian Xiao
Abstract: Disclosed herein are methods, systems, and apparatus, including computer programs encoded on computer storage media, for providing certifications. One of the methods includes: receiving, from a computing unit, a certificate request, wherein the computing unit comprises at least one processor and a memory communicably coupled to the at least one processor, wherein the memory stores programming instructions associated with a computing task executable by the at least one processor, and wherein the certificate request comprises a group of identifiers of a group of computing tasks and authentication information that comprises a hash value of the programming instructions; authenticating the computing unit based on the authentication information; in response to the computing unit is authenticated, determining, based on the hash value, that a computing task is included in the group of computing tasks; obtaining a certificate chain and a private key pre-generated for the group of identifiers; and sending a certificate report to the computing unit.
-
5.发明授权公开(公告)号:US11121865B2
公开(公告)日:2021-09-14
申请号:US17158987
申请日:2021-01-26
Applicant: Advanced New Technologies Co., Ltd.
Inventor: Aihui Zhou , Qunshan Huang , Chaofan Yu , Weiwen Cai , Lei Wang
Abstract: Some embodiments of the present specification provide a method and an apparatus for establishing a trusted channel between a user and a trusted computing cluster. According to the method, when a user wants to establish a trusted channel with a trusted computing cluster, the user only negotiates a session key with any first trusted computing unit in the cluster to establish the trusted channel. Then, the first trusted computing unit encrypts the session key using a cluster key common to the trusted computing cluster to which the first trusted computing unit belongs, and sends the encrypted session key to a cluster manager. The cluster manager transmits the encrypted session key in the trusted computing cluster, so that other trusted computing units in the cluster obtain the session key and join the trusted channel. Thus, the user establishes a trusted channel with the entire trusted computing cluster.
-
Patent Agency Ranking
公开(公告)号:US20210226793A1
公开(公告)日:2021-07-22
申请号:US17222619
申请日:2021-04-05
Applicant: Advanced New Technologies Co., Ltd.
Inventor: Chaofan Yu , Lei WANG , Aihui Zhou , Ning Zhang , Hongliang Tian , Junxian Xiao
Abstract: This disclosure relates to providing a high availability computing service in a distributed system. In one aspect, a method includes sending, by a computing unit of multiple computing units that are each executing a respective copy of a computing task, a certificate request to a trusted certificate generator. The request includes authentication information. The authentication information includes a code hash of the computing task. The computing unit receives a certificate report including a public key certificate in a certificate chain generated for the code hash and a private key corresponding to the public key certificate. The public key certificate and the private key form a certificate pair. The certificate chain includes multiple certificates including the public key certificate and a root certificate corresponding to the public key certificate. The computing unit is used as a TLS server. The certificate pair is set as a certificate pair of the TLS server.
-
公开(公告)号:US10972272B2
公开(公告)日:2021-04-06
申请号:US17035415
申请日:2020-09-28
Applicant: Advanced New Technologies Co., Ltd.
Inventor: Chaofan Yu , Lei Wang , Aihui Zhou , Ning Zhang , Hongliang Tian , Junxian Xiao
Abstract: This disclosure relates to providing a high availability computing service in a distributed system. In one aspect, a method includes sending, by a computing unit of multiple computing units that are each executing a respective copy of a computing task, a certificate request to a trusted certificate generator. The request includes authentication information. The authentication information includes a code hash of the computing task. The computing unit receives a certificate report including a public key certificate in a certificate chain generated for the code hash and a private key corresponding to the public key certificate. The public key certificate and the private key form a certificate pair. The certificate chain includes multiple certificates including the public key certificate and a root certificate corresponding to the public key certificate. The computing unit is used as a TLS server. The certificate pair is set as a certificate pair of the TLS server.
-
8.发明申请公开(公告)号:US20210067347A1
公开(公告)日:2021-03-04
申请号:US16813524
申请日:2020-03-09
Applicant: Advanced New Technologies Co., Ltd.
Inventor: Chaofan Yu , Lei Wang , Aihui Zhou , Ning Zhang , Hongliang Tian , Junxian Xiao
Abstract: Disclosed herein are methods, systems, and apparatus, including computer programs encoded on computer storage media, for providing certifications. One of the methods includes: receiving, from a computing unit, a certificate request, wherein the computing unit comprises at least one processor and a memory communicably coupled to the at least one processor, wherein the memory stores programming instructions associated with a computing task executable by the at least one processor, and wherein the certificate request comprises a group of identifiers of a group of computing tasks and authentication information that comprises a hash value of the programming instructions; authenticating the computing unit based on the authentication information; in response to the computing unit is authenticated, determining, based on the hash value, that a computing task is included in the group of computing tasks; obtaining a certificate chain and a private key pre-generated for the group of identifiers; and sending a certificate report to the computing unit.
-
公开(公告)号:US11206137B2
公开(公告)日:2021-12-21
申请号:US17222619
申请日:2021-04-05
Applicant: Advanced New Technologies Co., Ltd.
Inventor: Chaofan Yu , Lei Wang , Aihui Zhou , Ning Zhang , Hongliang Tian , Junxian Xiao
Abstract: This disclosure relates to providing a high availability computing service in a distributed system. In one aspect, a method includes sending, by a computing unit of multiple computing units that are each executing a respective copy of a computing task, a certificate request to a trusted certificate generator. The request includes authentication information. The authentication information includes a code hash of the computing task. The computing unit receives a certificate report including a public key certificate in a certificate chain generated for the code hash and a private key corresponding to the public key certificate. The public key certificate and the private key form a certificate pair. The certificate chain includes multiple certificates including the public key certificate and a root certificate corresponding to the public key certificate. The computing unit is used as a TLS server. The certificate pair is set as a certificate pair of the TLS server.
-
10.发明授权公开(公告)号:US11038699B2
公开(公告)日:2021-06-15
申请号:US16813524
申请日:2020-03-09
Applicant: Advanced New Technologies Co., Ltd.
Inventor: Chaofan Yu , Lei Wang , Aihui Zhou , Ning Zhang , Hongliang Tian , Junxian Xiao
Abstract: Disclosed herein are methods, systems, and apparatus, including computer programs encoded on computer storage media, for providing certifications. One of the methods includes: receiving, from a computing unit, a certificate request, wherein the computing unit comprises at least one processor and a memory communicably coupled to the at least one processor, wherein the memory stores programming instructions associated with a computing task executable by the at least one processor, and wherein the certificate request comprises a group of identifiers of a group of computing tasks and authentication information that comprises a hash value of the programming instructions; authenticating the computing unit based on the authentication information; in response to the computing unit is authenticated, determining, based on the hash value, that a computing task is included in the group of computing tasks; obtaining a certificate chain and a private key pre-generated for the group of identifiers; and sending a certificate report to the computing unit.
-
-
-
-
-
-
-
-
-
Search Results
11
records
(took 0.02 seconds)
