公开(公告)号：US11374769B2

公开(公告)日：2022-06-28

申请号：US16933416

申请日：2020-07-20

申请人： EMC IP Holding Company LLC

发明人： Radia J. Perlman ,  Charles Kaufman

IPC分类号： H04L9/32 ,  H04L9/06 ,  G06F16/23 ,  G06F16/27

摘要： An apparatus in one embodiment includes at least one processing device comprising a processor coupled to a memory. The processing device is configured to implement a first ledger maintenance node. The first ledger maintenance node is configured to communicate over one or more networks with a plurality of additional ledger maintenance nodes, to identify a block for proposed addition to a distributed ledger collectively maintained by the first and additional ledger maintenance nodes, to apply a digital signature of the first ledger maintenance node to the block, and to receive digital signatures on the block from at least a subset of the additional ledger maintenance nodes. Responsive to receipt of sufficient digital signatures from respective ones of the additional ledger maintenance nodes to meet a specified quorum of digital signatures required for addition of the block to the distributed ledger, the first ledger maintenance node adds the block to the distributed ledger.

公开(公告)号：US11128460B2

公开(公告)日：2021-09-21

申请号：US16208790

申请日：2018-12-04

申请人： EMC IP Holding Company LLC

发明人： Radia J. Perlman ,  Charles Kaufman ,  Xuan Tang

IPC分类号： H04L29/06 ,  H04L29/08 ,  H04L9/32 ,  H04L9/08 ,  H04L9/14

摘要： An apparatus in an illustrative embodiment comprises a client device configured for communication with a storage system, with the client device comprising a processor coupled to a memory. The client device is further configured to identify a data item to be stored in the storage system, and to generate a data encryption key for the data item as a function of a first secret key and the data item. For example, the function may comprise hashing at least the data item. The client device is further configured to encrypt the data item using the data encryption key for the data item, and to send the encrypted data item to the storage system for storage therein. The client device in some embodiments is further configured to encrypt the data encryption key using a second secret key, and to send the encrypted data encryption key to the storage system for storage therein as metadata of the data item.

公开(公告)号：US20200177382A1

公开(公告)日：2020-06-04

申请号：US16208790

申请日：2018-12-04

申请人： EMC IP Holding Company LLC

发明人： Radia J. Perlman ,  Charles Kaufman ,  Xuan Tang

IPC分类号： H04L9/08 ,  H04L9/32 ,  H04L9/14

摘要： An apparatus in an illustrative embodiment comprises a client device configured for communication with a storage system, with the client device comprising a processor coupled to a memory. The client device is further configured to identify a data item to be stored in the storage system, and to generate a data encryption key for the data item as a function of a first secret key and the data item. For example, the function may comprise hashing at least the data item. The client device is further configured to encrypt the data item using the data encryption key for the data item, and to send the encrypted data item to the storage system for storage therein. The client device in some embodiments is further configured to encrypt the data encryption key using a second secret key, and to send the encrypted data encryption key to the storage system for storage therein as metadata of the data item.

公开(公告)号：US20200351104A1

公开(公告)日：2020-11-05

申请号：US16933416

申请日：2020-07-20

申请人： EMC IP Holding Company LLC

发明人： Radia J. Perlman ,  Charles Kaufman

IPC分类号： H04L9/32 ,  H04L9/06 ,  G06F16/23 ,  G06F16/27

摘要： An apparatus in one embodiment includes at least one processing device comprising a processor coupled to a memory. The processing device is configured to implement a first ledger maintenance node. The first ledger maintenance node is configured to communicate over one or more networks with a plurality of additional ledger maintenance nodes, to identify a block for proposed addition to a distributed ledger collectively maintained by the first and additional ledger maintenance nodes, to apply a digital signature of the first ledger maintenance node to the block, and to receive digital signatures on the block from at least a subset of the additional ledger maintenance nodes. Responsive to receipt of sufficient digital signatures from respective ones of the additional ledger maintenance nodes to meet a specified quorum of digital signatures required for addition of the block to the distributed ledger, the first ledger maintenance node adds the block to the distributed ledger.

公开(公告)号：US10298551B1

公开(公告)日：2019-05-21

申请号：US15378781

申请日：2016-12-14

申请人： EMC IP Holding Company LLC

发明人： Radia Perlman ,  Xuan Tang ,  Charles Kaufman

IPC分类号： H04L29/06 ,  H04L9/08 ,  G06F21/60 ,  G06F21/62

摘要： An apparatus in one embodiment comprises at least one processing device having a processor coupled to a memory. The processing device implements a messaging policy enforcement server that receives from a first client device metadata of an encrypted message to be sent from the first client device to a second client device. The received metadata comprises a first key utilized by the first client device to encrypt the message with the first key being encrypted utilizing a second key associated with the second client device. The messaging policy enforcement server processes the received metadata to determine one or more policies applicable to the encrypted message and to generate a further encrypted version of the encrypted first key utilizing one or more additional keys corresponding to the one or more policies. The further encrypted version of the encrypted first key is sent to the second client device in modified metadata of the encrypted message.

公开(公告)号：US11019033B1

公开(公告)日：2021-05-25

申请号：US16728112

申请日：2019-12-27

申请人： EMC IP Holding Company LLC

发明人： Radia J. Perlman ,  Charles Kaufman

IPC分类号： H04L29/06 ,  H04L9/08

摘要： An apparatus comprises at least one processing device that includes a processor coupled to a memory. The processing device is configured to establish a secure enclave in cloud infrastructure as part of a trust domain, to load the secure enclave with a program for execution in the secure enclave, and to provide the secure enclave with information sufficient to allow the secure enclave to prove to one or more clients of the trust domain that the secure enclave was established within the trust domain. The provided information customizes the secure enclave for the trust domain in a manner that is detectable by the one or more clients of the trust domain. The establishing, loading and providing are illustratively performed at least in part by an orchestrator component that is part of the trust domain and is implemented using a first physical machine that is separate from a second physical machine used to implement the secure enclave.

公开(公告)号：US10756904B1

公开(公告)日：2020-08-25

申请号：US15902538

申请日：2018-02-22

申请人： EMC IP Holding Company LLC

发明人： Radia J. Perlman ,  Charles Kaufman

IPC分类号： H04L9/32 ,  H04L9/06 ,  G06F16/23 ,  G06F16/27

摘要： An apparatus in one embodiment includes at least one processing device comprising a processor coupled to a memory. The processing device is configured to implement a first ledger maintenance node. The first ledger maintenance node is configured to communicate over one or more networks with a plurality of additional ledger maintenance nodes, to identify a block for proposed addition to a distributed ledger collectively maintained by the first and additional ledger maintenance nodes, to apply a digital signature of the first ledger maintenance node to the block, and to receive digital signatures on the block from at least a subset of the additional ledger maintenance nodes. Responsive to receipt of sufficient digital signatures from respective ones of the additional ledger maintenance nodes to meet a specified quorum of digital signatures required for addition of the block to the distributed ledger, the first ledger maintenance node adds the block to the distributed ledger.