公开(公告)号：US20210044597A1

公开(公告)日：2021-02-11

申请号：US16534546

申请日：2019-08-07

Applicant: Microsoft Technology Licensing, LLC

Inventor： Soumit Rahman ,  Ganesh Pandey ,  Curtis Thibault ,  Kameshwar Jayaraman ,  Ajay Kalidindi ,  Ayla Kol ,  Yeshua Garcia ,  Priyanshu Kumar Jha ,  Parul Manek ,  Yoganand Rajasekaran

IPC: H04L29/06

Abstract: A request to perform a command or operation on a computing system is received from a support user. A clearance level needed to perform that requested command or operation is identified, and a data store that has a pool of cleared users is accessed to identify a cleared user that has an adequate clearance level. The secured user is assigned to the request. A risk level, corresponding to the requested command or operation is identified and surfaced for the secured user. The requested command or operation can be automatically executed, after it is authorized by the secured user.

公开(公告)号：US12164623B2

公开(公告)日：2024-12-10

申请号：US17220204

申请日：2021-04-01

Applicant: Microsoft Technology Licensing, LLC

Inventor： Kameshwar Jayaraman ,  Nicholas Elliot Claunch ,  Priyanshu Kumar Jha ,  Shankaranand Arunachalam

IPC: G06F21/45 ,  G06F21/34 ,  H04L9/08 ,  H04L9/40

Abstract: A computer implemented method is used for changing a password in a multi-domain environment. The method includes obtaining a private key and a public key from a security card at a user device in a user domain, transferring the public key to a controller in a secure domain, requesting a password change, receiving a public key encrypted new password from the secure domain, and decrypting the new password using the private key.

公开(公告)号：US11630684B2

公开(公告)日：2023-04-18

申请号：US16523803

申请日：2019-07-26

Applicant: Microsoft Technology Licensing, LLC

Inventor： Yoganand Rajasekaran ,  Raquibur Rahman ,  Ayla Kol ,  Philip Ross Moyer ,  Brijesh Bhupendra Desai ,  Zijun Hao ,  Mainul Mizan ,  Kameshwar Jayaraman ,  Benjamin Du ,  Parul Manek ,  Ganesh Pandey

IPC: G06F9/455 ,  G06N20/00 ,  G06F11/34

Abstract: A secure investigation platform in a sovereign cloud includes a request processing system that receives requests to investigate an incident. A control message processing system creates a workspace, within the sovereign cloud, so that an investigation can be conducted within that workspace. An investigation pack, which includes investigative resources used in the investigation, is identified and the workspace is pre-configured with the identified investigation pack. The control message processing system performs investigation tasks within the workspace using the investigation pack.

公开(公告)号：US20190325130A1

公开(公告)日：2019-10-24

申请号：US15958948

申请日：2018-04-20

Applicant: Microsoft Technology Licensing, LLC

Inventor： Kameshwar Jayaraman ,  Nicholas Elliot Claunch ,  Priyanshu Kumar Jha ,  Shankaranand Arunachalam

IPC: G06F21/45 ,  G06F21/34 ,  H04L29/06 ,  H04L9/08

Abstract: A computer implemented method is used for changing a password in a multi-domain environment. The method includes obtaining a private key and a public key from a security card at a user device in a user domain, transferring the public key to a controller in a secure domain, requesting a password change, receiving a public key encrypted new password from the secure domain, and decrypting the new password using the private key.

公开(公告)号：US12299159B2

公开(公告)日：2025-05-13

申请号：US18070059

申请日：2022-11-28

Applicant: Microsoft Technology Licensing, LLC

Inventor： Anuj Dhawan ,  Brijesh Bhupendra Desai ,  Kameshwar Jayaraman ,  Ayla Kol ,  Amit A. Bapat ,  Qi Cao ,  Steven Jay Lieberman ,  Ganesh Pandey ,  Parul Manek

IPC: G06F21/64 ,  G06F21/60 ,  G06F21/62 ,  G06F21/71 ,  H04L9/16 ,  H04L9/08 ,  H04L9/14

Abstract: Methods, systems, and computer programs are presented for protecting restricted actions on encryption keys that control the management of data stored by a service provider. In some implementations, a system of the service provider receives a request to generate a data encryption policy (DEP) for data stored by the system of the service provider for a customer, the request including a reference to a customer key and an availability key. The customer key and the availability key are root keys for encrypting a data encryption key. The data encryption key is used to encrypt the data stored by the service provider for the customer. Further, destructive changes to the availability key require receiving an approval from an account of the service provider. The system of the service provider validates the DEP. The system of the service provider stores the DEP based on the validation.

公开(公告)号：US11665183B2

公开(公告)日：2023-05-30

申请号：US17528328

申请日：2021-11-17

Applicant: Microsoft Technology Licensing, LLC

Inventor： Yoganand Rajasekaran ,  Raquibur Rahman ,  Ayla Kol ,  Philip Ross Moyer ,  Brijesh Bhupendra Desai ,  Zijun Hao ,  Mainul Mizan ,  Kameshwar Jayaraman ,  Benjamin Du ,  Ganesh Pandey ,  Parul Manek

IPC: G06F9/54 ,  H04L9/40 ,  G06N20/00

CPC classification number: H04L63/1416 ,  G06F9/542 ,  G06F9/546 ,  G06N20/00

Abstract: A secure investigation platform in a sovereign cloud includes a request processing system that receives requests to investigate an incident. A control message processing system creates a workspace, within the sovereign cloud, so that an investigation can be conducted within that workspace. The control message processing system performs investigation tasks within the workspace. A secure log generation system captures information corresponding to the tasks and generates an event record based on the captured information.

公开(公告)号：US09996618B2

公开(公告)日：2018-06-12

申请号：US15201124

申请日：2016-07-01

Applicant: Microsoft Technology Licensing, LLC

Inventor： Bradley Stevenson ,  Adam David Harmetz ,  Quentin Gary Christensen ,  Julian Zbogar Smith ,  Anupama Janardhan ,  Carlos David Argott Hernandez ,  Ramanathan Somasundaram ,  Benjamin Joseph Rinaca ,  Fan Mao ,  Graham Lee McMynn ,  Jessica Anne Alspaugh ,  Michal Piaseczny ,  Tudor Baraboi ,  Ashish Shrikrishna Malgi ,  Thottam R. Sriram ,  Zainal Arifin ,  John D. Fan ,  Kameshwar Jayaraman

IPC: G06F7/00 ,  G06F17/30

CPC classification number: G06F17/30864

Abstract: Technologies are described herein for locating relevant content items across multiple disparate content sources. Query parameters are received from a user interface for defining a query for searching a number of content sources located on multiple, disparate content servers. A native search is executed on each of the content servers based on the received query parameters, and query statistics and other data regarding content items in the content sources matching the query parameters are received. The query statistics are aggregated across the content servers and presented in the user interface. The presentation of the query statistics may be broken out by each content source, by each query phrase segmented from the query, and the like. In addition, a preview of a number of content items matching the query parameters is presented based on the data received.

公开(公告)号：US12079655B2

公开(公告)日：2024-09-03

申请号：US18179601

申请日：2023-03-07

Applicant: Microsoft Technology Licensing, LLC

Inventor： Yoganand Rajasekaran ,  Raquibur Rahman ,  Ayla Kol ,  Philip Ross Moyer ,  Brijesh Bhupendra Desai ,  Zijun Hao ,  Mainul Mizan ,  Kameshwar Jayaraman ,  Benjamin Du ,  Parul Manek ,  Ganesh Pandey

IPC: G06F9/455 ,  G06F11/34 ,  G06N20/00

CPC classification number: G06F9/45558 ,  G06F11/3476 ,  G06N20/00 ,  G06F2009/45562 ,  G06F2009/45587

Abstract: A secure investigation platform in a sovereign cloud includes a request processing system that receives requests to investigate an incident. A control message processing system creates a workspace, within the sovereign cloud, so that an investigation can be conducted within that workspace. An investigation pack, which includes investigative resources used in the investigation, is identified and the workspace is pre-configured with the identified investigation pack. The control message processing system performs investigation tasks within the workspace using the investigation pack.

公开(公告)号：US11212300B2

公开(公告)日：2021-12-28

申请号：US16523799

申请日：2019-07-26

Applicant: Microsoft Technology Licensing, LLC

Inventor： Yoganand Rajasekaran ,  Raquibur Rahman ,  Ayla Kol ,  Philip Ross Moyer ,  Brijesh Bhupendra Desai ,  Zijun Hao ,  Mainul Mizan ,  Kameshwar Jayaraman ,  Benjamin Du ,  Ganesh Pandey ,  Parul Manek

IPC: G06F9/54 ,  H04L29/06 ,  G06N20/00

Abstract: A secure investigation platform in a sovereign cloud includes a request processing system that receives requests to investigate an incident. A control message processing system creates a workspace, within the sovereign cloud, so that an investigation can be conducted within that workspace. The control message processing system performs investigation tasks within the workspace. A secure log generation system captures information corresponding to the tasks and generates an event record based on the captured information.

公开(公告)号：US11153321B2

公开(公告)日：2021-10-19

申请号：US16523795

申请日：2019-07-26

Applicant: Microsoft Technology Licensing, LLC

Inventor： Yoganand Rajasekaran ,  Raquibur Rahman ,  Ayla Kol ,  Philip Ross Moyer ,  Brijesh Bhupendra Desai ,  Zijun Hao ,  Mainul Mizan ,  Kameshwar Jayaraman ,  Benjamin Du ,  Ganesh Pandey ,  Parul Manek

IPC: G06F15/16 ,  H04L29/06

Abstract: A secure investigation platform in a sovereign cloud includes a request processing system that is a user-facing system and receives requests to prepare for an incident investigation. A control message processing system creates a workspace, within the sovereign cloud, so that an investigation can be conducted within that workspace. The request processing system does not access the workspace and the control message processing system is not available for external access by a user. Data and functionality are ingested into the workspace. The control message processing system performs investigation preparation tasks within the workspace. The results of the investigation tasks are surfaced for user access.