公开(公告)号：US11727138B2

公开(公告)日：2023-08-15

申请号：US17492891

申请日：2021-10-04

Applicant: Palantir Technologies Inc.

Inventor： Nitish Kulkarni ,  Jakob Frick ,  Louis Franc ,  Thomas Poinsot ,  Hugo Dobbelaere

IPC: G06F21/00 ,  G06F21/62 ,  H04L9/08 ,  H04L9/14

CPC classification number: G06F21/6227 ,  H04L9/0869 ,  H04L9/14

Abstract: A data synthesis system comprising a high side computing environment and a low side computing environment. Access to the high side computing environment may be restricted to a first one or more users. The high side computing environment may comprise a first one or more datasets and one or more specification computer programs. The one or more specification computer programs may be configured to generate a data synthesis specification based on the structure of the first one or more datasets. The low side computing environment may be accessible by a second a one or more users. The low side computing environment may comprise one or more data synthesizer computer programs. The one or more data synthesizer computer programs may be configured to synthesize a second one or more datasets based on the data synthesis specification.

公开(公告)号：US20230418953A1

公开(公告)日：2023-12-28

申请号：US17846648

申请日：2022-06-22

Applicant: Palantir Technologies Inc.

Inventor： Hugo Dobbelaere ,  Mihir Patil ,  Morten Telling ,  Robert Kruszewski ,  Yeong Wei Wee

IPC: G06F21/60 ,  H04L9/08

CPC classification number: G06F21/602 ,  H04L9/088

Abstract: An apparatus, computer-implemented method and computer program are disclosed for performing a cryptographic operation in a high-trust (HT) environment. The HT environment including a compute service and key storage service. The compute service receives from a user device, a user request for performing a cryptographic operation on at least a portion of a large-scale dataset. The user request including a user token associated with a user of the user device. The compute service sends to the key storage service, a cryptographic key access request corresponding to the received user request. The cryptographic key access request including data representative of the user token and/or a compute service token. The key storage service determines from the user token and/or compute service token whether the user has permission to have the cryptographic operation performed and/or whether to grant the compute service access to data representative of the cryptographic key in relation to the requested cryptographic operation when user has permission. In response to the key storage service granting access to the compute service, the key storage service sends to the compute service the requested cryptographic key/algorithm associated with the cryptographic operation of the user request. The compute service performs the cryptographic operation on the portion of the large-scale dataset based on the received cryptographic key/algorithm.

公开(公告)号：US11138332B2

公开(公告)日：2021-10-05

申请号：US16528198

申请日：2019-07-31

Applicant: Palantir Technologies Inc.

Inventor： Nitish Kulkarni ,  Jakob Frick ,  Louis Franc ,  Thomas Poinsot ,  Hugo Dobbelaere

IPC: G06F21/00 ,  G06F21/62 ,  H04L9/08 ,  H04L9/14

Abstract: A data synthesis system comprising a high side computing environment and a low side computing environment. Access to the high side computing environment may be restricted to a first one or more users. The high side computing environment may comprise a first one or more datasets and one or more specification computer programs. The one or more specification computer programs may be configured to generate a data synthesis specification based on the structure of the first one or more datasets. The low side computing environment may be accessible by a second a one or more users. The low side computing environment may comprise one or more data synthesizer computer programs. The one or more data synthesizer computer programs may be configured to synthesize a second one or more datasets based on the data synthesis specification.

公开(公告)号：US20250156373A1

公开(公告)日：2025-05-15

申请号：US18965516

申请日：2024-12-02

Applicant: Palantir Technologies Inc.

Inventor： Arnav Jagasia ,  Ashley Meuser ,  Hugo Dobbelaere ,  Mihir Patil ,  Sam Stoll ,  Pieris Christofi

IPC: G06F16/11 ,  G06F16/16

Abstract: A computer system provides transaction-level data retention policy inheritance. The system may perform operations including storing a first dataset comprising a plurality of transactions, each of the plurality of transactions comprising one or more data items; receiving a first transaction to the first dataset, the first transaction comprising one or more data items; determining a first retention policy for the first transaction; and storing the first retention policy with the first transaction. The system may further perform operations including calculating a deletion date for the first transaction based on the first retention policy; and storing the deletion date with the first transaction in the first dataset.

公开(公告)号：US20240283652A1

公开(公告)日：2024-08-22

申请号：US18654469

申请日：2024-05-03

Applicant: Palantir Technologies Inc.

Inventor： Mihir Patil ,  Hugo Dobbelaere ,  Yeong Wei Wee ,  Maia Hamin ,  Piotr Kraus ,  Yurii Mashtalir ,  Hussein Farah ,  Alexander Galimberti ,  Caterina Wanka ,  Lukas Czypulovski ,  Juraj Micko ,  Nezihe Pehlivan

IPC: H04L9/32 ,  G06F21/10 ,  H04L9/08

CPC classification number: H04L9/3215 ,  G06F21/10 ,  H04L9/0861 ,  H04L9/0894 ,  H04L2209/60

Abstract: A cryptography administration system facilitates secure, user-friendly and auditable cryptography. The system can generate an encrypted data value from raw data values with a user-selected cryptography algorithm. The encrypted data value can comprise a pointer configured to access a location in storage comprising a cryptography key for decrypting the encrypted data value. The system can generate a license comprising one or more permissions of a user to decrypt the encrypted data value. The system can store the license in the location in storage accessible by the pointer of the encrypted data value.

公开(公告)号：US20230100790A1

公开(公告)日：2023-03-30

申请号：US17502624

申请日：2021-10-15

Applicant: Palantir Technologies Inc.

Inventor： Mihir Patil ,  Hugo Dobbelaere ,  Yeong Wei Wee ,  Maia Hamin ,  Piotr Kraus ,  Yurii Mashtalir ,  Hussein Farah ,  Alexander Galimberti ,  Caterina Wanka ,  Lukas Czypulovski ,  Juraj Micko ,  Nezihe Pehlivan

IPC: H04L9/32 ,  H04L9/08

Abstract: A cryptography administration system facilitates secure, user-friendly and auditable cryptography. An administrator may create channels with associated cryptographic keys and algorithms for performing cryptographic operations such as encryption and decryption. The channel may be associated with licenses which may include permissions to perform cryptographic operations. The licenses may be shared with one or more users. A user may perform cryptographic operations using the channel according to the permissions and operations included in the licenses, to which the user has access, associated with the channel. The user does not need a technical understanding of the cryptographic system (e.g., keys and algorithms) to perform the cryptographic operations and does not need access to the keys to perform the operations. The cryptographic operations may be stored in an audit log that can be reviewed by user.

公开(公告)号：US12197385B2

公开(公告)日：2025-01-14

申请号：US18307553

申请日：2023-04-26

Applicant: Palantir Technologies Inc.

Inventor： Arnav Jagasia ,  Ashley Meuser ,  Hugo Dobbelaere ,  Mihir Patil ,  Sam Stoll ,  Pieris Christofi

IPC: G06F16/22 ,  G06F16/11 ,  G06F16/16

Abstract: A computer system provides transaction-level data retention policy inheritance. The system may perform operations including storing a first dataset comprising a plurality of transactions, each of the plurality of transactions comprising one or more data items; receiving a first transaction to the first dataset, the first transaction comprising one or more data items; determining a first retention policy for the first transaction; and storing the first retention policy with the first transaction. The system may further perform operations including calculating a deletion date for the first transaction based on the first retention policy; and storing the deletion date with the first transaction in the first dataset.

公开(公告)号：US12010232B2

公开(公告)日：2024-06-11

申请号：US17502624

申请日：2021-10-15

Applicant: Palantir Technologies Inc.

Inventor： Mihir Patil ,  Hugo Dobbelaere ,  Yeong Wei Wee ,  Maia Hamin ,  Piotr Kraus ,  Yurii Mashtalir ,  Hussein Farah ,  Alexander Galimberti ,  Caterina Wanka ,  Lukas Czypulovski ,  Juraj Micko ,  Nezihe Pehlivan

IPC: H04L9/08 ,  G06F21/10 ,  H04L9/32

CPC classification number: H04L9/3215 ,  G06F21/10 ,  H04L9/0861 ,  H04L9/0894 ,  H04L2209/60

Abstract: A cryptography administration system facilitates secure, user-friendly and auditable cryptography. An administrator may create channels with associated cryptographic keys and algorithms for performing cryptographic operations such as encryption and decryption. The channel may be associated with licenses which may include permissions to perform cryptographic operations. The licenses may be shared with one or more users. A user may perform cryptographic operations using the channel according to the permissions and operations included in the licenses, to which the user has access, associated with the channel. The user does not need a technical understanding of the cryptographic system (e.g., keys and algorithms) to perform the cryptographic operations and does not need access to the keys to perform the operations. The cryptographic operations may be stored in an audit log that can be reviewed by user.

公开(公告)号：US20230350843A1

公开(公告)日：2023-11-02

申请号：US18307553

申请日：2023-04-26

Applicant: Palantir Technologies Inc.

Inventor： Arnav Jagasia ,  Ashley Meuser ,  Hugo Dobbelaere ,  Mihir Patil ,  Sam Stoll ,  Pieris Christofi

IPC: G06F16/11 ,  G06F16/16

CPC classification number: G06F16/125 ,  G06F16/162

Abstract: A computer system provides transaction-level data retention policy inheritance. The system may perform operations including storing a first dataset comprising a plurality of transactions, each of the plurality of transactions comprising one or more data items; receiving a first transaction to the first dataset, the first transaction comprising one or more data items; determining a first retention policy for the first transaction; and storing the first retention policy with the first transaction. The system may further perform operations including calculating a deletion date for the first transaction based on the first retention policy; and storing the deletion date with the first transaction in the first dataset.

公开(公告)号：US20220035940A1

公开(公告)日：2022-02-03

申请号：US17492891

申请日：2021-10-04

Applicant: Palantir Technologies Inc.

Inventor： Nitish Kulkarni ,  Jakob Frick ,  Louis Franc ,  Thomas Poinsot ,  Hugo Dobbelaere

IPC: G06F21/62 ,  H04L9/08 ,  H04L9/14

Abstract: A data synthesis system comprising a high side computing environment and a low side computing environment. Access to the high side computing environment may be restricted to a first one or more users. The high side computing environment may comprise a first one or more datasets and one or more specification computer programs. The one or more specification computer programs may be configured to generate a data synthesis specification based on the structure of the first one or more datasets. The low side computing environment may be accessible by a second a one or more users. The low side computing environment may comprise one or more data synthesizer computer programs. The one or more data synthesizer computer programs may be configured to synthesize a second one or more datasets based on the data synthesis specification.