公开(公告)号：US20240176760A1

公开(公告)日：2024-05-30

申请号：US18372280

申请日：2023-09-25

Applicant: Secturion Systems, Inc.

Inventor： JORDAN ANDERSON ,  TIMOTHY PAUL ABEL ,  DEREK OWENS ,  SEAN LITTLE

IPC: G06F15/80

CPC classification number: G06F15/8046

Abstract: Systems and methods for protocol processing using a systolic array (e.g., programmed in an FPGA). For example, protocol processing is performed for incoming data (e.g., received for storage) prior to encryption and/or sending to a remote storage device (e.g., cloud storage or server).

公开(公告)号：US20240098071A1

公开(公告)日：2024-03-21

申请号：US18243557

申请日：2023-09-07

Applicant: SECTURION SYSTEMS, INC.

Inventor： JORDAN ANDERSON ,  RICHARD J. TAKAHASHI ,  SEAN LITTLE ,  LEE NOEHRING

IPC: H04L9/40 ,  G06F21/60 ,  H04L9/14

CPC classification number: H04L63/0428 ,  G06F21/602 ,  H04L9/14 ,  H04L63/0471 ,  H04L63/0478 ,  H04L63/061 ,  H04L63/0823 ,  H04L63/0869 ,  H04L63/0876 ,  H04L2209/76

Abstract: Systems and methods to securely send or write data to a cloud storage or server. In one embodiment, a method includes: establishing a connection to a client using a client-side transport protocol; receiving, over the connection, data from the first client; decrypting, using a client session key, the received data to provide first decrypted data; encrypting the first decrypted data using a stored payload key (that is associated with the client) to provide first encrypted data; encrypting, using a cloud session key, the first encrypted data using a remote-side transport protocol to provide second encrypted data; and sending the second encrypted data to the cloud storage or server.

公开(公告)号：US20200293487A1

公开(公告)日：2020-09-17

申请号：US16654924

申请日：2019-10-16

Applicant: Secturion Systems, Inc.

Inventor： JORDAN ANDERSON ,  TIMOTHY PAUL ABEL ,  DEREK OWENS ,  SEAN LITTLE

IPC: G06F15/80 ,  G06F7/38 ,  G06F7/32 ,  G06F17/16 ,  G06F21/76

Abstract: Systems and methods for protocol processing using a systolic array (e.g., programmed in an FPGA). For example, protocol processing is performed for incoming data (e.g., received for storage) prior to encryption and/or sending to a remote storage device (e.g., cloud storage or server).

公开(公告)号：US20190052455A1

公开(公告)日：2019-02-14

申请号：US16161377

申请日：2018-10-16

Applicant: Secturion Systems, Inc.

Inventor： SEAN LITTLE ,  JORDAN ANDERSON

IPC: H04L9/06 ,  H03K19/20 ,  G06F7/72

Abstract: A computing device (e.g., an FPGA or integrated circuit) processes an incoming packet comprising data to compute a Galois hash. The computing device includes a plurality of circuits, each circuit providing a respective result used to determine the Galois hash, and each circuit including: a first multiplier configured to receive a portion of the data; a first exclusive-OR gate configured to receive an output of the first multiplier as a first input, and to provide the respective result; and a second multiplier configured to receive an output of the first exclusive-OR gate, wherein the first exclusive-OR gate is further configured to receive an output of the second multiplier as a second input. In one embodiment, the computing device further comprises a second exclusive-OR gate configured to output the Galois hash, wherein each respective result is provided as an input to the second exclusive-OR gate.

公开(公告)号：US20200004695A1

公开(公告)日：2020-01-02

申请号：US16417839

申请日：2019-05-21

Applicant: SECTURION SYSTEMS, INC.

Inventor： JORDAN ANDERSON

IPC: G06F12/14 ,  G06F16/17 ,  H04L9/32 ,  H04L29/06 ,  G06F16/13

Abstract: Systems and methods to securely store data in a remote storage (e.g., cloud storage or server). In one approach, a method includes: receiving, from a local device, data blocks to be stored; generating a hash from a hash of each data block; storing each respective hash (e.g., in a local or remote memory for later use); and writing the data blocks to remote storage. Data integrity is verified when each data block is read from the remote storage by generating a hash of the respective read data block, and comparing the generated hash to the respective stored hash.

公开(公告)号：US20220174050A1

公开(公告)日：2022-06-02

申请号：US17672354

申请日：2022-02-15

Applicant: SECTURION SYSTEMS, INC.

Inventor： JORDAN ANDERSON ,  RICHARD J. TAKAHASHI ,  SEAN LITTLE ,  LEE NOEHRING

IPC: H04L9/40 ,  G06F21/60 ,  H04L9/14

Abstract: Systems and methods to securely send or write data to a cloud storage or server. In one embodiment, a method includes: establishing a connection to a client using a client-side transport protocol; receiving, over the connection, data from the first client; decrypting, using a client session key, the received data to provide first decrypted data; encrypting the first decrypted data using a stored payload key (that is associated with the client) to provide first encrypted data; encrypting, using a cloud session key, the first encrypted data using a remote-side transport protocol to provide second encrypted data; and sending the second encrypted data to the cloud storage or server.

公开(公告)号：US20200177540A1

公开(公告)日：2020-06-04

申请号：US16518082

申请日：2019-07-22

Applicant: Secturion Systems, Inc.

Inventor： TIMOTHY PAUL ABEL ,  JACOB FROGGET ,  DEREK OWENS ,  JORDAN ANDERSON

IPC: H04L29/12 ,  H04L29/06 ,  H04L12/741 ,  H04L12/46 ,  G06F30/34

Abstract: Systems and methods for in-line TCP processing using a systolic array. For example, data received for storage is processed in-line prior to encryption and/or sending to a remote storage device (e.g., cloud storage or server).

公开(公告)号：US20170359317A1

公开(公告)日：2017-12-14

申请号：US15688743

申请日：2017-08-28

Applicant: SECTURION SYSTEMS, INC.

Inventor： JORDAN ANDERSON ,  RICHARD J. TAKAHASHI ,  SEAN LITTLE ,  LEE NOEHRING

IPC: H04L29/06 ,  G06F21/60

CPC classification number: H04L63/0428 ,  G06F21/602 ,  H04L9/14 ,  H04L63/0471 ,  H04L63/0478 ,  H04L63/061 ,  H04L63/0823 ,  H04L63/0869 ,  H04L63/0876 ,  H04L2209/76

Abstract: Systems and methods to securely send or write data to a cloud storage or server. In one embodiment, a method includes: establishing a connection to a client using a client-side transport protocol; receiving, over the connection, data from the first client; decrypting, using a client session key, the received data to provide first decrypted data; encrypting the first decrypted data using a stored payload key (that is associated with the client) to provide first encrypted data; encrypting, using a cloud session key, the first encrypted data using a remote-side transport protocol to provide second encrypted data; and sending the second encrypted data to the cloud storage or server.

公开(公告)号：US20240061790A1

公开(公告)日：2024-02-22

申请号：US18225372

申请日：2023-07-24

Applicant: SECTURION SYSTEMS, INC.

Inventor： JORDAN ANDERSON

IPC: G06F12/14 ,  G06F16/13 ,  G06F16/17 ,  H04L9/32 ,  H04L9/40

CPC classification number: G06F12/1408 ,  G06F16/137 ,  G06F16/1727 ,  H04L9/3242 ,  H04L9/3268 ,  H04L63/166 ,  G06F2212/1052

Abstract: Systems and methods to securely store data in a remote storage (e.g., cloud storage or server). In one approach, a method includes: receiving, from a local device, data blocks to be stored; generating a hash from a hash of each data block; storing each respective hash (e.g., in a local or remote memory for later use); and writing the data blocks to remote storage. Data integrity is verified when each data block is read from the remote storage by generating a hash of the respective read data block, and comparing the generated hash to the respective stored hash.

公开(公告)号：US20230214188A1

公开(公告)日：2023-07-06

申请号：US17939654

申请日：2022-09-07

Applicant: Secturion Systems, Inc.

Inventor： SEAN LITTLE ,  JORDAN ANDERSON

IPC: H04L9/06 ,  G06F7/523

CPC classification number: H04L9/0637 ,  H04L9/0643 ,  G06F7/523

Abstract: A computing device (e.g., an FPGA or integrated circuit) processes an incoming packet comprising data to compute a Galois hash. The computing device includes a plurality of circuits, each circuit providing a respective result used to determine the Galois hash, and each circuit including: a first multiplier configured to receive a portion of the data; a first exclusive-OR gate configured to receive an output of the first multiplier as a first input, and to provide the respective result; and a second multiplier configured to receive an output of the first exclusive-OR gate, wherein the first exclusive-OR gate is further configured to receive an output of the second multiplier as a second input. In one embodiment, the computing device further comprises a second exclusive-OR gate configured to output the Galois hash, wherein each respective result is provided as an input to the second exclusive-OR gate.