公开(公告)号：US09009459B1

公开(公告)日：2015-04-14

申请号：US13418332

申请日：2012-03-12

Applicant: Carey Nachenberg ,  Fanglu Guo ,  Susanta Nanda ,  Sandeep Bhatkar ,  Darren Shou ,  Marc Dacier

Inventor： Carey Nachenberg ,  Fanglu Guo ,  Susanta Nanda ,  Sandeep Bhatkar ,  Darren Shou ,  Marc Dacier

IPC: G06F15/16 ,  G06F21/56

CPC classification number: G06F21/56 ,  G06F21/568 ,  H04L63/1483

Abstract: A computer-implemented method for neutralizing file-format-specific exploits contained within electronic communications may include (1) identifying an electronic communication, (2) identifying at least one file contained within the electronic communication, and then (3) neutralizing any file-format-specific exploits contained within the file. In one example, neutralizing any file-format-specific exploits contained within the file may include applying at least one file-format-conversion operation to the file. Additionally or alternatively, neutralizing any file-format-specific exploits contained within the file may include constructing a sterile version of the file that selectively omits at least a portion of any exploitable content contained within the file. Various other methods, systems, and computer-readable media are also disclosed.

Abstract translation: 用于中和电子通信中包含的文件格式特定漏洞的计算机实现的方法可以包括（1）识别电子通信，（2）识别包含在电子通信中的至少一个文件，然后（3）中和任何文件 - 文件中包含的特定于格式的漏洞利用。 在一个示例中，中和文件中包含的任何文件格式特定的漏洞利用可能包括对文件应用至少一个文件格式转换操作。 另外或替代地，中和文件中包含的任何文件格式特定的漏洞利用可以包括构建文件的无菌版本，其选择性地省略包含在文件内的任何可利用内容的至少一部分。 还公开了各种其它方法，系统和计算机可读介质。

公开(公告)号：US08769627B1

公开(公告)日：2014-07-01

申请号：US13314496

申请日：2011-12-08

Applicant: Fanglu Guo ,  Petros Efstathopoulos

Inventor： Fanglu Guo ,  Petros Efstathopoulos

IPC: G06F7/04 ,  G06F11/14 ,  G06F3/06

CPC classification number: G06F11/1453 ,  G06F3/067 ,  G06F11/1448 ,  G06F11/1464 ,  G06F17/30156

Abstract: A computer-implemented method for validating ownership of deduplicated data may include (1) identifying a request from a remote client to store a data object in a data store that already includes an instance of the data object, (2) in response to the request, verifying that the remote client possesses the data object by (i) issuing a randomized challenge to the remote client, the randomized challenge including a random value which, when combined with at least a portion of the data object, produces an authentication token demonstrating possession of the data object and, in response to the randomized challenge, (ii) receiving the authentication token from the remote client; and, in response to receiving the authentication token from the remote client, (3) storing the data object in the data store on behalf of the remote client. Various other methods and systems are also disclosed.

Abstract translation: 用于验证重复数据删除数据的所有权的计算机实现的方法可以包括（1）识别来自远程客户端的请求以将数据对象存储在已经包括数据对象的实例的数据存储中，（2）响应于该请求 ，通过（i）向远程客户端发出随机挑战来验证远程客户端拥有数据对象，随机挑战包括随机值，该随机值当与数据对象的至少一部分组合时产生证明拥有的认证令牌 并且响应于随机挑战，（ii）从远程客户端接收认证令牌; 并且响应于从所述远程客户端接收所述认证令牌，（3）代表所述远程客户机将所述数据对象存储在所述数据存储器中。 还公开了各种其它方法和系统。

公开(公告)号：US07821937B1

公开(公告)日：2010-10-26

申请号：US11771204

申请日：2007-06-29

Applicant: Fanglu Guo

Inventor： Fanglu Guo

IPC: H04L12/26

CPC classification number: H04L43/0829 ,  H04L43/0852 ,  H04L43/0864 ,  H04L43/16

Abstract: Various embodiments of a network protocol that utilizes a congestion control algorithm that distinguishes between congestion loss and damage loss are described. In response to a packet loss on a network, a delay-based detection algorithm may be performed based on RTT (Round-Trip Time) information to determine whether the network is congested. If the delay-based detection algorithm does not determine that the network is congested then a consistency-based detection algorithm may be performed based on packet loss rate information. If either the delay-based detection algorithm or the consistency-based detection algorithm determine that the network is congested then the rate of data transmission may be reduced, e.g., by reducing a congestion window size.

Abstract translation: 描述利用区分拥塞丢失和损害损失的拥塞控制算法的网络协议的各种实施例。 响应于网络上的分组丢失，可以基于RTT（往返时间）信息执行基于延迟的检测算法，以确定网络是否拥塞。 如果基于延迟的检测算法不能确定网络拥塞，则可以基于丢包率信息来执行基于一致性的检测算法。 如果基于延迟的检测算法或基于一致性的检测算法确定网络拥塞，则可以例如通过减少拥塞窗口大小来降低数据传输速率。

公开(公告)号：US08954401B2

公开(公告)日：2015-02-10

申请号：US13007301

申请日：2011-01-14

Applicant: Xianbo Zhang ,  Fanglu Guo ,  Weibao Wu

Inventor： Xianbo Zhang ,  Fanglu Guo ,  Weibao Wu

IPC: G06F7/00 ,  G06F17/00 ,  G06F17/30 ,  G06F13/14 ,  G06F11/14

CPC classification number: G06F17/30156 ,  G06F11/1448 ,  G06F17/30306 ,  G06F17/30584 ,  G06F2201/80

Abstract: A computer-implemented method for providing increased scalability in deduplication storage systems may include (1) identifying a database that stores a plurality of reference objects, (2) determining that at least one size-related characteristic of the database has reached a predetermined threshold, (3) partitioning the database into a plurality of sub-databases capable of being updated independent of one another, (4) identifying a request to perform an update operation that updates one or more reference objects stored within at least one sub-database, and then (5) performing the update operation on less than all of the sub-databases to avoid processing costs associated with performing the update operation on all of the sub-databases. Various other systems, methods, and computer-readable media are also disclosed.

Abstract translation: 用于在重复数据删除存储系统中提供增加的可扩展性的计算机实现的方法可以包括（1）识别存储多个参考对象的数据库，（2）确定数据库的至少一个尺寸相关特性已经达到预定阈值， （3）将数据库分割成能够彼此独立地更新的多个子数据库，（4）识别执行更新存储在至少一个子数据库中的一个或多个参考对象的更新操作的请求，以及 然后（5）在小于所有子数据库的情况下执行更新操作，以避免处理与对所有子数据库执行更新操作相关联的成本。 还公开了各种其它系统，方法和计算机可读介质。

公开(公告)号：US20120059800A1

公开(公告)日：2012-03-08

申请号：US12875815

申请日：2010-09-03

Applicant: Fanglu Guo

Inventor： Fanglu Guo

IPC: G06F17/00

CPC classification number: G06F17/30138 ,  G06F11/1448 ,  G06F11/1453 ,  G06F11/1469 ,  G06F12/0253 ,  G06F17/30156

Abstract: A system and method for managing a resource reclamation reference list at a coarse level. A storage device is configured to store a plurality of storage objects in a plurality of storage containers, each of said storage containers being configured to store a plurality of said storage objects. A storage container reference list is maintained, wherein for each of the storage containers the storage container reference list identifies which files of a plurality of files reference a storage object within a given storage container. In response to detecting deletion of a given file that references an object within a particular storage container of the storage containers, a server is configured to update the storage container reference list by removing from the storage container reference list an identification of the given file. A reference list associating segment objects with files that reference those segment objects may not be updated response to the deletion.

Abstract translation: 一种用于在粗略级别管理资源回收参考列表的系统和方法。 存储装置被配置为将多个存储对象存储在多个存储容器中，每个所述存储容器被配置为存储多个所述存储对象。 维护存储容器参考列表，其中对于每个存储容器，存储容器参考列表识别多个文件中的哪些文件引用给定存储容器内的存储对象。 响应于检测到引用存储容器的特定存储容器内的对象的给定文件的删除，服务器被配置为通过从存储容器引用列表中移除给定文件的标识来更新存储容器引用列表。 将段对象与引用这些段对象的文件相关联的引用列表可能不会被更新以响应于删除。

公开(公告)号：US20110093439A1

公开(公告)日：2011-04-21

申请号：US12580697

申请日：2009-10-16

Applicant: Fanglu Guo ,  Weibao Wu

Inventor： Fanglu Guo ,  Weibao Wu

IPC: G06F12/00 ,  G06F12/16

CPC classification number: G06F11/1453 ,  G06F11/1464

Abstract: A de-duplication storage system which uses multiple indices is described. A first group of one or more indices may be stored in random access memory (RAM) or another type of fast storage. A second group of one or more indices may be stored on one or more disk drives or another type of storage where large amounts of data can be stored inexpensively. The first group of indices may be used when adding new files to the de-duplication storage system in order to determine whether the file segments of the new files are already stored. The second group of indices may be used when restoring files in order to lookup the segments of the files.

Abstract translation: 描述了使用多个索引的重复数据删除存储系统。 一个或多个索引的第一组可以存储在随机存取存储器（RAM）或另一类型的快速存储器中。 可以将一个或多个索引的第二组存储在一个或多个磁盘驱动器或其他类型的存储器上，其中可以廉价地存储大量数据。 当将新文件添加到重复数据删除存储系统中时，可以使用第一组索引，以便确定新文件的文件段是否已被存储。 在恢复文件时可以使用第二组索引，以便查找文件的段。

公开(公告)号：US09684668B1

公开(公告)日：2017-06-20

申请号：US13233900

申请日：2011-09-15

Applicant: Fanglu Guo

Inventor： Fanglu Guo

IPC: G06F17/00 ,  G06F17/30

CPC classification number: G06F17/30156 ,  G06F17/30094 ,  G06F17/30303

Abstract: A computer-implemented method for performing lookups on distributed deduplicated data systems may include (1) identifying a collection of deduplicated data stored within a plurality of nodes, (2) identifying a request to locate a deduplicated object of the collection within the plurality of nodes, (3) identifying a fingerprint of the deduplicated object, the fingerprint being generated using an algorithm that maps deduplicated objects onto a fingerprint space, (4) directing the request, based on a partitioning scheme that divides the fingerprint space among the plurality of nodes, to a first node within the plurality of nodes that is responsible for forwarding requests pertaining to a partition of the fingerprint space that includes the fingerprint, and (5) forwarding the request from the first node to a second node identified by the first node as corresponding to the fingerprint. Various other methods, systems, and computer-readable media are also disclosed.

公开(公告)号：US08914324B1

公开(公告)日：2014-12-16

申请号：US12580785

申请日：2009-10-16

Applicant: Fanglu Guo ,  Weibao Wu ,  Tzi-cker Chiueh ,  Petros Efstathopoulos

Inventor： Fanglu Guo ,  Weibao Wu ,  Tzi-cker Chiueh ,  Petros Efstathopoulos

IPC: G06F17/30

CPC classification number: G06F11/1453 ,  G06F17/30156

Abstract: A system and method for backing up files to a single-instance storage system are disclosed. The files may be split into segments, and the file data may be stored in the single-instance storage system as individual segments. The single-instance storage system uses the concept of a file region which covers multiple segments of the file. If a region of a file is unchanged from one backup to the next, the system may use a region object to refer to the unchanged region. This avoids the need to update the reference information for each of the segments within the region, thus increasing the efficiency of backing up the new version of the file.

Abstract translation: 公开了将文件备份到单实例存储系统的系统和方法。 文件可以被分割成段，并且文件数据可以作为单个段存储在单实例存储系统中。 单实例存储系统使用涵盖文件多个段的文件区域的概念。 如果文件的一个区域从一个备份到下一个备份不变，则系统可以使用区域对象来引用未更改的区域。 这避免了需要更新区域内每个段的参考信息，从而提高了备份新版本文件的效率。

公开(公告)号：US08224875B1

公开(公告)日：2012-07-17

申请号：US12652333

申请日：2010-01-05

Applicant: Mark Christiaens ,  Fanglu Guo ,  Weibao Wu

Inventor： Mark Christiaens ,  Fanglu Guo ,  Weibao Wu

IPC: G06F17/30

CPC classification number: G06F17/30303

Abstract: A computer-implemented method for removing unreferenced data segments from deduplicated data systems may include: 1) identifying a deduplicated data system that contains a plurality of data segments, 2) identifying a plurality of containers within the deduplicated data system, with each container containing a subset of the data segments within the deduplicated data system, 3) identifying at least one container within the plurality of containers that is likely to include a large proportion of data segments that are not referenced by data objects within the deduplicated data system, and then, for each identified container, 4) searching for unreferenced data segments within the identified container and 5) removing the unreferenced data segments from the identified container. Various other methods, systems, and computer-readable media are also disclosed.

Abstract translation: 用于从重复数据删除的数据系统中去除未引用的数据段的计算机实现的方法可以包括：1）识别包含多个数据段的重复数据删除的数据系统，2）识别重复数据删除数据系统内的多个容器，每个容器包含 在重复数据删除的数据系统内的数据段的子集，3）识别多个容器内的至少一个可能包含大量数据段的容器，这些数据段不被重复数据删除的数据系统内的数据对象引用， 对于每个已识别的容器，4）搜索所识别的容器内的未引用的数据段，以及5）从识别的容器中移除未引用的数据段。 还公开了各种其它方法，系统和计算机可读介质。

公开(公告)号：US08108447B2

公开(公告)日：2012-01-31

申请号：US12722192

申请日：2010-03-11

Applicant: Fanglu Guo

Inventor： Fanglu Guo

IPC: G06F17/30

CPC classification number: G06F3/0652 ,  G06F3/0608 ,  G06F3/0641 ,  G06F3/067 ,  G06F11/1415 ,  G06F12/0253

Abstract: A computer-implemented method for garbage collection in deduplicated data systems may include: 1) identifying a deduplicated data system, 2) identifying at least one segment object added to the deduplicated data system during a garbage-collection process of the deduplicated data system, 3) locking the segment object to prevent removal of the segment object by the garbage-collection process, and 4) unlocking the segment object after the garbage-collection process. The method may allow a small possibility of incorrectly removing useful segment objects. The method may also verify data objects during the garbage-collection process and recover incorrectly removed segment objects. Various other methods, systems, and computer-readable media are also disclosed.

Abstract translation: 在重复数据删除的数据系统中用于垃圾收集的计算机实现的方法可以包括：1）识别重复数据删除的数据系统，2）在重复数据删除的数据系统的垃圾收集过程中识别添加到重复数据删除的数据系统中的至少一个段对象，3 ）锁定段对象以防止垃圾收集过程删除段对象，以及4）在垃圾收集过程之后解锁段对象。 该方法可能允许错误地移除有用的段对象的可能性很小。 该方法还可以在垃圾收集过程期间验证数据对象并恢复不正确地去除的段对象。 还公开了各种其它方法，系统和计算机可读介质。