公开(公告)号：US09647837B2

公开(公告)日：2017-05-09

申请号：US14608803

申请日：2015-01-29

Applicant: Microsoft Technology Licensing, LLC

Inventor： Irina Gorbach ,  Venkatesh Krishnan ,  Andrey Shur ,  Dmitry Denisov ,  Lars Kuhtz ,  Sumant Mehta ,  Marina Galata

IPC: H04L9/32 ,  H04L29/06

CPC classification number: H04L9/321 ,  H04L9/3247 ,  H04L9/3263 ,  H04L9/3297 ,  H04L63/0823

Abstract: Embodiments include method, systems, and computer program products for filtering trust services records. Embodiments include receiving a trust services record that includes a plurality of security components and that is usable to secure data that is stored in an untrusted location. It is determined whether the trust services record has been tampered with, including verifying each of the plurality of security components of the trust services record. The trust services record is filtered based on the determination of whether the trust services record has been tampered with. The filtering includes, when the trust services record is determined to have not been tampered with, allowing performance of at least one task with respect to the secured data; and, when the trust services record is determined to have been tampered with, disallowing performance of any task with respect to the secured data.

公开(公告)号：US20150143127A1

公开(公告)日：2015-05-21

申请号：US14608803

申请日：2015-01-29

Applicant: Microsoft Technology Licensing, LLC

Inventor： Irina Gorbach ,  Venkatesh Krishnan ,  Andrey Shur ,  Dmitry Denisov ,  Lars Kuhtz ,  Sumant Mehta ,  Marina Galata

IPC: H04L9/32 ,  H04L29/06

CPC classification number: H04L9/321 ,  H04L9/3247 ,  H04L9/3263 ,  H04L9/3297 ,  H04L63/0823

Abstract: Embodiments include method, systems, and computer program products for filtering trust services records. Embodiments include receiving a trust services record that includes a plurality of security components and that is usable to secure data that is stored in an untrusted location. It is determined whether the trust services record has been tampered with, including verifying each of the plurality of security components of the trust services record. The trust services record is filtered based on the determination of whether the trust services record has been tampered with. The filtering includes, when the trust services record is determined to have not been tampered with, allowing performance of at least one task with respect to the secured data; and, when the trust services record is determined to have been tampered with, disallowing performance of any task with respect to the secured data.

Abstract translation: 实施例包括用于过滤信任服务记录的方法，系统和计算机程序产品。 实施例包括接收包括多个安全组件并且可用于保护存储在不可信位置中的数据的信任服务记录。 确定信任服务记录是否已被篡改，包括验证信任服务记录的多个安全组件中的每一个。 基于信任服务记录是否被篡改的确定，对信任服务记录进行过滤。 当信任服务记录被确定为不被篡改时，过滤包括允许对安全数据执行至少一个任务的性能; 并且当信任服务记录被确定为被篡改时，不允许对安全数据执行任何任务。