Information security – Access control or authentication
Reexamination Certificate
2003-08-25
2010-10-05
Zand, Kambiz (Department: 2434)
Information security
Access control or authentication
C713S164000
Reexamination Certificate
active
07810133
ABSTRACT:
A method of and system for encrypting and decrypting data on a computer system is disclosed. In one embodiment, the system comprises an encrypting operating system (EOS), which is a modified UNIX operating system. The EOS is configured to use a symmetric encryption algorithm and an encryption key to encrypt data transferred from physical memory to secondary devices, such as disks, swap devices, network file systems, network buffers, pseudo file systems, or any other structures external to the physical memory and on which can data can be stored. The EOS further uses the symmetric encryption algorithm and the encryption key to decrypt data transferred from the secondary devices back to physical memory. In other embodiments, the EOS adds an extra layer of security by also encrypting the directory structure used to locate the encrypted data. In a further embodiment a user or process is authenticated and its credentials checked before a file can be accessed, using a key management facility that controls access to one or more keys for encrypting and decrypting data.
REFERENCES:
patent: 4914653 (1990-04-01), Bishop et al.
patent: 5029206 (1991-07-01), Marino et al.
patent: 5093913 (1992-03-01), Bishop et al.
patent: 5454039 (1995-09-01), Coppersmith et al.
patent: 5584023 (1996-12-01), Hsu
patent: 5721777 (1998-02-01), Blaze
patent: 5727206 (1998-03-01), Fish et al.
patent: 5729710 (1998-03-01), Magee et al.
patent: 5765153 (1998-06-01), Benantar et al.
patent: 5774525 (1998-06-01), Kanevsky et al.
patent: 5787169 (1998-07-01), Eldridge et al.
patent: 5841976 (1998-11-01), Tai et al.
patent: 5903881 (1999-05-01), Schrader et al.
patent: 5991399 (1999-11-01), Graunke et al.
patent: 5991414 (1999-11-01), Garay et al.
patent: 6023506 (2000-02-01), Ote et al.
patent: 6065037 (2000-05-01), Hitz et al.
patent: 6185681 (2001-02-01), Zizzi
patent: 6205417 (2001-03-01), Butts et al.
patent: 6249866 (2001-06-01), Brundrett et al.
patent: 6351813 (2002-02-01), Mooney et al.
patent: 6477545 (2002-11-01), LaRue
patent: 6681305 (2004-01-01), Franke et al.
patent: 6836888 (2004-12-01), Basu et al.
patent: 6938166 (2005-08-01), Sarfati et al.
patent: 6957330 (2005-10-01), Hughes
patent: 7051209 (2006-05-01), Brickell
patent: 7185192 (2007-02-01), Kahn
patent: 7231657 (2007-06-01), Honarvar et al.
patent: 7243370 (2007-07-01), Bobde et al.
patent: 7313694 (2007-12-01), Riedel et al.
patent: 7353535 (2008-04-01), Kaler et al.
patent: 2002/0065876 (2002-05-01), Chien et al.
patent: 2003/0005300 (2003-01-01), Noble et al.
patent: 2003/0187784 (2003-10-01), Maritzen et al.
patent: 2003/0236745 (2003-12-01), Hartsell et al.
patent: 2004/0093455 (2004-05-01), Duncan et al.
patent: 2004/0123162 (2004-06-01), Antell et al.
patent: 2005/0039057 (2005-02-01), Bagga et al.
patent: 2005/0191609 (2005-09-01), Fadel et al.
patent: 2006/0095779 (2006-05-01), Bhat et al.
patent: 2006/0143350 (2006-06-01), Miloushev et al.
patent: 2007/0113229 (2007-05-01), Serghi et al.
patent: 1 292 067 (2002-12-01), None
patent: 2214887 (1990-08-01), None
patent: 9251426 (1997-09-01), None
patent: 2001516913 (2001-10-01), None
patent: 99/14652 (1999-03-01), None
patent: 02/19592 (2002-03-01), None
Zadok et al., Cryptfs: A Stackable Vnode Level Encryption File System, 1998, Computer Science Department, Columbia University, pp. 1-14.
Blaze, A Cryptographic File System for UNIX, 1993, 1st Conf. Computer and Communication Security, ACM, pp. 9-16.
Mazieres, “A Toolkit for User-Level File Systems”, 2001, Proceedings Usenix Technical Conference, pp. 1-14.
Yu et al., “A Cryptographic File System Supporting Multi-Level Security”, Dec. 2002, WSEAS Int. Conf. on e-Activities, pp. 1-8.
Niels Provos, “Encrypting Virtual Memory”, Center for Information Technology Integration, University of Michigan, pp. 1-10.
Theo de Raadt et al., “Cryptography in OpenBSD: An Overview”, The OpenBSD Project, pp. 1-9.
Stefan Ludwig et al., “File System Encryption with Integrated User Management”, ACM SIGOPS Operating System Review Archive, vol. 35. Issue 4, pp. 88-93, Oct. 2001.
Matt Blaze, “A Cryptographic File System for Unix”, A&T& Bell Laboratories, Holmdel, New Jersey, pp. 1-8.
Roy H. Campbell et al., “An Object-Oriented Multimedia Operating System”, 1995 IEE, pp. 90-94, University of Illinois at Urban-Champaign.
Robert L. Scheier, “Trusted Operating Systems: The Ultimate Defense”, Nov. 6, 2000, pp. 70-72, Computerworld.
Inamura, Tsuyoshi, “Encrypton File System”, Open Design, Dec. 1, 1997, vol. 4, No. 6, pp. 112-125.
Carter Ernst B.
Zolotov Vasily
Exit-Cube, Inc.
Haverstock & Owens LLP
Powers William S
Zand Kambiz
LandOfFree
Encrypting operating system does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Encrypting operating system, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Encrypting operating system will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4201021