METHOD FOR ACCESSING A DATA MEMORY OF A CLOUD COMPUTER SYSTEM USING A MODIFIED DOMAIN NAME SYSTEM (DNS)
1 Assignment
0 Petitions
Accused Products
Abstract
The invention relates to a process for accessing a data storage device (128) of a cloud computer system (102) through a gateway computer system (100) which is connected with the cloud computer system over a network (106) and which stores at least one cryptographic key (120), the cloud computer system being associated with a URL and the gateway computer system being associated with an IP address, the Internet Domain Name System being modified to resolve the domain contained in the URL of the cloud computer system into the IP address of the gateway computer system, this process comprising the following steps:
- Setting up a protected connection (110) over the Internet between a first piece of terminal equipment (112) of the user and the gateway computer system by inputting the URL of the cloud computer system into a program of the piece of terminal equipment, and using the modified Domain Name System for name resolution of the URL, so that the protected connection is set up with the gateway computer system instead of with the cloud computer system;
- Transferring a file (101) over the protected connection from the terminal equipment to the gateway computer system;
- Setting up a session (154) over the network between the gateway computer system and the cloud computer system;
- Encrypting the file by the gateway computer system using the cryptographic key;
- Transferring the encrypted file (132) through the session from the gateway computer system to the cloud computer system;
- Storing the encrypted file in the data storage device of the cloud computer system.
17 Citations
24 Claims
-
1-12. -12. (canceled)
-
13. A process for accessing a data storage device of a cloud computer system through a gateway computer system which is connected with the cloud computer system over a network and which stores at least one cryptographic key, the cloud computer system being associated with a URL and the gateway computer system being associated with an IP address, a Domain Name System for name resolution being designed so that the domain contained in the URL of the cloud computer system is resolved into the IP address of the gateway computer system, comprising the following steps:
-
Setting up a protected connection between a first piece of terminal equipment of the user and the gateway computer system over the network by inputting the URL of the cloud computer system into a program of the piece of terminal equipment, and using the modified Domain Name System for name resolution of the URL, so that the protected connection is set up with the gateway computer system instead of with the cloud computer system; Transferring a file from the terminal equipment to the gateway computer system over the protected connection; Setting up a session between the gateway computer system and the cloud computer system over the network; Encrypting the file by the gateway computer system using the cryptographic key; Transferring the encrypted file from the gateway computer system to the cloud computer system through the session, Storing the encrypted file in the data storage device of the cloud computer system. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
-
-
24. A computer system with a gateway computer system and a cloud computer system, the gateway computer system being connected with the cloud computer system over a network, the gateway computer system storing authentication data of registered users for authentication with respect to the cloud computer system and at least one cryptographic key for each registered user, the cloud computer system being associated with a URL and the gateway computer system being associated with an IP address, the Domain Name System being designed so that the domain contained in the URL of the cloud computer system is resolved into the IP address of the gateway computer system, the gateway computer system and the cloud computer system being designed to carry out the following steps:
-
Setting up a protected connection between a first piece of terminal equipment of the user and the gateway computer system over the network by inputting the URL of the cloud computer system into a program of the piece of terminal equipment, and using the modified Domain Name System for name resolution of the URL, so that the protected connection is set up with the gateway computer system instead of with the cloud computer system; Transferring a file from the piece of terminal equipment to the gateway computer system over the protected connection; Setting up a session between the gateway computer system and the cloud computer system over the network; Encrypting the file by the gateway computer system using the cryptographic key; Transferring the encrypted file from the gateway computer system to the cloud computer system through the session, Storing the encrypted file in the data storage device of the cloud computer system.
-
Specification