FILE ORIGIN DETERMINATION

US 20170032107A1
Filed: 07/27/2015
Published: 02/02/2017
Est. Priority Date: 07/27/2015
Status: Active Grant

First Claim

Patent Images

1. A file validation method comprising:

retrieving, by a computer processor of a computing system from an authoritative source system, an artifact file;

recording, by said computer processor, identification information identifying a requesting user of said artifact file;

generating, by said computer processor, metadata describing said identification information;

generating, by said computer processor, a modified artifact file comprising said metadata combined with said artifact file;

generating, by said computer processor, an encryption key comprising a first portion and a second portion;

storing, by said computer processor, said first portion of said key within a central key store database; and

generating, by said computer processor, an encrypted package comprising said modified artifact file and said second portion of said key.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A file validation method and system is provided. The method includes retrieving from an authoritative source system, an artifact file. Identification information identifying a requesting user of the artifact file is recorded and associated metadata and a modified artifact file comprising the metadata combined with the artifact file are generated. An encryption key including a first portion and a second portion is generated and the first portion is stored within a central key store database. An encrypted package comprising the modified artifact file and the second portion of the key is generated.

22 Citations

View as Search Results

20 Claims

1. A file validation method comprising:
- retrieving, by a computer processor of a computing system from an authoritative source system, an artifact file;
  
  recording, by said computer processor, identification information identifying a requesting user of said artifact file;
  
  generating, by said computer processor, metadata describing said identification information;
  
  generating, by said computer processor, a modified artifact file comprising said metadata combined with said artifact file;
  
  generating, by said computer processor, an encryption key comprising a first portion and a second portion;
  
  storing, by said computer processor, said first portion of said key within a central key store database; and
  
  generating, by said computer processor, an encrypted package comprising said modified artifact file and said second portion of said key.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, further comprising:
    - receiving, by said computer processor from said user, a request for distribution of said encrypted package;
      
      determining, by said computer processor, that said user is authorized to access said encrypted package; and
      
      retrieving, by said computer processor in response to results of said determining, said first portion of said key from said central key store database.
  - 3. The method of claim 2, further comprising:
    - receiving, by said computer processor from said user, a request for installing said artifact file;
      
      combining, by said computer processor, said first portion of said key with said second portion of said key comprised by said package;
      
      decrypting, by said computer processor in response to results of said combining, said encrypted package resulting in a decrypted package comprising said modified artifact file;
      
      installing, by said computer processor in an external computing system, said artifact file; and
      
      storing, by said computer processor as a hidden file, said metadata with said installed artifact file.
  - 4. The method of claim 3, further comprising:
    - validating, by said computer processor based on said metadata, an origin of said artifact file, wherein said validating comprises running said encryption key through said central key store database to retrieve said origin via said metadata.
  - 5. The method of claim 1, wherein said information comprises data selected from the group consisting of a URL associated with a browser said computing system, an n identification for said user, and a subnet used to perform said retrieving.
  - 6. The method of claim 1, wherein said recording comprises:
    - recording an ID for said requesting user;
      
      recording a Website URL associated with retrieving said artifact file; and
      
      recording a subnet ID for said computing system.
  - 7. The method of claim 1, wherein said identification information comprises a name of said requesting user, an email address of said requesting user, and employee related information associated with said requesting user.
  - 8. The method of claim 1, wherein data associated with said artifact file comprises an IP address of said authoritative source system, a date and time of requesting said artifact file, and a file size of said artifact file.
  - 9. The method of claim 1, wherein data associated with said computing system comprises an IP address of a destination system for said artifact file and a subnet associated with said artifact file.
  - 10. The method of claim 1, wherein said metadata defines terms describing a license agreement of said artifact file.
  - 11. The method of claim 1, further comprising:
    - providing at least one support service for at least one of creating, integrating, hosting, maintaining, and deploying computer-readable code in the computing system, said code being executed by the computer processor to implement said retrieving, said recording, said generating, said metadata, said generating said modified artifact file, said generating said encryption key, said storing, and said generating said encrypted package.

12. A file validation method comprising:
- requesting, by a computer processor of a computing system executing an agent in response to a request from a requesting user, a detachable fetch software module;
  
  retrieving, by said computer processor from a service provider computer, said detachable fetch software module;
  
  downloading, by said computer processor executing said detachable fetch software module, an artifact file;
  
  generating, by said computer processor executing said detachable fetch software module, a digital fingerprint associated with securing said artifact file; and
  
  executing, by said computer processor, said digital fingerprint with respect to said artifact file.
- View Dependent Claims (13)
- - 13. The method of claim 12, wherein said detachable fetch software module comprises a single use only software module.

14. A computer program product for file validation, the computer program product comprising:
- one or more computer-readable, tangible storage devices;
  
  program instructions, stored on at least one of the one or more storage devices, to retrieve from an authoritative source system, an artifact file;
  
  program instructions, stored on at least one of the one or more storage devices, to record identification information identifying a requesting user of said artifact file;
  
  program instructions, stored on at least one of the one or more storage devices, to generate metadata describing said identification information;
  
  program instructions, stored on at least one of the one or more storage devices, to generate a modified artifact file comprising said metadata combined with said artifact file;
  
  program instructions, stored on at least one of the one or more storage devices, to generate an encryption key comprising a first portion and a second portion;
  
  program instructions, stored on at least one of the one or more storage devices, to store said first portion of said key within a central key store database; and
  
  program instructions, stored on at least one of the one or more storage devices, to generate an encrypted package comprising said modified artifact file and said second portion of said key.
- View Dependent Claims (15, 16, 17, 18, 19, 20)
- - 15. The computer program product of claim 14, further comprising:
    - program instructions, stored on at least one of the one or more storage devices, to receive from said user, a request for distribution of said encrypted package;
      
      program instructions, stored on at least one of the one or more storage devices, to determine that said user is authorized to access said encrypted package; and
      
      program instructions, stored on at least one of the one or more storage devices, to retrieve in response to results of determining that said user is authorized to access said encrypted package, said first portion of said key from said central key store database.
  - 16. The computer program product of claim 15, further comprising:
    - program instructions, stored on at least one of the one or more storage devices, to receive from said user, a request for installing said artifact file;
      
      program instructions, stored on at least one of the one or more storage devices, to combine said first portion of said key with said second portion of said key comprised by said package;
      
      program instructions, stored on at least one of the one or more storage devices, to decrypt in response to results of combining said first portion of said key with said second portion of said key, said encrypted package resulting in a decrypted package comprising said modified artifact file;
      
      program instructions, stored on at least one of the one or more storage devices, to install in an external computing system, said artifact file; and
      
      program instructions, stored on at least one of the one or more storage devices, to store as a hidden file, said metadata with said installed artifact file.
  - 17. The computer program product of claim 16, further comprising:
    - program instructions, stored on at least one of the one or more storage devices, to validate based on said metadata, an origin of said artifact file by running said encryption key through said central key store database to retrieve said origin via said metadata.
  - 18. The computer program product of claim 14, wherein said information comprises data selected from the group consisting of a URL associated with a browser said computing system, an n identification for said user, and a subnet used to perform said retrieving.
  - 19. The computer program product of claim 14, wherein said program instructions to record said information comprises:
    - program instructions, stored on at least one of the one or more storage devices, to record an ID for said requesting user;
      
      program instructions, stored on at least one of the one or more storage devices, to record a Website URL associated with retrieving said artifact file; and
      
      program instructions, stored on at least one of the one or more storage devices, to record a subnet ID for said computing system.
  - 20. The computer program product of claim 14, wherein said metadata defines terms describing a license agreement of said artifact file.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Kyndryl Incorporated
Original Assignee
International Business Machines Corporation
Inventors
Childress, Rhonda L., Spisak, Michael J., Stark, George E.

Granted Patent

US 9,910,967 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/105 Arrangements for software l...

G06F 21/107 License processing; Key pro...

FILE ORIGIN DETERMINATION

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

22 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

FILE ORIGIN DETERMINATION

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

22 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links