System, method, and device for delivering communications and storing and delivering data
First Claim
Patent Images
1. A hardware platform comprising:
- a platform processor physically associated, and in communication, with memory, wherein said platform processor is operative to run a platform operating system; and
a data storage physically separate from said memory and readable by said platform processor, wherein said data storage is operative to store, in non-volatile storage, a vault which secures data and an executable wrap which secures an executable controller and secures an executable sensor, wherein said wrap includes instructions executable by said platform processor to (a) contact a remote server separate from said platform to prompt said remote server to transmit an executable authentication driver to said platform, (b) install said authentication driver into said memory and authenticate said platform using said authentication driver, and (c) only when said platform is authenticated using said authentication driver, install said executable sensor to said memory, wherein said authentication driver in said memory cooperates with said executable controller in said data storage to automatically and continuously permit or deny access by said platform processor to only permit said platform processor to access said secure data protected by said vault when both said authentication driver in said memory and said executable controller in said data storage are accessible and to otherwise deny access, wherein said platform processor can execute only said authentication driver and is prevented by said wrap from executing said executable controller directly, and wherein said executable sensor is operative to monitor at least one of said platform and said data storage for anomalies and, upon detecting an anomaly, deny access to said secure data secured by said vault by said executable sensor deleting said authentication driver from said memory upon detecting an anomaly thereby rendering said secure data inaccessible to said platform processor.
1 Assignment
0 Petitions
Accused Products
Abstract
A system, method, and device includes a platform data storage that stores a wrap that secures an executable controller and executable sensors. The wrap is verified, optionally through a downloaded authentication driver. After verifying the wrap, the wrap is opened and a sister of the executable controller is installed into the platform memory to cooperate with the executable controller. Additionally or alternatively, the authentication driver may cooperate with the executable controller. The executable controller allows the platform processor to access data secured in a vault and/or verify the platform to create a connection to a connection server.
-
Citations
19 Claims
-
1. A hardware platform comprising:
-
a platform processor physically associated, and in communication, with memory, wherein said platform processor is operative to run a platform operating system; and a data storage physically separate from said memory and readable by said platform processor, wherein said data storage is operative to store, in non-volatile storage, a vault which secures data and an executable wrap which secures an executable controller and secures an executable sensor, wherein said wrap includes instructions executable by said platform processor to (a) contact a remote server separate from said platform to prompt said remote server to transmit an executable authentication driver to said platform, (b) install said authentication driver into said memory and authenticate said platform using said authentication driver, and (c) only when said platform is authenticated using said authentication driver, install said executable sensor to said memory, wherein said authentication driver in said memory cooperates with said executable controller in said data storage to automatically and continuously permit or deny access by said platform processor to only permit said platform processor to access said secure data protected by said vault when both said authentication driver in said memory and said executable controller in said data storage are accessible and to otherwise deny access, wherein said platform processor can execute only said authentication driver and is prevented by said wrap from executing said executable controller directly, and wherein said executable sensor is operative to monitor at least one of said platform and said data storage for anomalies and, upon detecting an anomaly, deny access to said secure data secured by said vault by said executable sensor deleting said authentication driver from said memory upon detecting an anomaly thereby rendering said secure data inaccessible to said platform processor. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system comprising:
-
an authentication server; a hardware platform in communication with said authentication server, said platform comprising; a platform processor physically associated, and in communication, with memory, wherein said platform processor is operative to run a platform operating system; and a data storage physically separate from said memory and readable by said platform processor, wherein said data storage is operative to store, in non-volatile storage, a vault which secures data and an executable wrap which secures an executable controller and secures an executable sensor, wherein said wrap includes instructions executable by said platform processor to (a) contact said authentication server to prompt said authentication server to transmit an executable authentication driver to said platform, (b) install said authentication driver into said memory and authenticate said platform using said authentication driver, and (c) only when said platform is authenticated using said authentication driver, install said executable sensor to said memory, wherein said authentication driver in said memory cooperates with said executable controller in said data storage to automatically and continuously permit or deny access by said platform processor to only permit said platform processor to access said secure data protected by said vault when both said authentication driver in said memory and said executable controller in said data storage are accessible and to otherwise deny access, wherein said platform processor can execute only said authentication driver and is prevented by said wrap from executing said executable controller directly and wherein said executable sensor is operative to monitor at least one of said platform and said data storage for anomalies and, upon detecting an anomaly, deny access to said secure data secured by said vault by said executable sensor deleting said authentication driver from said memory upon detecting an anomaly thereby rendering said secure data inaccessible to said platform processor; a connection server in communication with said platform having a connection server processor operative to execute program instructions to conduct the steps of; receiving a connection request from said platform; authenticating said platform; opening a connection server port identified by a connection server port address; reconnecting to said authenticated platform via said connection server port at said connection server port address; and communicating between said connection server and said authenticated platform via said connection server port; a data server in communication with said connection server, said data server comprising; a data server processor; a data server communication device controlled by said data server processor and operative for selective communication with said connection server via ports assigned by said data server processor; and a data server data storage readable by said data server processor, wherein said data server data storage is operative to store, in non-volatile storage, program instructions executable by said data server processor to conduct the steps of; generating and transmitting to said connection server a polling signal via a polling port; monitoring said polling port for a reply to said polling signal from said connection server, wherein said reply is generated by said connection server as a result of said communication with said authenticated platform; only in response to receiving a reply to said polling signal, opening a secure random socket connection for use by said data server communication device, said secure random socket connection having a secure random socket connection address randomly selected by said data server processor and hidden from said connection server at least until after said secure random socket connection has been opened by said data server processor; establishing a connection to said connection server via said data server communication device using said secure random socket connection opened by said data server processor; communicating between said data server and said connection server via said secure random socket connection; and closing said secure random socket connection after communication with said connection server has occurred. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A system comprising:
-
an authentication server; a hardware platform in communication with said authentication server, said platform comprising; a platform processor physically associated, and in communication, with memory, wherein said platform processor is operative to run a platform operating system; and a data storage physically separate from said memory and readable by said platform processor, wherein said data storage is operative to store, in non-volatile storage, a vault which secures data and an executable wrap which secures an executable controller and secures an executable sensor, wherein said wrap includes instructions executable by said platform processor to (a) contact said authentication server to prompt said authentication server to transmit an executable authentication driver to said platform, (b) install said authentication driver into said memory and authenticate said platform using said authentication driver, and (c) only when said platform is authenticated using said authentication driver, install said executable sensor to said memory, wherein said authentication driver in said memory cooperates with said executable controller in said data storage to automatically and continuously permit or deny access by said platform processor to only permit said platform processor to access said secure data protected by said vault when both said authentication driver in said memory and said executable controller in said data storage are accessible and to otherwise deny access, wherein said platform processor can execute only said authentication driver and is prevented by said wrap from executing said executable controller directly, and wherein said executable sensor is operative to monitor at least one of said platform and said data storage for anomalies and, upon detecting an anomaly, deny access to said secure data secured by said vault by said executable sensor deleting said authentication driver from said memory upon detecting an anomaly thereby rendering said secure data inaccessible to said platform processor; a connection server in communication with said platform having a connection server processor operative to execute program instructions to conduct the steps of; receiving a connection request from said platform; authenticating said platform; opening a connection server port identified by a connection server port address; reconnecting to said authenticated platform via said connection server port at said connection server port address; and communicating between said connection server and said authenticated platform via said connection server port; a data server in communication with said connection server, said data server comprising; a data server processor; a data server communication device controlled by said data server processor and operative for selective communication with said connection server via ports assigned by said data server processor; and a data server data storage readable by said data server processor, wherein said data server data storage is operative to store, in non-volatile storage, program instructions executable by said data server processor to conduct the steps of; generating and transmitting to said connection server a polling signal via a polling port; monitoring said polling port for a reply to said polling signal from said connection server, wherein said reply is generated by said connection server as a result of said communication with said authenticated platform; only in response to receiving a reply to said polling signal, opening a secure random socket connection for use by said data server communication device, said secure random socket connection having a secure random socket connection address randomly selected by said data server processor and hidden from said connection server at least until after said secure random socket connection has been opened by said data server processor; establishing a connection to said connection server via said data server communication device using said secure random socket connection opened by said data server processor; communicating between said data server and said connection server via said secure random socket connection; and selectively closing said secure random socket connection after communication with said connection server has occurred. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
Specification