Patents by Inventor Jeremy Horwitz
Jeremy Horwitz has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11695559Abstract: A multi-tenant computer system implements a platform for providing data protection scopes to shared infrastructure services according to a nested tenant model that permits a hierarchy having a plurality of levels. The multi-tenant computer system provisions data protection scopes for cloud products, service products, cloud product tenants, service products operating in the context of cloud products, service products operating in the context of cloud product tenants, and combinations of the foregoing.Type: GrantFiled: September 30, 2019Date of Patent: July 4, 2023Assignee: Salesforce, Inc.Inventors: Benjamin Busjaeger, Koson Thambundit, Jeremy Horwitz, Michael Sgroi, Jeffrey M. Bergan, Benjamin James Fry, Brian Robert McNamara
-
Publication number: 20230060046Abstract: Systems, methods, and computer-readable media for temporary reservation schemes, are provided. In embodiments, temporary reservations are inserted into non-relational datastore, and update records indicating changes to the non-relational datastore are streamed to processing nodes. The processing nodes store the update records in local expiration windows. The expiration windows are periodically polled for expired temporary reservations, which are then removed from the non-relational datastore. Other embodiments may be described and/or claimed.Type: ApplicationFiled: October 27, 2022Publication date: February 23, 2023Applicant: Salesforce, Inc.Inventors: Benjamin Busjaeger, Michael Sgroi, Jeremy Horwitz
-
Patent number: 11526539Abstract: Systems, methods, and computer-readable media for temporary reservation schemes, are provided. In embodiments, temporary reservations are inserted into non-relational datastore, and update records indicating changes to the non-relational datastore are streamed to processing nodes. The processing nodes store the update records in local expiration windows. The expiration windows are periodically polled for expired temporary reservations, which are then removed from the non-relational datastore. Other embodiments may be described and/or claimed.Type: GrantFiled: January 31, 2019Date of Patent: December 13, 2022Assignee: SALESFORCE, INC.Inventors: Benjamin Busjaeger, Michael Sgroi, Jeremy Horwitz
-
Publication number: 20210099301Abstract: A multi-tenant computer system implements a platform for providing data protection scopes to shared infrastructure services according to a nested tenant model that permits a hierarchy having a plurality of levels. The multi-tenant computer system provisions data protection scopes for cloud products, service products, cloud product tenants, service products operating in the context of cloud products, service products operating in the context of cloud product tenants, and combinations of the foregoing.Type: ApplicationFiled: September 30, 2019Publication date: April 1, 2021Inventors: Benjamin Busjaeger, Koson Thambundit, Jeremy Horwitz, Michael Sgroi, Jeffrey M. Bergan, Benjamin James Fry, Brian Robert McNamara
-
Patent number: 10929555Abstract: Some embodiments of the present invention include an apparatus for securing data and include a processor, and one or more stored sequences of instructions which, when executed by the processor, cause the processor to set a data download threshold, encrypt data to be downloaded by a user based on detecting size of the data violating the download threshold such that the user receives encrypted downloaded data, and manage a decryption key used to decrypt the encrypted downloaded data. The decryption key may be deconstructed into “N” key fragments and may be reconstructed using “K” key fragments where “N” is equal to “2K?1”.Type: GrantFiled: June 17, 2019Date of Patent: February 23, 2021Assignee: salesforce.com, inc.Inventors: Prasad Peddada, Jeremy Horwitz
-
Publication number: 20200250210Abstract: Systems, methods, and computer-readable media for temporary reservation schemes, are provided. In embodiments, temporary reservations are inserted into non-relational datastore, and update records indicating changes to the non-relational datastore are streamed to processing nodes. The processing nodes store the update records in local expiration windows. The expiration windows are periodically polled for expired temporary reservations, which are then removed from the non-relational datastore. Other embodiments may be described and/or claimed.Type: ApplicationFiled: January 31, 2019Publication date: August 6, 2020Applicant: salesforce.com, inc.Inventors: Benjamin BUSJAEGER, Michael Sgroi, Jeremy Horwitz
-
Patent number: 10541811Abstract: Embodiments include an apparatus for securing customer data and include a processor, and one or more stored sequences of instructions which, when executed, cause the processor to store an encrypted first key fragment in a first storage area, store an encrypted second key fragment in a separate second storage area, wherein access to the first storage area and to the second storage area is mutually exclusive. The instructions further cause the processor to decrypt the encrypted first key fragment and the encrypted second key fragment using a key set and keys associated with a hardware security module based on receiving a request to derive a master key. The master key is derived using the decrypted first key fragment and the decrypted second key fragment and stored in an in-memory cache. The master key is used to encrypt or to decrypt encrypted customer data.Type: GrantFiled: March 2, 2015Date of Patent: January 21, 2020Assignee: salesforce.com, inc.Inventors: Prasad Peddada, Jeremy Horwitz, Taher Elgamal, Matthew Steele, Ryan Guest
-
Publication number: 20190362090Abstract: Some embodiments of the present invention include an apparatus for securing data and include a processor, and one or more stored sequences of instructions which, when executed by the processor, cause the processor to set a data download threshold, encrypt data to be downloaded by a user based on detecting size of the data violating the download threshold such that the user receives encrypted downloaded data, and manage a decryption key used to decrypt the encrypted downloaded data. The decryption key may be deconstructed into “N” key fragments and may be reconstructed using “K” key fragments where “N” is equal to “2K?1”.Type: ApplicationFiled: June 17, 2019Publication date: November 28, 2019Inventors: Prasad PEDDADA, Jeremy HORWITZ
-
Patent number: 10325107Abstract: Some embodiments of the present invention include an apparatus for securing data and include a processor, and one or more stored sequences of instructions which, when executed by the processor, cause the processor to set a data download threshold, encrypt data to be downloaded by a user based on detecting size of the data violating the download threshold such that the user receives encrypted downloaded data, and manage a decryption key used to decrypt the encrypted downloaded data. The decryption key may be deconstructed into “N” key fragments and may be reconstructed using “K” key fragments where “N” is equal to “2K?1”.Type: GrantFiled: September 23, 2015Date of Patent: June 18, 2019Assignee: salesforce.com, inc.Inventors: Prasad Peddada, Jeremy Horwitz
-
Publication number: 20170083718Abstract: Some embodiments of the present invention include an apparatus for securing data and include a processor, and one or more stored sequences of instructions which, when executed by the processor, cause the processor to set a data download threshold, encrypt data to be downloaded by a user based on detecting size of the data violating the download threshold such that the user receives encrypted downloaded data, and manage a decryption key used to decrypt the encrypted downloaded data. The decryption key may be deconstructed into “N” key fragments and may be reconstructed using “K” key fragments where “N” is equal to “2K?1”.Type: ApplicationFiled: September 23, 2015Publication date: March 23, 2017Inventors: Prasad PEDDADA, Jeremy HORWITZ
-
Publication number: 20160261408Abstract: Embodiments include an apparatus for securing customer data and include a processor, and one or more stored sequences of instructions which, when executed, cause the processor to store an encrypted first key fragment in a first storage area, store an encrypted second key fragment in a separate second storage area, wherein access to the first storage area and to the second storage area is mutually exclusive. The instructions further cause the processor to decrypt the encrypted first key fragment and the encrypted second key fragment using a key set and keys associated with a hardware security module based on receiving a request to derive a master key. The master key is derived using the decrypted first key fragment and the decrypted second key fragment and stored in an in-memory cache. The master key is used to encrypt or to decrypt encrypted customer data.Type: ApplicationFiled: March 2, 2015Publication date: September 8, 2016Inventors: Prasad Peddada, Jeremy Horwitz, Taher Elgamal, Matthew Steele, Ryan Guest