Patents by Inventor Swaroop Shere
Swaroop Shere has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11748320Abstract: Disclosed herein are system, method, and computer program product embodiments for detecting duplicates with exact and fuzzy matching on encrypted match indexes using an encryption key in a cloud computing platform. An embodiment operates by determining a match rule index value upon reception of a new record. The embodiment encrypts the match index rule value using the customer's encryption key and a deterministic encryption method and stores the encrypted match rule index value. Duplicate detection may be later performed by using the same deterministic encryption method to determine a cypher text for a candidate entry and comparing the ciphertext to the stored encrypted match indexes.Type: GrantFiled: February 25, 2021Date of Patent: September 5, 2023Assignee: Salesforce, Inc.Inventors: Alexandre Hersans, Swaroop Shere, Chenghung Ker, Parth Vijay Vaishnav, Assaf Ben-Gur, Victor Weilin Liu, Daniel McGarry, Samatha Sanikommu
-
Patent number: 11700112Abstract: Methods, systems, and devices for distributed caching of encrypted encryption keys are described. Some multi-tenant database systems may support encryption of data records. To efficiently handle multiple encryption keys across multiple application servers, the database system may store the encryption keys in a distributed cache accessible by each of the application servers. To securely cache the encryption keys, the database system may encrypt (e.g., wrap) each data encryption key (DEK) using a second encryption key (e.g., a key encryption key (KEK)). The database system may store the DEKs and KEKs in separate caches to further protect the encryption keys. For example, while the encrypted DEKs may be stored in the distributed cache, the KEKs may be stored locally on application servers. The database system may further support “bring your own key” (BYOK) functionality, where a user may upload a tenant secret or tenant-specific encryption key to the database.Type: GrantFiled: April 30, 2020Date of Patent: July 11, 2023Assignee: Salesforce, Inc.Inventors: Alexandre Hersans, John Bracken, Assaf Ben Gur, William Charles Mortimore, Jr., Swaroop Shere
-
Patent number: 11354285Abstract: Provided herein are system, methods and computer program products for identifying duplicate records stored in a database system, comprising: generating a plurality of encrypted match indexes for each of a plurality of records stored in the database system, each of the plurality of encrypted match indexes encrypts a value of each encryption enabled field of a respective one of the plurality of records defined by at least one match rule, creating a cluster of records comprising at least one set containing at least two records of the plurality of records, the at least two records having respective encrypted match indexes corresponding to the at least one match rule, causing identification of duplicate records in the at least one set according to detection of records of the at least one set having respective match indexes matching the at least one match rule, and outputting an indication of the identified duplicate records.Type: GrantFiled: April 15, 2020Date of Patent: June 7, 2022Assignee: salesforee.com, inc.Inventors: Chenghung Ker, Danil Dvinov, Parth Vijay Vaishnav, Swaroop Shere, Alexandre Hersans
-
Publication number: 20210326311Abstract: Provided herein are system, methods and computer program products for identifying duplicate records stored in a database system, comprising: generating a plurality of encrypted match indexes for each of a plurality of records stored in the database system, each of the plurality of encrypted match indexes encrypts a value of each encryption enabled field of a respective one of the plurality of records defined by at least one match rule, creating a cluster of records comprising at least one set containing at least two records of the plurality of records, the at least two records having respective encrypted match indexes corresponding to the at least one match rule, causing identification of duplicate records in the at least one set according to detection of records of the at least one set having respective match indexes matching the at least one match rule, and outputting an indication of the identified duplicate records.Type: ApplicationFiled: April 15, 2020Publication date: October 21, 2021Applicant: salesforce.com, inc.Inventors: Chenghung KER, Danil DVINOV, Parth Vijay VAISHNAV, Swaroop SHERE, Alexandre HERSANS
-
Publication number: 20210182255Abstract: Disclosed herein are system, method, and computer program product embodiments for detecting duplicates with exact and fuzzy matching on encrypted match indexes using an encryption key in a cloud computing platform. An embodiment operates by determining a match rule index value upon reception of a new record. The embodiment encrypts the match index rule value using the customer's encryption key and a deterministic encryption method and stores the encrypted match rule index value. Duplicate detection may be later performed by using the same deterministic encryption method to determine a cypher text for a candidate entry and comparing the ciphertext to the stored encrypted match indexes.Type: ApplicationFiled: February 25, 2021Publication date: June 17, 2021Applicant: salesforce.com, inc.Inventors: Alexandre HERSANS, Swaroop SHERE, Chenghung KER, Parth Vijay VAISHNAV, Assaf BEN-GUR, Victor Weilin LIU, Daniel MCGARRY, Samatha SANIKOMMU
-
Patent number: 10942906Abstract: Disclosed herein are system, method, and computer program product embodiments for detecting duplicates with exact and fuzzy matching on encrypted match indexes using an encryption key in a cloud computing platform. An embodiment operates by determining a match rule index value upon reception of a new record. The embodiment encrypts the match index rule value using the customer's encryption key and a deterministic encryption method and stores the encrypted match rule index value. Duplicate detection may be later performed by using the same deterministic encryption method to determine a cypher text for a candidate entry and comparing the ciphertext to the stored encrypted match indexes.Type: GrantFiled: July 3, 2018Date of Patent: March 9, 2021Assignee: salesforce.com, inc.Inventors: Alexandre Hersans, Swaroop Shere, Chenghung Ker, Parth Vijay Vaishnav, Assaf Ben-Gur, Victor Weilin Liu, Daniel McGarry, Samatha Sanikommu
-
Publication number: 20200322139Abstract: Methods, systems, and devices for distributed caching of encrypted encryption keys are described. Some multi-tenant database systems may support encryption of data records. To efficiently handle multiple encryption keys across multiple application servers, the database system may store the encryption keys in a distributed cache accessible by each of the application servers. To securely cache the encryption keys, the database system may encrypt (e.g., wrap) each data encryption key (DEK) using a second encryption key (e.g., a key encryption key (KEK)). The database system may store the DEKs and KEKs in separate caches to further protect the encryption keys. For example, while the encrypted DEKs may be stored in the distributed cache, the KEKs may be stored locally on application servers. The database system may further support “bring your own key” (BYOK) functionality, where a user may upload a tenant secret or tenant-specific encryption key to the database.Type: ApplicationFiled: April 30, 2020Publication date: October 8, 2020Inventors: Alexandre Hersans, John Bracken, Assaf Ben Gur, William Charles Mortimore, JR., Swaroop Shere
-
Patent number: 10680804Abstract: Methods, systems, and devices for distributed caching of encrypted encryption keys are described. Some multi-tenant database systems may support encryption of data records. To efficiently handle multiple encryption keys across multiple application servers, the database system may store the encryption keys in a distributed cache accessible by each of the application servers. To securely cache the encryption keys, the database system may encrypt (e.g., wrap) each data encryption key (DEK) using a second encryption key (e.g., a key encryption key (KEK)). The database system may store the DEKs and KEKs in separate caches to further protect the encryption keys. For example, while the encrypted DEKs may be stored in the distributed cache, the KEKs may be stored locally on application servers. The database system may further support “bring your own key” (BYOK) functionality, where a user may upload a tenant secret or tenant-specific encryption key to the database.Type: GrantFiled: September 27, 2017Date of Patent: June 9, 2020Assignee: salesforce.com, inc.Inventors: Alexandre Hersans, John Bracken, Assaf Ben Gur, William Charles Mortimore, Jr., Swaroop Shere
-
Publication number: 20190370363Abstract: Disclosed herein are system, method, and computer program product embodiments for detecting duplicates with exact and fuzzy matching on encrypted match indexes using an encryption key in a cloud computing platform. An embodiment operates by determining a match rule index value upon reception of a new record. The embodiment encrypts the match index rule value using the customer's encryption key and a deterministic encryption method and stores the encrypted match rule index value. Duplicate detection may be later performed by using the same deterministic encryption method to determine a cypher text for a candidate entry and comparing the ciphertext to the stored encrypted match indexes.Type: ApplicationFiled: July 3, 2018Publication date: December 5, 2019Inventors: Alexandre HERSANS, Swaroop SHERE, Chenghung KER, Parth Vijay VAISHNAV, Assaf BEN-GUR, Victor LIU, Daniel MCGARRY, Samatha SANIKOMMU
-
Publication number: 20190097791Abstract: Methods, systems, and devices for distributed caching of encrypted encryption keys are described. Some multi-tenant database systems may support encryption of data records. To efficiently handle multiple encryption keys across multiple application servers, the database system may store the encryption keys in a distributed cache accessible by each of the application servers. To securely cache the encryption keys, the database system may encrypt (e.g., wrap) each data encryption key (DEK) using a second encryption key (e.g., a key encryption key (KEK)). The database system may store the DEKs and KEKs in separate caches to further protect the encryption keys. For example, while the encrypted DEKs may be stored in the distributed cache, the KEKs may be stored locally on application servers. The database system may further support “bring your own key” (BYOK) functionality, where a user may upload a tenant secret or tenant-specific encryption key to the database.Type: ApplicationFiled: September 27, 2017Publication date: March 28, 2019Inventors: Alexandre Hersans, John Bracken, Assaf Ben Gur, Charles Mortimore, Swaroop Shere
-
Publication number: 20160102879Abstract: Examples of database systems, apparatus, methods and computer program products are disclosed for causing automated system events to be performed in response to environmental sensing. In some implementations, a database system can receive environmental data and location data from a computing device capable of reading environmental data using an environmental sensor. The sensor is situated at a geographic location identified by the location data. An occurrence of an environmental condition can be determined using the environmental data. A database record in a database can be created or updated to identify the environmental data and/or the environmental condition. A system event to perform can then be determined based on the creating or updating of the database record.Type: ApplicationFiled: April 13, 2015Publication date: April 14, 2016Inventors: Ryan Guest, Swaroop Shere, Reid Scott Carlberg