Abstract: Mechanisms for providing an encrypted file system are provided. The mechanisms use a combination of encryption methodologies so as to reduce the amount of decryption and re-encryption that is necessary to a file in the Encrypted File System in the event that the file needs to be modified. The encryption methodologies are interleaved, or alternated, with regard to each block of plaintext. In one illustrative embodiment, Plaintext Block Chaining (PBC) and Cipher Block Chaining (CBC) encryption methodologies are alternated for encrypting a sequence of blocks of data. The encryption of a block of plaintext is dependent upon the plaintext or a cipher generated for the plaintext of a previous block of data in the sequence of blocks of data so that the encryption is more secure than known Electronic Code Book encryption methodologies.

Abstract: An encryption apparatus and method for providing an encrypted file system are provided. The encryption apparatus and method of the illustrative embodiments uses a combination of encryption methodologies so as to reduce the amount of decryption and re-encryption that is necessary to a file in the Encrypted File System in the event that the file needs to be modified. The encryption methodologies are interleaved, or alternated, with regard to each block of plaintext. In one illustrative embodiment, Plaintext Block Chaining (PBC) and Cipher Block Chaining (CBC) encryption methodologies are alternated for encrypting a sequence of blocks of data. The encryption of a block of plaintext is dependent upon the plaintext or a cipher generated for the plaintext of a previous block of data in the sequence of blocks of data so that the encryption is more secure than known Electronic Code Book encryption methodologies.

Abstract: An encryption apparatus and method for providing an encrypted file system are provided. The encryption apparatus and method of the illustrative embodiments uses a combination of encryption methodologies so as to reduce the amount of decryption and re-encryption that is necessary to a file in the Encrypted File System in the event that the file needs to be modified. The encryption methodologies are interleaved, or alternated, with regard to each block of plaintext. In one illustrative embodiment, Plaintext Block Chaining (PBC) and Cipher Block Chaining (CBC) encryption methodologies are alternated for encrypting a sequence of blocks of data. The encryption of a block of plaintext is dependent upon the plaintext or a cipher generated for the plaintext of a previous block of data in the sequence of blocks of data so that the encryption is more secure than known Electronic Code Book encryption methodologies.

Abstract: An encryption apparatus and method for providing an encrypted file system are provided. The encryption apparatus and method of the illustrative embodiments uses a combination of encryption methodologies so as to reduce the amount of decryption and re-encryption that is necessary to a file in the Encrypted File System in the event that the file needs to be modified. The encryption methodologies are interleaved, or alternated, with regard to each block of plaintext. In one illustrative embodiment, Plaintext Block Chaining (PBC) and Cipher Block Chaining (CBC) encryption methodologies are alternated for encrypting a sequence of blocks of data. The encryption of a block of plaintext is dependent upon the plaintext or a cipher generated for the plaintext of a previous block of data in the sequence of blocks of data so that the encryption is more secure than known Electronic Code Book encryption methodologies.

Abstract: Methods, systems, and products are disclosed for authorizing computer services, the method including receiving in an intermediary node a request for computer services to be performed by a downstream node, the request having passed through at least two upstream nodes prior to receipt by the intermediary node; determining whether the credentials of each of the at least two upstream nodes are valid; passing the request to a downstream node if the credentials of each of the at least two upstream nodes are valid; and deprecating the request if the credentials of at least one of the at least two upstream nodes are invalid.

Abstract: Methods, systems, and products are disclosed for sending secured data, the method including encrypting a first portion of a request for computer services to be performed by a downstream node for decryption by a first node, encrypting a second portion of the request for computer services to be performed by a downstream node for decryption by a second node, and passing the request for computer services to a downstream node.

Abstract: A method, system, and computer program product for managing database records with attributes located in multiple registries are disclosed. A data processing system identifies one or more attributes of a record to be accessed from one or more of a plurality of distributed databases, wherein a first attribute among the one or more attributes resides in an unknown database among the plurality of databases and it is known that a second attribute resides in a particular database among the plurality of databases. The data processing system forms a query, which includes a request for the first attribute and a request for the second attribute, and sends the query to the particular database. The data processing system receives a positive response to the query indicating that the particular database contains the first attribute for the record, and in response to receiving the positive response, the data processing system stores an identifier of the particular database in association with the first attribute.