Automated managing of a data center installation
US-2019340552-A1 · Nov 7, 2019 · US
Protecting data against malware attacks using cyber vault and automated airgap control
US12406058B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-12406058-B2 |
| Application number | US-202318163066-A |
| Country | US |
| Kind code | B2 |
| Filing date | Feb 1, 2023 |
| Priority date | Feb 1, 2023 |
| Publication date | Sep 2, 2025 |
| Grant date | Sep 2, 2025 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Improving data recovery and restoration times by clamping down security after malware detection, and protect a data center from a cyber recovery vault. Embodiments provide a cyber recovery vault configured to store data backed up for a production site for long-term retention and disaster recovery. The vault is coupled to the data center comprising a production site through an automated air gap controlled by the vault. Control signals transmitted by the vault trigger the air gap to close the coupling between the vault and data center upon detection of a malware attack, and the data center is configured to listen for the control signals and implement heightened security measures to protect its data in response to the control signal.
First claim
Opening claim text (preview).
What is claimed is: 1. A computer-implemented method, implemented using at least one hardware processor, of preventing malware attacks in a data protection system, comprising: providing an air gap between a data center and a vault, the data center having a production site generating and storing datasets to be backed up, and the vault having protection storage for isolated storage of a backup dataset; analyzing, in an analyzer component of the vault, the backup dataset to detect bad data; closing, upon detection of bad data, the air gap by the vault; issuing an alert signal from the vault to the data center to implement heightened security measures; implementing, in the data center, heightened security measures to protect data in the production site from further damage or destruction; and wherein the heightened security measures are organized into a series of hierarchical security levels (HSL) as classified into a classification ranging from a highest level of security imposing most stringent I/O restrictions to a lowest level of security imposing least stringent I/O restrictions. 2. The method of claim 1 further comprising determining, in the vault, an initial HSL level for transmission to the data center in the alert signal. 3. The method of claim 2 wherein the data center monitors its own internal condition and maintains, elevates, or lowers the initial HSL level from the vault to a different HSL level based on one of: the monitoring, or a subsequent HLS level signal from the vault. 4. The method of claim 2 wherein the heightened security measures absolutely or conditionally suspend certain input/output (I/O) operations in the data center for an indefinite or temporary period of time. 5. The method of claim 4 further comprising: implementing a first HSL level of security measures based on the classification; and determining whether or not the first HSL level of security measures is satisfied, and if so, implementing a next lower HSL level of security measures in the hierarchy. 6. The method of claim 3 further comprising: providing an HSL sender component in the vault transmitting the alert signal; providing an HSL receiver component in the data center for receiving the transmitted alert signal; and providing a health monitor component coupled to the HSL receiver to monitor operations and the internal conditions in the data center. 7. The method of claim 6 wherein the HSL receiver and the health monitor component are always on and become active only upon receiving the control signal from the HSL sender. 8. The method of claim 1 further comprising transmitting a user alert signal to a user upon detection of malware by the vault.
Assignees
Inventors
Classifications
- G06F21/566Primary
Dynamic detection, i.e. detection performed at run-time, e.g. emulation, suspicious activities · CPC title
Test or assess a computer or a system · CPC title
- G06F21/554Primary
involving event detection and direct action · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US12406058B2 cover?
- Improving data recovery and restoration times by clamping down security after malware detection, and protect a data center from a cyber recovery vault. Embodiments provide a cyber recovery vault configured to store data backed up for a production site for long-term retention and disaster recovery. The vault is coupled to the data center comprising a production site through an automated air gap …
- Who is the assignee on this patent?
- Dell Products Lp
- What technology area does this patent fall under?
- Primary CPC classification G06F21/566. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Sep 02 2025 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).