Application of secret sharing schemes at multiple levels of a dispersed storage network
First Claim
1. A method comprises:
- dispersed storage error encoding, by a computing device of a dispersed storage network (DSN), a data segment of a data file to produce a set of encoded data shares, wherein the dispersed storage error encoding uses a first threshold based secret sharing scheme in accordance with first secret sharing parameters;
selecting, by the computing device, a set of storage units of the DSN for storing the set of encoded data shares;
sending, by the computing device, the set of encoded data shares to the set of storage units;
receiving, by a first storage unit of the set of storage units, a first encoded data share of the set of encoded data shares;
encoding, by the first storage unit, the first encoded data share using a second threshold based secret sharing scheme in accordance with second secret sharing parameters to produce a first set of encoded data sub-shares, wherein the first secret sharing parameters differ from the second secret sharing parameters; and
storing, by the first storage unit, the first set of encoded data sub-shares in a set of memory devices of the first storage unit, wherein a threshold number of encoded data sub-shares of the first set of encoded data sub-shares is decodable to recover the first encoded data share.
4 Assignments
0 Petitions
Accused Products
Abstract
Methods for use in a dispersed storage network (DSN) to encode data using threshold based secret sharing schemes. In one embodiment, a computing device uses a first threshold based secret sharing scheme in accordance with first secret sharing parameters to encode a data segment of a data file to produce a set of encoded data shares. The computing device then sends the set of encoded data shares to a set of storage units, including sending an encoded data share to a first storage unit of the set of storage units. Upon receiving the encoded data share, the first storage unit encodes the encoded data share using a second threshold based secret sharing scheme in accordance with second secret sharing parameters to produce a set of encoded data sub-shares. The first storage unit then stores the set of encoded data sub-shares in a set of memory devices of the storage unit.
84 Citations
20 Claims
-
1. A method comprises:
-
dispersed storage error encoding, by a computing device of a dispersed storage network (DSN), a data segment of a data file to produce a set of encoded data shares, wherein the dispersed storage error encoding uses a first threshold based secret sharing scheme in accordance with first secret sharing parameters; selecting, by the computing device, a set of storage units of the DSN for storing the set of encoded data shares; sending, by the computing device, the set of encoded data shares to the set of storage units; receiving, by a first storage unit of the set of storage units, a first encoded data share of the set of encoded data shares; encoding, by the first storage unit, the first encoded data share using a second threshold based secret sharing scheme in accordance with second secret sharing parameters to produce a first set of encoded data sub-shares, wherein the first secret sharing parameters differ from the second secret sharing parameters; and storing, by the first storage unit, the first set of encoded data sub-shares in a set of memory devices of the first storage unit, wherein a threshold number of encoded data sub-shares of the first set of encoded data sub-shares is decodable to recover the first encoded data share. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer readable storage device comprises:
-
a first storage section that stores operational instructions that, when executed by a computing device of a dispersed storage network (DSN), causes the computing device to; dispersed storage error encode, using a first threshold based secret sharing scheme in accordance with first secret sharing parameters, a data segment of a data file to produce a set of encoded data shares; select a set of storage units of the DSN for storing the set of encoded data shares; and send the set of encoded data shares to the set of storage units; and a second storage section that stores operational instructions that, when executed by a first storage unit of the set of storage units, causes the first storage unit to; receive a first encoded data share of the set of encoded data shares; encode the first encoded data share using a second threshold based secret sharing scheme in accordance with second secret sharing parameters to produce a first set of encoded data sub-shares, wherein the first secret sharing parameters differ from the second secret sharing parameters; and store the first set of encoded data sub-shares in a set of memory devices of the first storage unit, wherein a threshold number of encoded data sub-shares of the first set of encoded data sub-shares is decodable to recover the first encoded data share. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification