Asserting integrity with a verifiable codec
First Claim
1. A method for execution by a computing device of a dispersed storage network (DSN), the method comprises:
- retrieving, by the computing device, a decode threshold number of encoded data slices of a set of encoded data slices from DSN memory, wherein a processed data segment was dispersed storage error encoded to produce the set of encoded data slices and stored in the DSN memory, wherein a data segment of a data object is processed in an order by a plurality of codecs to produce the processed data segment, and wherein the decode threshold number is a minimum number of encoded data slices of the set of encoded data slices needed in order to reconstruct the data segment;
decoding, by the computing device, the decode threshold number of encoded data slices to recover the processed data segment;
determining, by the computing device, reverse order of the plurality of codecs based on the order;
when a first codec of the reverse order of the plurality of codecs is a verifiable codec;
separating, by the computing device, the processed data segment into an integrity value and a partially processed data segment;
calculating, by the computing device, a new integrity value from the partially processed data segment;
determining, by the computing device, whether the new integrity value substantially matches the integrity value; and
when the new integrity value substantially matches the integrity value, performing, by the computing device, another codec of the reverse order of the plurality of codecs on the partially processed data segment to recover the data segment.
4 Assignments
0 Petitions
Accused Products
Abstract
A method includes retrieving a decode threshold number of encoded data slices, wherein codecs process, in an order, a data segment and the processed data segment is encoded into a set of encoded data slices. The method further includes decoding the decode threshold number of encoded data slices to recover the processed data segment. In a reversed order to the order, applying a first codec on the processed data segment to produce a first partially processed recovered data segment. When the first codec is a verifiable codec, the method further includes separating the first partially processed recovered data segment into an initial integrity value and a processed data segment. The method further includes calculating a new integrity value from the processed data segment. When the new integrity value substantially matches the initial integrity value, the method further includes indicating that the set of encoded data slices is authentic.
84 Citations
14 Claims
-
1. A method for execution by a computing device of a dispersed storage network (DSN), the method comprises:
-
retrieving, by the computing device, a decode threshold number of encoded data slices of a set of encoded data slices from DSN memory, wherein a processed data segment was dispersed storage error encoded to produce the set of encoded data slices and stored in the DSN memory, wherein a data segment of a data object is processed in an order by a plurality of codecs to produce the processed data segment, and wherein the decode threshold number is a minimum number of encoded data slices of the set of encoded data slices needed in order to reconstruct the data segment; decoding, by the computing device, the decode threshold number of encoded data slices to recover the processed data segment; determining, by the computing device, reverse order of the plurality of codecs based on the order; when a first codec of the reverse order of the plurality of codecs is a verifiable codec; separating, by the computing device, the processed data segment into an integrity value and a partially processed data segment; calculating, by the computing device, a new integrity value from the partially processed data segment; determining, by the computing device, whether the new integrity value substantially matches the integrity value; and when the new integrity value substantially matches the integrity value, performing, by the computing device, another codec of the reverse order of the plurality of codecs on the partially processed data segment to recover the data segment. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computing device comprises:
-
an interface; memory; and a processing module operably coupled to the interface and the memory, wherein the processing module is operable to; receive, via the interface, a decode threshold number of encoded data slices of a set of encoded data slices from DSN memory, wherein a processed data segment was dispersed storage error encoded to produce the set of encoded data slices and stored in the DSN memory, wherein a data segment of a data object is processed in an order by a plurality of codecs to produce the processed data segment, and wherein the decode threshold number is a minimum number of encoded data slices of the set of encoded data slices needed in order to reconstruct the data segment; decode the decode threshold number of encoded data slices to recover the processed data segment; and determine reverse order of the plurality of codecs based on the order; when a first codec of the reverse order of the plurality of codecs is a verifiable codec; separate the processed data segment into an integrity value and a partially processed data segment; calculate a new integrity value from the partially processed data segment; determine whether the new integrity value substantially matches the integrity value; and when the new integrity value substantially matches the integrity value, perform, another codec of the reverse order of the plurality of codecs on the partially processed data segment to recover the data segment. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
Specification