Secure data parser method and system
DCFirst Claim
Patent Images
1. A method for securely storing a data set, the method comprising:
- receiving an external key from an external storage system,generating a plurality of data chunks based on the data set, such that the data set can be reconstructed using at least a minimum number of the plurality of data chunks, wherein generating the data chunks comprises;
distributing the data set into a plurality of shares, wherein each of the shares comprises less than all of the data set,accessing a plurality of distinct encryption keys,encrypting each of the shares with a respective one of the plurality of distinct encryption keys,performing an encryption operation based on the external key to further secure the plurality of data chunks; and
storing with the plurality of data chunks data indicative of at least one of the distinct encryption keys on a plurality of different storage devices.
3 Assignments
Litigations
1 Petition
Accused Products
Abstract
A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to protect data in motion by splitting original data into portions of data, that may be communicated using multiple communications paths.
136 Citations
20 Claims
-
1. A method for securely storing a data set, the method comprising:
-
receiving an external key from an external storage system, generating a plurality of data chunks based on the data set, such that the data set can be reconstructed using at least a minimum number of the plurality of data chunks, wherein generating the data chunks comprises; distributing the data set into a plurality of shares, wherein each of the shares comprises less than all of the data set, accessing a plurality of distinct encryption keys, encrypting each of the shares with a respective one of the plurality of distinct encryption keys, performing an encryption operation based on the external key to further secure the plurality of data chunks; and storing with the plurality of data chunks data indicative of at least one of the distinct encryption keys on a plurality of different storage devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer system for securing a data set, the system comprising:
at least one hardware processor, configured to; receive an external key from an external storage system, generate a plurality of data chunks based on the data set, such that the data set can be reconstructed using at least a minimum number of the plurality of data chunks, wherein generating the data chunks comprises; distributing the data set into a plurality of shares, wherein each of the shares comprises less than all of the data set, accessing a plurality of distinct encryption keys, and encrypting each of the shares with a respective one of the plurality of distinct encryption keys, performing an encryption operation based on the external key to further secure the plurality of data chunks; and store with the plurality of data chunks data indicative of at least one of the distinct encryption keys on a plurality of different storage devices. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
Specification