Secure peer-to-peer object storage system
First Claim
Patent Images
1. A distributed data storage system comprising:
- a plurality of peer nodes coupled by a communications network to form a peer-to-peer computing network; and
a plurality of storage areas that stores data objects, each of the plurality of storage areas being coupled to a corresponding one of the plurality of peer nodes, wherein each of the plurality of peer nodes includes;
one or more metadata indexes that store metadata associated with the data objects, a query processing module that processes queries from the other peer nodes and identifies one or more of the data objects based on metadata constraints specified within the queries, and an access control module that controls access to the data objects.
1 Assignment
0 Petitions
Accused Products
Abstract
A peer-to-peer (P2P) networking system is disclosed that provides a large, persistent object repository with the ability to easily scale to significant size. Data security is provided using a distributed object data access mechanism to grant access to data objects to authorized users. Data objects stored within the object repository are provided a plurality of security options including plain text data, objects, encrypted data objects, and secure, secret sharing data objects. A data object query processing component permits users to locate requested information within the P2P networking system.
161 Citations
32 Claims
-
1. A distributed data storage system comprising:
-
a plurality of peer nodes coupled by a communications network to form a peer-to-peer computing network; and
a plurality of storage areas that stores data objects, each of the plurality of storage areas being coupled to a corresponding one of the plurality of peer nodes, wherein each of the plurality of peer nodes includes;
one or more metadata indexes that store metadata associated with the data objects, a query processing module that processes queries from the other peer nodes and identifies one or more of the data objects based on metadata constraints specified within the queries, and an access control module that controls access to the data objects. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system comprising:
-
a communications network;
a plurality of peer nodes coupled by the communications network to form a peer-to-peer network; and
a plurality of storage areas, each of the plurality of storage areas being coupled to a corresponding one of the plurality of peer nodes;
wherein each of the peer nodes includes an encryption module, and wherein a first one of the peer nodes generates a data object and invokes the encryption module to an encrypted data object prior to transmitting the encrypted data object to a second one of the peer nodes for storage in one of the storage areas. - View Dependent Claims (12, 13, 14, 15, 16, 17)
-
-
18. A system comprising:
-
a plurality of peer nodes forming a peer-to-peer network, wherein each peer node includes a storage area for storing encrypted data objects, and wherein for each encrypted data object the peer nodes store a plurality of bit sequences as data objects within the peer-to-peer network, and retrieve the bit sequences for reconstructing encryption keys associated with the encrypted data objects. - View Dependent Claims (19, 20, 21)
-
-
22. A method comprising:
-
receiving a query from a first peer node of a peer-to-peer (P2P) network requesting identity of a data object associated with a metadata constraint;
determining with a second peer node of the P2P network an object identifier corresponding to the data object associated with the metadata constraint; and
retrieving with a third peer node the data object corresponding the determined object identifier. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
-
Specification