DATA SECURITY FOR DIGITAL DATA STORAGE
First Claim
Patent Images
1. A method of storing data comprising:
- generating an encryption key on a client computer, wherein the encryption key is uniquely associated at least in part with a user of the client computer;
encrypting the data on the client computer to generate encrypted data;
copying the encrypted data to the remote network server;
storing a file attribute in association with the encrypted data that designates the data as encrypted,storing an indication of an owner of the encrypted data;
wherein when a request is received from a requestor for encrypted data and the requestor is the owner of the encrypted data, automatically forwarding the encrypted data to the requestor; and
wherein when a request is received from the requestor for non-encrypted data, automatically encrypting the non-encrypted data with the encryption key associated with the requestor and automatically forwarding the encrypted data to the requestor.
7 Assignments
0 Petitions
Accused Products
Abstract
A computing system includes data encryption in the data path between a data source and data storage devices. The data storage devices may be local or they may be network resident. The data encryption may utilize a key which is derived at least in part from an identification code stored in a non-volatile memory. The key may also be derived at least in part from user input to the computer. In a LAN embodiment, public encryption keys may be automatically transferred to a network server for file encryption prior to file transfer to a client system.
114 Citations
18 Claims
-
1. A method of storing data comprising:
-
generating an encryption key on a client computer, wherein the encryption key is uniquely associated at least in part with a user of the client computer; encrypting the data on the client computer to generate encrypted data; copying the encrypted data to the remote network server; storing a file attribute in association with the encrypted data that designates the data as encrypted, storing an indication of an owner of the encrypted data; wherein when a request is received from a requestor for encrypted data and the requestor is the owner of the encrypted data, automatically forwarding the encrypted data to the requestor; and wherein when a request is received from the requestor for non-encrypted data, automatically encrypting the non-encrypted data with the encryption key associated with the requestor and automatically forwarding the encrypted data to the requestor. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer storage system comprising:
-
at least one data storage device associated with a network server; encrypted data that has been encrypted by a first client computer with an encryption key wherein the encryption key is uniquely associated at least in part with a user of the first client computer, wherein the encrypted data and the encryption key are stored on the data storage device associated with the network server, and wherein the encrypted data as a file attribute associated therewith that identifies an owner of the encrypted data; wherein when a request is received from a requestor for the encrypted data and the requestor is the owner of the encrypted data, the network server is configured to automatically send the encrypted data to the requestor; and wherein when a request is received from the requestor for non-encrypted data, the network server is configured to automatically encrypt the non-encrypted data with an encryption key associated with the requester and automatically send the encrypted data to the requestor. - View Dependent Claims (11, 12, 13, 14, 15, 18)
-
- 16. The computer storage system of claim 16, wherein the network server obtains the public key from the client computer.
Specification