Method And Apparatus For Achieving Data Security In A Distributed Cloud Computing Environment
First Claim
1. Apparatus for providing data storage services for a client, in accordance with a cloud computing model wherein a client platform is operably connected to a cloud storage broker and a plurality of remote cloud storage platforms, the apparatus at the cloud storage broker comprising:
- a user interface;
a cloud storage interface;
a memory; and
at least one processor operably coupled to the user interface, cloud storage interface and memory and configured to;
(a) receive a client request for cloud storage services associated with a data item;
(b) choose selected cloud storage platforms of the plurality of remote cloud storage platforms for cloud storage of the data item, wherein each of the selected platforms are to store an allocated portion of the data item;
(c) identify a first rule that defines a manner of dividing the data item into a plurality of portions, the plurality of portions corresponding in number with the plurality of selected cloud storage platforms;
(d) identify a second rule that defines a manner of allocating the respective portions among the selected cloud storage platforms; and
(e) communicate indicia of the first and second rules to the client, thereby enabling the client to divide the data item into portions according to the first rule and to allocate the respective portions among the selected cloud storage platforms according to the second rule.
4 Assignments
0 Petitions
Accused Products
Abstract
A distributed cloud storage system includes a cloud storage broker logically residing between a client platform and a plurality of remote cloud storage platforms. The cloud storage broker mediates execution of a cloud storage process that involves dividing a data item into multiple portions and allocating the portions to multiple selected cloud storage platforms according to first and second rules defining a key known only to the cloud storage broker or to the client. At some later time when it is desired to retrieve the data item, the key is retrieved from storage and the rules are executed in a reverse fashion to retrieve and reassemble the data item.
-
Citations
19 Claims
-
1. Apparatus for providing data storage services for a client, in accordance with a cloud computing model wherein a client platform is operably connected to a cloud storage broker and a plurality of remote cloud storage platforms, the apparatus at the cloud storage broker comprising:
-
a user interface; a cloud storage interface; a memory; and at least one processor operably coupled to the user interface, cloud storage interface and memory and configured to; (a) receive a client request for cloud storage services associated with a data item; (b) choose selected cloud storage platforms of the plurality of remote cloud storage platforms for cloud storage of the data item, wherein each of the selected platforms are to store an allocated portion of the data item; (c) identify a first rule that defines a manner of dividing the data item into a plurality of portions, the plurality of portions corresponding in number with the plurality of selected cloud storage platforms; (d) identify a second rule that defines a manner of allocating the respective portions among the selected cloud storage platforms; and (e) communicate indicia of the first and second rules to the client, thereby enabling the client to divide the data item into portions according to the first rule and to allocate the respective portions among the selected cloud storage platforms according to the second rule. - View Dependent Claims (2, 3)
-
-
4. Apparatus for providing data storage services for a client, in accordance with a cloud computing model wherein a client platform is operably connected to a cloud storage broker and a plurality of remote cloud storage platforms, the apparatus at the cloud storage broker comprising:
-
a user interface; a cloud storage interface; a memory; and at least one processor operably coupled to the user interface, cloud storage interface and memory and configured to; (a) receive a client request for cloud storage services associated with a data item; (b) choose selected cloud storage platforms of the plurality of remote cloud storage platforms for cloud storage of the data item, wherein each of the selected platforms are to store an allocated portion of the data item; (c) identify a first rule that defines a manner of dividing the data item into a plurality of portions, the plurality of portions corresponding in number with the plurality of selected cloud storage platforms; (d) identify a second rule that defines a manner of allocating the respective portions among the selected cloud storage platforms; (e) obtain the data item; and (f) divide the data item into portions according to the first rule and allocate the respective portions among the selected cloud storage platforms according to the second rule. - View Dependent Claims (5, 6)
-
-
7. Apparatus for providing data storage services for a client, in accordance with a cloud computing model wherein a client platform is operably connected to a cloud storage broker and a plurality of remote cloud storage platforms, the apparatus at the client platform comprising:
-
a memory; and at least one processor operably coupled to the memory and configured to; send to the cloud storage broker, a request for cloud storage services associated with a data item; responsive to the request, receive from the cloud storage broker indicia of (a) selected cloud storage platforms of the plurality of remote cloud storage platforms for cloud storage of the data item, wherein each of the selected platforms are to store an allocated portion of the data item;
(b) a first rule that defines a manner of dividing the data item into a plurality of portions, the plurality of portions corresponding in number with the plurality of selected cloud storage platforms; and
(c) a second rule that defines a manner of allocating the respective portions among the selected cloud storage platforms; anddivide the data item into portions according to the first rule and allocate the respective portions among the selected cloud storage platforms according to the second rule. - View Dependent Claims (8)
-
-
9. A method for providing data storage services for a client, in accordance with a cloud computing model wherein a client platform is operably connected to a cloud storage broker and a plurality of remote cloud storage platforms, the method comprising the cloud storage broker:
-
receiving a client request for cloud storage services associated with a data item; choosing selected cloud storage platforms of the plurality of remote cloud storage platforms for cloud storage of the data item, wherein each of the selected platforms are to store an allocated portion of the data item; identifying a first rule that defines a manner of dividing the data item into a plurality of portions, the plurality of portions corresponding in number with the plurality of selected cloud storage platforms; identifying a second rule that defines a manner of allocating the respective portions among the selected cloud storage platforms; and communicating indicia of the first and second rules to the client, thereby enabling the client to divide the data item into portions according to the first rule and to allocate the respective portions among the selected cloud storage platforms according to the second rule. - View Dependent Claims (10, 11)
-
-
12. A method for providing data storage services for a client, in accordance with a cloud computing model wherein a client platform is operably connected to a cloud storage broker and a plurality of remote cloud storage platforms, the method comprising the cloud storage broker:
-
receiving a client request for cloud storage services associated with a data item; choosing selected cloud storage platforms of the plurality of remote cloud storage platforms for cloud storage of the data item, wherein each of the selected platforms are to store an allocated portion of the data item; identifying a first rule that defines a manner of dividing the data item into a plurality of portions, the plurality of portions corresponding in number with the plurality of selected cloud storage platforms; identifying a second rule that defines a manner of allocating the respective portions among the selected cloud storage platforms; obtaining the data item; and dividing the data item into portions according to the first rule and allocate the respective portions among the selected cloud storage platforms according to the second rule. - View Dependent Claims (13, 14)
-
-
15. In a cloud storage system including a client platform operably connected to a cloud storage broker and a plurality of remote cloud storage platforms, a method for providing distributed cloud storage of a data item comprising:
-
dividing the data item into a plurality of portions according to a first rule; allocating the portions to a plurality of selected cloud storage platforms according to a second rule, the plurality of portions corresponding in number with the plurality of selected cloud storage platforms; and retaining indicia of the first and second rules for later data retrieval. - View Dependent Claims (16, 17, 18, 19)
-
Specification