SECURE DATA PARSER METHOD AND SYSTEM
First Claim
Patent Images
1. A method of securely storing data in a network, the method comprising:
- receiving data from a client device;
splitting the data into a predetermined number of secondary units of data by performing a cryptographic operation on the data and causing the secondary units of data to be substantially randomly distributed in a plurality of shares;
encrypting the plurality of shares with a corresponding number of different keys; and
storing the plurality of shares and the different keys used to encrypt the shares to one or more physical storage devices.
2 Assignments
0 Petitions
Accused Products
Abstract
The present invention provides a method and system for securing sensitive data from unauthorized access or use. The method and system of the present invention is useful in a wide variety of settings, including commercial settings generally available to the public which may be extremely large or small with respect to the number of users. The method and system of the present invention is also useful in a more private setting, such as with a corporation or governmental agency, as well as between corporation, governmental agencies or any other entity.
-
Citations
26 Claims
-
1. A method of securely storing data in a network, the method comprising:
-
receiving data from a client device; splitting the data into a predetermined number of secondary units of data by performing a cryptographic operation on the data and causing the secondary units of data to be substantially randomly distributed in a plurality of shares; encrypting the plurality of shares with a corresponding number of different keys; and storing the plurality of shares and the different keys used to encrypt the shares to one or more physical storage devices. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method of securing data in a network, the method comprising:
-
receiving at a secure storage appliance data for storage on a volume, the volume associated with a plurality of shares distributed across a plurality of physical storage devices; splitting the data received by the secure storage appliance into a plurality of secondary data units by performing a cryptographic operation on the data and causing the secondary data units to be substantially randomly distributed in the plurality of shares; and encrypting each of the plurality of secondary data units with a different key, each key associated with at least one of the plurality of shares. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14)
-
-
15. A secure storage appliance comprising a programmable circuit configured to execute program instructions which, when executed, configure the secure storage appliance to:
-
receive from a client device data for storage on a volume, the volume associated with a plurality of shares distributed across a plurality of physical storage devices; split the data into a plurality of secondary data units by performing a cryptographic operation on the data and causing the secondary data units to be substantially randomly distributed in the plurality of shares; and encrypt each of the plurality of secondary data units with a different key, each key associated with at least one of the plurality of shares. - View Dependent Claims (16, 17, 18, 19)
-
-
20. A secure data storage network comprising:
-
a client device; a plurality of physical storage devices; a secure storage appliance communicatively connected to the client device and the plurality of physical storage devices, the secure storage appliance including a programmable circuit configured to execute program instructions which, when executed, cause the secure storage appliance to; receive from the client device data for storage on a volume, the volume associated with a plurality of shares distributed across the plurality of physical storage devices; split the data into a plurality of secondary data units by performing a cryptographic operation on the data and causing the secondary data units to be substantially randomly distributed in the plurality of shares; and encrypt each of the plurality of secondary data units with a different key, each key associated with at least one of the plurality of shares. - View Dependent Claims (21, 22, 23, 24, 25, 26)
-
Specification