TECHNIQUES FOR SECURING AND CONTROLLING ACCESS TO DATA
First Claim
1. An apparatus comprising:
- logic, at least a portion of which is implemented in hardware, the logic to comprise;
an apportioning component to divide an item of data into multiple portions based on an organizational structure of the item of data;
a tree component to generate a first pseudo-random number (PRN) tree to comprise a first multitude of nodes and a branching structure based on the organizational structure of the item of data, the first multitude of nodes to comprise at least one branching node at which branching occurs and multiple leaf nodes of which each leaf node corresponds to a portion of the multiple portions;
a PRN component to generate a PRN for each node of the first multitude of nodes, the PRN component to use a PRN of a branching node of the first PRN tree to generate a PRN for a leaf node that depends from the branching node; and
a communications component to transmit the multiple portions and multiple addresses based on PRNs of leaf nodes of the first PRN tree to a server via a network to enable the server to store each portion at an address of the multiple addresses.
1 Assignment
0 Petitions
Accused Products
Abstract
Various embodiments are directed to techniques for controlling access to data in a decentralized manner. An apparatus includes an apportioning component to divide an item of data into multiple portions based on an organizational structure of the item of data; a tree component to generate a PRN tree including a multitude of nodes and a branching structure based on the organizational structure, the multitude including at least one branching node and multiple leaf nodes that correspond to the multiple portions; a PRN component to generate a PRN for each node of the multitude, the PRN component to use a PRN of a branching node of the PRN tree to generate a PRN for a leaf node that depends therefrom; and a communications component to transmit the multiple portions and multiple addresses based on PRNs of leaf nodes of the PRN tree to a server. Other embodiments are described and claimed.
-
Citations
25 Claims
-
1. An apparatus comprising:
logic, at least a portion of which is implemented in hardware, the logic to comprise; an apportioning component to divide an item of data into multiple portions based on an organizational structure of the item of data; a tree component to generate a first pseudo-random number (PRN) tree to comprise a first multitude of nodes and a branching structure based on the organizational structure of the item of data, the first multitude of nodes to comprise at least one branching node at which branching occurs and multiple leaf nodes of which each leaf node corresponds to a portion of the multiple portions; a PRN component to generate a PRN for each node of the first multitude of nodes, the PRN component to use a PRN of a branching node of the first PRN tree to generate a PRN for a leaf node that depends from the branching node; and a communications component to transmit the multiple portions and multiple addresses based on PRNs of leaf nodes of the first PRN tree to a server via a network to enable the server to store each portion at an address of the multiple addresses. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
8. A computer-implemented method comprising:
-
dividing an item of data into multiple portions based on an organizational structure of the item of data; generating a first pseudo-random number (PRN) tree comprising a first multitude of nodes and a branching structure based on the organizational structure of the item of data, the first multitude of nodes comprising at least one branching node at which branching occurs and multiple leaf nodes of which each leaf node corresponds to a portion of the multiple portions; generating a PRN for each node of the first multitude of nodes, the PRN of a branching node of the first PRN tree used as a seed to generate a PRN for a leaf node that depends from the branching node; and transmitting the multiple portions and multiple addresses based on PRNs of leaf nodes of the first PRN tree to a server to enable the server to store each portion at an address of the multiple addresses. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. At least one tangible machine-readable storage medium comprising instructions that when executed by a processor component, cause the processor component to:
-
divide an item of data into multiple portions based on an organizational structure of the item of data; generate a first pseudo-random number (PRN) tree to comprise a first multitude of nodes and a branching structure based on the organizational structure of the item of data, the first multitude of nodes to comprise at least one branching node at which branching occurs and multiple leaf nodes of which each leaf node corresponds to a portion of the multiple portions; generate a PRN for each node of the first multitude of nodes, the PRN of a branching node of the first PRN tree used as a seed to generate a PRN for a leaf node that depends from the branching node; and transmit the multiple portions and multiple addresses based on PRNs of leaf nodes of the first PRN tree to a server to enable the server to store each portion at an address of the multiple addresses. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
-
21. A computer-implemented method comprising:
-
determining, at a server, whether a request received from a computing device for access to a portion of data stored by the server identifies the portion with an address at which the portion is stored or with a combination of a first pseudo-random number (PRN) of a first leaf node of a first PRN tree and an indication of a location of a second leaf node within a branching structure of a second PRN tree, the request received via a network coupled to the server, and the first and second leaf nodes corresponding to the portion; based on the determination, pseudo-randomly generating a second PRN of the second leaf node from a PRN of a top branching node of the second PRN tree and taking a hash of a combination of the first PRN and the second PRN to derive the address; and accessing the portion at the address to satisfy the request for access. - View Dependent Claims (22, 23, 24, 25)
-
Specification