SECURE CLOUD STORAGE DISTRIBUTION AND AGGREGATION
First Claim
1. A method comprising:
- providing, by a cloud storage gateway device logically interposed between one or more third-party cloud storage platforms and a plurality of users of an enterprise, a generalized application programming interface (API) through which the plurality of users can store files to the one or more third-party cloud storage platforms, issue search requests against the files and retrieve content of the files;
assigning, by the cloud storage gateway device, a file storage policy of a plurality of file storage policies to each user of the plurality of users, the plurality of file storage policies defining access rights, storage diversity requirements and a type of encryption to be applied to the files; and
responsive to receiving, via the generalized API, a request to store a file from a first user of the plurality of users;
creating, by the cloud storage gateway device, searchable encrypted data corresponding to one or more of (i) content of the file and (ii) metadata associated with the file, wherein the searchable encrypted data is based on the type of encryption defined by a first file storage policy of the plurality of file storage policies assigned to the first user; and
distributing, by the cloud storage gateway device, the searchable encrypted data among the one or more third-party cloud storage platforms based on the storage diversity requirements defined by the first file storage policy by uploading a subset of the searchable encrypted data to each of the one or more third-party cloud storage platforms.
0 Assignments
0 Petitions
Accused Products
Abstract
Methods and systems for vendor independent and secure cloud storage distribution and aggregation are provided. According to one embodiment, an application programming interface (API) is provided by a cloud storage gateway device logically interposed between third-party cloud storage platforms and users of an enterprise. The API facilitates storing of files, issuing of search requests against the files and retrieval of content of the files. A file storage policy is assigned to each user, which defines access rights, storage diversity requirements and a type of encryption to be applied to files. Responsive to receiving a request to store a file, (i) searchable encrypted data is created relating to content and/or metadata of the file based on the assigned file storage policy; and (ii) the searchable encrypted data is distributed among the third-party cloud storage platforms based on the storage diversity requirements defined by the assigned file storage policy.
-
Citations
18 Claims
-
1. A method comprising:
-
providing, by a cloud storage gateway device logically interposed between one or more third-party cloud storage platforms and a plurality of users of an enterprise, a generalized application programming interface (API) through which the plurality of users can store files to the one or more third-party cloud storage platforms, issue search requests against the files and retrieve content of the files; assigning, by the cloud storage gateway device, a file storage policy of a plurality of file storage policies to each user of the plurality of users, the plurality of file storage policies defining access rights, storage diversity requirements and a type of encryption to be applied to the files; and responsive to receiving, via the generalized API, a request to store a file from a first user of the plurality of users; creating, by the cloud storage gateway device, searchable encrypted data corresponding to one or more of (i) content of the file and (ii) metadata associated with the file, wherein the searchable encrypted data is based on the type of encryption defined by a first file storage policy of the plurality of file storage policies assigned to the first user; and distributing, by the cloud storage gateway device, the searchable encrypted data among the one or more third-party cloud storage platforms based on the storage diversity requirements defined by the first file storage policy by uploading a subset of the searchable encrypted data to each of the one or more third-party cloud storage platforms. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A non-transitory computer-readable storage medium embodying a set of instructions, which when executed by one or more processors of a cloud storage gateway device logically interposed between one or more third-party cloud storage platforms and a plurality of users of an enterprise, cause the one or more processors to perform a method comprising:
-
providing a generalized application programming interface (API) through which the plurality of users can store files to the one or more third-party cloud storage platforms, issue search requests against the files and retrieve content of the files; assigning a file storage policy of a plurality of file storage policies to each user of the plurality of users, the plurality of file storage policies defining access rights, storage diversity requirements and a type of encryption to be applied to the files; and responsive to receiving, via the generalized API, a request to store a file from a first user of the plurality of users; creating searchable encrypted data corresponding to one or more of (i) content of the file and (ii) metadata associated with the file, wherein the searchable encrypted data is based on the type of encryption defined by a first file storage policy of the plurality of file storage policies assigned to the first user; and distributing the searchable encrypted data among the one or more third-party cloud storage platforms based on the storage diversity requirements defined by the first file storage policy by uploading a subset of the searchable encrypted data to each of the one or more third-party cloud storage platforms. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
Specification