Storage availability using cryptographic splitting
First Claim
1. A method of maintaining data connectivity in a secure storage network, the method comprising:
- assigning a volume to a primary secure storage appliance located in a secure data storage network, the secure data storage network including a plurality of secure data paths between the primary secure storage appliance and a client device and a plurality of secure data paths between the secure storage appliance and a plurality of storage systems, the volume corresponding to physical storage at each of the plurality of storage systems;
detecting a connectivity problem on at least one of the secure data paths; and
assessing whether to reassign the volume to a different secure storage appliance based upon the connectivity problem;
wherein the plurality of secure data paths encrypt data transmitted over each of the plurality of secure data paths using different encryption keys; and
the data transmitted over each of the plurality of secure data paths corresponds to a different portion of the data being transmitted between the primary secure storage appliance and the client device.
11 Assignments
0 Petitions
Accused Products
Abstract
A secure storage appliance is disclosed, along with methods of storing and reading data in a secure storage network. In one aspect, a method includes assigning a volume to a primary secure storage appliance located in a secure data storage network, the secure data storage network including a plurality of secure data paths between the primary secure storage appliance and a client device and a plurality of secure data paths between the secure storage appliance and a plurality of storage systems, the volume corresponding to physical storage at each of the plurality of storage systems. The method also includes detecting a connectivity problem on at least one of the secure data paths. The method further includes assessing whether to reassign the volume to a different secure storage appliance based upon the connectivity problem.
36 Citations
23 Claims
-
1. A method of maintaining data connectivity in a secure storage network, the method comprising:
-
assigning a volume to a primary secure storage appliance located in a secure data storage network, the secure data storage network including a plurality of secure data paths between the primary secure storage appliance and a client device and a plurality of secure data paths between the secure storage appliance and a plurality of storage systems, the volume corresponding to physical storage at each of the plurality of storage systems; detecting a connectivity problem on at least one of the secure data paths; and assessing whether to reassign the volume to a different secure storage appliance based upon the connectivity problem; wherein the plurality of secure data paths encrypt data transmitted over each of the plurality of secure data paths using different encryption keys; and the data transmitted over each of the plurality of secure data paths corresponds to a different portion of the data being transmitted between the primary secure storage appliance and the client device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A multi-path secure storage network comprising:
-
a client device; a plurality of storage systems; a primary secure storage appliance associated with a volume, the primary secure storage appliance configured to manage data requests associated with the volume, the volume associated with data stored at each of the plurality of storage systems; a plurality of secure data paths between the primary secure storage appliance and the client device; and a plurality of secure data paths between the primary secure storage appliance and the plurality of storage systems; wherein the primary secure storage appliance is configured to detect a connectivity problem on at least one of the secure data paths and assess whether to reassign the volume to a different secure storage appliance based upon the connectivity problem; the plurality of secure data paths encrypt data transmitted over each of the plurality of secure data paths using different encryption keys; and the data transmitted over each of the plurality of secure data paths corresponds to a different portion of the data being transmitted between the primary secure storage appliance and the client device. - View Dependent Claims (17, 18, 19, 20, 21, 22)
-
-
23. A method of maintaining data connectivity in a secure storage network, the method comprising:
-
assigning a volume to a primary secure storage appliance located in a secure data storage network, the secure data storage network including a plurality of secure data paths between the primary secure storage appliance and a client device and a plurality of secure data paths between the secure storage appliance and a plurality of storage systems, the volume corresponding to physical storage at each of the plurality of storage systems; detecting a connectivity problem on at least one of the secure data paths; assessing whether to reassign the volume to a different secure storage appliance based upon the connectivity problem; assigning the volume to a second secure storage appliance, thereby rendering the second secure storage appliance a new primary storage appliance; and disassociating the volume from the primary secure storage appliance; wherein the plurality of secure data paths encrypt data transmitted over each of the plurality of secure data paths using different encryption keys; and the data transmitted over each of the plurality of secure data paths corresponds to a different portion of the data being transmitted between the primary secure storage appliance and the client device.
-
Specification