Data archiving system
First Claim
Patent Images
1. A computer-implemented method of archiving data files, comprising:
- receiving the files from a client computer system, each of the files having associated therewith a unique file identifier;
serializing the files by assigning a consecutive serial number to each of the files;
storing each file and its assigned consecutive serial number to a first storage;
verifying the presence of each stored file serially using the stored consecutive serial numbers, wherein each consecutive serial number is accounted for and each file matches its associated unique file identifier;
reporting an error if one of the files is missing from the first storage; and
attaching a server identification field to each consecutive serial number to indicate a server that assigned the consecutive serial number;
creating an associative cryptographic hash of each file;
storing the associative cryptographic hash of each file to the first storage;
re-computing the associative cryptographic hash of a given one of the files;
verifying the authenticity of the given file by comparing its respective stored associative cryptographic hash to the re-computed cryptographic hash.
8 Assignments
0 Petitions
Accused Products
Abstract
An encrypted file storage solution consists of a cluster of processing nodes, external data storage, and a software agent (the “File System Watcher”), which is installed on the application servers. Cluster sizes of one node up to many hundreds of nodes are possible. There are also remote “Key Servers” which provide various services to one or more clusters. The preceding describes a preferred embodiment, though in some cases it may be desirable to “collapse” some of the functionality into a smaller number of hardware devices, typically trading off cost versus security and fault-tolerance.
87 Citations
19 Claims
-
1. A computer-implemented method of archiving data files, comprising:
-
receiving the files from a client computer system, each of the files having associated therewith a unique file identifier; serializing the files by assigning a consecutive serial number to each of the files; storing each file and its assigned consecutive serial number to a first storage; verifying the presence of each stored file serially using the stored consecutive serial numbers, wherein each consecutive serial number is accounted for and each file matches its associated unique file identifier; reporting an error if one of the files is missing from the first storage; and attaching a server identification field to each consecutive serial number to indicate a server that assigned the consecutive serial number; creating an associative cryptographic hash of each file; storing the associative cryptographic hash of each file to the first storage; re-computing the associative cryptographic hash of a given one of the files; verifying the authenticity of the given file by comparing its respective stored associative cryptographic hash to the re-computed cryptographic hash. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A computer-implemented method of auditing stored data in an auditable data storage system, comprising:
-
recording, in a manifest, data associated with files received from a client computer system for storage in the auditable data storage system, each of the files received for storage having associated therewith a unique file identifier; assigning consecutive serial numbers to each of the files received for storage; closing the manifest; storing the manifest as a file in the auditable data storage system, wherein removal of a serialized entry in the manifest is noted by the gap in the consecutive serial numbers; creating a new manifest associated with files received for storage in the auditable data storage system, the new manifest recording, as a file entry, data including a unique file identifier associated with the closed manifest; examining the new manifest to verify the existence of the associated unique file identifier for each file recorded in the new manifest; and determining that each file having associated data stored in the new manifest is present in the auditable storage system, wherein each consecutive serial number is accounted for and each file matches its associated unique file identifier. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
Specification