Deleting encoded data slices in a dispersed storage network
First Claim
1. A distributed storage (DS) unit comprises:
- a plurality of memory devices operable to store a plurality of collections of encrypted and encoded data slices, wherein a collection of encrypted and encoded data slices of the plurality of collections of encrypted and encoded data slices includes a common data aspect, wherein encrypted and encoded data slices of the collection of encrypted and encoded data slices are produced by individually encrypting corresponding encoded data slices using a common encrypting character string and representations of the corresponding encoded data slices, and wherein the corresponding encoded data slices are dispersed storage error encoded portions of a plurality of data segments;
local memory operable to store the common encrypting character string regarding the collection of encrypted and encoded data slices and to store the representations of the corresponding encoded data slices; and
a processing module operable to;
receive a request regarding at least a portion of the corresponding encoded data slices;
identify the common encrypting character string of the corresponding encoded data slices; and
when the request is to delete the corresponding encoded data slices, obfuscate the common encrypting character string in the local memory such that the collection of encrypted and encoded data slices are effectively incomprehensible.
5 Assignments
0 Petitions
Accused Products
Abstract
A method begins by a dispersed storage (DS) processing module receiving a request regarding at least a portion of corresponding encoded data slices, wherein a collection of encrypted and encoded data slices of a plurality of collections of encrypted and encoded data slices includes a common data aspect, wherein encrypted and encoded data slices of the collection of encrypted and encoded data slices are produced by individually encrypting corresponding encoded data slices using a common encrypting character string and representations of the corresponding encoded data slices. The method continues with the DS processing module identifying the common encrypting character string of the corresponding encoded data slices. When the request is to delete the corresponding encoded data slices, the method continues with the DS processing module obfuscating the common encrypting character string in a local memory such that the collection of encrypted and encoded data slices are effectively incomprehensible.
-
Citations
19 Claims
-
1. A distributed storage (DS) unit comprises:
-
a plurality of memory devices operable to store a plurality of collections of encrypted and encoded data slices, wherein a collection of encrypted and encoded data slices of the plurality of collections of encrypted and encoded data slices includes a common data aspect, wherein encrypted and encoded data slices of the collection of encrypted and encoded data slices are produced by individually encrypting corresponding encoded data slices using a common encrypting character string and representations of the corresponding encoded data slices, and wherein the corresponding encoded data slices are dispersed storage error encoded portions of a plurality of data segments; local memory operable to store the common encrypting character string regarding the collection of encrypted and encoded data slices and to store the representations of the corresponding encoded data slices; and a processing module operable to; receive a request regarding at least a portion of the corresponding encoded data slices; identify the common encrypting character string of the corresponding encoded data slices; and when the request is to delete the corresponding encoded data slices, obfuscate the common encrypting character string in the local memory such that the collection of encrypted and encoded data slices are effectively incomprehensible. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A distributed storage (DS) unit comprises:
-
a plurality of memory devices operable to store a plurality of encoded data slices as a plurality of encrypted and encoded data slices, wherein groups of the plurality of encoded data slices are arranged into first tier collections of slices based on common first tier data aspects, wherein groups of the first tier collections are arranged into second tier collections of slices based on common second tier data aspects, and wherein encoded data slices of one of the second tier collections of slices are individually encrypted using first tier common encrypting character strings relating to the common first tier data aspects of the group of first tier collections of slices in the second tier collection of slices, a second tier common encrypting character string relating to the common second tier data aspect of the one of the second tier collections of slices, and representations of the encoded data slices; local memory operable to store the first tier common encrypting character strings relating to the common first tier data aspects of the group of first tier collections of slices in the second tier collection of slices, the second tier common encrypting character string relating to the common second tier data aspect of the one of the second tier collections of slices, and the representations of the encoded data slices; and a processing module operable to; receive a request regarding encoded data slices having a common data aspect; and when the request is a second tier delete request; identify the second tier common encrypting character string corresponding to a second tier collection of slices having the common data aspect; and obfuscate the second tier common encrypting character string in the local memory such that the second tier collection of slices is effectively incomprehensible. - View Dependent Claims (8, 9, 10)
-
-
11. A computer readable storage memory comprises:
- a first section for storing operational instructions that, when executed by a processing module, causes the processing module to receive a request regarding at least a portion of corresponding encoded data slices, wherein a collection of encrypted and encoded data slices of a plurality of collections of encrypted and encoded data slices includes a common data aspect, wherein encrypted and encoded data slices of the collection of encrypted and encoded data slices are produced by individually encrypting corresponding encoded data slices using a common encrypting character string and representations of the corresponding encoded data slices, and wherein the corresponding encoded data slices are dispersed storage error encoded portions of a plurality of data segments;
a second section for storing operational instructions that, when executed by the processing module, causes the processing module to identify the common encrypting character string of the corresponding encoded data slices; and
a third section for storing operational instructions that, when executed by the processing module, causes the processing module to, when the request is to delete the corresponding encoded data slices, obfuscate the common encrypting character string in a local memory such that the collection of encrypted and encoded data slices are effectively incomprehensible. - View Dependent Claims (12, 13, 14, 15, 16)
- a first section for storing operational instructions that, when executed by a processing module, causes the processing module to receive a request regarding at least a portion of corresponding encoded data slices, wherein a collection of encrypted and encoded data slices of a plurality of collections of encrypted and encoded data slices includes a common data aspect, wherein encrypted and encoded data slices of the collection of encrypted and encoded data slices are produced by individually encrypting corresponding encoded data slices using a common encrypting character string and representations of the corresponding encoded data slices, and wherein the corresponding encoded data slices are dispersed storage error encoded portions of a plurality of data segments;
-
17. A computer readable storage memory comprises:
- a first section for storing operational instructions that, when executed by a processing module, causes the processing module to receive a request regarding encoded data slices having a common data aspect, wherein a plurality of data segments is encoded using a dispersed storage error encoding function to produce a plurality of sets of encoded data slices, wherein groups of a plurality of encoded data slices are arranged into first tier collections of slices based on common first tier data aspects, wherein the plurality of encoded data slices is a subset of the plurality of sets of encoded data slices, wherein groups of the first tier collections are arranged into second tier collections of slices based on common second tier data aspects, and wherein encoded data slices of one of the second tier collections of slices are individually encrypted using first tier common encrypting character strings relating to the common first tier data aspects of the group of first tier collections of slices in the second tier collection of slices, a second tier common encrypting character string relating to the common second tier data aspect of the one of the second tier collections of slices, and representations of the encoded data slices;
a second section for storing operational instructions that, when executed by the processing module, causes the processing module to, when the request is a second tier delete request, identify the second tier common encrypting character string corresponding to a second tier collection of slices having the common data aspect; and
a third section for storing operational instructions that, when executed by the processing module, causes the processing module to, when the request is a second tier delete request, obfuscate the second tier common encrypting character string in a local memory such that the second tier collection of slices is effectively incomprehensible. - View Dependent Claims (18, 19)
- a first section for storing operational instructions that, when executed by a processing module, causes the processing module to receive a request regarding encoded data slices having a common data aspect, wherein a plurality of data segments is encoded using a dispersed storage error encoding function to produce a plurality of sets of encoded data slices, wherein groups of a plurality of encoded data slices are arranged into first tier collections of slices based on common first tier data aspects, wherein the plurality of encoded data slices is a subset of the plurality of sets of encoded data slices, wherein groups of the first tier collections are arranged into second tier collections of slices based on common second tier data aspects, and wherein encoded data slices of one of the second tier collections of slices are individually encrypted using first tier common encrypting character strings relating to the common first tier data aspects of the group of first tier collections of slices in the second tier collection of slices, a second tier common encrypting character string relating to the common second tier data aspect of the one of the second tier collections of slices, and representations of the encoded data slices;
Specification