Entity registration in multiple dispersed storage networks
First Claim
1. A method for execution by a device seeking registration with a storage network, the method comprises:
- outputting a registration request message that includes requesting access to a local dispersed storage network (DSN) and requesting access to a global DSN, wherein the global DSN includes a plurality of DSNs and the local DSN is one of the plurality of DSNs;
receiving a registration response message that includes a global universal unique identifier (UUID) and a local UUID;
generating a global public-private key pair and a local public-private key pair;
generating a global certificate signing request (CSR) based on the global UUID and a private key of the global public-private key pair;
generating a local CSR based on the local UUID and a private key of the local public-private key pair;
sending the global and local CSRs to a certificate authority (CA);
wherein the local CSR includes;
a local authorization code, the local UUID and a local public key of the local public-private key pair;
wherein the global CSR includes;
a global authorization code, the global UUID and a global public key of the local public-private key pair;
andreceiving a signed global certificate and a signed local certificate, wherein the signed global certificate indicates that the device is authorized to access the plurality of DSNs and the signed local certificate indicates that the device is authorized to access the local DSN.
4 Assignments
0 Petitions
Accused Products
Abstract
A method begins by a processing module outputting a registration request message that includes requesting access to a local dispersed storage network (DSN) and requesting access to a global DSN. The method continues with the processing module receiving a registration response message that includes a global universal unique identifier (UUID) and a local UUID. The method continues with the processing module generating a global public-private key pair and a local public-private key pair and generating a global certificate signing request (CSR) based on the global UUID and a private key of the global public-private key pair. The method continues with the processing module generating a local CSR based on the local UUID and a private key of the local public-private key pair, sending the global and local CSRs to a certificate authority (CA), and receiving a signed global certificate and a signed local certificate.
88 Citations
16 Claims
-
1. A method for execution by a device seeking registration with a storage network, the method comprises:
-
outputting a registration request message that includes requesting access to a local dispersed storage network (DSN) and requesting access to a global DSN, wherein the global DSN includes a plurality of DSNs and the local DSN is one of the plurality of DSNs; receiving a registration response message that includes a global universal unique identifier (UUID) and a local UUID; generating a global public-private key pair and a local public-private key pair; generating a global certificate signing request (CSR) based on the global UUID and a private key of the global public-private key pair; generating a local CSR based on the local UUID and a private key of the local public-private key pair; sending the global and local CSRs to a certificate authority (CA); wherein the local CSR includes;
a local authorization code, the local UUID and a local public key of the local public-private key pair;wherein the global CSR includes;
a global authorization code, the global UUID and a global public key of the local public-private key pair;and receiving a signed global certificate and a signed local certificate, wherein the signed global certificate indicates that the device is authorized to access the plurality of DSNs and the signed local certificate indicates that the device is authorized to access the local DSN. - View Dependent Claims (2, 3, 4)
-
-
5. A method comprises:
-
receiving a registration request from a valid requesting entity; determining whether the registration request includes requesting registration to a global dispersed storage network (DSN) that includes a plurality of DSNs; and in response to a registration request to the global DSN; determining whether the valid requesting entity has a local universally unique identifier (UUID) of a home DSN of the plurality of DSNs; when the valid requesting entity has the local UUID, generating a global UUID; when the valid requesting entity does not have the local UUID, generating the local UUID and the global UUID; sending, to the valid requesting entity, a registration response that includes the local UUID and the global UUID; receiving a global certificate signing request (CSR) from the valid requesting entity;
when the global CSR is valid, generating a global signed certificate;sending the global signed certificate to the valid requesting entity, wherein the global signed certificate indicates that the valid requesting entity is authorized to access the global DSN; wherein when the valid requesting entity does not have the local UUID;
receiving a local certificate signing request (CSR) from the valid requesting entity;
when the local CSR is valid, generating a local signed certificate; and
sending the local signed certificate to the valid requesting entity; andwherein the registration response further comprises;
a global authorization code that is associated with the global UUID; and
a local authorization code that is associated with the local UUID. - View Dependent Claims (6, 7, 8)
-
-
9. A computer comprises:
-
an interface; a memory for storing computer executable instructions; and a processor configured to execute computer executable instruction to; output, via the interface, a registration request message that includes requesting access to a local dispersed storage network (DSN) and requesting access to a global DSN, wherein the global DSN includes a plurality of DSNs and the local DSN is one of the plurality of DSNs; receive, via the interface, a registration response message that includes a global universal unique identifier (UUID) and a local UUID; generate a global public-private key pair and a local public-private key pair; generate a global certificate signing request (CSR) based on the global UUID and a private key of the global public-private key pair; generate a local CSR based on the local UUID and a private key of the local public- private key pair; send, via the interface, the global and local CSRs to a certificate authority (CA); wherein the local CSR includes;
a local authorization code, the local UUID and a local public key of the local public-private key pair;wherein the global CSR includes;
a global authorization code, the global UUID and a global public key of the local public-private key pair;and receive, via the interface, a signed global certificate and a signed local certificate, wherein the signed global certificate indicates that the computer is authorized to access the plurality of DSNs and the signed local certificate indicates that the computer is authorized to access the local DSN. - View Dependent Claims (10, 11, 12)
-
-
13. A computer comprises:
-
an interface; a memory for storing computer executable instructions; and a processor configured to execute computer executable instruction to; receive, via the interface, a registration request from a valid requesting entity; determine whether the registration request includes requesting registration to a global dispersed storage network (DSN) that includes a plurality of DSNs; and in response to a registration request to the global DSN; determine whether the valid requesting entity has a local universally unique identifier (UUID) of a home DSN of the plurality of DSNs; when the valid requesting entity has the local UUID, generate a global UUID; when the valid requesting entity does not have the local UUID, generate the local UUID and the global UUID; send, via the interface, to the valid requesting entity, a registration response that includes the local UUID and the global UUID; receive, via the interface, a global certificate signing request (CSR) from the valid requesting entity;
when the global CSR is valid, generate a global signed certificate;send, via the interface, the global signed certificate to the valid requesting entity, wherein the global signed certificate indicates that the valid requesting entity is authorized to access the global DSN; wherein when the valid requesting entity does not have the local UUID;
receiving a local certificate signing request (CSR) from the valid requesting entity;
when the local CSR is valid, generating a local signed certificate; and
sending the local signed certificate to the valid requesting entity; andwherein the registration response further comprises;
a global authorization code that is associated with the global UUID; and
a local authorization code that is associated with the local UUID. - View Dependent Claims (14, 15, 16)
-
Specification