Secure data parser method and system
First Claim
Patent Images
1. A method of presenting data in a secure data storage network, the method comprising:
- defining a plurality of user groups capable of accessing data stored in a secure data storage network, each user group including a plurality of users desiring access to a common set of data, and each user group having a set of security rights;
associating each of the plurality of user groups with a different workgroup key; and
upon determining that a client device is associated with a user from a user group, presenting, using a hardware processor, a virtual disk to the client device in accordance with the set of security rights, wherein;
the common set of data is secured using the workgroup key associated with the user group;
the virtual disk comprises a directory mapped to a plurality of physical storage devices such that physical locations of a plurality of shares are hidden from the client device, andeach of the plurality of shares comprises data units from the common set of data that have been shuffled.
4 Assignments
0 Petitions
Accused Products
Abstract
A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to protect data in motion by splitting original data into portions of data that may be communicated using multiple communications paths.
331 Citations
22 Claims
-
1. A method of presenting data in a secure data storage network, the method comprising:
-
defining a plurality of user groups capable of accessing data stored in a secure data storage network, each user group including a plurality of users desiring access to a common set of data, and each user group having a set of security rights; associating each of the plurality of user groups with a different workgroup key; and upon determining that a client device is associated with a user from a user group, presenting, using a hardware processor, a virtual disk to the client device in accordance with the set of security rights, wherein; the common set of data is secured using the workgroup key associated with the user group; the virtual disk comprises a directory mapped to a plurality of physical storage devices such that physical locations of a plurality of shares are hidden from the client device, and each of the plurality of shares comprises data units from the common set of data that have been shuffled. - View Dependent Claims (2, 3, 4, 5, 6, 7, 20)
-
-
8. A secure data storage network comprising:
-
a plurality of storage systems arranged to manage a plurality of physical storage devices; and a secure storage system connected to the plurality of storage systems, the secure storage system configured to; determine that a user of a client device is associated with a user group from a plurality of user groups capable of accessing data stored in the secure data storage network, each user group including a plurality of users desiring access to a common set of data, and each user group having a set of security rights; and upon determining that the user is associated with the user group, presenting a virtual disk to the client device in accordance with the set of security rights, wherein; the common set of data is secured using a workgroup key associated with the user group; the virtual disk comprises a directory mapped to the plurality of physical storage devices such that physical locations of the plurality of shares are hidden from the client device, and each of the plurality of shares comprises data units from the common set of data that have been shuffled. - View Dependent Claims (9, 10, 11, 12, 13, 21)
-
-
14. A secure storage system comprising a programmable circuit configured to:
-
determine that a user of a client device is associated with a user group from a plurality of user groups capable of accessing data stored in the secure data storage network, each user group including a plurality of users desiring access to a common set of data, and each user group having a set of security rights; and upon determining that the user is associated with the user group, presenting a virtual disk to the client device in accordance with the set of security rights, wherein; the common set of data is secured using a workgroup key associated with the user group; the virtual disk comprises a directory mapped to a plurality of physical storage devices such that physical locations of a plurality of shares are hidden from the client device, and each of the plurality of shares comprises data units from the common set of data that have been shuffled. - View Dependent Claims (15, 16, 17, 18, 19, 22)
-
Specification