Obtaining a signed certificate for a dispersed storage network
First Claim
1. A method for execution by a computing device of a dispersed storage network (DSN), the method comprises:
- sending certificate information to a storage unit of the DSN, wherein the certificate information includes information regarding a user device;
receiving, from the storage unit, a certificate signing request that at least partially include the certificate information;
after validation, sending the certificate signing request to a certificate authority device of the DSN;
receiving, from the certificate authority device, a signed certificate; and
after validation, sending the signed certificate to the storage unit such that the storage unit can certify access requests from the user device.
4 Assignments
0 Petitions
Accused Products
Abstract
A method begins by a dispersed storage (DS) processing module generating a certificate signing request (CSR) that includes a certificate and a certificate extension, wherein the certificate includes information regarding a requesting device and wherein the certificate extension includes information regarding an accessible dispersed storage network (DSN) address range for the requesting device. The method continues with the DS processing module outputting the CSR to a certificate authority of a DSN and receiving a signed certificate from the certificate authority, wherein the signed certificate includes a certification signature of the certificate authority authenticating the certificate and the certificate extension. The method continues with the DS processing module storing the signed certificate for use when generating a DSN access request, wherein the DSN access request is requesting access to dispersed storage error encoded data in the DSN at an address within the accessible DSN address range.
11 Citations
14 Claims
-
1. A method for execution by a computing device of a dispersed storage network (DSN), the method comprises:
-
sending certificate information to a storage unit of the DSN, wherein the certificate information includes information regarding a user device; receiving, from the storage unit, a certificate signing request that at least partially include the certificate information; after validation, sending the certificate signing request to a certificate authority device of the DSN; receiving, from the certificate authority device, a signed certificate; and after validation, sending the signed certificate to the storage unit such that the storage unit can certify access requests from the user device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A dispersed storage (DS) module comprises:
-
a first module, when operable within a computing device, causes the computing device to; send certificate information to a storage unit of a dispersed storage network (DSN), wherein the certificate information includes information regarding a user device; a second module, when operable within the computing device, causes the computing device to; receive, from the storage unit, a certificate signing request that at least partially include the certificate information; a third module, when operable within the computing device, causes the computing device to; after validation, send the certificate signing request to a certificate authority device of the DSN; the second module, when operable within the computing device, further causes the computing device to; receive, from the certificate authority device, a signed certificate; and the third module, when operable within the computing device, further causes the computing device to; after validation, send the signed certificate to the storage unit such that the storage unit can certify access requests from the user device. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
Specification