Encrypting files within a cloud computing environment
First Claim
Patent Images
1. A method for encrypting a file, the method comprises:
- retrieving the file from a storage service;
segmenting the file, by a management server, into multiple file segments;
calculating, by the management server, a file segment signature for each of the multiple file segments to provide multiple file segment signatures;
encrypting, by the management server, each of the multiple file segments to provide multiple encrypted file segments by using encryption keys that are calculated based on the multiple file segment signatures;
wherein the multiple encrypted file segments form an encrypted file; and
sending the multiple encrypted file segments to the storage service;
wherein at least one of the following is true;
(a) the method comprises deleting the file from the storage service and preventing the deletion of the file if the file has been modified by a user of the storage service during a predetermined period from a moment of the retrieving of the file;
(b) retrieving the file from the storage service, wherein the storage service applies a first de-duplication policy;
wherein the segmenting of the file by the management server is executed while applying a second de-duplication policy, wherein the second de-duplication policy is defined independent of the first de-duplication policy;
(c) retrieving the file from the storage service, wherein the storage service applies a first de-duplication policy;
wherein the segmenting of the file by the management server is executed while applying a second de-duplication policy, wherein the second de-duplication policy is defined in response to the first de-duplication policy; and
(d) retrieving the file from the storage service, wherein the storage service applies a first de-duplication policy;
wherein the segmenting of the file by the management server is executed while applying a second de-duplication policy, wherein the second de-duplication policy differs from the first de-duplication policy.
10 Assignments
0 Petitions
Accused Products
Abstract
A system, computer readable medium and a method for encrypting a file, the method may include retrieving the file from a storage service; segmenting the file into multiple file segments; calculating a file segment signature for each of the multiple file segments to provide multiple file segment signatures; encrypting each of the multiple file segments to provide multiple encrypted file segments by using encryption keys that are in response to the multiple file segment signatures; wherein the multiple encrypted file segments form an encrypted file; and sending the multiple encrypted file segments to the storage service.
-
Citations
32 Claims
-
1. A method for encrypting a file, the method comprises:
-
retrieving the file from a storage service; segmenting the file, by a management server, into multiple file segments; calculating, by the management server, a file segment signature for each of the multiple file segments to provide multiple file segment signatures; encrypting, by the management server, each of the multiple file segments to provide multiple encrypted file segments by using encryption keys that are calculated based on the multiple file segment signatures;
wherein the multiple encrypted file segments form an encrypted file; andsending the multiple encrypted file segments to the storage service; wherein at least one of the following is true; (a) the method comprises deleting the file from the storage service and preventing the deletion of the file if the file has been modified by a user of the storage service during a predetermined period from a moment of the retrieving of the file; (b) retrieving the file from the storage service, wherein the storage service applies a first de-duplication policy;
wherein the segmenting of the file by the management server is executed while applying a second de-duplication policy, wherein the second de-duplication policy is defined independent of the first de-duplication policy;(c) retrieving the file from the storage service, wherein the storage service applies a first de-duplication policy;
wherein the segmenting of the file by the management server is executed while applying a second de-duplication policy, wherein the second de-duplication policy is defined in response to the first de-duplication policy; and(d) retrieving the file from the storage service, wherein the storage service applies a first de-duplication policy;
wherein the segmenting of the file by the management server is executed while applying a second de-duplication policy, wherein the second de-duplication policy differs from the first de-duplication policy. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
-
Specification