Secure data parser method and system
First Claim
Patent Images
1. A method for securing data, comprising:
- a) encrypting a data set to provide an encrypted data set;
b) generating two or more portions of data from the encrypted data set, wherein the two or more portions of data each contain a substantially randomized distribution of the encrypted data set;
c) encrypting one or more of the portions of data from step b); and
d) storing the two or more portions of data from step c) at one or more locations on one or more data depositories, whereby the data set is restorable from at least two of the two or more portions of data from step b), wherein restoring the data set comprises;
decrypting the one or more portions of data from step c),reconstituting the encrypted data set by recombining data from the at least two of the two or more portions of data that was substantially randomly distributed in step b), anddecrypting the encrypted data set into the data set.
4 Assignments
0 Petitions
Accused Products
Abstract
The present invention provides a method and system for securing sensitive data from unauthorized access or use. The method and system of the present invention is useful in a wide variety of settings, including commercial settings generally available to the public which may be extremely large or small with respect to the number of users. The method and system of the present invention is also useful in a more private setting, such as with a corporation or governmental agency, as well as between corporation, governmental agencies or any other entity.
-
Citations
46 Claims
-
1. A method for securing data, comprising:
-
a) encrypting a data set to provide an encrypted data set; b) generating two or more portions of data from the encrypted data set, wherein the two or more portions of data each contain a substantially randomized distribution of the encrypted data set; c) encrypting one or more of the portions of data from step b); and d) storing the two or more portions of data from step c) at one or more locations on one or more data depositories, whereby the data set is restorable from at least two of the two or more portions of data from step b), wherein restoring the data set comprises; decrypting the one or more portions of data from step c), reconstituting the encrypted data set by recombining data from the at least two of the two or more portions of data that was substantially randomly distributed in step b), and decrypting the encrypted data set into the data set. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method for securing data, comprising:
-
a) generating two or more portions of data from a data set, wherein the two or more portions of data each contain a substantially random distribution of the data set; b) encrypting one or more of the portions of data of step a); and c) storing the two or more portions of data on one or more locations on one or more data depositories, whereby the data set is restorable from at least two of the two or more portions of data, wherein restoring the data set comprises; decrypting the one or more portions of data from step b), and reconstituting the data set by recombining data from the at least two of the two or more portions of data that was substantially randomly distributed in step a). - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A method for securing data, comprising:
-
a) generating an encryption master key and encrypting a data set using the encryption master key; b) generating two or more portions of data from the encrypted data set and the encryption master key according to one separating pattern and appending an encryption master key portion to an encrypted data set portion, wherein the two or more portions comprise a substantially random distribution of data from the encrypted data set; c) generating one or more encryption keys for the portions of data from step b) and encrypting said portions of data using said one or more encryption keys; and d) storing the encrypted portions of data from step c) and the encryption keys from step c) on at least one data depository, whereby the data set is restorable from at least two portions of the two or more portions of data, wherein restoring the data set comprises; decrypting the encrypted portions of data, reconstituting the encrypted data set by recombining data from the at least two portions of the two or more portions of data that was substantially randomly distributed in step b), and decrypting the encrypted data set into the data set.
-
-
21. A method for securing data, comprising:
-
a) generating an encryption master key and encrypting a data set using the encryption master key; b) generating two or more portions of data from the encrypted data set and the encryption master key according to one separating pattern and storing encryption master key portions on one or more locations of one or more data depositories, wherein the two or more portions comprise a substantially random distribution of data from the encrypted data set; c) generating one or more encryption keys for the encrypted data set portions of step b) and encrypting said portions of data using said encryption key; and d) storing the encrypted portions from step c) and the encryption keys from step c) on at least one location of at least one data depository, wherein said data depositories are different from the data depositories of step b), whereby the data set is restorable from at least two portions of the two or more portions of data, wherein restoring the data set comprises; decrypting the encrypted portions from step c), reconstituting the encrypted data set by recombining data from the at least two portions of the two or more portions of data that was substantially randomly distributed in step b), and decrypting the encrypted data set into the data set. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30)
-
-
31. A non-transitory, computer-based system for securing data, comprising:
-
a) a data apportioning module for apportioning data from a data set into at least two data portions, wherein the data is apportioned into the at least two data portions in a substantially random way; b) a cryptographic handling module for encrypting the data set; and c) a data assembling module for assembling the data set from the at least two data portions, wherein the data assembling module is configured to; reconstitute the encrypted data set by recombining data from the at least two data portions that was substantially randomly apportioned, decrypt the encrypted data set into the data set, and store the decrypted data set. - View Dependent Claims (32)
-
-
33. A method for securing data, comprising:
-
a) encrypting a data set to provide an encrypted data set; b) generating two or more portions of data from the encrypted data set according to the contents of a unique key value, wherein the encrypted data set is substantially randomly distributed among the two or more portions of data; c) encrypting one or more of the portions of data from step b); and d) storing the encrypted portions of data from step c) at one or more locations on one or more data depositories, whereby the data set is restorable from at least a subset of the portions of data, wherein restoring the data set comprises; decrypting the one or more portions of data from step c), reconstituting the encrypted data set by recombining data from the at least two of the two ore more portions of data that was substantially randomly distributed in step b), and decrypting the encrypted data set into the data set. - View Dependent Claims (34, 35)
-
-
36. A method for securing data, comprising:
-
a) splitting a data set into N number of data units; b) selecting X number of shares for data unit storage; c) generating N number of substantially random numbers that correspond to the X number of shares; d) assigning the random numbers to the data units; and e) storing, using electronic storage, the data units and the random number in the share that corresponds to the random number, whereby the data set is restorable from at least a subset of the X number of shares, wherein restoring the data set comprises reconstituting the data set by recombining the data units from the at least a subset of the X number of shares according to the substantially random numbers. - View Dependent Claims (37)
-
-
38. A method for securing a data set, comprising:
-
generating at least two portions of data from the data set, wherein each of the at least two portions of data respectively contains a substantially random distribution of a respective subset of the data set; and storing the at least two portions of data in at least one location on at least one data depository, whereby the data set is restorable from at least two portions of the at least two portions of data by recombining data from the at least two portions of the at least two portions of data that was substantially randomly distributed. - View Dependent Claims (39, 40, 41, 42)
-
-
43. A method for securing a data set, the method comprising:
-
substantially randomly selecting a first group of data units from the data set; substantially randomly selecting a second group of data units from the data set, wherein each of the first group of the data units and the second group of the data units contains less than all of the data units in the data set; and storing the first group of data units and the second group of data units separately, whereby the data set is restorable from at least a portion of the first group of data units and at least a portion of the second group of data units. - View Dependent Claims (44, 45, 46)
-
Specification