×

Encrypting segmented data in a distributed computing system

  • US 9,674,155 B2
  • Filed: 06/13/2013
  • Issued: 06/06/2017
  • Est. Priority Date: 12/12/2011
  • Status: Expired due to Fees
First Claim
Patent Images

1. A dispersed storage (DS) module comprises:

  • a first module, when operable within a computing device, causes the computing device to;

    segment a data partition into a plurality of data segments; and

    for each of at least some data segments of the plurality of data segments;

    divide the data segment into a set of data sub-segments;

    a second module, when operable within the computing device, causes the computing device to;

    for the data segment of the plurality of data segments;

    generate a set of sub keys for the set of data sub-segments based on a master key;

    encrypt the set of data sub-segments using the set of sub keys to produce a set of encrypted data sub-segments;

    aggregate the set of encrypted data sub-segments into encrypted data; and

    generate a masked key based on the encrypted data and the master key; and

    a third module, when operable within the computing device, causes the computing device to;

    for the data segment of the plurality of data segments;

    combine the encrypted data and the masked key to produce an encrypted data segment, wherein encryption of the data partition includes encrypted data segments for the each of the at least some of the data segments, wherein the combining the encrypted data and the masked key includes at least one of;

    interleaving the masked key with the encrypted data to produce the encrypted data segment;

    appending the masked key to the encrypted data to produce the encrypted data segment; and

    distributing, in accordance with a pattern, portions of the masked key within the encrypted data to produce the encrypted data segment.

View all claims
  • 5 Assignments
Timeline View
Assignment View
    ×
    ×