Provisioning of a shippable storage device and ingesting data from the shippable storage device
First Claim
1. A system, comprising:
- one or more computing devices of a storage service provider; and
a provisioning service implemented on at least one of the one or more computing devices, wherein the provisioning service is configured to;
receive, from a client, a request to import data from the client to the storage service provider;
send, to the client, a data transfer tool for transferring the data onto at least one shippable storage device;
determine at least one encryption key to be used by the data transfer tool;
determine security information to be used by the data transfer tool;
generate a manifest that includes the at least one encryption key and at least some of the security information;
provision the at least one shippable storage device to be sent to the client;
in response to completion of the provisioning of the shippable storage device, indicate that the shippable storage device is ready for shipment to the client; and
send the manifest to the client.
1 Assignment
0 Petitions
Accused Products
Abstract
When a client requests a data import job, a remote storage service provider provisions a shippable storage device that will be used to transfer client data from the client to the service provider for import. The service provider generates security information for the data import job, provisions the shippable storage device with the security information, and sends the shippable storage device to the client. The service provider also sends client-keys to the client, separate from the shippable storage device (e.g., via a network). The client receives the device, encrypts the client data and keys, transfers the encrypted data and keys onto the device, and ships it back to the service provider. The remote storage service provider authenticates the storage device, decrypts client-generated keys using the client-keys stored at the storage service provider, decrypts the data using the decrypted client-side generated keys, and imports the decrypted data.
51 Citations
20 Claims
-
1. A system, comprising:
-
one or more computing devices of a storage service provider; and a provisioning service implemented on at least one of the one or more computing devices, wherein the provisioning service is configured to; receive, from a client, a request to import data from the client to the storage service provider; send, to the client, a data transfer tool for transferring the data onto at least one shippable storage device; determine at least one encryption key to be used by the data transfer tool; determine security information to be used by the data transfer tool; generate a manifest that includes the at least one encryption key and at least some of the security information; provision the at least one shippable storage device to be sent to the client; in response to completion of the provisioning of the shippable storage device, indicate that the shippable storage device is ready for shipment to the client; and send the manifest to the client. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method, comprising:
performing, by a provisioning service implemented on one or more computing devices of a storage service provider; receiving, from a client, a request to import data from the client to the storage service provider; determining at least one encryption key associated with importing the data; generating information that includes the at least one encryption key; provisioning a shippable storage device to be sent to the client; in response to completion of the provisioning of the shippable storage device, indicating that the shippable storage device is ready for sending to the client; and sending the information to the client. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15)
-
16. A non-transitory computer-readable storage medium storing program instructions that, when executed by one or more computing devices, cause the one or more computing devices to implement:
performing, by a provisioning service of a storage service provider; receiving, from a client, a request to import data from the client to the storage service provider; determining at least one encryption key associated with importing the data; generating information that includes the at least one encryption key; provisioning a shippable storage device to be sent to the client; in response to completion of the provisioning of the shippable storage device, indicating that the shippable storage device is ready for sending to the client; and sending the information to the client. - View Dependent Claims (17, 18, 19, 20)
Specification