Secure database backup and recovery

US 9,953,172 B2
Filed: 09/14/2017
Issued: 04/24/2018
Est. Priority Date: 11/06/2014
Status: Active Grant

First Claim

Patent Images

1. A computer system comprising:

one or more computer processors;

one or more computer readable storage media;

program instructions stored on the computer readable storage media for execution by at least one of the computer processors, the program instructions comprising instructions to;

receive a database backup file from a database system;

fragment the database backup file into a plurality of fragments using a fragment engine;

associate each fragment of the plurality of n fragments with a node of a plurality of distributed data nodes, respectively, wherein the fragment is not stored on the node with which the fragment is associated and wherein n is greater than 2;

encrypt each fragment of the plurality of fragments using a first encryption key, thereby providing a plurality of encrypted fragments;

store, randomly, the plurality of encrypted fragments on the plurality of distributed data nodes;

retrieve, after a determined duration, the plurality of encrypted fragments;

decrypt the plurality of encrypted fragments using the first encryption key, thereby providing a plurality of decrypted fragments;

re-encrypt the plurality of decrypted fragments using a different encryption key, thereby providing a plurality of re-encrypted fragments; and

store, randomly, the plurality of re-encrypted fragments on the plurality of distributed data nodes, wherein each fragment of the plurality of re-encrypted fragments is stored on a different node than that from which an encrypted fragment was retrieved;

wherein the computer-readable storage media are not transitory signals per se.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

As disclosed herein a computer system for secure database backup and recovery in a secure database network has N distributed data nodes. The computer system includes program instructions that include instructions to receive a database backup file, fragment the file using a fragment engine, and associate each fragment with one node, where the fragment is not stored on the associated node. The program instructions further include instructions to encrypt each fragment using a first encryption key, and store, randomly, encrypted fragments on the distributed data nodes. The program instructions further include instructions to retrieve the encrypted fragments, decrypt the encrypted fragments using the first encryption key, re-encrypt the decrypted fragments using a different encryption key, and store, randomly, the re-encrypted fragments on the distributed data nodes. A computer program product and method corresponding to the above computer system are also disclosed herein.

Citations

18 Claims

1. A computer system comprising:
- one or more computer processors;
  
  one or more computer readable storage media;
  
  program instructions stored on the computer readable storage media for execution by at least one of the computer processors, the program instructions comprising instructions to;
  
  receive a database backup file from a database system;
  
  fragment the database backup file into a plurality of fragments using a fragment engine;
  
  associate each fragment of the plurality of n fragments with a node of a plurality of distributed data nodes, respectively, wherein the fragment is not stored on the node with which the fragment is associated and wherein n is greater than 2;
  
  encrypt each fragment of the plurality of fragments using a first encryption key, thereby providing a plurality of encrypted fragments;
  
  store, randomly, the plurality of encrypted fragments on the plurality of distributed data nodes;
  
  retrieve, after a determined duration, the plurality of encrypted fragments;
  
  decrypt the plurality of encrypted fragments using the first encryption key, thereby providing a plurality of decrypted fragments;
  
  re-encrypt the plurality of decrypted fragments using a different encryption key, thereby providing a plurality of re-encrypted fragments; and
  
  store, randomly, the plurality of re-encrypted fragments on the plurality of distributed data nodes, wherein each fragment of the plurality of re-encrypted fragments is stored on a different node than that from which an encrypted fragment was retrieved;
  
  wherein the computer-readable storage media are not transitory signals per se.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The computer system of claim 1, wherein the database system is unaware of a location of a stored fragment.
  - 3. The computer system of claim 2, wherein the program instructions to store and retrieve the stored fragment are performed by database agents and node sensors corresponding to the plurality of distributed data nodes.
  - 4. The computer system of claim 1, wherein the program instructions comprise instructions to:
    - use an encryption key generator and key store to fragment the first encryption key and the different encryption key;
      
      encrypt each key fragment; and
      
      store, randomly, each key fragment on the plurality of distributed data nodes.
  - 5. The computer system of claim 4, wherein the program instructions comprise instructions to add database metadata to the key fragment, thereby providing fragmented and distributed metadata.
  - 6. The computer system of claim 5, wherein the database metadata includes at least one of a network configuration, a database node location, and a backup image expiration.
  - 7. The computer system of claim 1, wherein the program instructions to encrypt comprise instructions to use public key and private key encryption.
  - 8. The computer system of claim 1, wherein a coordination engine associates the fragment with the node.

9. A method for secure database backup and recovery in a secure database network comprising a plurality of distributed data nodes, the method comprising:
- receiving a database backup file from a database system;
  
  fragmenting the database backup file into a plurality of fragments;
  
  associating each fragment of the plurality of fragments with a node of the plurality of distributed data nodes, wherein the fragment is not stored on the node with which the fragment is associated;
  
  encrypting each fragment of the plurality of fragments using a first encryption key, thereby providing a plurality of encrypted fragments;
  
  storing, randomly, the plurality of encrypted fragments on the plurality of distributed data nodes;
  
  retrieving, after a determined duration, the plurality of encrypted fragments;
  
  decrypting the plurality of encrypted fragments using the first encryption key, thereby providing a plurality of decrypted fragments;
  
  re-encrypting the plurality of decrypted fragments using a different encryption key, thereby providing a plurality of re-encrypted fragments; and
  
  storing, randomly, the plurality of re-encrypted fragments on the plurality of distributed data nodes, wherein each fragment of the plurality of re-encrypted fragments is stored on a different node than that from which an encrypted fragment was retrieved.
- View Dependent Claims (10, 11, 12, 13, 14, 15)
- - 10. The method of claim 9, wherein the database system is unaware of a location of a stored fragment.
  - 11. The method of claim 10, wherein storing and retrieving the stored fragment is performed by database agents and sensors corresponding to the plurality of distributed data nodes.
  - 12. The method of claim 9, further comprising:
    - fragmenting the first encryption key and the different encryption key using an encryption key generator and key store;
      
      encrypting each key fragment; and
      
      storing, randomly, each encrypted key fragment on the plurality of distributed data nodes.
  - 13. The method of claim 12, further comprising adding database metadata to the key fragment, thereby providing fragmented and distributed metadata.
  - 14. The method of claim 13, wherein the database metadata includes at least one of a network configuration, database node locations, or a backup image expiration.
  - 15. The method of claim 9, wherein encrypting uses public key and private key encryption.

16. A computer program product comprising:
- one or more computer readable storage media and program instructions stored on the one or more computer readable storage media, the program instructions comprising instructions to;
  
  receive a database backup file from a database system;
  
  fragment the database backup file into a plurality of fragments using a fragment engine;
  
  associate each fragment of the plurality of fragments with a node of a plurality of distributed data nodes, respectively, wherein the fragment is not stored on the node with which the fragment is associated;
  
  encrypt each fragment of the plurality of fragments using a first encryption key, thereby providing a plurality of encrypted fragments;
  
  store, randomly, the plurality of encrypted fragments on the plurality of distributed data nodes;
  
  retrieve, after a determined duration, the plurality of encrypted fragments;
  
  decrypt the plurality of encrypted fragments using the first encryption key, thereby providing a plurality of decrypted fragments;
  
  re-encrypt the plurality of decrypted fragments using a different encryption key, thereby providing a plurality of re-encrypted fragments; and
  
  store, randomly, the plurality of re-encrypted fragments on the plurality of distributed data nodes, wherein each fragment of the plurality of re-encrypted fragments is stored on a different node than that from which an encrypted fragment was retrieved;
  
  wherein the computer readable storage media are not transitory signals per se.
- View Dependent Claims (17, 18)
- - 17. The computer program product of claim 16, wherein the database system is unaware of a location of a stored fragment.
  - 18. The computer program product of claim 17, wherein the program instructions to store and retrieve the stored fragment are performed by database agents and node sensors corresponding to the plurality of distributed data nodes.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Barbas, Pedro M., Duffy, Joseph, Maycock, Ken, Tilson, David M.
Primary Examiner(s)
Schmidt, Kari
Assistant Examiner(s)
Baum, Ronald

Application Number

US15/704,562
Publication Number

US 20180012028A1
Time in Patent Office

222 Days
Field of Search

713165
US Class Current
CPC Class Codes

G06C 1/00   Computing aids in which the...

G06F 11/1448   Management of the data invo...

G06F 11/1464   for networked environments

G06F 16/182   Distributed file systems

G06F 21/602   Providing cryptographic fac...

G06F 21/6209   to a single file or object,...

G06F 2201/80   Database-specific techniques

G06F 2201/805   Real-time

G06F 2221/2107   File encryption

G06F 3/067   Distributed or networked st...

H04L 67/1065   Discovery involving distrib...

H04L 67/1097   for distributed storage of ...

H04L 9/085   Secret sharing or secret sp...

H04L 9/0861   Generation of secret inform...

H04L 9/0891   Revocation or update of sec...

H04L 9/0894   Escrow, recovery or storing...

H04L 9/14   using a plurality of keys o...

H04L 9/30   Public key, i.e. encryption...

H04N 21/2318   using striping

Secure database backup and recovery

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Secure database backup and recovery

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links