Secure data parser method and system
First Claim
Patent Images
1. A method for securing streaming of a data set from a first location to a second location, the method comprising:
- generating, using processing circuitry at the first location, at least two portions of data from the data set, wherein each of the at least two portions of data respectively contains a substantially random distribution of a respective subset of the data set;
streaming from the first location to the second location the at least two portions of data over at least one communications path, wherein the at least two portions of data stream separately from each other as at least two streaming portions of data; and
restoring, using processing circuitry at the second location, data from at least a subset of the at least two streaming portions of data, wherein the data is restored as the at least two streaming portions of data are being received at the second location.
4 Assignments
0 Petitions
Accused Products
Abstract
A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to protect data in motion by splitting original data into portions of data, that may be communicated using multiple communications paths.
245 Citations
66 Claims
-
1. A method for securing streaming of a data set from a first location to a second location, the method comprising:
-
generating, using processing circuitry at the first location, at least two portions of data from the data set, wherein each of the at least two portions of data respectively contains a substantially random distribution of a respective subset of the data set; streaming from the first location to the second location the at least two portions of data over at least one communications path, wherein the at least two portions of data stream separately from each other as at least two streaming portions of data; and restoring, using processing circuitry at the second location, data from at least a subset of the at least two streaming portions of data, wherein the data is restored as the at least two streaming portions of data are being received at the second location. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A method for securing a data set, the method comprising:
-
generating, using processing circuitry, at least two portions of data from the data set, wherein each of the at least two portions of data respectively contains a substantially random distribution of a respective subset of the data set; storing the at least two portions of data on at least two data depositories, wherein the at least two data depositories are physically separate from each other; and using at least one of the at least two portions of data stored on at least one of the at least two data depositories as an authentication key stored in an authentication depository in order to restore the data set. - View Dependent Claims (19, 20, 21)
-
-
22. A method for securing a data set, the method comprising:
-
generating, using processing circuitry, at least two portions of data from the data set, wherein each of the at least two portions of data respectively contains a substantially random distribution of a respective subset of the data set; generating respective integrity information for each of the at least two portions of data; writing the respective integrity information to each of the at least two portions of data; storing each of the at least two portions of data separately; and restoring the data set from at least a subset of the at least two portions of data when the respective integrity information of the at least a subset of the at least two portions of data has been verified. - View Dependent Claims (23, 24, 25)
-
-
26. A method for securing a data set, the method comprising:
-
generating, using processing circuitry, at least two portions of data from the data set, wherein each of the at least two portions of data respectively contains a substantially random distribution of a respective subset of the data set; storing each of the at least two portions of data separately; and restoring the data set from at least a subset of the at least two portions of data, wherein at least one particular portion of data is required in order to restore the data set. - View Dependent Claims (27, 28, 29)
-
-
30. A method for securing a data set, the method comprising:
-
generating, using processing circuitry, at least two portions of data from the data set, wherein each of the at least two portions of data respectively contains a substantially random distribution of a respective subset of the data set, and wherein the probability that data from the data set is distributed to at least one of the at least two portions of data is less than the probability that data from the data set is distributed to a remainder of the at least two portions of data; storing each of the at least two portions of data separately; and restoring the data set from at least a subset of the at least two portions of data.
-
-
31. A method for securing a data set, the method comprising:
-
generating, using processing circuitry, at least two portions of data from the data set, wherein each of the at least two portions of data respectively contains a substantially random distribution of a respective subset of the data set, and wherein at least one of the at least two portions of data has a predetermined size; storing each of the at least two portions of data separately; and restoring the data set from at least a subset of the at least two portions of data. - View Dependent Claims (32, 33)
-
-
34. A method for securing a data set, the method comprising:
-
generating, using processing circuitry, at least two portions of data from the data set, wherein each of the at least two portions of data respectively contains a substantially random distribution of a respective subset of the data set, and wherein the probability that data from the data set is distributed to each of the at least two portions of data is substantially equal; storing each of the at least two portions of data separately; and restoring the data set from at least a subset of the at least two portions of data.
-
-
35. A method for securing a data set, the method comprising:
-
generating, using processing circuitry, according to a splitting key, at least two portions of data from the data set, wherein each of the at least two portions of data respectively contains a substantially random distribution of a respective subset of the data set; generating, according to a Shamir algorithm, splitting key information that is capable of being used to generate the splitting key, wherein the splitting key information is distributed among the at least two portions of data; storing each of the at least two portions of data separately; and restoring the data set from at least a subset of the at least two portions of data. - View Dependent Claims (36)
-
-
37. A method for securing a data set, the method comprising:
-
determining a number of portions of data into which to distribute the data set; generating a substantially random number; determining, using processing circuitry, into which of the portions of data to distribute each unit of data from the data set based on corresponding data from the substantially random number and distributing accordingly; storing the portions of data separately; and restoring the data set from at least a subset of the portions of data, wherein the determining into which of the portions of data to distribute each unit of data from the data set comprises determining into which of the portions of data to distribute each unit of data from the data set based on a hash function of corresponding data from the substantially random number. - View Dependent Claims (38, 39, 40, 41)
-
-
42. A method for securing a data set, the method comprising:
-
determining a number of portions of data into which to distribute the data set; generating a substantially random number; for each unit of data of the data set, splitting the unit of data into a left segment and a right segment by determining, based on corresponding data from the substantially random number, a splitting location wherein bits to the left of the splitting location represent the left segment and bits to the right of the splitting location represent the right segment; determining, using processing circuitry, into which of the portions of data to distribute each of the left segment and the right segment of each unit of data from the data set based on corresponding data from the substantially random number and distributing accordingly; storing the portions of data separately; and restoring the data set from at least a subset of the portions of data. - View Dependent Claims (43, 44, 45, 46, 47)
-
- 48. The method of 42 wherein the determining into which of the portions of data to distribute each of the left segment and the right segment comprises determining into which of the portions of data to distribute each of the left segment and the right segment of each unit of data from the data set based on a hash function of corresponding data from the substantially random number and based on a table containing an array of all possible distributions of the right segment and the left segment, wherein the hash function of the corresponding data from the substantially random number indicates which entry in the table to use, the entry indicating a destination portion for the left segment and a destination portion for the right segment.
-
50. A system for securing streaming of a data set from a first location to a second location, the system comprising:
-
a first processor for generating at the first location at least two portions of data from the data set, wherein each of the at least two portions of data respectively contains a substantially random distribution of a respective subset of the data set; at least one communications path over which are streamed the at least two portions of data from the first location to the second location, wherein the at least two portions of data stream separately from each other as at least two streaming portions of data; and a second processor for restoring at the second location data from at least a subset of the at least two streaming portions of data, wherein the data is restored as the at least two streaming portions of data are being received at the second location. - View Dependent Claims (51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66)
-
Specification