Segment deduplication system with encryption and compression of segments

US 8,731,190 B2
Filed: 06/09/2009
Issued: 05/20/2014
Est. Priority Date: 06/09/2009
Status: Active Grant

First Claim

Patent Images

1. A system for deduplicated storage of encrypted compressed data, comprising:

a processor configured to;

determine whether an encrypted compressed segment has been previously stored based at least in part on an identifier associated with the encrypted compressed segment, wherein the encrypted compressed segment was determined by breaking a data stream, a data block, or a data file into one or more segments and compressing and then encrypting each of the one or more segments, and wherein one segment of the one or more segments is used to reconstruct more than one data stream, data block, or data file, wherein for a first segment and a second segment that is identical to the first segment, an encrypted compressed first segment is identical to an encrypted compressed second segment;

in the event that the encrypted compressed segment has not been previously stored, store the encrypted compressed segment;

in the event that the encrypted compressed segment has been previously stored, store a reference to the previously stored encrypted compressed segment, wherein the reference is used to retrieve the previously stored encrypted compressed segment to reconstruct the data stream, data block, or data file; and

a memory coupled to the processor and configured to provide the processor with instructions.

View all claims

12 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system for storing encrypted compressed data comprises a processor and a memory. The processor is configured to determine whether an encrypted compressed segment has been previously stored. The encrypted compressed segment was determined by breaking a data stream, a data block, or a data file into one or more segments and compressing and then encrypting each of the one or more segments. The processor is further configured to store the encrypted compressed segment in the event that the encrypted compressed segment has not been previously stored. The memory is coupled to the processor and configured to provide the processor with instructions.

84 Citations

View as Search Results

18 Claims

1. A system for deduplicated storage of encrypted compressed data, comprising:
- a processor configured to;
  
  determine whether an encrypted compressed segment has been previously stored based at least in part on an identifier associated with the encrypted compressed segment, wherein the encrypted compressed segment was determined by breaking a data stream, a data block, or a data file into one or more segments and compressing and then encrypting each of the one or more segments, and wherein one segment of the one or more segments is used to reconstruct more than one data stream, data block, or data file, wherein for a first segment and a second segment that is identical to the first segment, an encrypted compressed first segment is identical to an encrypted compressed second segment;
  
  in the event that the encrypted compressed segment has not been previously stored, store the encrypted compressed segment;
  
  in the event that the encrypted compressed segment has been previously stored, store a reference to the previously stored encrypted compressed segment, wherein the reference is used to retrieve the previously stored encrypted compressed segment to reconstruct the data stream, data block, or data file; and
  
  a memory coupled to the processor and configured to provide the processor with instructions.
- View Dependent Claims (2, 3, 4)
- - 2. A system as in claim 1, wherein the breaking the data stream, the data block, or the data file is based at least in part on one of the following:
    - a content-based technique or a non-content-based technique.
  - 3. A system as in claim 1, wherein compressing comprises compressing using one of the following:
    - a lossless compression system, a Huffman coding system, or a Lempel-Ziv Welch coding system.
  - 4. A system as in claim 1, wherein encrypting comprises encrypting using one of the following:
    - a stream cipher system, a cipher feedback system, an electronic code book system, an AES system, or a DES system.

5. A method for deduplicated storage of encrypted compressed data, comprising:
- determining, using a processor, whether an encrypted compressed segment has been previously stored based at least in part on an identifier associated with the encrypted compressed segment, wherein the encrypted compressed segment is determined by breaking a data stream, a data block, or a data file into one or more segments and compressing and then encrypting each of the one or more segments, and wherein one segment of the one or more segments is used to reconstruct more than one data stream, data block, or data file, wherein for a first segment and a second segment that is identical to the first segment, an encrypted compressed first segment is identical to an encrypted compressed second segment;
  
  in the event that the encrypted compressed segment has not been previously stored, storing the encrypted compressed segment; and
  
  in the event that the encrypted compressed segment has been previously stored, storing a reference to the previously stored encrypted compressed segment, wherein the reference is used to retrieve the previously stored encrypted compressed segment to reconstruct the data stream, data block, or data file.
- View Dependent Claims (6, 7, 8)
- - 6. A method as in claim 5, wherein the breaking the data stream, the data block, or the data file is based at least in part on one of the following:
    - a content-based technique or a non-content-based technique.
  - 7. A method as in claim 5, wherein compressing comprises compressing using one of the following:
    - a lossless compression system, a Huffman coding system, or a Lempel-Ziv Welch coding system.
  - 8. A method as in claim 5, wherein encrypting comprises encrypting using one of the following:
    - a stream cipher system, a cipher feedback system, an electronic code book system, an AES system, or a DES system.

9. A computer program product for deduplicated storage of encrypted compressed data, the computer program product being embodied in a non-transitory computer readable storage medium and comprising computer instructions for:
- determining, using a processor, whether an encrypted compressed segment has been previously stored based at least in part on an identifier associated with the encrypted compressed segment, wherein the encrypted compressed segment is determined by breaking a data stream, a data block, or a data file into one or more segments and compressing and then encrypting each of the one or more segments, and wherein one segment of the one or more segments is used to reconstruct more than one data stream, data block, or data file, wherein for a first segment and a second segment that is identical to the first segment, an encrypted compressed first segment is identical to an encrypted compressed second segment;
  
  in the event that the encrypted compressed segment has not been previously stored, storing the encrypted compressed segment; and
  
  in the event that the encrypted compressed segment has been previously stored, storing a reference to the previously stored encrypted compressed segment, wherein the reference is used to retrieve the previously stored encrypted compressed segment to reconstruct the data stream, data block, or data file.

10. A system for reading encrypted compressed data, comprising:
- a deduplicated storage device;
  
  a processor configured to;
  
  decrypt one or more encrypted compressed segments stored in the deduplicated storage device, wherein the one or more encrypted compressed segments were determined by breaking a data stream, a data block, or a data file into one or more segments and compressing and then encrypting each of the one or more segments, wherein one segment of the one or more segments is used to reconstruct more than one data stream, data block, or data file, and wherein the one or more encrypted compressed segments are each associated with a stored identifier, wherein for a first encrypted compressed segment and a second encrypted compressed segment that is identical to the first encrypted compressed segment, a decrypted decompressed first encrypted compressed segment is identical to a decrypted decompressed second encrypted compressed segment;
  
  decompress the one or more decrypted compressed segments; and
  
  assemble the one or more decrypted decompressed segments to reconstruct the data stream, the data block, or the data file, wherein one of the one or more decrypted decompressed segments is used to reconstruct a second data stream, a second data block, or a second data file; and
  
  a memory coupled to the processor and configured to provide the processor with instructions.
- View Dependent Claims (11, 12, 13)
- - 11. A system as in claim 10, wherein the breaking the data stream, the data block, or the data file is based at least in part on one of the following:
    - a content-based technique or a non-content-based technique.
  - 12. A system as in claim 10, wherein compressing comprises compressing using one of the following:
    - a lossless compression system, a Huffman coding system, or a Lempel-Ziv Welch coding system.
  - 13. A system as in claim 10, wherein decrypting comprises decrypting using one of the following:
    - a stream cipher system, a cipher feedback system, an electronic code book system, an AES system, or a DES system.

14. A method for reading encrypted compressed data, comprising:
- decrypting, using a processor, one or more encrypted compressed segments stored in a deduplicated storage device, wherein the one or more encrypted compressed segments were determined by breaking a data stream, a data block, or a data file into one or more segments and compressing and then encrypting each of the one or more segments, wherein one segment of the one or more segments is used to reconstruct more than one data stream, data block, or data file, and wherein the one or more encrypted compressed segments are each associated with a stored identifier, wherein for a first encrypted compressed segment and a second encrypted compressed segment that is identical to the first encrypted compressed segment, a decrypted decompressed first encrypted compressed segment is identical to a decrypted decompressed second encrypted compressed segment;
  
  decompressing the one or more decrypted compressed segments; and
  
  assembling the one or more decrypted decompressed segments to reconstruct the data stream, the data block, or the data file, wherein at least one of the one or more decrypted decompressed segments is used to reconstruct a second data stream, a second data block, or a second data file.
- View Dependent Claims (15, 16, 17)
- - 15. A method as in claim 14, wherein the breaking the data stream, the data block, or the data file is based at least in part on one of the following:
    - a content-based technique or a non-content-based technique.
  - 16. A method as in claim 14, wherein compressing comprises compressing using one of the following:
    - a lossless compression system, a Huffman coding system, or a Lempel-Ziv Welch coding system.
  - 17. A method as in claim 14, wherein decrypting comprises decrypting using one of the following:
    - a stream cipher system, a cipher feedback system, an electronic code book system, an AES system, or a DES system.

18. A computer program product for reading encrypted compressed data, the computer program product being embodied in a non-transitory computer readable storage medium and comprising computer instructions for:
- decrypting, using a processor, one or more encrypted compressed segments stored on a deduplicated storage device, wherein the one or more encrypted compressed segments were determined by breaking a data stream, a data block, or a data file into one or more segments and compressing and then encrypting each of the one or more segments, wherein one segment of the one or more segments is used to reconstruct more than one data stream, data block, or data file, and wherein the one or more encrypted compressed segments are each associated with a stored identifier, wherein for a first encrypted compressed segment and a second encrypted compressed segment that is identical to the first encrypted compressed segment, a decrypted decompressed first encrypted compressed segment is identical to a decrypted decompressed second encrypted compressed segment;
  
  decompressing the one or more decrypted compressed segments; and
  
  assembling the one or more decrypted decompressed segments to reconstruct the data stream, the data block, or the data file, wherein one of the one or more decrypted decompressed segments is used to reconstruct a second data stream, a second data block, or a second data file.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Emc IP Holding Company LLC (Dell Technologies Inc.)
Original Assignee
EMC Corporation (Dell Technologies Inc.)
Inventors
Lumb, Christopher R.
Primary Examiner(s)
Rahman, Mohammad L

Application Number

US12/455,956
Publication Number

US 20100313040A1
Time in Patent Office

1,806 Days
Field of Search

380/217, 380/37, 380/269
US Class Current

380/37
CPC Class Codes

G06F 11/1402   Saving, restoring, recoveri...

G06F 16/1744   using compression, e.g. spa...

G06F 16/1748   De-duplication implemented ...

G06F 21/6218   to a system of files or obj...

G06F 2201/805   Real-time

G06F 3/0608   Saving storage space on sto...

G06F 3/0623   in relation to content

G06F 3/0641   De-duplication techniques

G06F 3/0689   Disk arrays, e.g. RAID, JBOD

H04L 2209/30   Compression, e.g. Merkle-Da...

H04L 2209/34   Encoding or coding, e.g. Hu...

H04L 9/0618   Block ciphers, i.e. encrypt...

Segment deduplication system with encryption and compression of segments

First Claim

12 Assignments

0 Petitions

Accused Products

Abstract

84 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Segment deduplication system with encryption and compression of segments

First Claim

12 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

84 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links