System and method for providing trusted links between applications
US-11972029-B2 · Apr 30, 2024 · US
Secure data parser method and system
US9338140B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9338140-B2 |
| Application number | US-201213468383-A |
| Country | US |
| Kind code | B2 |
| Filing date | May 10, 2012 |
| Priority date | Oct 25, 2004 |
| Publication date | May 10, 2016 |
| Grant date | May 10, 2016 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to protect data in motion by splitting original data into portions of data that may be communicated using multiple communications paths.
First claim
Opening claim text (preview).
What is claimed is: 1. A secure storage network comprising: a plurality of physical storage devices storing thereon a plurality of shares, the plurality of shares being associated with at least one session key used to secure a dataset; and a secure storage system configured to: present to a client device a virtual disk, the virtual disk comprising a directory mapped to the plurality of physical storage devices such that physical locations of the shares are hidden from the client device; generate the plurality of shares for storage on the plurality of physical storage devices by performing a securing operation on the dataset received from the client device and distributing the dataset in the shares; include with each of the plurality of shares data indicative of the at least one session key used to secure the dataset; and reconstitute the dataset from at least a portion of the plurality of shares stored on the physical storage devices in response to a request from the client device for information in the dataset. 2. The secure storage network of claim 1 , wherein the secure storage system is further configured to generate the plurality of shares by performing a cryptographic operation on the dataset. 3. The secure storage network of claim 1 , further comprising a key management server configured to store workgroup keys. 4. The secure storage network of claim 1 , wherein the secure storage system is further configured to provide access to the reconstituted dataset. 5. The secure storage network of claim 1 , wherein the secure storage system is further configured to establish a secure connection between the client device and the secure storage system. 6. The secure storage network of claim 1 , wherein the shares contain a substantially random distribution of the received dataset. 7. The secure storage network of claim 1 , wherein the secure storage system is configured to reconstitute the received dataset from fewer than all of the shares. 8. The secure storage network of claim 1 , wherein the secure storage system is configured to secure the dataset by encrypting the dataset using the at least one session key. 9. The secure storage network of claim 1 , wherein the secure storage system is configured to secure the dataset by splitting the dataset using the at least one session key. 10. The secure storage network of claim 1 , wherein the data indicative of the at least one session key comprises: a portion of the at least one session key or data indicative of a portion of the at least one session key. 11. A secure storage system comprising: a programmed hardware processor configured to: present to a client device a virtual disk, the virtual disk comprising a directory mapped to a plurality of physical storage devices such that physical locations of a plurality of shares are hidden from the client device; generate the plurality of shares for storage on the plurality of physical storage devices by performing a securing operation on a dataset received from the client device and distributing the dataset in the shares; include with each of the plurality of shares data indicative of at least one session key used to secure the dataset; and reconstitute the dataset from at least a portion of the plurality of shares stored on the physical storage devices in response to a request from the client device for information in the dataset. 12. The secure storage system of claim 11 , wherein the programmed hardware processor is further configured to generate the plurality of shares by performing a cryptographic operation on the dataset. 13. The secure storage system of claim 11 , wherein the programmed hardware processor is further configured to provide access to the reconstituted dataset. 14. The secure storage system of claim 11 , wherein the programmed hardware processor is further configured to establish a secure connection between the client device and the secure storage system. 15. The secure storage system of claim 11 , wherein the shares contain a substantially random distribution of the received dataset. 16. The secure storage system of claim 11 , wherein the programmed hardware processor is configured to reconstitute the received dataset from fewer than all of the shares. 17. The secure storage system of claim 11 , wherein the data indicative of the at least one session key comprises: a portion of the at least one session key or data indicative of a portion of the at least one session key.
Assignees
Inventors
Classifications
- G06F21/606Primary
by securing the transmission between two devices or processes · CPC title
to a system of files or objects, e.g. local or distributed file system or database · CPC title
Multichannel or multilink protocols · CPC title
involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements (network architectures or network communication protocols for supporting authentication of entities using certificates in a packet data network H04L63/0823) · CPC title
for providing a confidential data exchange among entities communicating through data packet networks · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9338140B2 cover?
- A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to pr…
- Who is the assignee on this patent?
- O'Hare Mark S, Orsini Rick L, Davenport Roger S, and 2 more
- What technology area does this patent fall under?
- Primary CPC classification G06F21/606. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue May 10 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).