What technology area does this patent fall under?

Primary CPC classification G06F21/606. Mapped technology areas include Physics.

When was this patent published?

Publication date Tue Jun 05 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).

Secure data parser method and system

US9992170B2 · US · B2

Patent metadata
Field	Value
Publication number	US-9992170-B2
Application number	US-201313915081-A
Country	US
Kind code	B2
Filing date	Jun 11, 2013
Priority date	Oct 25, 2004
Publication date	Jun 5, 2018
Grant date	Jun 5, 2018

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to protect data in motion by splitting original data into portions of data that may be communicated using multiple communications paths.

First claim

Opening claim text (preview).

What is claimed is: 1. A method of presenting a virtual disk to a client device, the method comprising: receiving, using a hardware processor, first client credentials from a first client device, the client credentials including a first client identifier; authenticating, using the using a hardware processor, the first client device at a secure storage device; determining, using the using a hardware processor, that a first volume is associated with the first client device based upon the first client identifier, the first volume comprising a directory mapped to a plurality of physical storage devices having stored thereon a first plurality of shares, wherein each of the first plurality of shares comprises a first subset of less than all of first original data, and wherein the first subset in each respective share was rearranged from an original order, and wherein the first plurality of shares includes data indicative of a cryptographic key used to secure the first data; upon determining that the first volume is associated with the first client device, presenting the first volume to the first client device such that physical locations of the first plurality shares are hidden from the first client device; receiving, using the hardware processor, second client credentials from a second client device; and upon determining that a second volume is associated with the second client device, presenting the second volume to the second client device such that physical locations of a second plurality of shares are hidden from the second client device. 2. The method of claim 1 , wherein presenting the volume to the first client includes providing access to data stored in the plurality of shares associated with the volume. 3. The method of claim 1 , further comprising establishing a secure connection between the first client device and the secure storage device. 4. The method of claim 1 , wherein the first plurality of shares contain a substantially random distribution of a unit of data. 5. The method of claim 1 , wherein the unit of data is restorable from at least two shares of the first plurality of shares. 6. The method of claim 5 , further comprising restoring the unit of data from at least two shares of the first plurality of shares, and wherein presenting the first volume to the first client device comprises presenting the restored unit of data. 7. The method of claim 1 , further comprising storing the different keys on a key management server. 8. A secure storage system comprising a programmable circuit configured to execute program instructions which, when executed, configure the secure storage system to: receive first client credentials from a first client device, the first client credentials including a first client identifier; authenticate the first client device at a secure storage device; determine that a first volume is associated with the first client device based upon the first client identifier, the first volume comprising a directory mapped to a plurality of physical storage devices having stored thereon a first plurality of shares, wherein each of the first plurality of shares comprises a subset of less than all of original data, and wherein the subset in each respective share was rearranged from an original order, and wherein the first plurality of shares includes data indicative of a cryptographic key used to secure the first data; upon determining that the first volume is associated with the first client device, present the first volume to the first client device such that physical locations of the first polarity of shares are hidden from the first client device; receive, using the hardware processor, second client credentials from a second client device; and upon determining that a second volume is associated with the second client device, present the second volume to the second client device such that physical locations of a second plurality of shares are hidden from the second client device. 9. The secure storage system of claim 8 , wherein the secure storage system is further configured to provide access to data stored in the first plurality of shares associated with the first volume. 10. The secure storage system of claim 8 , wherein the secure storage system is further configured to establish a secure connection between the first client device and the secure storage system. 11. The secure storage system of claim 8 , wherein the first plurality of shares contain a substantially random distribution of a unit of data. 12. The secure storage system of claim 8 , wherein the unit of data is restorable from at least two shares of the first plurality of shares. 13. The secure storage system of claim 12 , wherein the program instructions further configure the secure storage system to restore the unit of data from at least two shares of the first plurality of shares, and wherein the secure storage system is configured to present the first volume to the first client device by presenting the restored unit of data. 14. The secure storage system of claim 8 , further comprising a key management server configured to store the different keys. 15. A non-transitory computer readable medium storing computer executable instructions that, when executed by at least one processor, cause a computer system to carry out a method for presenting a virtual disk to a client device, the method comprising: receiving first client credentials from a first client device, the first client credentials including a first client identifier; authenticating the first client device at a secure storage device; determining that a first volume is associated with the first client device based upon the first client identifier, the first volume comprising a directory mapped to a plurality of physical storage devices having stored thereon a first plurality of shares, wherein each of the first plurality of shares comprises a subset of less than all of original data, and wherein the subset in each respective share was rearranged from an original order, and wherein the first plurality of shares includes data indicative of a cryptographic key used to secure the first data; upon determining that the first volume is associated with the first client device, presenting the first volume to the first client device such that physical locations of the first plurality of shares are hidden from the first client device; receiving, using the hardware processor, second client credentials from a second client device; and upon determining that a second volume is associated with the second client device, presenting the second volume to the second client device such that physical locations of a second plurality of shares are hidden from the second client device. 16. The non-transitory computer readable medium of claim 15 , wherein presenting the first volume to the first client devices includes providing access to data stored in the first plurality of shares associated with the first volume. 17. The non-transitory computer readable medium of claim 15 , wherein the instructions further comprise establishing a secure connection between the first client device and the secure storage device. 18. The non-transitory computer readable medium of claim 15 , wherein the first plurality of shares contain a substantially random distribution of a unit of data. 19. The non-transitory computer readable medium of claim 15 , wherein the unit of data is restorable from at least two shares of the first plurality of shares. 20. The non-transitory computer readable medium of claim 19 ,

Assignees

Security First Corp

Inventors

Classifications

G06F21/606Primary
by securing the transmission between two devices or processes · CPC title
H04L63/0428Primary
wherein the data content is protected, e.g. by encrypting or encapsulating the payload · CPC title
H04L63/0876
based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint · CPC title
H04L63/08
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title
H04L63/04
for providing a confidential data exchange among entities communicating through data packet networks · CPC title

Patent family

Related publications grouped by family.

View patent family 35912925

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US9992170B2 cover?: A secure data parser is provided that may be integrated into any suitable system for securely storing and communicating data. The secure data parser parses data and then splits the data into multiple portions that are stored or communicated distinctly. Encryption of the original data, the portions of data, or both may be employed for additional security. The secure data parser may be used to pr…
Who is the assignee on this patent?: Security First Corp
What technology area does this patent fall under?: Primary CPC classification G06F21/606. Mapped technology areas include Physics.
When was this patent published?: Publication date Tue Jun 05 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).