公开(公告)号：US07958356B1

公开(公告)日：2011-06-07

申请号：US11540441

申请日：2006-09-29

Applicant: Ananthan Subramanian ,  Robert Jan Sussland ,  Lawrence Wen-Hao Chang

Inventor： Ananthan Subramanian ,  Robert Jan Sussland ,  Lawrence Wen-Hao Chang

IPC: H04L9/32 ,  H04L9/00 ,  H04L9/08 ,  H04L9/12

CPC classification number: H04L9/0841

Abstract: A system and method securely establishes a shared secret among nodes of a security appliance. The shared secret is established by distributing private keys among the nodes in accordance with a node ring protocol that uses a predetermined encryption algorithm to generate messages containing the keys. Briefly, each node is initially notified as to the number of nodes participating in the shared secret establishment. Each node generates a public-private key-pair, as well as a first message that includes the generated public key and an indication of the source of the generated public key (hereinafter “source generated public key”). The node then sends the first message to an adjacent node of the appliance. Upon receiving the first message, each node extracts the source generated public key from the message and stores the extracted information into a data structure of “partner” public keys. The protocol then continues with each node generating additional messages equal to the number of participating nodes minus one. At that point, each node combines its private key with its partner public keys stored in the data structure to generate a value that is common among all of the participating nodes. This common value is then used to derive the shared secret.

Abstract translation: 系统和方法在安全设备的节点之间安全地建立共享秘密。 通过根据使用预定加密算法的节点环协议来分发节点之间的私钥以生成包含密钥的消息来建立共享秘密。 简而言之，每个节点最初被通知参与共享秘密机构的节点数量。 每个节点生成公共 - 私人密钥对，以及包括生成的公钥的第一消息和所生成的公钥的源的指示（以下称为“源生成的公钥”）。 节点然后将第一个消息发送到设备的相邻节点。 在接收到第一消息时，每个节点从消息中提取源生成的公钥，并将提取的信息存储到“伙伴”公钥的数据结构中。 然后，该协议继续，每个节点产生等于参与节点数减去1的附加消息。 此时，每个节点将其私有密钥与存储在数据结构中的伙伴公钥相结合，以生成在所有参与节点中共同的值。 然后使用这个常用值来导出共享密钥。

公开(公告)号：US07953878B1

公开(公告)日：2011-05-31

申请号：US11869365

申请日：2007-10-09

Applicant: Carlisle Cobb Trimble

Inventor： Carlisle Cobb Trimble

IPC: G06F15/16

CPC classification number: H04L69/12 ,  H04L69/32

Abstract: Embodiments herein provide a computer system having an operating system that implements a multi-threaded iSCSI socket software layer. The multi-threaded iSCSI socket software layer may operate in conjunction with a single-threaded iSCSI protocol software layer to process network data according to the iSCSI protocol standard. Provided are protections against operational incompatibilities between the multi-threaded iSCSI socket layer and the single-threaded iSCSI protocol layer. A unique identifier may be assigned to each iSCSI socket thread to ensure proper delivery of thread messages to the appropriate iSCSI socket thread. A separate freed list may be allocated for each iSCSI socket thread, wherein the iSCSI protocol thread adds data structures to the freed list and a single iSCSI socket thread removes and uses data structures from the freed list. The multi-threaded iSCSI socket software layer reduces processor idle time, thus increasing data processing efficiency and overall network data throughput.

Abstract translation: 本文的实施例提供了具有实现多线程iSCSI套接字软件层的操作系统的计算机系统。 多线程iSCSI套接字软件层可以与单线程iSCSI协议软件层一起运行，以根据iSCSI协议标准处理网络数据。 提供了防止多线程iSCSI插槽层和单线程iSCSI协议层之间的操作不兼容性的保护。 可以为每个iSCSI套接字线程分配唯一的标识符，以确保线程消息正确传递到相应的iSCSI套接字线程。 可以为每个iSCSI套接字线程分配单独的释放列表，其中iSCSI协议线程将数据结构添加到释放的列表，单个iSCSI套接字线程将从释放的列表中删除并使用数据结构。 多线程iSCSI套接字软件层可减少处理器空闲时间，从而提高数据处理效率和整体网络数据吞吐量。

公开(公告)号：US20110125797A1

公开(公告)日：2011-05-26

申请号：US13022470

申请日：2011-02-07

Applicant: Rupesh Nasre ,  Mahanteshar C. M.

Inventor： Rupesh Nasre ,  Mahanteshar C. M.

IPC: G06F17/30 ,  G06F5/14

CPC classification number: G06F3/0611 ,  G06F3/0631 ,  G06F3/064 ,  G06F3/067 ,  G06F3/0683

Abstract: In an embodiment of the invention, an apparatus uses a LUN (logical unit number) data type for storage allocation. The apparatus includes a storage appliance that specifies a LUN data type for a LUN. The storage appliance then allocates data blocks in the LUN based on the LUN data type. The storage appliance allocates data blocks in the LUN as contiguous data blocks or as non-contiguous data blocks, based on the LUN data type. The LUN data type may be, for example, database data type, user data type, or binary data type.

Abstract translation: 在本发明的实施例中，设备使用LUN（逻辑单元号）数据类型进行存储分配。 该设备包括指定LUN的LUN数据类型的存储设备。 然后，存储设备将根据LUN数据类型在LUN中分配数据块。 存储设备根据LUN数据类型将LUN中的数据块分配为连续数据块或非连续数据块。 LUN数据类型可以是例如数据库数据类型，用户数据类型或二进制数据类型。

公开(公告)号：US07945752B1

公开(公告)日：2011-05-17

申请号：US12057301

申请日：2008-03-27

Applicant: Steve C. Miller ,  Jeffrey S. Kimmel

Inventor： Steve C. Miller ,  Jeffrey S. Kimmel

IPC: G06F12/00

CPC classification number: G06F3/0611 ,  G06F3/0659 ,  G06F3/0688 ,  G06F11/1044 ,  G06F11/108 ,  G06F12/0246 ,  G06F2212/7208

Abstract: A technique for achieving consistent read latency from an array of non-volatile solid-state memories involves an external entity determining the “busy” or “not busy” status of non-volatile solid-state memory elements in a RAID group. An external data layout engine then uses parity based RAID data reconstruction to avoid having to read from any memory element that is busy in a RAID group, along with careful scheduling of writes and erasures.

Abstract translation: 用于从非易失性固态存储器阵列实现一致的读取延迟的技术涉及确定RAID组中的非易失性固态存储器元件的“忙”或“不忙”状态的外部实体。 然后，外部数据布局引擎使用基于奇偶校验的RAID数据重建，以避免必须从在RAID组中忙碌的任何存储器元件读取以及仔细调度写入和擦除。

公开(公告)号：US07944936B2

公开(公告)日：2011-05-17

申请号：US11426258

申请日：2006-06-23

Applicant: Dan Avida ,  Serge Plotkin

Inventor： Dan Avida ,  Serge Plotkin

IPC: H04L12/28

CPC classification number: H04L45/10 ,  H04L45/46 ,  H04L49/254 ,  H04L49/30 ,  H04L49/357 ,  H04Q11/0005 ,  H04Q11/0071 ,  H04Q2011/0015 ,  H04Q2011/0024 ,  H04Q2011/003 ,  H04Q2011/0069 ,  H04Q2011/0084 ,  Y10S370/912

Abstract: An apparatus and method for connecting a plurality of computing devices, e.g. web servers, database servers, etc., to a plurality of storage devices, such as disks, disk arrays, tapes, etc., by using a stream-oriented (circuit oriented) switch that has high throughput, but that requires non-negligible time for reconfiguration is disclosed. An example of such stream-oriented switch is an optical switch. The system decodes the requests from the computing devices and uses this information to create circuits, e.g. optical paths in embodiments where the stream-oriented switch is an optical switch, through the stream-oriented switch. The system uses these circuits to route traffic between the computing devices and the storage devices. Buffering of data and control in the device memory is used to improve overall throughput and reduce the time spent on reconfigurations.

Abstract translation: 一种用于连接多个计算设备的设备和方法，例如， 网络服务器，数据库服务器等通过使用具有高吞吐量的面向流（面向电路）的开关，但需要不可忽略的多个存储设备，例如磁盘，磁盘阵列，磁带等 公开了重新配置的时间。 这种面向流的交换机的一个例子是光开关。 系统解码来自计算设备的请求，并使用该信息来创建电路，例如， 通过面向流的交换机，其中面向流的交换机是光学交换机的实施例中的光路径。 系统使用这些电路在计算设备和存储设备之间路由流量。 缓冲设备内存中的数据和控制可用于提高总体吞吐量，并减少重新配置所花费的时间。

公开(公告)号：US07934066B2

公开(公告)日：2011-04-26

申请号：US12113012

申请日：2008-04-30

Applicant: Yuedong Paul Mu ,  Sajeev Aravindan

Inventor： Yuedong Paul Mu ,  Sajeev Aravindan

IPC: G06F12/00

CPC classification number: G06F11/1458 ,  G06F11/1451 ,  G06F11/1461 ,  G06F11/1464 ,  G06F11/1469 ,  G06F2201/84

Abstract: An archive method and system receives a backup request for a target dataset used by an application on a primary storage system to be backed up on a secondary storage system. Different applications may each have a corresponding proprietary application format for storing their datasets. An application translator module is loaded into an extensible backup manager that converts between a proprietary application format associated with the target dataset and a predetermined storage format used by the extensible backup manager. The application translator module converts from the proprietary application format into the predetermined storage format when the baseline backup of the target dataset has not yet been performed. An incremental backup uses the application translator module to convert from the proprietary application format associated with the application into the predetermined storage format of the extensible backup manager. Once completed, a data mover component causes the incremental backup and the baseline backup of the entire target dataset, if scheduled, to be moved from the primary storage to the secondary storage and stored in the predetermined storage format rather than the proprietary application format associated with the application.

Abstract translation: 归档方法和系统接收对要备份在辅助存储系统上的主存储系统上的应用程序使用的目标数据集的备份请求。 不同的应用程序可能各自具有用于存储其数据集的相应的专用应用程序格式。 应用翻译器模块被加载到可扩展备份管理器中，该可管理备份管理器在与目标数据集相关联的专有应用格式与可扩展备份管理器使用的预定存储格式之间进行转换。 当目标数据集的基准备份尚未执行时，应用程序转换器模块将专有应用程序格式转换为预定的存储格式。 增量备份使用应用翻译器模块将与应用相关联的专有应用格式转换为可扩展备份管理器的预定存储格式。 一旦完成，数据移动器组件将导致整个目标数据集的增量备份和基准备份（如果已安排）从主存储器移动到辅助存储器并以预定的存储格式而不是与相关的专有应用程序格式存储 应用程序。

公开(公告)号：US07930475B1

公开(公告)日：2011-04-19

申请号：US11709697

申请日：2007-02-22

Applicant: Steven R. Kleiman ,  Rajesh Sundaram ,  Douglas P. Doucette ,  Stephen H. Strange ,  Srinivasan Viswanathan

Inventor： Steven R. Kleiman ,  Rajesh Sundaram ,  Douglas P. Doucette ,  Stephen H. Strange ,  Srinivasan Viswanathan

IPC: G06F12/02

CPC classification number: G06F3/0613 ,  G06F3/0643 ,  G06F3/0655 ,  G06F3/0689 ,  G06F11/1076

Abstract: A method for storing data on a plurality of storage devices of a storage system is disclosed. The data is received as data blocks from a plurality of write requests. The data blocks are saved as buffered data for writing to the storage devices in a single write request. An indication is received indicating the available storage blocks on the plurality of storage devices which are available for writing. The buffered data is associated with selected storage blocks of the storage blocks which are available for writing. The buffered data is written to the selected storage blocks in a single write request.

Abstract translation: 公开了一种在存储系统的多个存储装置上存储数据的方法。 数据作为来自多个写入请求的数据块被接收。 数据块被保存为缓冲数据，以便在单个写入请求中写入存储设备。 接收到指示可用于写入的多个存储设备上的可用存储块的指示。 缓存的数据与可用于写入的存储块的所选存储块相关联。 缓冲的数据在单个写入请求中写入所选择的存储块。

公开(公告)号：US07930473B2

公开(公告)日：2011-04-19

申请号：US11770261

申请日：2007-06-28

Applicant: Vijayan Rajan ,  David Brittain Bolen

Inventor： Vijayan Rajan ,  David Brittain Bolen

IPC: G06F13/00 ,  G06F13/28 ,  G06F15/167

CPC classification number: G06F3/0661 ,  G06F3/0605 ,  G06F3/0638 ,  G06F3/067 ,  Y10S707/99953 ,  Y10S707/99956

Abstract: A technique enables application data stored on storage devices of a storage system to be accessible by a client as either a file or logical unit number (lun). The storage system is illustratively embodied as a multi-protocol storage appliance having a storage operating system that implements a file system. The file system logically organizes the application data as a virtual disk (vdisk) comprising a plurality of inodes including a prefix stream inode, a lun inode (storing the application data) and a suffix stream inode. The prefix and suffix stream inodes allow the vdisk to be shared over a block-based protocol or a file-based protocol by enabling apportionment of client operating system dependent storage device contents from application data contents of the vdisk.

Abstract translation: 一种技术使得存储在存储系统的存储设备上的应用数据可以由客户机访问，作为文件或逻辑单元号（lun）。 存储系统示意性地实现为具有实现文件系统的存储操作系统的多协议存储设备。 文件系统将应用程序数据逻辑地组织为虚拟磁盘（虚拟磁盘），该虚拟磁盘包括多个包含前缀流inode，lun inode（存储应用程序数据）和后缀流inode的inode。 前缀和后缀流inode允许通过基于块的协议或基于文件的协议来共享虚拟磁盘，方法是通过从虚拟磁盘的应用程序数据内容中分配与客户机操作系统相关的存储设备内容。

公开(公告)号：US07921077B2

公开(公告)日：2011-04-05

申请号：US11478272

申请日：2006-06-29

Applicant: Daniel Ting ,  Ling Zheng ,  Stephen L. Manley ,  John Frederick DeStefano

Inventor： Daniel Ting ,  Ling Zheng ,  Stephen L. Manley ,  John Frederick DeStefano

IPC: G06F17/30

CPC classification number: G06F11/1435 ,  G06F11/1453 ,  G06F2201/84

Abstract: A system and method for managing data deduplication of a storage system utilizing persistent consistency point images (PCPIs). Once a target PCPI of a data transfer is generated, a backup management module of the storage system alerts a data deduplication module to begin deduplication of the data contained within the target PCPI. Once the deduplication procedure has been completed, the active file system of the storage system has been deduplicated, however, the target PCPI remains un-deduplicated. In response, the backup management module generates and exports a revised target PCPI. The previous target PCPI may then be deleted, thereby transitioning the exported PCPI's image of the state of the file system to a deduplicated state.

Abstract translation: 一种使用持久一致性点图像（PCPI）来管理存储系统的重复数据删除的系统和方法。 一旦产生了数据传输的目标PCPI，则存储系统的备份管理模块警告重复数据消除模块以开始重复数据删除目标PCPI中包含的数据。 重复数据删除过程完成后，存储系统的活动文件系统已被重复数据删除，但目标PCPI保持未重复数据删除。 作为响应，备份管理模块生成并导出修订的目标PCPI。 然后可以删除先前的目标PCPI，从而将导出的PCPI的​​文件系统的状态的图像转换为重复数据删除的状态。

公开(公告)号：US07917665B1

公开(公告)日：2011-03-29

申请号：US12110138

申请日：2008-04-25

Applicant: Wayne Booth ,  Melvin McGee

Inventor： Wayne Booth ,  Melvin McGee

IPC: G06F13/00

CPC classification number: G06F13/385 ,  G06F11/008 ,  G06F11/3041 ,  G06F11/3055 ,  G06F2213/0028 ,  G06F2213/0032

Abstract: Method and system is provided where PHY state change (PHY CHANGE) notifications from one or more PHYs in a storage infrastructure are monitored as a potential error condition. The rate of PHY CHANGE notifications is monitored to determine if the rate of PHY CHANGE notifications may cause a loss of service or degrade I/O performance. An excessive rate of PHY CHANGE notification that may cause a loss of service is detected by comparing a current PHY CHANGE count with burst threshold value. The current PHY CHANGE count is also compared to an operational threshold value to detect if the rate of PHY CHANGE notification may result in degradation of overall I/O performance. If the PHY CHANGE count for a PHY equals or exceeds the burst threshold value or the operational threshold value, then the PHY is disabled.

Abstract translation: 提供了将存储基础设施中的一个或多个PHY的PHY状态改变（PHY CHANGE）通知作为潜在错误状况进行监视的方法和系统。 监视PHY CHANGE通知的速率以确定PHY CHANGE通知的速率是否可能导致服务丢失或降低I / O性能。 通过将当前PHY更改计数与突发阈值进行比较，可以检测到可能导致服务丢失的PHY CHANGE通知过多。 当前的PHY CHANGE计数也与操作阈值进行比较，以检测PHY CHANGE通知的速率是否可能导致整体I / O性能下降。 如果PHY的PHY更改计数等于或超过突发阈值或操作阈值，则禁用PHY。