公开(公告)号：US20140298138A1

公开(公告)日：2014-10-02

申请号：US14305880

申请日：2014-06-16

Applicant: CLEVERSAFE, INC.

Inventor： S. Christopher Gladwin ,  Thomas Franklin Shirley, JR. ,  Jason K. Resch

IPC: H03M13/11

CPC classification number: H04L67/1097 ,  G06F3/0652 ,  G06F9/06 ,  G06F11/108 ,  G06F11/1402 ,  G06F11/1412 ,  G06F2211/1035 ,  H03M13/1105 ,  H04L29/00 ,  H04L65/00 ,  H04L65/602 ,  H04L65/607 ,  H04L67/34 ,  H04N21/00 ,  H04N21/23109 ,  H04N21/2393 ,  H04N21/8586

Abstract: A method begins, as data objects are ingested, by determining, for each of some of the data objects, a priority indicator to produce a listing of priority indicators. The method continues for a data object by determining encoding parameters based on a corresponding priority indicator. The method continues by encoding the data object in accordance with the encoding parameters to produce a plurality of sets of encoded data slices and storing them. The method continues by identifying a first data object for analysis based on a corresponding priority indicator and an analysis priority. The method continues by decoding a plurality of sets of encoded data slices to recover the first data object and analyzing it in accordance with analysis criteria to determine its relevancy. The method continues by issuing a command to delete the plurality of sets of encoded data slices when the relevancy is below a threshold.

Abstract translation: 当数据对象被摄取时，通过为每个数据对象中的每一个确定优先级指标以产生优先级指标的列表，开始一种方法。 通过基于相应的优先级指示符来确定编码参数，该方法继续用于数据对象。 该方法通过根据编码参数编码数据对象来产生多组编码数据片并存储它们。 该方法通过基于相应的优先级指示符和分析优先级识别用于分析的第一数据对象来继续。 该方法通过解码多组编码数据片来继续，以恢复第一数据对象并根据分析标准对其进行分析以确定其相关性。 当相关性低于阈值时，继续执行删除多组编码数据片的命令。

公开(公告)号：US20140281804A1

公开(公告)日：2014-09-18

申请号：US14291205

申请日：2014-05-30

Applicant: CLEVERSAFE, INC.

Inventor： Jason K. Resch

IPC: G06F11/10 ,  G06F9/445

CPC classification number: G06F11/1096 ,  G06F3/0619 ,  G06F3/0665 ,  G06F3/0689 ,  G06F8/65 ,  G06F11/1076 ,  G06F2211/1028 ,  H04L67/1097

Abstract: In a dispersed storage network, data objects are dispersed storage error encoded into pluralities of sets of encoded data slices that are each stored in corresponding sets of storage units. To recover a data object, a read threshold number of encoded data slices from each set of encoded data slices of the plurality of sets of encoded data slices are required. Upon determining that an update is available for the storage units, a dispersed storage managing unit determines an updating sequence pattern that ensures that while one or more storage units are taken off line for the update, a sufficient number of storage units remain on line such that at least the read threshold number of encoded data slices are available for each set of encoded data slices.

Abstract translation: 在分散的存储网络中，数据对象被分散存储错误编码成多个编码数据片组，每组存储在相应的存储单元组中。 为了恢复数据对象，需要从多组编码数据片的每组编码数据片中读取阈值数量的编码数据片。 在确定更新可用于存储单元时，分散的存储管理单元确定更新序列模式，其确保在一个或多个存储单元被取消用于更新的同时，足够数量的存储单元保持在线，使得 编码数据片的读取阈值数至少可用于每组编码数据片。

公开(公告)号：US20140281223A1

公开(公告)日：2014-09-18

申请号：US14292206

申请日：2014-05-30

Applicant: CLEVERSAFE, INC.

Inventor： Jason K. Resch

IPC: G06F3/06

CPC classification number: G06F3/067 ,  G06F3/0619 ,  G06F3/065 ,  G06F11/1092 ,  G06F21/6272 ,  G06F2211/1028 ,  G06F2221/2107 ,  H04L9/085 ,  H04L9/0894 ,  H04L67/1097

Abstract: A method in a distributed storage (DS) unit begins by the unit receiving one or more data slices to store. The method continues by determining a memory utilization method for the one or more data slices. The method continues when a multiple memory utilization method is determined. The method continues by determining a data slice distribution method. The method continues by storing a plurality of the one or more data slices in the multiple memories using the data slice distribution method and updating a virtual address to physical location table to reflect the storing.

Abstract translation: 分布式存储（DS）单元中的方法由接收一个或多个要存储的数据片的单元开始。 该方法通过确定一个或多个数据片的存储器利用方法而继续。 当确定多存储器利用方法时，继续该方法。 该方法通过确定数据切片分配方法而继续。 该方法通过使用数据片分配方法将多个一个或多个数据片存储在多个存储器中并将虚拟地址更新到物理位置表以反映存储来继续。

公开(公告)号：US08839068B2

公开(公告)日：2014-09-16

申请号：US14107204

申请日：2013-12-16

Applicant: Cleversafe, Inc.

Inventor： Gary W. Grube ,  Timothy W. Markison ,  S. Christopher Gladwin ,  Greg Dhuse ,  Andrew Baptist ,  Ilya Volvovski ,  Jason K. Resch

IPC: H03M13/00 ,  H03M13/29 ,  G06F17/30 ,  G06F11/10 ,  H03M13/05 ,  H04L12/707 ,  H03M13/37

CPC classification number: H03M13/29 ,  G06F11/1028 ,  G06F11/1076 ,  G06F17/30194 ,  H03M13/05 ,  H03M13/1515 ,  H03M13/373 ,  H03M13/3761 ,  H04L45/24

Abstract: A method begins by a processing module obtaining a set of encoded data slices for transmission to a receiving entity via a network, wherein the set of encoded data slices represents data that has been dispersed storage error encoded. The method continues with the processing module dividing the set into a plurality of sub-sets of encoded data slices in accordance with an error coding distributed routing protocol. The method continues with the processing module determining a plurality of routing paths within the network in accordance with the error coding distributed routing protocol. The method continues with the processing module transmitting the plurality of sub-sets of encoded data slices via the plurality of routing paths to the receiving entity in accordance with the error coding distributed routing protocol.

Abstract translation: 一种方法从处理模块开始，获得用于经由网络发送到接收实体的编码数据片段集合，其中编码数据片段集合表示分散存储错误编码的数据。 该方法继续处理模块根据错误编码分布式路由协议将集合划分成多个编码数据片段子集。 该方法继续处理模块根据错误编码分布式路由协议确定网络内的多个路由路径。 该方法继续处理模块根据错误编码分布式路由协议经由多个路由路径将多个编码数据片段子集发送到接收实体。

公开(公告)号：US20140244788A1

公开(公告)日：2014-08-28

申请号：US14153319

申请日：2014-01-13

Applicant: CLEVERSAFE, INC.

Inventor： Jason K. Resch ,  Wesley Leggette

IPC: H04L29/08

CPC classification number: H04L67/1097

Abstract: A method begins by a dispersed storage (DS) processing module obtaining a transaction number and generating a set of temporary write commands regarding storage of a data segment in a dispersed storage network (DSN) memory, where a temporary write command includes the transaction number, an encoded portion of the data segment, and an implicit instruction that the encoded portion is not to be stored or made accessible in accordance with a conventional manner. The method continues with the DS processing module transmitting the set of temporary write commands to the DSN memory. When the temporarily stored data segment is to be read from the DSN memory, the method continues with the DS processing module generating a set of temporary read commands, where a temporary read command includes the transaction number, identity of the encoded portion, and an explicit instruction to read the encoded portion in violation of the conventional manner.

Abstract translation: 一种分散存储（DS）处理模块开始获取交易号码，并且生成关于在分散存储网络（DSN）存储器中存储数据段的一组临时写入命令，其中临时写入命令包括交易号码， 数据段的编码部分，以及根据常规方式，编码部分不被存储或使其可访问的隐含指令。 该方法继续DS处理模块向DSN存储器发送一组临时写入命令。 当要从DSN存储器读取临时存储的数据段时，该方法继续DS处理模块生成一组临时读取命令，其中临时读取命令包括事务号码，编码部分的身份以及显式的 违反常规方式读取编码部分的指令。

公开(公告)号：US08819516B2

公开(公告)日：2014-08-26

申请号：US13916138

申请日：2013-06-12

Applicant: Cleversafe, Inc.

Inventor： Greg Dhuse ,  Andrew Baptist ,  Zachary J. Mark ,  Jason K. Resch ,  Ilya Volvovski

IPC: G06F11/08 ,  H04L29/08 ,  H04L29/14 ,  G06F11/10

CPC classification number: G06F11/08 ,  G06F11/1076 ,  G06F2211/1028 ,  G06F2211/104 ,  H04L67/1097 ,  H04L69/40

Abstract: A storage integrity system in a dispersed storage network scans an address range of data slices to identify errors in one of a plurality of encoded data slices, wherein the plurality of encoded data slices are generated from a data segment using an error encoding dispersal function. When the storage integrity system detects an error, it identifies one of the encoded data slices for rebuilding. The identified data slice is rebuilt in response to the type of error. For example, when the type of the error includes a temporary error, the storage integrity system waits a predetermined time period to determine whether the error still exists prior to rebuilding the identified data slice.

Abstract translation: 分散存储网络中的存储完整性系统扫描数据片段的地址范围以识别多个编码数据片之一中的错误，其中使用错误编码分散功能从数据片段生成多个编码数据片。 当存储完整性系统检测到错误时，它会识别用于重建的编码数据切片之一。 识别的数据切片是根据错误类型重建的。 例如，当错误的类型包括临时错误时，存储完整性系统等待预定时间段以确定在重建所识别的数据切片之前该错误是否仍然存在。

公开(公告)号：US20140115334A1

公开(公告)日：2014-04-24

申请号：US14143583

申请日：2013-12-30

Applicant: CLEVERSAFE, INC.

Inventor： Jason K. Resch ,  Gary W. Grube ,  S. Christopher Gladwin ,  Thomas Franklin Shirley, JR. ,  Timothy W. Markison

IPC: H04L29/06

CPC classification number: H04L63/10 ,  G06F21/10 ,  H04L9/085 ,  H04L9/0863 ,  H04L9/0869 ,  H04L9/0894 ,  H04L63/08 ,  H04L63/083 ,  H04L67/1097 ,  H04L2209/04 ,  H04L2209/34

Abstract: A method begins by a processing module obtaining a set of recovered random numbers, decoding encrypted share slices to produce a set of encrypted shares, and obtaining a set of personalized authenticating values regarding user access to data. The method continues with the processing module generating a set of hidden passwords based on the set of personalized authenticating values, generating a set of blinded passwords based on the set of hidden passwords and a set of blinded random numbers, and generating a set of passkeys based on the set of blinded passwords and the set of recovered random numbers. The method continues with the processing module generating a set of decryption keys based on the set of blinded random numbers and the set of passkeys, decrypting the set of encrypted shares to produce a set of shares, and decoding the set of shares to reproduce the data.

Abstract translation: 一种方法由处理模块开始，获得一组恢复的随机数，解码加密的共享片以产生一组加密的共享，以及获得关于用户对数据的访问的一组个性化认证值。 该方法继续处理模块基于一组个性化认证值产生一组隐藏密码，基于隐藏密码集合和一组盲目随机数生成一组盲密码，并生成一组基于密钥的密码 在一组盲密码和一组恢复的随机数。 该方法继续处理模块，其基于盲密码随机数集合和密钥集合来生成一组解密密钥，解密该组加密共享以产生一组共享，以及解码该组共享以再现数据 。

公开(公告)号：US20140108493A1

公开(公告)日：2014-04-17

申请号：US14132020

申请日：2013-12-18

Applicant: CLEVERSAFE, INC.

Inventor： Jason K. Resch ,  Bart Cilfone

IPC: H04L29/08

CPC classification number: G06F3/061 ,  G06F11/1076 ,  G06F11/1092 ,  G06F2211/1028 ,  H04L67/1097 ,  H04N21/20 ,  H04N21/218

Abstract: A distributed storage network generates a plurality of data segments from a data object and stores each of the plurality of data segments as a plurality of encoded data slices generated from an error encoding dispersal function. When the distributed storage network receives a modification request for the data object, it determines a size of the plurality of data segments of the data object from a segment size field and identifies one of the plurality of data segments requiring modification. The identified data segment is reconstructed from the plurality of encoded data slices and modified in accordance with the modification request.

Abstract translation: 分布式存储网络从数据对象生成多个数据段，并将多个数据段中的每一个存储为从错误编码分散功能生成的多个编码数据片段。 当分布式存储网络接收到数据对象的修改请求时，它从段大小字段确定数据对象的多个数据段的大小，并且识别需要修改的多个数据段中的一个。 所识别的数据段是从多个编码数据片段重建的，并根据修改请求进行修改。

公开(公告)号：US20140040624A1

公开(公告)日：2014-02-06

申请号：US14051588

申请日：2013-10-11

Applicant: CLEVERSAFE, INC.

Inventor： Jason K. Resch

IPC: H04L9/32

CPC classification number: G06F11/1092 ,  G06F11/1004 ,  G06F11/1024 ,  G06F12/1483 ,  G06F13/00 ,  G06F15/16 ,  G06F17/30 ,  G06F21/44 ,  H04L9/32 ,  H04L9/3297 ,  H04L63/0281 ,  H04L63/0823 ,  H04L63/0884 ,  H04L63/10 ,  H04L63/101 ,  H04L63/20 ,  H04L67/1097

Abstract: A method for securely publishing an access control list begins with a DS managing unit generating an authentic and time-stamped access control list from the access control list, wherein the access control list provides a list of authorized accesses to the DSN. The method continues with the DS managing unit sending the authentic and time-stamped access control list to a publisher unit. The method continues with the publishing unit sending the authentic and time-stamped access control list to a plurality of DS units.

Abstract translation: 用于安全地发布访问控制列表的方法从DS管理单元开始，DS管理单元从访问控制列表生成真实和时间戳的访问控制列表，其中访问控制列表提供对DSN的授权访问的列表。 该方法继续，DS管理单元向发布者单元发送真实且有时间戳的访问控制列表。 该方法继续发布单元向多个DS单元发送真实和时间戳的访问控制列表。

公开(公告)号：US20130347079A1

公开(公告)日：2013-12-26

申请号：US13889942

申请日：2013-05-08

Applicant: CLEVERSAFE, INC.

Inventor： S. Christopher Gladwin ,  Timothy W. Markison ,  Greg Dhuse ,  Thomas Franklin Shirley, JR. ,  Wesley Leggette ,  Jason K. Resch ,  Gary W. Grube

IPC: G06F12/14

CPC classification number: G06F11/1076 ,  G06F3/06 ,  G06F3/0619 ,  G06F3/064 ,  G06F3/067 ,  G06F12/1458 ,  G06F21/00 ,  G06F21/6218 ,  G06F2211/1028 ,  H03M13/2903 ,  H04L67/1097

Abstract: A method begins by a dispersed storage (DS) processing module receiving data objects from a plurality of authorized users and determining a system level storage efficiency preference for a data object. The method continues with the DS processing module selecting a set of storage nodes of an on-line media storage system based on the system level storage efficiency preference and determining dispersed storage error encoding parameters. The method continues with the DS processing module encoding the data object in accordance with the dispersed storage error encoding parameters to produce encoded data slices and generating system addressing information. The method continues with the DS processing module storing the encoded data slices in the set of storage nodes using the system addressing information and updating a user profile for the authorized user to include the system addressing information.

Abstract translation: 一种分散存储（DS）处理模块从多个授权用户接收数据对象并确定数据对象的系统级存储效率偏好的方法开始。 该方法继续DS处理模块基于系统级存储效率偏好来选择在线媒体存储系统的一组存储节点，并确定分散的存储错误编码参数。 该方法继续DS处理模块根据分散的存储错误编码参数对数据对象进行编码以产生编码数据片并生成系统寻址信息。 该方法继续DS处理模块使用系统寻址信息将编码的数据切片存储在该组存储节点中，并且更新授权用户的用户简档以包括系统寻址信息。