公开(公告)号：US09304843B2

公开(公告)日：2016-04-05

申请号：US13611622

申请日：2012-09-12

申请人： Jason K. Resch ,  Wesley Leggette ,  Gary W. Grube

发明人： Jason K. Resch ,  Wesley Leggette ,  Gary W. Grube

IPC分类号： G06F7/04 ,  G06F11/07 ,  H04L1/00 ,  G06F11/10 ,  G06F21/62 ,  H04L29/08 ,  G06F12/16

CPC分类号： G06F11/073 ,  G06F11/1076 ,  G06F21/62 ,  G06F2211/1028 ,  H04L1/0057 ,  H04L1/0061 ,  H04L1/0072 ,  H04L1/0083 ,  H04L67/1097

摘要： A method begins by a requesting entity sending a distributed storage network (DSN) access request to a request verification entity, wherein the DSN access request includes a signed certificate and DSN accessing information. The method continues by a request verification entity sending a signed DSN access request to the requesting entity when the request verification entity signs the DSN access request after verifying the signed certificate and the DSN accessing information. The method continues by the requesting entity sending the signed DSN access request to a DSN accessing entity. The method continues by the DSN accessing entity sending an authorized DSN access request to the DSN via a network connection when the DSN accessing entity verifies a signature of the request verification entity, wherein the authorized DSN access request includes, at a minimum, the DSN accessing information.

公开(公告)号：US09231768B2

公开(公告)日：2016-01-05

申请号：US13154740

申请日：2011-06-07

申请人： Jason K. Resch ,  Wesley Leggette

发明人： Jason K. Resch ,  Wesley Leggette

IPC分类号： H04L9/28 ,  H04L9/32 ,  H04W12/04 ,  G06F11/07 ,  G06F11/14 ,  H04L29/06 ,  G06F17/30 ,  G06F21/62

CPC分类号： G06F17/30091 ,  G06F11/0727 ,  G06F11/141 ,  G06F17/30097 ,  G06F21/6209 ,  H04L9/3242 ,  H04L9/3247 ,  H04L9/3263 ,  H04L9/3271 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/12 ,  H04L2209/043 ,  H04L2209/30 ,  H04L2209/34 ,  H04L2209/56 ,  H04L2209/80 ,  H04W12/04

摘要： A method begins by a processing module generating a deterministic key from data and encrypting the data using the deterministic key to produce encrypted data. The method continues with the processing module generating transformed data from the encrypted data and generating a masked key from the deterministic key and the transformed data. The method continues with the processing module combining the masked key and the encrypted data to produce a secure package.

摘要翻译： 一种方法从处理模块开始，从数据生成确定性密钥，并使用确定密钥对数据进行加密以产生加密数据。 该方法继续处理模块从加密数据生成经转换的数据，并从确定性密钥和变换数据生成屏蔽密钥。 该方法继续处理模块组合屏蔽密钥和加密数据以产生安全包。

公开(公告)号：US08656187B2

公开(公告)日：2014-02-18

申请号：US12547753

申请日：2009-08-26

申请人： Wesley Leggette ,  Jason K. Resch

发明人： Wesley Leggette ,  Jason K. Resch

IPC分类号： G06F12/14

CPC分类号： H04L9/085 ,  G06F21/6209 ,  H04L2209/16

摘要： A method operating on a computer begins by generating a read command to read at least some of a plurality of data slices from a dispersed storage network. The method continues by receiving the at least some of the plurality of data slices. The method continues by performing a reverse information dispersal algorithm on at least some of the plurality of data slices to produce a plurality of transposed data elements. The method continues by reverse transposing the plurality of transposed data elements to recover data elements of a data segment.

摘要翻译： 在计算机上操作的方法开始于生成读取命令以从分散的存储网络读取多个数据片段中的至少一些。 该方法通过接收多个数据切片中的至少一些来继续。 该方法通过在多个数据切片中的至少一些上执行反向信息分散算法来产生多个转置的数据元素。 该方法通过反向转置多个转置的数据元素来继续以恢复数据段的数据元素。

公开(公告)号：US08578205B2

公开(公告)日：2013-11-05

申请号：US13021664

申请日：2011-02-04

申请人： Wesley Leggette ,  Jason K. Resch

发明人： Wesley Leggette ,  Jason K. Resch

IPC分类号： G06F11/08

CPC分类号： G06F3/0619 ,  G06F3/0638 ,  G06F3/0689 ,  G06F11/2094 ,  G06F12/1425 ,  H04L63/10

摘要： A method begins by a processing module determining that a data storage request is a cloud data storage request. The method continues with the processing module determining at least one of a cloud storage access reliability indication and a cloud storage data reliability indication for the data storage request. The method continues with the processing module sending the data storage request and the at least one of cloud storage access reliability indication and cloud storage data reliability indication to a cloud storage system.

摘要翻译： 处理模块开始确定数据存储请求是云数据存储请求的方法。 该方法继续处理模块确定用于数据存储请求的云存储访问可靠性指示和云存储数据可靠性指示中的至少一个。 该方法继续处理模块向云存储系统发送数据存储请求和云存储访问可靠性指示和云存储数据可靠性指示中的至少一个。

公开(公告)号：US08522074B2

公开(公告)日：2013-08-27

申请号：US12842932

申请日：2010-07-23

申请人： Timothy W. Markison ,  Gary W. Grube ,  S. Christopher Gladwin ,  Alan E. Holmes ,  Wesley Leggette ,  Jason K. Resch

发明人： Timothy W. Markison ,  Gary W. Grube ,  S. Christopher Gladwin ,  Alan E. Holmes ,  Wesley Leggette ,  Jason K. Resch

IPC分类号： G06F11/00

CPC分类号： H04N21/2181 ,  G06F11/1008 ,  G06F11/1076 ,  G06F11/1092 ,  G11C29/52 ,  H03M13/09 ,  H03M13/15 ,  H03M13/1515 ,  H03M13/23 ,  H03M13/356 ,  H04N21/23439 ,  H04N21/2393 ,  H04N21/274 ,  H04N21/2747 ,  H04N21/6587

摘要： A method begins by a processing module receiving a first request to store a program. The method continues with the processing module determining first error coding dispersal storage function parameters and encoding a data segment of the program. The method continues with the processing module determining whether a second request to store the program is received. The method continues with the processing module encoding a second data segment of the program in accordance with the first error coding dispersal storage function parameters when the second request is not received. The method continues with the processing module changing the first error coding dispersal storage function parameters based on the another request to produce second error coding dispersal storage function parameters when the second request is received. The method continues with the processing module encoding the second data segment in accordance with the second error coding dispersal storage function parameters.

摘要翻译： 一种方法由处理模块开始，该处理模块接收存储程序的第一请求。 该方法继续处理模块确定第一错误编码分散存储功能参数并对程序的数据段进行编码。 该方法继续处理模块确定是否接收到存储程序的第二请求。 当不接收到第二请求时，该方法继续处理模块根据第一错误编码分散存储功能参数对程序的第二数据段进行编码。 该方法继续，处理模块基于另一请求改变第一错误编码分散存储功能参数，以在接收到第二请求时产生第二错误编码分散存储功能参数。 该方法继续处理模块根据第二错误编码分散存储功能参数对第二数据段进行编码。

公开(公告)号：US08478865B2

公开(公告)日：2013-07-02

申请号：US12648669

申请日：2009-12-29

申请人： John Quigley ,  S. Christopher Gladwin ,  Zachary J. Mark ,  Wesley Leggette ,  Manish Motwani

发明人： John Quigley ,  S. Christopher Gladwin ,  Zachary J. Mark ,  Wesley Leggette ,  Manish Motwani

IPC分类号： G06F15/16

CPC分类号： G06F17/30194 ,  H04L41/00 ,  H04L41/0226

摘要： A gateway module translates access requests from client computers into commands for a plurality of slice servers storing data for a dispersed data storage network. The gateway program maintains a plurality of gateway modules, each providing a different access protocol to the dispersed data storage network, and each also maintaining one or more virtual storage vaults.

摘要翻译： 网关模块将来自客户端计算机的访问请求转换为存储用于分散数据存储网络的数据的多个分片服务器的命令。 网关程序维护多个网关模块，每个网关模块为分散的数据存储网络提供不同的访问协议，并且每个网关模块还维护一个或多个虚拟存储库。

公开(公告)号：US08473677B2

公开(公告)日：2013-06-25

申请号：US12777904

申请日：2010-05-11

申请人： S. Christopher Gladwin ,  Wesley Leggette

发明人： S. Christopher Gladwin ,  Wesley Leggette

IPC分类号： G06F12/02

CPC分类号： G06F11/1076 ,  G06F3/0617 ,  G06F3/0656 ,  G06F3/0659 ,  G06F3/067 ,  G06F3/0689 ,  G06F12/0813 ,  G06F17/30194 ,  G06F2211/1011 ,  H04L67/1008 ,  H04L67/101 ,  H04L67/1097 ,  H04N21/231 ,  H04N21/2405 ,  H04N21/442

摘要： A distributed storage unit determines how to handle a read or write request for a data slice based on a state of the memory the data slice is to be read from or written to. When receiving a request to retrieve a data slice, the distributed storage unit, determines a state of the memory in which the data slice is stored. Based on the memory state, one of multiple different methods for obtaining the data slice is selected. The methods include, among others, a direct read from the memory, and reconstructing the data slice using other memories and parity values. In response to a write request, the distributed storage unit can determine whether to use the currently selected memory for writing, or rotate the memory used for writing, based on a state of the memory.

摘要翻译： 分布式存储单元基于存储器的数据切片的读取或写入的状态来确定如何处理数据切片的读取或写入请求。 分配存储单元在接收到检索数据切片的请求时，确定存储数据切片的存储器的状态。 基于存储器状态，选择用于获得数据切片的多种不同方法之一。 这些方法尤其包括从存储器的直接读取，以及使用其他存储器和奇偶校验值重构数据切片。 响应于写请求，分布式存储单元可以基于存储器的状态来确定是否使用当前选择的存储器进行写入，或者旋转用于写入的存储器。

公开(公告)号：US08370600B2

公开(公告)日：2013-02-05

申请号：US12779675

申请日：2010-05-13

申请人： Manish Motwani ,  Wesley Leggette

发明人： Manish Motwani ,  Wesley Leggette

IPC分类号： G06F12/00

CPC分类号： G06F11/1076 ,  G06F3/0629 ,  G06F3/064 ,  G06F3/067 ,  G06F11/2094 ,  G06F12/0646 ,  G06F17/30073 ,  G06F17/30082 ,  G06F17/30085 ,  G06F17/30117 ,  H04L67/1097

摘要： A dispersed storage (DS) unit for use within a dispersed storage network is capable of self-configuring using registry information provided to the DS unit. The registry information includes a slice name assignment indicating a range of slice names corresponding to a plurality of potential data slices of potential data objects to be stored in the DS unit. Based on the registry information, the DS unit allocates a portion of physical memory to store the potential data slices.

公开(公告)号：US20120290830A1

公开(公告)日：2012-11-15

申请号：US13449950

申请日：2012-04-18

申请人： Jason K. Resch ,  Wesley Leggette

发明人： Jason K. Resch ,  Wesley Leggette

IPC分类号： H04L9/00

CPC分类号： H04L9/0841 ,  H04L9/3093

摘要： A method begins by a dispersed storage (DS) processing module generating a shared secret key from a public key of another entity and a private key using a first modulo prime polynomial function, wherein a public key is generated from the private key using a second modulo prime polynomial function and wherein the public key of the other entity is derived using the second modulo prime polynomial function on a private key of the other entity. The method continues with the DS module encrypting a message using the shared secret key to produce an encrypted message. The method continues with the DS module outputting the encrypted message to the other entity.

摘要翻译： 一种分散存储（DS）处理模块从另一实体的公开密钥和使用第一模式多项式函数的私钥生成共享密钥的方法开始，其中使用第二模数从私钥生成公开密钥 主多项式函数，并且其中使用另一个实体的私钥上的第二模式多项式函数导出另一实体的公开密钥。 该方法继续DS模块使用共享密钥加密消息以产生加密消息。 该方法继续DS模块将加密消息输出到另一实体。

公开(公告)号：US20110264989A1

公开(公告)日：2011-10-27

申请号：US13021510

申请日：2011-02-04

申请人： Jason K. Resch ,  John Quigley ,  Wesley Leggette

发明人： Jason K. Resch ,  John Quigley ,  Wesley Leggette

IPC分类号： H03M13/03 ,  G06F11/07 ,  G06F11/10 ,  G06F12/14

CPC分类号： G06F11/1076 ,  G06F11/0727 ,  G06F11/076 ,  G06F11/0763 ,  G06F11/1004 ,  G06F11/1008 ,  G06F11/1092 ,  G06F11/1464 ,  G06F11/2094 ,  G06F17/30575 ,  G06F21/6218 ,  G06F21/64 ,  G06F2211/1028 ,  H04L9/085 ,  H04L9/0894 ,  H04L67/1097 ,  H04L2209/30 ,  H04L2209/34 ,  G06F21/60 ,  G06F21/70

摘要： A method begins by a processing module dispersed storage error encoding data to produce a plurality of sets of encoded data slices in accordance with dispersed storage error coding parameters. The method continues with the processing module determining a plurality of sets of slice names corresponding to the plurality of sets of encoded data slices. The method continues with the processing module determining integrity information for the plurality of sets of slice names and sending the plurality of sets of encoded data slices, the plurality of sets of slice names, and the integrity information to a dispersed storage network memory for storage therein.

摘要翻译： 一种方法由处理模块开始，分散存储错误编码数据，以根据分散的存储错误编码参数产生多组编码数据片段。 该方法继续处理模块确定与多组编码数据片相对应的多个片名称集合。 该方法继续处理模块确定多个片名称集合的完整性信息，并将多组编码数据片段，多组片名称和完整性信息发送到分散的存储网络存储器，以便存储在其中 。