-
81.发明申请公开(公告)号:US20110107180A1
公开(公告)日:2011-05-05
申请号:US12842932
申请日:2010-07-23
申请人: Timothy W. Markison , Gary W. Grube , S. Christopher Gladwin , Alan E. Holmes , Wesley Leggette , Jason K. Resch
发明人: Timothy W. Markison , Gary W. Grube , S. Christopher Gladwin , Alan E. Holmes , Wesley Leggette , Jason K. Resch
CPC分类号: H04N21/2181 , G06F11/1008 , G06F11/1076 , G06F11/1092 , G11C29/52 , H03M13/09 , H03M13/15 , H03M13/1515 , H03M13/23 , H03M13/356 , H04N21/23439 , H04N21/2393 , H04N21/274 , H04N21/2747 , H04N21/6587
摘要: A method begins by a processing module receiving a first request to store a program. The method continues with the processing module determining first error coding dispersal storage function parameters and encoding a data segment of the program. The method continues with the processing module determining whether a second request to store the program is received. The method continues with the processing module encoding a second data segment of the program in accordance with the first error coding dispersal storage function parameters when the second request is not received. The method continues with the processing module changing the first error coding dispersal storage function parameters based on the another request to produce second error coding dispersal storage function parameters when the second request is received. The method continues with the processing module encoding the second data segment in accordance with the second error coding dispersal storage function parameters.
摘要翻译: 一种方法由处理模块开始,该处理模块接收存储程序的第一请求。 该方法继续处理模块确定第一错误编码分散存储功能参数并对程序的数据段进行编码。 该方法继续处理模块确定是否接收到存储程序的第二请求。 当不接收到第二请求时,该方法继续处理模块根据第一错误编码分散存储功能参数对程序的第二数据段进行编码。 该方法继续,处理模块基于另一请求改变第一错误编码分散存储功能参数,以在接收到第二请求时产生第二错误编码分散存储功能参数。 该方法继续处理模块根据第二错误编码分散存储功能参数对第二数据段进行编码。
-
公开(公告)号:US09514132B2
公开(公告)日:2016-12-06
申请号:US13718985
申请日:2012-12-18
申请人: Jason K. Resch , Wesley Leggette
发明人: Jason K. Resch , Wesley Leggette
CPC分类号: G06F17/30106 , G06F3/0619 , G06F3/064 , G06F3/0647 , G06F3/0653 , G06F3/067 , G06F11/08 , G06F11/1004 , G06F11/1076 , G06F11/1092 , G06F11/1096 , G06F17/30002 , G06F17/30079 , G06F17/30091 , G06F17/30194 , G06F21/602 , H04L67/1097
摘要: A method begins by a dispersed storage (DS) processing module identifying a candidate dispersed storage (DS) unit of a dispersed storage network (DSN). In response to a data migration request, the method continues with the DS processing module receiving a migration receptiveness message from the candidate DS unit. In response to a data migration reference message, the method continues with the DS processing module receiving, from another DS unit of a set of DS units, a migration reference response that includes an indication of storage utilized by the other DS unit. The method continues with the DS processing module determining a storage utilization of the candidate DS unit based on the migration reference response and when the determined storage utilization compares favorably to the reported storage utilization, enabling transfer of data from a DS unit of another set of DS units to the candidate DS unit.
摘要翻译: 一种分散存储(DS)处理模块开始识别分散存储网络(DSN)的候选分散存储(DS)单元的方法。 响应于数据迁移请求,该方法继续DS处理模块从候选DS单元接收迁移接收消息。 响应于数据迁移参考消息,该方法继续DS处理模块从一组DS单元的另一DS单元接收迁移参考响应,该迁移参考响应包括由另一DS单元使用的存储器的指示。 该方法继续DS处理模块基于迁移参考响应来确定候选DS单元的存储利用率,并且当所确定的存储利用率与报告的存储利用率相比有利地时,允许从另一组DS的DS单元传送数据 单位到候选DS单位。
-
公开(公告)号:US09219604B2
公开(公告)日:2015-12-22
申请号:US13449950
申请日:2012-04-18
申请人: Jason K. Resch , Wesley Leggette
发明人: Jason K. Resch , Wesley Leggette
CPC分类号: H04L9/0841 , H04L9/3093
摘要: A method begins by a dispersed storage (DS) processing module generating a shared secret key from a public key of another entity and a private key using a first modulo prime polynomial function, wherein a public key is generated from the private key using a second modulo prime polynomial function and wherein the public key of the other entity is derived using the second modulo prime polynomial function on a private key of the other entity. The method continues with the DS module encrypting a message using the shared secret key to produce an encrypted message. The method continues with the DS module outputting the encrypted message to the other entity.
摘要翻译: 一种分散存储(DS)处理模块从另一实体的公开密钥和使用第一模式多项式函数的私钥生成共享密钥的方法开始,其中使用第二模数从私钥生成公开密钥 主多项式函数,并且其中使用另一个实体的私钥上的第二模式多项式函数导出另一实体的公开密钥。 该方法继续DS模块使用共享密钥加密消息以产生加密消息。 该方法继续DS模块将加密消息输出到另一实体。
-
84.发明授权公开(公告)号:US09104691B2
公开(公告)日:2015-08-11
申请号:US13742577
申请日:2013-01-16
申请人: Jason K. Resch , Wesley Leggette
发明人: Jason K. Resch , Wesley Leggette
CPC分类号: G06F17/30215 , G06F11/1076 , G06F21/10 , G06F2211/1059 , G06F2221/0784 , H04L9/085 , H04L9/0894 , H04L9/3236 , H04L67/1097 , H04L2209/34
摘要: A method begins by dividing a data segment into data segment portions. The method continues by encoding the data segment portions to produce a plurality of sets of encoded data segment portions. A data segment portion is encoded by, first, selecting an encoding equation and an encoding constant(s). The encoding continues by setting a first variable to the data segment portion. The encoding continues by setting a second variable to one of a set of pillar numbers. The encoding continues by executing the encoding equation using the encoding constant, the first variable, and the second variable to produce one of the plurality of sets of encoded data segment portions. The method continues by arranging the plurality of sets of encoded data segment portions into a plurality of encoded data slices. The method continues by sending the plurality of encoded data slices to distributed storage units of a distributed storage network.
摘要翻译: 一种方法开始于将数据段划分成数据段部分。 该方法继续通过对数据段部分进行编码以产生多组编码数据段部分。 首先,选择编码方程和编码常数对数据段部分进行编码。 通过将第一变量设置为数据段部分来继续编码。 通过将第二变量设置为一组柱号中的一个继续进行编码。 通过使用编码常数,第一变量和第二变量执行编码方程来继续编码,以产生多组编码数据段部分之一。 该方法通过将多组编码数据段部分排列成多个编码数据片段来继续。 该方法通过将多个编码数据片段发送到分布式存储网络的分布式存储单元来继续。
-
公开(公告)号:US08782492B2
公开(公告)日:2014-07-15
申请号:US13588350
申请日:2012-08-17
申请人: Jason K. Resch , Wesley Leggette
发明人: Jason K. Resch , Wesley Leggette
IPC分类号: G11C29/00 , G06F11/00 , G06F3/06 , G06F11/14 , G06F15/173
CPC分类号: G06F11/00 , G06F3/06 , G06F3/0604 , G06F3/067 , G06F11/1076 , G06F11/1446 , G06F15/17331 , G06F21/33 , G06F2211/1028 , H04L9/085 , H04L9/0863 , H04L9/0869 , H04L9/321 , H04L9/3263 , H04L63/0823 , H04L2209/04 , H04L2209/34
摘要: A method begins by a dispersed storage (DS) processing module receiving a modified data object, wherein the modified data object is a modified version of a data object and the data object is divided into a plurality of data segments and stored in the DSN. The method continues with the DS processing module mapping portions of the modified data object to the plurality of data segments that includes creating a middle data segment of a second plurality of data segments based on a corresponding middle data segment of the plurality of data segments when a portion of the portions corresponds to middle data of the modified data object. The method continues with the DS processing module encoding the middle data segment using a dispersed storage error coding function to produce an encoded data segment and overwriting the corresponding middle data segment with the encoded data segment in the DSN.
摘要翻译: 一种分散存储(DS)处理模块从接收修改的数据对象开始的方法,其中修改的数据对象是数据对象的修改版本,数据对象被划分为多个数据段并存储在DSN中。 所述方法继续DS处理模块将修改的数据对象的部分映射到多个数据段,所述多个数据段包括当基于多个数据段的相应中间数据段创建第二多个数据段的中间数据段时 部分部分对应于修改的数据对象的中间数据。 该方法继续使用分散的存储错误编码功能对中间数据段进行编码的DS处理模块,以产生编码数据段,并用DSN中的编码数据段重写相应的中间数据段。
-
公开(公告)号:US08627114B2
公开(公告)日:2014-01-07
申请号:US13180675
申请日:2011-07-12
申请人: Jason K. Resch , Wesley Leggette
发明人: Jason K. Resch , Wesley Leggette
CPC分类号: H04L63/08 , G06F3/0619 , G06F3/064 , G06F3/0689 , G06F11/1076 , G06F21/6218 , H04L1/0045 , H04L1/208 , H04L67/1097 , H04W28/04
摘要: A method to authenticate a data access request begins by a data accessing module sending the data access request to a data storage module and continues with the data storage module sending an authentication request to an authenticating module. The method continues with the authenticating module outputting a verification request destined for the data accessing module, where the verification request includes a verification code that is generated based on the authentication request. The method continues with the data accessing module outputting a verification response that includes a modified verification code that is generated based on the verification code and a credential. The method continues with the authenticating module outputting an authentication response to the data storage module, where the authentication response is generated based on the verification response, and continues with the data storage module facilitating the data access request when the authentication response is favorable.
摘要翻译: 用于认证数据访问请求的方法由数据访问模块开始,数据访问模块向数据存储模块发送数据访问请求,并继续向认证模块发送认证请求。 该方法继续,验证模块输出去往数据访问模块的验证请求,其中验证请求包括基于认证请求生成的验证码。 该方法继续,数据访问模块输出包括基于验证码和证书生成的修改的验证码的验证响应。 该方法继续,认证模块向数据存储模块输出认证响应,其中基于验证响应生成认证响应,并且当认证响应有利时,继续使用便于数据访问请求的数据存储模块。
-
87.发明授权Processing a dispersed storage network access request utilizing certificate chain validation information 有权使用证书链验证信息来处理分散的存储网络访问请求公开(公告)号:US08627066B2
公开(公告)日:2014-01-07
申请号:US13288116
申请日:2011-11-03
申请人: Jason K. Resch , Wesley Leggette , Bart Cilfone
发明人: Jason K. Resch , Wesley Leggette , Bart Cilfone
IPC分类号: H04L29/06
CPC分类号: H04L63/0823 , H04L9/3265
摘要: A method begins by a processing module receiving a dispersed storage network (DSN) access request that includes a requester identifier (ID), wherein the requester ID is associated with a certificate chain. When the certificate chain is valid, the method continues with the processing module accessing registry information for the DSN. The method continues with the processing module identifying one of a plurality of access control lists based on at least one of information associated with the requester ID and information associated with the certificate chain, identifying one or more entries of the one of the plurality of access control lists based on the information associated with the certificate chain to produce one or more identified entries, and generating, for the DSN access request, permissions from one or more sets of permissions associated with the one or more identified entries.
摘要翻译: 一种方法由接收包括请求者标识符(ID)的分散存储网络(DSN)访问请求的处理模块开始,其中请求者ID与证书链相关联。 当证书链有效时,该方法继续处理模块访问DSN的注册表信息。 该方法继续处理模块,其基于与请求者ID相关联的信息和与证书链相关联的信息中的至少一个来识别多个访问控制列表中的一个,识别多个访问控制列表中的一个访问控制的一个或多个条目 基于与证书链相关联的信息的列表以产生一个或多个标识的条目,并且为DSN访问请求生成与一个或多个所标识的条目相关联的一个或多个权限集合的权限。
-
公开(公告)号:US08607122B2
公开(公告)日:2013-12-10
申请号:US13611866
申请日:2012-09-12
申请人: Jason K. Resch , Wesley Leggette
发明人: Jason K. Resch , Wesley Leggette
IPC分类号: H03M13/00
CPC分类号: G06F11/073 , G06F11/1076 , G06F21/62 , G06F2211/1028 , H04L1/0057 , H04L1/0061 , H04L1/0072 , H04L1/0083 , H04L67/1097
摘要: A method begins by a dispersed storage (DS) processing module generating a data object identifier for data to be stored in a dispersed storage network (DSN) and partitioning the data into a plurality of data partitions based on a set of retrieval preferences and data boundary information. For a data partition, the method continues with the DS processing module dispersed storage error encoding the data partition to produce a plurality of sets of encoded data slices and generating a plurality of sets of DSN addresses for the plurality of sets of encoded data slices, wherein a DSN address of the plurality of sets of DSN addresses includes a representation of the data object identifier, a representation of one or more retrieval preferences of the set of retrieval preferences, a representation of a corresponding portion of the data boundary information, and dispersed storage addressing information.
-
89.发明授权公开(公告)号:US08504847B2
公开(公告)日:2013-08-06
申请号:US12762352
申请日:2010-04-18
申请人: Jason K. Resch , Wesley Leggette
发明人: Jason K. Resch , Wesley Leggette
CPC分类号: G06F17/30215 , G06F11/1076 , G06F21/10 , G06F2211/1059 , G06F2221/0784 , H04L9/085 , H04L9/0894 , H04L9/3236 , H04L67/1097 , H04L2209/34
摘要: A data element can be encoded into multiple encoded data elements using an encoding algorithm that includes an encoding function and one or more encoder constant. The encoded data elements can be organized into multiple pillars, each having a respective pillar number. Each of the pillars is sent to a different storage unit of a distributed storage network. To recover the original data element, the encoded data elements are retrieved from storage, and the encoder constant is recovered using multiple encoded data elements. Recovering the encoder constant allows the encoding algorithm originally used to encode the data elements to be determined, and used to recover the original data element. The security of the stored data is enhanced, because an encoded data element from a single pillar is insufficient to identify the encoder constant.
摘要翻译: 可以使用包括编码功能和一个或多个编码器常数的编码算法将数据元素编码为多个编码数据元素。 编码数据元素可以被组织成多个支柱,每个支柱具有相应的柱号。 每个柱子被发送到分布式存储网络的不同存储单元。 为了恢复原始数据元素,从存储器检索编码数据元素,并且使用多个编码数据元素恢复编码器常数。 恢复编码器常数允许最初用于编码要确定的数据元素的编码算法,并用于恢复原始数据元素。 存储数据的安全性得到增强,因为来自单个柱的编码数据元素不足以识别编码器常数。
-
90.发明申请公开(公告)号:US20130117560A1
公开(公告)日:2013-05-09
申请号:US13288116
申请日:2011-11-03
申请人: Jason K. Resch , Wesley Leggette , Bart Cilfone
发明人: Jason K. Resch , Wesley Leggette , Bart Cilfone
IPC分类号: H04L9/32
CPC分类号: H04L63/0823 , H04L9/3265
摘要: A method begins by a processing module receiving a dispersed storage network (DSN) access request that includes a requester identifier (ID), wherein the requester ID is associated with a certificate chain. When the certificate chain is valid, the method continues with the processing module accessing registry information for the DSN. The method continues with the processing module identifying one of a plurality of access control lists based on at least one of information associated with the requester ID and information associated with the certificate chain, identifying one or more entries of the one of the plurality of access control lists based on the information associated with the certificate chain to produce one or more identified entries, and generating, for the DSN access request, permissions from one or more sets of permissions associated with the one or more identified entries.
摘要翻译: 一种方法由接收包括请求者标识符(ID)的分散存储网络(DSN)访问请求的处理模块开始,其中请求者ID与证书链相关联。 当证书链有效时,该方法继续处理模块访问DSN的注册表信息。 该方法继续处理模块,其基于与请求者ID相关联的信息和与证书链相关联的信息中的至少一个来识别多个访问控制列表中的一个,识别多个访问控制列表中的一个访问控制的一个或多个条目 基于与证书链相关联的信息的列表以产生一个或多个标识的条目,并且为DSN访问请求生成与一个或多个所标识的条目相关联的一个或多个权限集合的权限。
-
-
-
-
-
-
-
-
-
搜索结果
133 条记录 (耗时 0.047 秒)
