公开(公告)号：US09384149B2

公开(公告)日：2016-07-05

申请号：US13835185

申请日：2013-03-15

申请人： Unisys Corporation

发明人： Robert Johnson ,  David Dodgson ,  Joseph Neill ,  Ralph Farina ,  Edward Chin ,  Scott Summers ,  Albert French

IPC分类号： H04L9/08 ,  G06F12/14 ,  G06F21/62

CPC分类号： G06F12/1408 ,  G06F21/6227 ,  G06F2221/2107 ,  H04L9/085 ,  H04L9/0894

摘要： A secure storage appliance is disclosed, along with methods of storing and reading data in a secure storage network. The secure storage appliance is configured to present to a client a virtual disk, the virtual disk mapped to the plurality of physical storage devices. The secure storage appliance is capable of executing program instructions configured to generate a plurality of secondary blocks of data by performing splitting and encrypting operations on a block of data received from the client for storage on the virtual disk and reconstitute the block of data from at least a portion of the plurality of secondary blocks of data stored in shares on corresponding physical storage devices in response to a request from the client.

摘要翻译： 公开了一种安全存储设备，以及在安全存储网络中存储和读取数据的方法。 安全存储设备被配置为向客户端呈现映射到多个物理存储设备的虚拟磁盘。 安全存储设备能够执行被配置为通过对从客户端接收的数据块进行分割和加密操作来生成多个次要数据块的程序指令，以存储在虚拟磁盘上并从至少重构数据块 响应于来自客户端的请求，存储在对应的物理存储设备上的共享中的多个次要数据块的一部分。

公开(公告)号：US20140108797A1

公开(公告)日：2014-04-17

申请号：US13834852

申请日：2013-03-15

申请人： Unisys Corporation

发明人： Robert Johnson ,  David Dodgson ,  Joseph Neill ,  Ralph Farina ,  Edward Chin ,  Scott Summers

IPC分类号： G06F21/62

CPC分类号： G06F21/6218 ,  G06F21/6272 ,  G06F2221/2111

摘要： Methods and systems of presenting data in a secure data storage network are disclosed. One method includes defining a community of interest capable of accessing data stored in a secure data storage network, the community of interest including a plurality of users desiring access to a common set of data. The method also includes associating the community of interest with a workgroup key. and, upon identification of a client device as associated with a user from among the plurality of users in the community of interest, presenting a virtual disk to the client device, the virtual disk associated with the workgroup key and a volume containing the common set of data, the volume including a plurality of shares stored on a plurality of physical storage devices.

摘要翻译： 公开了在安全数据存储网络中呈现数据的方法和系统。 一种方法包括定义能够访问存储在安全数据存储网络中的数据的感兴趣社区，感兴趣的社区包括期望访问公共数据集合的多个用户。 该方法还包括将感兴趣的社区与工作组密钥相关联。 并且在所感兴趣的社区中的多个用户中识别与用户相关联的客户端设备，向客户端设备呈现虚拟磁盘时，与工作组密钥相关联的虚拟磁盘和包含公共集合的卷 数据，所述卷包括存储在多个物理存储设备上的多个共享。

公开(公告)号：US20140129844A1

公开(公告)日：2014-05-08

申请号：US13833774

申请日：2013-03-15

申请人： Unisys Corporation

发明人： Robert Johnson ,  David Dodgson ,  Joseph Neill ,  Ralph Farina ,  Edward Chin ,  Scott Summers

IPC分类号： G06F21/60

CPC分类号： G06F21/78

摘要： Methods and systems for storing data securely in a secure data storage network are disclosed. One method includes receiving at a secure storage appliance a block of data for storage on a volume, the volume associated with plurality of shares distributed across a plurality of physical storage devices. The method also includes cryptographically splitting the block of data received by the secure storage appliance into a plurality of secondary data blocks. The method further includes encrypting each of the plurality of secondary data blocks with a different session key, each session key associated with at least one of the plurality of shares. The method also includes storing each data block and associated session key at the corresponding share, remote from the secure storage appliance.

摘要翻译： 公开了将数据安全地存储在安全数据存储网络中的方法和系统。 一种方法包括在安全存储设备处接收用于存储在卷上的数据块，该数据块与跨多个物理存储设备分布的多个共享相关联。 该方法还包括将由安全存储设备接收的数据块加密地分割成多个辅助数据块。 该方法还包括用不同的会话密钥加密多个辅助数据块中的每一个，每个会话密钥与多个共享中的至少一个共享相关联。 该方法还包括将每个数据块和相关联的会话密钥存储在远离安全存储设备的相应共享处。

公开(公告)号：US20130311789A1

公开(公告)日：2013-11-21

申请号：US13835185

申请日：2013-03-15

申请人： Unisys Corporation

发明人： Robert Johnson ,  David Dodgson ,  Joseph Neill ,  Ralph Farina ,  Edward Chin ,  Scott Summers

IPC分类号： G06F12/14

CPC分类号： G06F12/1408 ,  G06F21/6227 ,  G06F2221/2107 ,  H04L9/085 ,  H04L9/0894

摘要： A secure storage appliance is disclosed, along with methods of storing and reading data in a secure storage network. The secure storage appliance is configured to present to a client a virtual disk, the virtual disk mapped to the plurality of physical storage devices. The secure storage appliance is capable of executing program instructions configured to generate a plurality of secondary blocks of data by performing splitting and encrypting operations on a block of data received from the client for storage on the virtual disk and reconstitute the block of data from at least a portion of the plurality of secondary blocks of data stored in shares on corresponding physical storage devices in response to a request from the client.

摘要翻译： 公开了一种安全存储设备，以及在安全存储网络中存储和读取数据的方法。 安全存储设备被配置为向客户端呈现映射到多个物理存储设备的虚拟磁盘。 安全存储设备能够执行被配置为通过对从客户端接收的数据块进行分割和加密操作来生成多个次要数据块的程序指令，以存储在虚拟磁盘上并从至少重构数据块 响应于来自客户端的请求，存储在对应的物理存储设备上的共享中的多个次要数据块的一部分。