| 发明名称 | Facilitating access of a dispersed storage network | ||
| 摘要 | A method begins by a dispersed storage (DS) processing module generating a temporary public-private key pair, a restricted use certificate, and a temporary password for a device. The method continues with the DS processing encoding a temporary private key to produce a set of encoded private key shares and encoding the restricted use certificate to produce a set of encoded certificate shares. The method continues with the DS processing module outputting the set of encoded private key shares and the set of encoded certificate shares to a set of authentication units. The method continues with the DS processing module outputting the temporary password to the device such that, when the device retrieves the set of encoded private key shares and the set of encoded certificate shares, the device is able to recapture the temporary private key and the restricted use certificate for accessing a dispersed storage network (DSN). | ||
| 申请公布号 | US9092385(B2) | 申请公布日期 | 2015.07.28 |
| 申请号 | US201213587224 | 申请日期 | 2012.08.16 |
| 申请人 | Cleversafe, Inc. | 发明人 | Resch Jason K.;Leggette Wesley |
| 分类号 | H04L9/32;G06F11/16;H04L9/08;G06F3/06;G06F11/00;G06F15/173;H04L29/06;G06F21/00;H04L9/00;G06F11/14 | 主分类号 | H04L9/32 |
| 代理机构 | Garlick & Markison | 代理人 | Garlick & Markison ;Markison Timothy W. |
| 主权项 | 1. A method for execution by a managing unit of a dispersed storage network (DSN), wherein the method comprises: generating a temporary public-private key pair for a device; generating, for the device, a restricted use certificate that includes a temporary public key of the temporary public-private key pair and a restriction indicator for indicating one or more restrictions regarding the restricted use certificate; generating a temporary password for the device; encoding, in accordance with a distributed authentication protocol and using the temporary password, a temporary private key of the temporary public-private key pair to produce a set of encoded private key shares; encoding, in accordance with the distributed authentication protocol and using the temporary password, the restricted use certificate to produce a set of encoded certificate shares; outputting the set of encoded private key shares and the set of encoded certificate shares to a set of authentication units for storage therein; and outputting the temporary password to the device such that, when the device retrieves the set of encoded private key shares and the set of encoded certificate shares from the set of authentication units based on the temporary password, the device is able to recapture the temporary private key and the restricted use certificate to obtain a signed certificate for accessing a dispersed storage network (DSN). | ||
| 地址 | Chicago IL US | ||