| 发明名称 |
Distributed Storage Network and Method for Storing and Retrieving Encryption Keys |
| 摘要 |
A method begins by a distributed storage (DS) managing unit receiving an encryption key to store. The method continues by determining an encryption method and encrypting the encryption key with the determined encryption method to produce an encrypted key. The method continues by encoding and storing the encrypted key in accordance with a dispersed storage error coding function to produce a set of encoded encrypted key slices, wherein a decode threshold number of the encoded encrypted key slices of the set of encoded encrypted key slices are required to reconstruct the encrypted key. Retrieval of the stored encryption key includes retrieving and decoding at least a decode threshold number of the encoded encrypted key slices of a set of encoded encrypted key slices from storage units of the DSN. The method may include raising or lowering the decode threshold or modifying the retrieval order to increase/decrease security. |
| 申请公布号 |
US2014281550(A1) |
申请公布日期 |
2014.09.18 |
| 申请号 |
US201414292727 |
申请日期 |
2014.05.30 |
| 申请人 |
CLEVERSAFE, INC. |
发明人 |
Resch Jason K. |
| 分类号 |
H04L9/08 |
主分类号 |
H04L9/08 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method for processing an encryption key within a portion of a distributed storage network (DSN), the method comprises:
receiving an encryption key to store; determining an encryption method; encrypting the encryption key with the determined encryption method to produce an encrypted key; encoding the encrypted key in accordance with a dispersed storage error coding function to produce a set of encoded encrypted key slices, wherein a decode threshold number of the encoded encrypted key slices of the set of encoded encrypted key slices are required to reconstruct the encrypted key; and storing the set of encoded encrypted key slices in DSN memory. |
| 地址 |
Chicago IL US |
