Content deduplication in enterprise rights management

摘要

A system and method is disclosed for implementing an enterprise rights management (ERM) system that enables effective data deduplication of ERM-protected data. An ERM-aware application may segment data, such as a file, into one or more data segments. The chosen segmentation boundaries may depend on data already stored on a target storage system and/or on a segmentation scheme used by a target deduplication system. An ERM-aware application may derive a respective convergent encryption key for each data segment, the convergent encryption key being dependent on the contents of the data segment, and encrypt the data segment using that key. The ERM-aware application may include the respective convergent decryption keys (which may be identical to the respective convergent encryption keys) in a publishing license of the ERM-protected file.

主权项

1. A method comprising:
a computer system segmenting data into one or more data segments, wherein said segmenting is dependent on an indication from a deduplication system that at least one of the one or more data segments are already stored on a storage system; the computer system encrypting each data segment using a respective encryption key, wherein different data segments are encrypted using different encryption keys, wherein the respective encryption key used to encrypt each data segment is dependent on the content of the data segment; the computer system generating a publishing license associated with the data, the publishing license including:
information identifying users with access rights to the data, the access rights enforced by an enterprise rights management system; andfor each data segment, a respective decryption key usable to decrypt the data segment; the computer system storing the publishing license on a storage device, including storing the information identifying the users with access rights to the data and storing the respective decryption key for each data segment; subsequently to said storing the publishing license, the computer system receiving a request for access to the data by a particular user; and in response to the request, the computer system retrieving the publishing license from the storage device and analyzing the publishing license to determine whether to grant the particular user access to the data.