Invention Grant
US07899189B2 Apparatus, system, and method for transparent end-to-end security of storage data in a client-server environment
失效
用于在客户机 - 服务器环境中存储数据的透明端到端安全性的装置,系统和方法
- Patent Title: Apparatus, system, and method for transparent end-to-end security of storage data in a client-server environment
- Patent Title (中): 用于在客户机 - 服务器环境中存储数据的透明端到端安全性的装置,系统和方法
-
Application No.: US11008403Application Date: 2004-12-09
-
Publication No.: US07899189B2Publication Date: 2011-03-01
- Inventor: Colin Scott Dawson , Kenneth Eugene Hannigan , Glen Hattrup , Avishai Haim Hochberg , Donald Warren , Christopher Zaremba
- Applicant: Colin Scott Dawson , Kenneth Eugene Hannigan , Glen Hattrup , Avishai Haim Hochberg , Donald Warren , Christopher Zaremba
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agency: Kunzler Needham Massey & Thorpe
- Main IPC: H04K1/00
- IPC: H04K1/00
Abstract:
The present invention includes one or more clients in communication with a server. The client desires to send a storage construct to the server for storage. The client negotiates a transmission key with the server. The client generates a storage key associated specifically with the storage construct. The client encrypts the storage construct using the storage key and encrypts the storage key using the transmission key. The encrypted storage construct and encrypted storage key are sent to the server. The server decrypts the storage key using the transmission key. The server stores the storage construct on a storage device separate from a storage device storing the storage key. Preferably, any changes to the storage construct location, the storage key location, or the storage construct name are tracked and proper modifications are made to an association relating the location of the storage construct and the location for the corresponding storage key.
Public/Granted literature
Information query
