GB201217802D0 - Encrypting data objects to back-up - Google Patents

Encrypting data objects to back-up

Info

Publication number
GB201217802D0
GB201217802D0 GB201217802A GB201217802A GB201217802D0 GB 201217802 D0 GB201217802 D0 GB 201217802D0 GB 201217802 A GB201217802 A GB 201217802A GB 201217802 A GB201217802 A GB 201217802A GB 201217802 D0 GB201217802 D0 GB 201217802D0
Authority
GB
United Kingdom
Prior art keywords
chunks
server
encrypted
client
data objects
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
GB201217802A
Other versions
GB2496258B (en
GB2496258A (en
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
International Business Machines Corp
Original Assignee
International Business Machines Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US13/279,017 external-priority patent/US8769310B2/en
Application filed by International Business Machines Corp filed Critical International Business Machines Corp
Publication of GB201217802D0 publication Critical patent/GB201217802D0/en
Publication of GB2496258A publication Critical patent/GB2496258A/en
Application granted granted Critical
Publication of GB2496258B publication Critical patent/GB2496258B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/07Responding to the occurrence of a fault, e.g. fault tolerance
    • G06F11/14Error detection or correction of the data by redundancy in operation
    • G06F11/1402Saving, restoring, recovering or retrying
    • G06F11/1446Point-in-time backing up or restoration of persistent data
    • G06F11/1448Management of the data involved in backup or backup restore
    • G06F11/1453Management of the data involved in backup or backup restore using de-duplication of the data
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2107File encryption

Abstract

A method of storing encrypted data objects [figs. 7, 8] at a server, comprises; generating a data object 8 comprising chunks at a client computer 2; encrypting a first portion of chunks with a clientâ40 s private key 28; and sending the first portioof chunks and a second portion of chunks (not encrypted using the private key) to the server 4 to store in storage 6. Alternatively, the first or second portion of chunks may not be sent to the server if they are already stored at the server, to reduce the storage of duplicated or redundant data. The data objects may be sent to the server as back-up copies. The second portion of chunks may be encrypted using a key 30 shared between more than one client. On wishing the data object to be restored, the second portion of chunks is only transmitted to the client if the client can decrypt an encrypted identifier (encrypted using the private key), and transmit the correct decrypted identifier to the server.
GB1217802.6A 2011-10-21 2012-10-05 Encrypting data objects to back-up Active GB2496258B (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US13/279,017 US8769310B2 (en) 2011-10-21 2011-10-21 Encrypting data objects to back-up
US13/484,028 US8762743B2 (en) 2011-10-21 2012-05-30 Encrypting data objects to back-up

Publications (3)

Publication Number Publication Date
GB201217802D0 true GB201217802D0 (en) 2012-11-14
GB2496258A GB2496258A (en) 2013-05-08
GB2496258B GB2496258B (en) 2014-09-24

Family

ID=47225703

Family Applications (1)

Application Number Title Priority Date Filing Date
GB1217802.6A Active GB2496258B (en) 2011-10-21 2012-10-05 Encrypting data objects to back-up

Country Status (1)

Country Link
GB (1) GB2496258B (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106126373A (en) * 2016-06-21 2016-11-16 青岛海信传媒网络技术有限公司 Data back up method and device, data reconstruction method and device
DE102019113485A1 (en) * 2019-05-21 2020-11-26 Bundesdruckerei Gmbh Method for encrypting files for security storage and computing facility

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8452986B2 (en) * 2004-07-02 2013-05-28 Nxp B.V. Security unit and protection system comprising such security unit as well as method for protecting data
US8041641B1 (en) * 2006-12-19 2011-10-18 Symantec Operating Corporation Backup service and appliance with single-instance storage of encrypted data
US8484162B2 (en) * 2008-06-24 2013-07-09 Commvault Systems, Inc. De-duplication systems and methods for application-specific data
EP2441260B1 (en) * 2009-06-09 2020-02-12 EMC Corporation Segment deduplication system with encryption segments
WO2011076463A1 (en) * 2009-12-23 2011-06-30 International Business Machines Corporation Deduplication of encrypted data

Also Published As

Publication number Publication date
GB2496258B (en) 2014-09-24
GB2496258A (en) 2013-05-08

Similar Documents

Publication Publication Date Title
EP3375129B1 (en) Method for re-keying an encrypted data file
AU2012225621A8 (en) Secure file sharing method and system
WO2013068843A3 (en) Multi-key cryptography for encrypting file system acceleration
WO2019067357A8 (en) Data storage method, data query method and apparatuses
CN106100832A (en) Key management method based on convergent encryption in a kind of cloud storage data deduplication
WO2012094561A3 (en) Systems and methods for providing individual electronic document secure storage, retrieval and use
PH12018502160A1 (en) Systems and methods for secure storage of user information in a user profile
MX2021014837A (en) Homomorphic encryption with applications to private information retrieval.
EP2658164A3 (en) Cryptographic system, cryptographic communication method, encryption apparatus, key generation apparatus, decryption apparatus, content server, program, and storage medium
JP2018518090A5 (en)
WO2017034642A3 (en) Optimizable full-path encryption in a virtualization environment
WO2011143068A3 (en) Systems and methods for creation and delivery of encrypted virtual disks
CN102231727B (en) Crypto-delta-transfer-based remote sharing backup recovery method
WO2012040231A3 (en) Systems and methods for secure data sharing
CN103763362A (en) Safe distributed duplicated data deletion method
WO2013022647A3 (en) System and method for wireless data protection
EP4235475A3 (en) Systems and methods of database encryption in a multitenant database management system
CN105245328A (en) User and file key generation and management method based on third party
WO2010057151A3 (en) Block-level data storage security system
WO2012092423A3 (en) Extending data confidentiality into a player application
EP2562957A3 (en) Key sharing device, key sharing method, and computer program product
WO2008005789A3 (en) Secure escrow and recovery of media device content keys
WO2014031304A3 (en) Technique for reconfigurable data storage media encryption
CN105227566A (en) Cipher key processing method, key handling device and key handling system
GB201217507D0 (en) Database management system

Legal Events

Date Code Title Description
746 Register noted 'licences of right' (sect. 46/1977)

Effective date: 20141015