WO2004064350A3 - System and method for secure network data storage - Google Patents

System and method for secure network data storage Download PDF

Info

Publication number
WO2004064350A3
WO2004064350A3 PCT/IL2004/000015 IL2004000015W WO2004064350A3 WO 2004064350 A3 WO2004064350 A3 WO 2004064350A3 IL 2004000015 W IL2004000015 W IL 2004000015W WO 2004064350 A3 WO2004064350 A3 WO 2004064350A3
Authority
WO
WIPO (PCT)
Prior art keywords
data
mediator
storage devices
clients
protocols
Prior art date
Application number
PCT/IL2004/000015
Other languages
French (fr)
Other versions
WO2004064350A2 (en
Inventor
Sefy Ophir
Elic Yavor
Original Assignee
Cloverleaf Comm Co
Sefy Ophir
Elic Yavor
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US10/345,348 external-priority patent/US20040143733A1/en
Application filed by Cloverleaf Comm Co, Sefy Ophir, Elic Yavor filed Critical Cloverleaf Comm Co
Publication of WO2004064350A2 publication Critical patent/WO2004064350A2/en
Publication of WO2004064350A3 publication Critical patent/WO2004064350A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • H04L67/568Storing data temporarily at an intermediate stage, e.g. caching

Abstract

A mediator for the protection of data in storage devices over a network. The mediator connects over the network to one or more data clients and to one or more data storage devices, and provides secure storage of data for the data clients on the data storage devices. The mediator functions as a central point for the encryption of data from the data clients to be stored on the storage devices, as well as decryption of the encrypted data retrieved from the storage devices for delivery to the data clients. The mediator can handle multiple protocols, such as IP protocols, file service protocols, and block device protocols; multiple storage technologies such as Fiber Channel and Ethernet; and multiple services such as block, file, and database services. The mediator can also perform various functions such as protocol translation. The mediator benefits from the fact that all storage devices, as well as data clients, are connected over a network, thereby allowing flexibility, expandability, and scalability of configurations without the limitations imposed by local interconnectivity. At the same time, however, the mediator provides secure virtual storage to data clients without requiring them to be involved in any of the encryption or decryption operations. In particular, data clients are not burdened with compulsory management of any keys used in the protection of stored data. As a result, the encryption / decryption of stored data can be optimized for security without concerns for key distribution.
PCT/IL2004/000015 2003-01-13 2004-01-08 System and method for secure network data storage WO2004064350A2 (en)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US34079403A 2003-01-13 2003-01-13
US10/340,794 2003-01-13
US10/345,348 US20040143733A1 (en) 2003-01-16 2003-01-16 Secure network data storage mediator
US10/345,348 2003-01-16

Publications (2)

Publication Number Publication Date
WO2004064350A2 WO2004064350A2 (en) 2004-07-29
WO2004064350A3 true WO2004064350A3 (en) 2004-09-02

Family

ID=32716899

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IL2004/000015 WO2004064350A2 (en) 2003-01-13 2004-01-08 System and method for secure network data storage

Country Status (1)

Country Link
WO (1) WO2004064350A2 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10090017B2 (en) 2015-03-08 2018-10-02 Delphi Memory Technologies, Inc. Apparatus and method for dynamic multiple actuator drive data access
CN109643281A (en) 2016-03-11 2019-04-16 赛博算机公司 The system and method for data encryption and decryption
IT201900007476A1 (en) * 2019-05-29 2020-11-29 Kai D S R L Apparatus for anonymization and management of native data from computer equipment

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5940507A (en) * 1997-02-11 1999-08-17 Connected Corporation Secure file archive through encryption key management
US20020114453A1 (en) * 2001-02-21 2002-08-22 Bartholet Thomas G. System and method for secure cryptographic data transport and storage
US20030084290A1 (en) * 2001-10-12 2003-05-01 Kumar Murty Distributed security architecture for storage area networks

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5940507A (en) * 1997-02-11 1999-08-17 Connected Corporation Secure file archive through encryption key management
US20020114453A1 (en) * 2001-02-21 2002-08-22 Bartholet Thomas G. System and method for secure cryptographic data transport and storage
US20030084290A1 (en) * 2001-10-12 2003-05-01 Kumar Murty Distributed security architecture for storage area networks

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
BALDWIN A ET AL: "Encryption and key management in a SAN", 2002, pages 35 - 44, XP010629487 *

Also Published As

Publication number Publication date
WO2004064350A2 (en) 2004-07-29

Similar Documents

Publication Publication Date Title
US20020114453A1 (en) System and method for secure cryptographic data transport and storage
US7634659B2 (en) Roaming hardware paired encryption key generation
US7330968B2 (en) Communication network system having secret concealment function, and communication method
WO2005057507A3 (en) Remote secure authorization
WO2008121157A3 (en) Cryptographic key management system facilitating secure access of data portions to corresponding groups of users
TW200509637A (en) Method to create and manage a local network
WO1998002989B1 (en) Cryptographic communication system
TW200605590A (en) Multi-protocol network encryption system
WO2006020141A3 (en) Technique for trasfering encrypted content from first device to second device associated with same user
WO2004073230A3 (en) Identity-based encryption system for secure data distribution
MXPA03007737A (en) Secure encryption key distribution.
CA2568739A1 (en) System, method, and computer program product for providing digital rights management of protected content
CN101535987A (en) Use of media storage structure with multiple pieces of content in a content-distribution system
WO2001078491A3 (en) Systems and methods for encrypting/decrypting data using a broker agent
WO2005124603A3 (en) Method and system for securely distributing content
GB2398713B (en) Limiting service provision to group members
WO2002033881A3 (en) Fast escrow delivery
TW200731727A (en) Digital security for distributing media content to a local area network
CA2565360A1 (en) System and method for securing data
CA2403488A1 (en) Automatic identity protection system with remote third party monitoring
WO2007084863A3 (en) Privacy protection in communication systems
Nivedhaa et al. A secure erasure cloud storage system using advanced encryption standard algorithm and proxy re-encryption
CN103236934A (en) Method for cloud storage security control
WO2005057352A3 (en) Secure digital content trading systems and methods
CN102833077A (en) Encryption and decryption methods of remote card-issuing data transmission of financial IC (Integrated Circuit) card and financial social security IC card

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase