Breach resistant data storage system and method

Assignee

• United States of America as represented by the Secretary of the Air Force · US

Inventors

• Matthew Galligan · Boston, US
• Nhan Nguyen · San Jose, US
• Timothy W. Degnan · Ambler, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/2107
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A breach resilient data storage system and method which encrypts, fragments, and stores data across a plurality of data stores, thereby requiring data being retrieved to be retrieved, recombined and decrypted before being accessible. The breach resilient data storage system and method includes, a plurality of storage containers, a client device from which data may be securely stored and securely stored data may be accessed, and a storage coordinator and a key keeper which track the encryption data and the placement and retrieval of fragmented data across the storage containers. Because the encrypted data is stored in fragmented bits, with none of the storage containers knowing what it is storing or having complete access to the complete set of data, a single compromised node in the system cannot be used to compromise the entire system or access any data.