Limiting brute force attacks against dispersed credentials in a distributed storage system
US10644874B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Aug 2, 2018 |
| Grant date | May 5, 2020 |
| Priority date | — |
| Expiry date | Nov 8, 2038 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L67/535
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method for execution by one or more processing modules of one or more computing devices of a dispersed storage network (DSN), the method begins by performing a key derivation function on a password to produce a key and issuing a set of blinded passwords to a set of storage units, where the blinded passwords are generated based on the key. The method continues by receiving at least a decode threshold number of confidential information responses, where each of the confidential information responses includes an encrypted encoded data slice and an associated passkey, regenerating a set of keys using the associated passkeys of the confidential information, decrypting a set of encrypted slices of the confidential information using the set of keys to reproduce a set of encoded data slices, and dispersed storage error decoding a decode threshold number of the set of reproduced encoded data slices to produce recovered data.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.