Patent · US Active

Backups of file system instances of encrypted data objects

US11226867B2 · kind B2 · utility

1Cited by

14References

20Claims

0Family size

Assignee

Hewlett Packard Enterprise Development LP · US

Inventors

Gareth Richards · Woodstock, GB
Glenn S. Watkins · Northborough, US
John Michael Czerkowicz · Wakefield, US

Key dates

Filing date	Apr 29, 2019
Grant date	Jan 18, 2022
Priority date	—
Expiry date	Feb 24, 2040

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/062
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Example implementations relate to encrypting data objects. In an example, data objects of a file system instance contained by a security domain are encrypted using a Data Encryption Key that is specific to the security domain and is wrapped by a Key Encryption Key shared exclusively within a cluster. A backup of the file system instance is created on a backup node. The backup includes at least some of the encrypted data objects. The DEK is sent to the backup node. The backup node cannot decrypt the backup unless the backup node is a member of the cluster and has access to the KEK to unwrap the DEK.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.