US 9,811,677 B2
Secure data replication in a storage grid
John Hayes, Mountain View, CA (US); Par Botes, Mountain View, CA (US); and Ethan Miller, Mountain View, CA (US)
Assigned to Pure Storage, Inc., Mountain View, CA (US)
Filed by Pure Storage, Inc., Mountain View, CA (US)
Filed on Jul. 3, 2014, as Appl. No. 14/323,772.
Prior Publication US 2016/0004877 A1, Jan. 7, 2016
Int. Cl. G06F 21/00 (2013.01); G06F 21/62 (2013.01); G06F 21/78 (2013.01)
CPC G06F 21/6218 (2013.01) [G06F 21/78 (2013.01)] 7 Claims
OG exemplary drawing
 
1. A method for secure data replication in a storage grid, comprising:
producing a storage key from a key share of each of at least two storage clusters from a storage grid of at least three storage clusters;
producing a grid key from the storage key and an external secret;
producing once encrypted data from the grid key and data received for storage in the storage grid;
producing twice encrypted data, at a first one of the at least three storage clusters, from the storage key and the once encrypted data;
storing the twice encrypted data in the first one of the at least three storage clusters;
sending the once encrypted data to a second one of the at least three storage clusters;
producing a replicated version of the twice encrypted data, at the second one of the at least three storage clusters, from the once encrypted data as received at the second one of the at least three storage clusters; and
storing the replicated version of the twice encrypted data in the second one of the at least three storage clusters.