US 9,813,248 B2
Content-based encryption keys
Murali Bashyam, Fremont, CA (US); and Tarun K. Tripathy, Newark, CA (US)
Assigned to QUEST SOFTWARE INC., Aliso Viejo, CA (US)
Filed by QUEST SOFTWARE INC., Aliso Viejo, CA (US)
Filed on May 27, 2015, as Appl. No. 14/722,854.
Prior Publication US 2016/0352511 A1, Dec. 1, 2016
Int. Cl. H04K 1/00 (2006.01); H04L 9/00 (2006.01); H04L 9/32 (2006.01); G06F 11/10 (2006.01); H04L 9/08 (2006.01)
CPC H04L 9/3242 (2013.01) [G06F 11/1004 (2013.01); H04L 9/0866 (2013.01)] 13 Claims
OG exemplary drawing
 
1. A method comprising:
parsing a data stream into a plurality of data chunks by applying a rolling hash function that produces a respective checksum value for each of the plurality of data chunks, the plurality of data chunks including a designated data chunk;
determining a fingerprint value for the designated data chunk by applying a hash function to the designated data chunk via a processor at a client machine;
constructing a data chunk encryption key for encrypting the designated data chunk by combining the fingerprint value with one or more secret strings, the one or more secret strings being pre-negotiated between the client machine and a remote server, the data chunk encryption key being specific to the designated data chunk;
encrypting the designated data chunk with the data chunk encryption key to produce an encrypted data chunk; and
transmitting the encrypted data chunk to the remote server for storage via a communications interface at the client machine.