US 12,216,779 B2
Methods of and systems for virtual air-gapping network storage system
Eric Bednash, Fulton, MD (US); and Jonathan Halstuch, Fulton, MD (US)
Assigned to RackTop Systems, Inc., Fulton, MD (US)
Filed by RackTop Systems, Inc., Fulton, MD (US)
Filed on Nov. 4, 2021, as Appl. No. 17/519,124.
Claims priority of provisional application 63/113,666, filed on Nov. 13, 2020.
Prior Publication US 2022/0156395 A1, May 19, 2022
Int. Cl. G06F 21/62 (2013.01); G06F 9/54 (2006.01); G06F 16/13 (2019.01); G06F 16/182 (2019.01); G06F 21/60 (2013.01)
CPC G06F 21/6218 (2013.01) [G06F 9/54 (2013.01); G06F 16/137 (2019.01); G06F 16/183 (2019.01); G06F 21/602 (2013.01)] 22 Claims
OG exemplary drawing
 
1. A method of providing a virtual air-gapping of data in a network storage system, the method comprising:
creating a staging zone around a set of data within a global zone accessible over a network by the network storage system, the network storage system comprising a network data server;
indexing the set of data within the staging zone of the network data server;
reallocating the set of data in the staging zone, through at least one of a network file system and an operating system, by:
transforming the set of data within the staging zone to become a staging dataset that is not mountable by the network data server; and
creating a data vault containing vaulted data, the vaulted data being based on the staging dataset, the vaulted data being isolated from the global zone and logically disconnected from the network file system, the vaulted data further being accessible only to users that are permitted to access the vaulted data through an Application Programming Interface (API) of the network data server using a user encryption key;
verifying the vaulted data; and
destroying the staging zone.