US 12,248,596 B2
Encryption for a distributed filesystem
Maor Ben Dayan, Tel Aviv (IL); Omri Palmon, Tel Aviv (IL); Liran Zvibel, Tel Aviv (IL); Kanael Arditti, Tel Aviv (IL); and Ori Peleg, Tel Aviv (IL)
Assigned to Weka.IO Ltd., (IL)
Filed by Weka.IO Ltd., Tel Aviv (IL)
Filed on Jan. 12, 2024, as Appl. No. 18/411,699.
Application 18/411,699 is a continuation of application No. 17/961,981, filed on Oct. 7, 2022, granted, now 11,914,736.
Application 17/961,981 is a continuation of application No. 17/317,086, filed on May 11, 2021, granted, now 11,507,681, issued on Nov. 22, 2022.
Application 17/317,086 is a continuation of application No. 16/274,541, filed on Feb. 13, 2019, granted, now 11,042,661, issued on Jun. 22, 2021.
Claims priority of provisional application 62/682,198, filed on Jun. 8, 2018.
Prior Publication US 2025/0013768 A1, Jan. 9, 2025
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 21/62 (2013.01); G06F 16/182 (2019.01); G06F 21/60 (2013.01); H04L 9/08 (2006.01); H04L 9/14 (2006.01)
CPC G06F 21/6218 (2013.01) [G06F 16/182 (2019.01); G06F 21/602 (2013.01); H04L 9/0838 (2013.01); H04L 9/0841 (2013.01); H04L 9/0891 (2013.01); H04L 9/14 (2013.01)] 30 Claims
OG exemplary drawing
 
1. A system comprising:
a processor operable to configure a plurality of failure-protected stripes in a plurality of storage devices, wherein:
the plurality of storage devices are distributed such that at most an allowed number of storage devices are within any particular node of a plurality of nodes,
the processor is operable to encrypt data according to a file key,
the file key is rotated when a file is copied, and
all failure-protected stripes built by a plurality of buckets are associated with a filesystem key.