Abstract: A system of secure data packets for transmission over a packet switched network includes an expiring Hash-based Message Authentication Code (HMAC) appended to the data packet. The expiring HMAC is calculated based on a shared secret and a clock time. A receiving network application or firewall with the shared secret validates the secure data packets based on a comparison of the expiring HMAC to the receiving network or application's own calculation of a valid HMAC based on the shared secret and the clock time. Applications executing on the receiving and sending networks do not need modification to use the secure data packet protocol because HMAC appending, validation, and removal may all occur at network boundaries on firewalls. Protected host endpoints may serve client endpoints using expiring HMAC data packets and other validation information based on security data stored on a shared ledger such as nonce values encountered by the network.
Abstract: A blockchain file system provides access to a data storage volume on a blockchain. The blockchain volume is mounted by the host computing system in the same way as a conventional data storage volume from the perspective of the user space applications. The host computing system includes a local write-ahead blockchain journal that links bundles of mutations to the filesystem related to filesystem operations into a chain of digital signatures. One or more of the mutation bundles are included in a signed blockchain transaction that is broadcast to a network of the blockchain that, when confirmed into the blockchain, will carry out the filesystem operations on the blockchain data storage volume. Also provided is a novel blockchain addressing scheme, copy-on-write functionality, and de-duplication features write-ahead filesystem journal.
Abstract: A system of secure data packets for transmission over a packet switched network includes an expiring Hash-based Message Authentication Code (HMAC) appended to the data packet. The expiring HMAC is calculated based on a shared secret and a clock time. A receiving network application or firewall with the shared secret validates the secure data packets based on a comparison of the expiring HMAC to the receiving network or application's own calculation of a valid HMAC based on the shared secret and the clock time. Applications executing on the receiving and sending networks do not need modification to use the secure data packet protocol because HMAC appending, validation, and removal may all occur at network boundaries on firewalls. Protected host endpoints may serve client endpoints using expiring HMAC data packets and other validation information based on security data stored on a shared ledger such as nonce values encountered by the network.
Abstract: A method for securely storing a data object comprises identifying the data object to be stored securely, segmenting the data object into a plurality of data packets, including at least a first data packet and a second data packet, specifying a secure storage location for the first data packet, specifying a secure storage location for the second data packet that is different from the storage location specified for the first data packet, securely transmitting the first data packet to the data storage location specified for it and storing it in the secure storage location specified for it, securely transmitting the second data packet to the data storage location specified for it and storing it in the secure storage location specified for it.