Generating a unique encryption key
First Claim
Patent Images
1. A method of utilizing a non-repeating identifier to encrypt data, the method comprising:
- by a storage array controller;
receiving a request to write data to a storage device in a storage array;
selecting a segment-offset pair where the data will be stored, wherein the selected segment-offset pair is unique relative to every other segment-offset pair previously utilized by the storage device, wherein the selected segment-offset pair cannot be reutilized to service another request to write data to the storage device, and wherein multiple segment-offset pairs map to the same physical location within the storage device during the lifetime of the storage device;
utilizing the new segment identifier of the segment-offset pair to encrypt the data including utilizing an encryption key; and
writing the encrypted data to the storage device at the selected segment-offset pair.
1 Assignment
0 Petitions
Accused Products
Abstract
Utilizing a non-repeating identifier to encrypt data, including: receiving a request to write data to a storage device; selecting a segment-offset pair where the data will be stored, where the selected segment-offset pair is unique to every other segment-offset pair utilized during the lifetime of the storage device; and encrypting the data in dependence upon an identifier of the segment-offset pair.
129 Citations
16 Claims
-
1. A method of utilizing a non-repeating identifier to encrypt data, the method comprising:
-
by a storage array controller; receiving a request to write data to a storage device in a storage array; selecting a segment-offset pair where the data will be stored, wherein the selected segment-offset pair is unique relative to every other segment-offset pair previously utilized by the storage device, wherein the selected segment-offset pair cannot be reutilized to service another request to write data to the storage device, and wherein multiple segment-offset pairs map to the same physical location within the storage device during the lifetime of the storage device; utilizing the new segment identifier of the segment-offset pair to encrypt the data including utilizing an encryption key; and writing the encrypted data to the storage device at the selected segment-offset pair. - View Dependent Claims (2, 3, 4, 5)
-
-
6. An apparatus for utilizing a non-repeating identifier to encrypt data, the apparatus comprising a computer processor, a computer memory operatively coupled to the computer processor, the computer memory having disposed within it computer program instructions that, when executed by the computer processor, cause the apparatus to carry out the steps of:
-
by a storage array controller; receiving a request to write data to a storage device in a storage array; selecting a segment-offset pair where the data will be stored, wherein the selected segment-offset pair is unique relative to every other segment-offset pair previously utilized by the storage device, wherein the selected segment-offset pair cannot be reutilized to service another request to write data to the storage device, and wherein multiple segment-offset pairs map to the same physical location within the storage device during the lifetime of the storage device; utilizing the new segment identifier of the segment-offset pair to encrypt the data including utilizing an encryption key; and writing the encrypted data to the storage device at the selected segment-offset pair. - View Dependent Claims (7, 8, 9, 10, 11)
-
-
12. A storage system for utilizing a non-repeating identifier to encrypt data, the storage system comprising a computer processor, a computer memory operatively coupled to the computer processor, the computer memory having disposed within it computer program instructions that, when executed by the computer processor, cause the storage system to carry out the steps of:
-
by a storage array controller; receiving a request to write data to a storage device in a storage array; selecting a segment-offset pair where the data will be stored, wherein the selected segment-offset pair is unique relative to every other segment-offset pair previously utilized by the storage device, wherein the selected segment-offset pair cannot be reutilized to service another request to write data to the storage device, and wherein multiple segment-offset pairs map to the same physical location within the storage device during the lifetime of the storage device; utilizing the new segment identifier of the segment-offset pair to encrypt the data including utilizing an encryption key; and writing the encrypted data to the storage device at the selected segment-offset pair. - View Dependent Claims (13, 14, 15, 16)
-
Specification