Information processing apparatus, encryption apparatus, and control method
First Claim
Patent Images
1. An information processing apparatus comprising:
- an encryption processing device, which is configured to connect to a storage memory, encrypt data to be stored in the storage memory and decrypt the encrypted data read from the storage memory; and
a control unit configured to perform control to back-up a first key into a memory unit which is different from the encryption processing device, wherein the first key, which is used to decrypt data encrypted by the encryption processing device and stored in the storage memory, is encrypted using a second key set in the encryption processing device,wherein, during an initialization process after the control unit is powered on, the control unit obtains an initial key from the encryption processing device and checks whether the data stored in the storage memory can be decrypted by using the initial key by determining whether data read from a specific area of the storage memory and decrypted by using the initial key coincides with predetermined data,wherein, in a case where a check result indicates the data stored in the storage memory can be decrypted by using the initial key, the control unit backs-up the initial key encrypted by using the second key in the memory unit which is different from the encryption processing device, andwherein, in a case where the check result does not indicate the data stored in the storage memory can be decrypted by using the initial key, the control unit acquires a back-up key which has been stored in the memory unit, and replace the initial key in the encryption processing device by the acquired back-up key.
1 Assignment
0 Petitions
Accused Products
Abstract
An information processing apparatus includes a storage unit, an encryption processing unit that encrypts data to be stored in the storage unit, and a control unit that stores a first key in a unit different from the encryption processing unit, wherein the first key, which is used to decrypt data encrypted by the encryption processing unit and stored in the storage unit, is encrypted using a second key set in the encryption processing unit.
-
Citations
10 Claims
-
1. An information processing apparatus comprising:
-
an encryption processing device, which is configured to connect to a storage memory, encrypt data to be stored in the storage memory and decrypt the encrypted data read from the storage memory; and a control unit configured to perform control to back-up a first key into a memory unit which is different from the encryption processing device, wherein the first key, which is used to decrypt data encrypted by the encryption processing device and stored in the storage memory, is encrypted using a second key set in the encryption processing device, wherein, during an initialization process after the control unit is powered on, the control unit obtains an initial key from the encryption processing device and checks whether the data stored in the storage memory can be decrypted by using the initial key by determining whether data read from a specific area of the storage memory and decrypted by using the initial key coincides with predetermined data, wherein, in a case where a check result indicates the data stored in the storage memory can be decrypted by using the initial key, the control unit backs-up the initial key encrypted by using the second key in the memory unit which is different from the encryption processing device, and wherein, in a case where the check result does not indicate the data stored in the storage memory can be decrypted by using the initial key, the control unit acquires a back-up key which has been stored in the memory unit, and replace the initial key in the encryption processing device by the acquired back-up key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method for controlling an information processing apparatus including an encryption processing device, which is configured to connect to a storage memory, encrypt data to be stored in the storage memory, the method comprising:
-
backing-up a first key, encrypted using a second key set in the encryption processing device, into a memory unit different from the encryption processing device, wherein the first key is used to decrypt data that encrypted by the encryption processing device and stored in the storage unit, wherein, during an initialization process obtains an initial key from the encryption processing device and checks whether the data stored in the storage memory can be decrypted by using the initial key by determining whether data read from a specific area of the storage memory and decrypted by using the initial key coincides with predetermined data, wherein, in a case where a check result indicates the data stored in the storage memory can be decrypted by using the initial key, backs-up the initial key encrypted by using the second key in the memory unit which is different from the encryption processing device, and wherein, in a case where the check result does not indicate the data stored in the storage memory can be decrypted by using the initial key, acquires a back-up key which has been stored in the memory unit, and replace the initial key in the encryption processing device by the acquired back-up key.
-
Specification