Encryption key shredding to protect non-persistent data
First Claim
1. A storage system comprising:
- a storage drive; and
a controller to;
power on the storage drive;
identify an encryption key on the storage drive created upon powering on the storage drive;
encrypt data in a cache of the storage drive using the encryption key;
power off the storage drive; and
delete the encryption key upon powering off the storage drive.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods for encryption key shredding to protect non-persistent data are described. In one embodiment, the storage system device may include a storage drive and a controller. In some embodiments, the controller may be configured to power on the storage drive, identify an encryption key on the storage drive created upon powering on the storage drive, and encrypt data in a cache of the storage drive using the encryption key. In some embodiments, the controller may be configured to power off the storage drive and delete the encryption key upon powering off the storage drive. In some cases, the storage drive may include at least one of a solid state drive and a hard disk drive. In some embodiments, the storage drive may include a hybrid storage drive that includes both a solid state drive and a hard disk drive.
18 Citations
20 Claims
-
1. A storage system comprising:
-
a storage drive; and a controller to; power on the storage drive; identify an encryption key on the storage drive created upon powering on the storage drive; encrypt data in a cache of the storage drive using the encryption key; power off the storage drive; and delete the encryption key upon powering off the storage drive. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. An apparatus comprising:
a controller to; power on an apparatus; identify an encryption key on the apparatus created upon powering on the apparatus; encrypt data in a cache of the apparatus using the encryption key; power off the apparatus; and delete the encryption key upon powering off the apparatus. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
19. A method comprising:
-
powering on a storage drive, the storage drive including at least one of a solid state drive and a hard disk drive; identifying an encryption key on the storage drive created upon powering on the storage drive; encrypting data in a cache of the storage drive using the encryption key; powering off the storage drive; and deleting the encryption key upon powering off the storage drive. - View Dependent Claims (20)
-
Specification