Using a master encryption key to sanitize a dispersed storage network memory

US 10,379,778 B2
Filed: 08/18/2016
Issued: 08/13/2019
Est. Priority Date: 08/18/2016
Status: Active Grant

First Claim

Patent Images

1. A method for execution by one or more processing modules of one or more computing devices of a dispersed storage network (DSN), the method comprises:

identifying, for data stored as a set of encoded data slices within a corresponding set of storage units within a DSN memory, one or more encryption keys used to encrypt the data within the DSN memory;

identifying, for data stored within a portion of the DSN memory requiring sanitization, a master key of the one or more encryption keys that reflects a smallest number of encoded data slices in the set of encoded data slices that also includes all encoded data slices of the portion of the DSN memory requiring sanitization;

determining, when the master key is not used to encrypt data stored outside of the portion of the DSN memory requiring sanitization; and

when the master key is not used to encrypt data stored outside the portion of the DSN memory requiring sanitization, sanitizing, by erasing the master key, the data stored within the portion of the DSN memory.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for execution by one or more processing modules of one or more computing devices of a dispersed storage network (DSN), the method begins by identifying, for data stored within a DSN memory, one or more encryption keys used to encrypt data stored within the DSN memory. The method continues by identifying, for data stored within a portion of the DSN memory requiring sanitization, a master key of the one or more encryption keys that encrypts all of the data stored within the portion to be sanitized. The method continues by determining, if the master key is not used to encrypt data stored outside of the portion to be sanitized. The method continues, if the master key is not used to encrypt data stored outside of the portion to be sanitized, by sanitizing the data stored within a portion of the DSN memory by erasing the master key.

Citations

19 Claims

1. A method for execution by one or more processing modules of one or more computing devices of a dispersed storage network (DSN), the method comprises:
- identifying, for data stored as a set of encoded data slices within a corresponding set of storage units within a DSN memory, one or more encryption keys used to encrypt the data within the DSN memory;
  
  identifying, for data stored within a portion of the DSN memory requiring sanitization, a master key of the one or more encryption keys that reflects a smallest number of encoded data slices in the set of encoded data slices that also includes all encoded data slices of the portion of the DSN memory requiring sanitization;
  
  determining, when the master key is not used to encrypt data stored outside of the portion of the DSN memory requiring sanitization; and
  
  when the master key is not used to encrypt data stored outside the portion of the DSN memory requiring sanitization, sanitizing, by erasing the master key, the data stored within the portion of the DSN memory.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1, wherein the sanitization is performed for any of:
    - DSN memory failure, before disposal of the DSN memory, or before a repair process of one or more memory units of the DSN memory.
  - 3. The method of claim 1, wherein the sanitization is performed multiple times to sanitize an entire storage unit of the DSN memory, wherein the sanitization is performed multiple times includes identifying a plurality of the master keys.
  - 4. The method of claim 3, wherein the entire storage unit includes multiple portions each with respective master keys.
  - 5. The method of claim 4, wherein the respective master keys are sequentially erased until all portions of the entire storage unit are sanitized.
  - 6. The method of claim 1, wherein the master key encrypts an identified class of data stored within the DSN memory.
  - 7. The method of claim 1, wherein the erasing of the master key makes all data it was used to encrypt unusable.
  - 8. The method of claim 1, wherein the portion of the DSN memory requiring sanitization includes any of:
    - disposed memory unit of the DSN memory;
      
      failed memory unit of the DSN memory;
      
      deleted memory container;
      
      a deleted vault of the DSN memory;
      
      an abandoned DSN memory site;
      
      or when a DSN memory is to be destroyed.

9. A computing device of a group of computing devices of a dispersed storage network (DSN), the computing device comprises:
- an interface;
  
  a local memory; and
  
  a processing module operably coupled to the interface and the local memory, wherein the processing module functions to;
  
  identify, for data stored as a set of encoded data slices within a corresponding set of storage units within a DSN memory, one or more encryption keys used to encrypt the data stored within the DSN memory;
  
  identify, for data stored within a portion of the DSN memory requiring sanitization, a master key of the one or more encryption keys that reflects a smallest number of encoded data slices in the set of encoded data slices that also includes all encoded data slices of the portion of the DSN memory requiring sanitization;
  
  determine, when the master key is not used to encrypt data stored outside of the portion of the DSN memory requiring sanitization; and
  
  when the master key is not used to encrypt the data stored outside of the portion of the DSN memory requiring sanitization, sanitize, by erasing the master key, the data stored within a portion of the DSN memory requiring sanitization.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The computing device of claim 9, wherein the sanitization is performed for any of:
    - DSN memory failure, before disposal of the DSN memory, or before a repair process of one or more memory units of the DSN memory.
  - 11. The computing device of claim 9, wherein the sanitization is performed multiple times to sanitize an entire storage unit of the DSN memory, wherein the sanitization is performed multiple times includes identifying a plurality of the master keys.
  - 12. The computing device of claim 11, wherein the entire storage unit includes multiple portions each with respective master keys.
  - 13. The computing device of claim 12, wherein the respective master keys are sequentially erased until all portions of the entire storage unit are sanitized.
  - 14. The computing device of claim 9, wherein the master key encrypts an identified class of data stored within the DSN memory.
  - 15. The computing device of claim 9, wherein the erasing of the master key makes all data it was used to encrypt unusable.
  - 16. The computing device of claim 9, wherein the portion of the DSN memory requiring sanitization includes any of:
    - disposed memory unit of the DSN memory;
      
      failed memory unit of the DSN memory;
      
      deleted memory container;
      
      a deleted vault of the DSN memory;
      
      an abandoned DSN memory site;
      
      or when a DSN memory is to be destroyed.

17. A method for execution by one or more processing modules of one or more computing devices of a dispersed storage network (DSN), the method comprises:
- identifying, for a data storage unit within a DSN memory, one or more encryption keys each used to encrypt data stored as a set of encoded data slices within a corresponding set of storage units within the DSN memory;
  
  identifying, for data stored within multiple portions of the data storage unit requiring sanitization, each master key of the one or more encryption keys used to encrypt data stored as a set of encoded data slices within a corresponding set of storage units within the DSN memory that collectively reflects a smallest number of encoded data slices in the set of encoded data slices that also includes all encoded data slices of the portion of the DSN memory requiring sanitization;
  
  determining, when the identified master keys are not used to encrypt the data stored outside of the data storage unit to be sanitized; and
  
  when the identified master keys are not used to encrypt data stored outside of the data storage unit to be sanitized, sanitizing, by erasing a respective master key of each of the multiple portions of the data storage unit requiring sanitization, the data stored within each of the multiple portions of the data storage unit requiring sanitization.
- View Dependent Claims (18, 19)
- - 18. The method of claim 17, where a respective master key for each of the portions is determined and erased sequentially.
  - 19. The method of claim 17, where a respective master key for each of the portions is determined in aggregate and erased together.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Frazier, Alan M., Horan, Scott M., Rai, Shibhani, Resch, Jason K., Seaborn, Mark D.
Primary Examiner(s)
Hirl, Joseph P
Assistant Examiner(s)
Bell, Kalish K

Application Number

US15/240,189
Publication Number

US 20180052636A1
Time in Patent Office

1,090 Days
Field of Search
US Class Current
CPC Class Codes

G06F 11/1076   Parity data used in redunda...

G06F 3/0607   by facilitating the process...

G06F 3/0619   in relation to data integri...

G06F 3/064   Management of blocks

G06F 3/0652   Erasing, e.g. deleting, dat...

G06F 3/067   Distributed or networked st...

H04L 63/0428   wherein the data content is...

H04L 63/06   for supporting key manageme...

H04L 63/1441   Countermeasures against mal...

H04L 67/1097   for distributed storage of ...

Using a master encryption key to sanitize a dispersed storage network memory

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Using a master encryption key to sanitize a dispersed storage network memory

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links