Secure disposal of storage data
First Claim
1. A method of protecting data stored on a data storage device, comprising:
- providing a cryptographic module in the data storage device;
receiving incoming data to be stored in the data storage device;
generating an encryption key by the cryptographic module for encrypting the incoming data;
encrypting the incoming data by the cryptographic module using the encryption key to generate ciphertext corresponding to the incoming data; and
storing the ciphertext in the data storage device.
5 Assignments
0 Petitions
Accused Products
Abstract
A data storage device (such as a magnetic disk drive), which has a built-in encryption function using a self generated cipher key. The data storage device uses the cipher key to routinely encrypt the incoming data without instruction and/or control by the host system or other components that are external to the device and its dedicated controls (e.g., a disk drive controller card). The encryption function is a built-in function or self-contained function of the drive and/or it dedicated controller. To permanently delete the entire content of the drive, the cipher key is located and erased to render the ciphertext that is stored in the storage device unusable. In another embodiment of the present invention, the data disposal is managed on a file basis through the use of a plurality of internally generated file-specific cipher keys, which are managed through the aid of an internal key library.
-
Citations
20 Claims
-
1. A method of protecting data stored on a data storage device, comprising:
-
providing a cryptographic module in the data storage device; receiving incoming data to be stored in the data storage device; generating an encryption key by the cryptographic module for encrypting the incoming data; encrypting the incoming data by the cryptographic module using the encryption key to generate ciphertext corresponding to the incoming data; and storing the ciphertext in the data storage device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A data storage system, comprising:
-
a data storage medium; a transducer reading and writing data with respect to the data storage medium; a cryptographic module protecting data stored on a data storage device, wherein the cryptographic module generates an encryption key to encrypt incoming data to generate corresponding ciphertext. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification