HARDWARE ENCRYPTING STORAGE DEVICE WITH PHYSICALLY SEPARABLE KEY STORAGE DEVICE
First Claim
1. A storage system for storing and providing computing device data, the storage system comprising:
- one or more key devices, that are physically and communicationally separable from a storage device, the one or more key devices comprising cryptographic information; and
the storage device comprising;
one or more computer-readable media having data stored thereon;
one or more processing units; and
instructions, executable by the one or more processing units, for performing steps comprising;
securing, with reference to the cryptographic information of a communicationally connected key device, from among the one or more key devices, data to be stored on the one or more computer-readable media; and
denying requests, from a computing device, to access data stored on the one or more computer-readable media, if all of the one or more key devices are communicationally separated from the storage device and at least one of the one or more key devices was previously communicationally connected to the storage device.
2 Assignments
0 Petitions
Accused Products
Abstract
Storage devices can provide for hardware encryption and decryption of data stored by them. The hardware cryptographic functions can be applied with reference to cryptographic information of a communicationally, and physically, separable key device. Disconnection of the separable key device can render encrypted data inaccessible. Destruction of the separable key device can result in virtual destruction of the encrypted data. The cryptographic information on the separable key device can be provided by a storage device manufacturer, or by a provisioning computing device. The separable key device can be directly communicationally coupled to a provisioning computing device or it can establish a secure communication tunnel with the provisioning device through a computing device to which the separable key device is communicationally coupled. Cryptographic information can be provided by, and deleted from, the provisioning computing device prior to completion of the booting of that device.
-
Citations
20 Claims
-
1. A storage system for storing and providing computing device data, the storage system comprising:
-
one or more key devices, that are physically and communicationally separable from a storage device, the one or more key devices comprising cryptographic information; and the storage device comprising;
one or more computer-readable media having data stored thereon;
one or more processing units; and
instructions, executable by the one or more processing units, for performing steps comprising;
securing, with reference to the cryptographic information of a communicationally connected key device, from among the one or more key devices, data to be stored on the one or more computer-readable media; and
denying requests, from a computing device, to access data stored on the one or more computer-readable media, if all of the one or more key devices are communicationally separated from the storage device and at least one of the one or more key devices was previously communicationally connected to the storage device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A storage device, physically and communicationally separable from one or more key devices comprising cryptographic information, the storage device comprising:
-
one or more computer-readable media having data stored thereon; one or more processing units; and instructions, executable by the one or more processing units, for performing steps comprising;
securing, with reference to the cryptographic information of a communicationally connected key device, from among the one or more key devices, data to be stored on the one or more computer-readable media; and
denying requests, from the computing device, to access data stored on the one or more computer-readable media, if all of the one or more key devices are communicationally separated from the storage device and at least one of the one or more key devices was previously communicationally connected to the storage device. - View Dependent Claims (10, 11)
-
-
12. A key device, physically and communicationally separable from a storage device comprising encrypted data received from a computing device, the key device comprising:
-
at least one communicational interface; computer-readable media comprising cryptographic information utilized to secure the data of the storage device; and a visible unique identifier of the storage device. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification