STORAGE DEVICE AND ITS CONTROL METHOD
First Claim
1. A storage device which partitions data from a host into a plurality of partitioned data and creates a parity based on the plurality of partitioned data, distributes the created parity and the plurality of partitioned data to a plurality of memory mediums configuring a same parity group, and encrypts and stores the created parity and the plurality of partitioned data therein, comprising:
- a restoration unit for restoring the partitioned data or the parity stored in a memory medium to be subject to encryption re-key based on decrypted data of the partitioned data or the parity stored in each memory medium other than the memory medium to be subject to encryption re-key among the plurality of memory mediums;
a storage unit for storing the restored partitioned data or the parity in a backup memory medium while encrypting the restored partitioned data or the parity with a new encryption key; and
a memory medium swap unit for interchanging the backup memory medium and the memory medium to be subject to encryption re-key so that the backup memory medium will be a memory medium configuring the parity group and the memory medium to be subject to encryption re-key will be the backup memory medium;
wherein, by sequentially making each memory medium configuring the parity group to be the memory medium to be subject to encryption re-key, an encryption key of data stored in each memory medium configuring the parity group is updated to the new encryption key.
1 Assignment
0 Petitions
Accused Products
Abstract
Provided is a storage device which partitions data from a host into multiple partitioned data and distributes, encrypts and stores them together with a parity to and in multiple memory mediums. This storage device executes processing of restoring the partitioned data or the parity stored in a memory medium to be subject to encryption re-key based on decrypted data of the partitioned data or the parity stored in each memory medium other than the memory medium to be subject to encryption re-key among the multiple memory mediums, storing the restored partitioned data or the parity in a backup memory medium while encrypting the restored partitioned data or the parity with a new encryption key, and thereafter interchanging the backup memory medium and the memory medium to be subject to encryption re-key so that the backup memory medium will be a memory medium configuring the parity group and the memory medium to be subject to encryption re-key will be the backup memory medium.
71 Citations
8 Claims
-
1. A storage device which partitions data from a host into a plurality of partitioned data and creates a parity based on the plurality of partitioned data, distributes the created parity and the plurality of partitioned data to a plurality of memory mediums configuring a same parity group, and encrypts and stores the created parity and the plurality of partitioned data therein, comprising:
-
a restoration unit for restoring the partitioned data or the parity stored in a memory medium to be subject to encryption re-key based on decrypted data of the partitioned data or the parity stored in each memory medium other than the memory medium to be subject to encryption re-key among the plurality of memory mediums; a storage unit for storing the restored partitioned data or the parity in a backup memory medium while encrypting the restored partitioned data or the parity with a new encryption key; and a memory medium swap unit for interchanging the backup memory medium and the memory medium to be subject to encryption re-key so that the backup memory medium will be a memory medium configuring the parity group and the memory medium to be subject to encryption re-key will be the backup memory medium; wherein, by sequentially making each memory medium configuring the parity group to be the memory medium to be subject to encryption re-key, an encryption key of data stored in each memory medium configuring the parity group is updated to the new encryption key. - View Dependent Claims (2, 3, 4)
-
-
5. A control method of a storage device which partitions data from a host into a plurality of partitioned data and creates a parity based on the plurality of partitioned data, distributes the created parity and the plurality of partitioned data to a plurality of memory mediums configuring a same parity group, and encrypts and stores the created parity and the plurality of partitioned data therein, comprising:
-
a first step of restoring the partitioned data or the parity stored in a memory medium to be subject to encryption re-key based on decrypted data of the partitioned data or the parity stored in each memory medium other than the memory medium to be subject to encryption re-key among the plurality of memory mediums; a second step of storing the restored partitioned data or the parity in a backup memory medium while encrypting the restored partitioned data or the parity with a new encryption key; and a third step of interchanging the backup memory medium and the memory medium to be subject to encryption re-key so that the backup memory medium will be a memory medium configuring the parity group and the memory medium to be subject to encryption re-key will be the backup memory medium; wherein, by repeating the first to third steps while sequentially making each memory medium configuring the parity group to be the memory medium to be subject to encryption re-key, an encryption key of data stored in each memory medium configuring the parity group is updated to the new encryption key. - View Dependent Claims (6, 7, 8)
-
Specification