Method and system to provide security implementation for storage devices
First Claim
1. A method comprising:
- for each addressable block of a storage device into which encrypted data is stored, generating a multi-byte random number unique to that block from a random number generator, the random number generator comprising a hardware register whose value is unpredictable on power up;
generating an initialization vector from the random number, the initialization vector being completely independent of the data;
encrypting data to be stored in a block employing the initialization vector as at least a portion of an encryption key;
storing the random number in the block; and
storing the encrypted data into the block;
wherein the initialization vector depends on a random number stored with the data and is not dependent upon the data.
4 Assignments
0 Petitions
Accused Products
Abstract
In one embodiment, method that can be performed on a system, is provided to security implementations for storage devices. In one embodiment, the method comprises providing a separate encryption seed for each of a plurality of separate addressable blocks of a non-volatile storage device, wherein a common encryption method is to encrypt data to be stored on the plurality of separate addressable blocks. In one embodiment, the storage device is a portable storage device. In one embodiment, encryption seed is an Initialization Vector (IV). In one embodiment, the encryption seeds comprise at least one of a media serial number and a logical block address corresponding to the respective block of the non-volatile storage device. In an alternative embodiment, the method further comprises storing at least a part of the separate encryption seed of the separate blocks of the non-volatile storage device within the respective blocks of the storage device.
89 Citations
13 Claims
-
1. A method comprising:
-
for each addressable block of a storage device into which encrypted data is stored, generating a multi-byte random number unique to that block from a random number generator, the random number generator comprising a hardware register whose value is unpredictable on power up; generating an initialization vector from the random number, the initialization vector being completely independent of the data; encrypting data to be stored in a block employing the initialization vector as at least a portion of an encryption key; storing the random number in the block; and storing the encrypted data into the block; wherein the initialization vector depends on a random number stored with the data and is not dependent upon the data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method comprising:
-
for each set of consecutively addressable blocks of a storage device into which encrypted data is stored, a set comprising two or more consecutively addressable blocks, generating a multi-byte random number unique to that set from a random number generator, the random number generator comprising a hardware register whose value is unpredictable on power up; generating an initialization vector from the random number, the initialization vector being independent of the data; encrypting data to be stored in a set employing the initialization vector as at least a portion of an encryption key; storing the random number in the set; and storing the encrypted data into the set. - View Dependent Claims (13)
-
Specification