Data security
First Claim
1. A method comprising:
- storing configuration parameters for determining a configuration of a redundant array of independent disks (RAID) storage;
storing, in a non-volatile memory, a key used to enable encryption, the non-volatile memory in a circuit card not comprised in the RAID storage;
receiving a request to write data to one or more locations in the RAID storage;
encrypting, based upon at least one key, one or more respective portions of write data to generate one or more respective portions of encrypted write data to be stored in the one or more locations of the RAID storage;
generating, based upon the one or more respective portions of the encrypted write data, check data to be stored in the RAID storage;
selecting the one or more locations in the RAID storage for storing the one or more respective portions of the encrypted write data by translating the one or more locations specified in the request into one or more physical or logical locations in the RAID storage based at least upon the stored configuration parameters so as to permit the one or more respective portions of the encrypted write data to be distributed among the one or more storage locations comprised in the RAID storage; and
storing each of the one or more portions of the encrypted write data and check data into the one or more corresponding locations of the RAID storage.
0 Assignments
0 Petitions
Accused Products
Abstract
In one embodiment, a method is provided that may include encrypting, based least in part upon at least one key, one or more respective portions of input data to generate one or more respective portions of output data to be stored in one or more locations in storage. The method of this embodiment also may include generating, based at least in part upon the one or more respective portions of the output data, check data to be stored in the storage, and/or selecting the one or more locations in the storage so as to permit the one or more respective portions of the output data to be distributed among two or more storage devices comprised in the storage. Many modifications, variations, and alternatives are possible without departing from this embodiment.
39 Citations
20 Claims
-
1. A method comprising:
-
storing configuration parameters for determining a configuration of a redundant array of independent disks (RAID) storage; storing, in a non-volatile memory, a key used to enable encryption, the non-volatile memory in a circuit card not comprised in the RAID storage; receiving a request to write data to one or more locations in the RAID storage; encrypting, based upon at least one key, one or more respective portions of write data to generate one or more respective portions of encrypted write data to be stored in the one or more locations of the RAID storage; generating, based upon the one or more respective portions of the encrypted write data, check data to be stored in the RAID storage; selecting the one or more locations in the RAID storage for storing the one or more respective portions of the encrypted write data by translating the one or more locations specified in the request into one or more physical or logical locations in the RAID storage based at least upon the stored configuration parameters so as to permit the one or more respective portions of the encrypted write data to be distributed among the one or more storage locations comprised in the RAID storage; and storing each of the one or more portions of the encrypted write data and check data into the one or more corresponding locations of the RAID storage. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method comprising:
- storing configuration parameters for determining a configuration of a redundant array of independent disks (RAID) storage;
storing, in a non-volatile memory, a key used to enable decryption, the non-volatile memory in a circuit card not comprised in the RAID storage; receiving a request to retrieve requested data from one or more locations in the RAID storage; translating the one or more locations specified in the request into one or more physical or logical locations in the RAID storage based at least upon the stored configuration parameters; retrieving one or more respective portions of encrypted data and corresponding check data from the one or more translated locations in the RAID storage; and decrypting the one or more respective portions of the encrypted read data retrieved from the one or more locations in the RAID storage based upon at least one key to generate one or more respective portions of read data. - View Dependent Claims (9, 10, 11)
- storing configuration parameters for determining a configuration of a redundant array of independent disks (RAID) storage;
-
12. An apparatus comprising:
-
a circuit card comprising; a non-volatile memory to store configuration parameters for determining a configuration of a redundant array of independent disks (RAID) storage and the non-volatile memory to store a key used to enable encryption; and logic to receive a request to write data to one or more locations in the RAID storage, to encrypt, based upon at least one key, one or more respective portions of write data to generate one or more respective portions of encrypted write data to be stored in the one or more locations of the RAID storage, to generating, based upon the one or more respective portions of the encrypted write data, check data to be stored in the RAID storage, to select the one or more locations in the RAID storage for storing the one or more respective portions of the encrypted write data by translating the one or more locations specified in the request into one or more physical or logical locations in the RAID storage based at least upon the stored configuration parameters so as to permit the one or more respective portions of the encrypted write data to be distributed among the one or more storage locations comprised in the RAID storage and to store each of the one or more portions of the encrypted write data and check data into the one or more corresponding locations of the RAID storage. - View Dependent Claims (13, 14, 15, 16, 17)
-
-
18. A system comprising:
-
a circuit board comprising a circuit card slot and a circuit card that is capable of being inserted into the circuit card slot, the circuit card comprising; a non-volatile memory to store configuration parameters for determining a configuration of a redundant array of independent disks (RAID) storage and a key used to enable encryption; and circuitry to receive a request to write data to one or more locations in the RAID storage, to encrypt, based upon at least one key, one or more respective portions of write data to generate one or more respective portions of encrypted write data to be stored in the one or more locations of the RAID storage, to generating, based upon the one or more respective portions of the encrypted write data, check data to be stored in the RAID storage, to select the one or more locations in the RAID storage for storing the one or more respective portions of the encrypted write data by translating the one or more locations specified in the request into one or more physical or logical locations in the RAID storage based at least upon the stored configuration parameters so as to permit the one or more respective portions of the encrypted write data to be distributed among one or more storage locations comprised in the RAID storage and to store each of the one or more portions of the encrypted write data and check data into the one or more corresponding locations of the RAID storage. - View Dependent Claims (19, 20)
-
Specification