Data security for digital data storage
First Claim
Patent Images
1. A data security apparatus for use with a digital data storage apparatus, comprising:
- a first apparatus configured to receive digital data from a host processor, where the first apparatus is configured to encrypt the digital data with an encryption key, the first apparatus further configured to forward the digital data to the digital data storage apparatus in an encrypted form; and
a boot mechanism configured to;
verify a user; and
after the user is successfully verified, cause the encryption key to be generated;
wherein the verification of the user is based at least on a received user input;
wherein the received user input comprises a password; and
wherein the encryption key is based at least in part on the password.
0 Assignments
0 Petitions
Accused Products
Abstract
A computing system includes data encryption in the data path between a data source and data storage devices. The data encryption may utilize a key which is derived at least in part from an identification code stored in a nonvolatile memory. The key may also be derived at least in part from user input to the computer.
86 Citations
24 Claims
-
1. A data security apparatus for use with a digital data storage apparatus, comprising:
-
a first apparatus configured to receive digital data from a host processor, where the first apparatus is configured to encrypt the digital data with an encryption key, the first apparatus further configured to forward the digital data to the digital data storage apparatus in an encrypted form; and a boot mechanism configured to; verify a user; and after the user is successfully verified, cause the encryption key to be generated; wherein the verification of the user is based at least on a received user input; wherein the received user input comprises a password; and wherein the encryption key is based at least in part on the password. - View Dependent Claims (2, 3)
-
-
4. A data security apparatus for use with a digital data storage apparatus, comprising:
-
a first apparatus configured to receive digital data from a host processor, where the first apparatus is configured to encrypt the digital data with an encryption key, the first apparatus further configured to forward the digital data to the digital data storage apparatus in an encrypted form; a boot mechanism configured to; verify a user; and after the user is successfully verified, cause the encryption key to be generated; and a second apparatus configured to retrieve the digital data from the digital data storage apparatus, wherein the second apparatus is further configured to decrypt the digital data with a decryption key that is different than the encryption key. - View Dependent Claims (5, 6, 7, 8, 9, 10, 11)
-
-
12. A method for securely encrypting a digital data storage apparatus, comprising:
-
verifying a user; when the user is successfully verified; determining at least one cryptographic key; receiving digital data; encrypting the digital data with the at least one cryptographic key; and storing the encrypted digital data to a digital data storage apparatus; and otherwise denying access to at least a portion of the digital data storage apparatus; wherein the at least one cryptographic key comprises an encryption key and a decryption key, and the encryption key and decryption key are different from one another. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
-
20. A data security apparatus, comprising:
-
a first apparatus configured to receive digital data from a host processor, where the first apparatus is further configured to encrypt the digital data with one or more cryptographic keys, and to forward the digital data to a digital data storage apparatus in an encrypted form; and a boot mechanism that is configured to verify the host processor based on a hardware identifier; and when the host processor is successfully verified, enable access to the digital data storage apparatus; wherein the one or more cryptographic keys are based at least on the hardware identifier. - View Dependent Claims (21, 22, 23, 24)
-
Specification