System and method for general purpose encryption of data
First Claim
1. An information handling system, comprising:
- a processor;
a memory communicatively coupled to the processor;
a storage resource communicatively coupled to the processor; and
instructions stored in the memory, the instructions, when loaded and executed by the processor, cause the processor to;
determine an encryption status of a boot volume of the storage resource;
initiate encryption or decryption of data stored on the boot volume;
track the encryption status of the boot volume by periodically storing, during an encryption or decryption of data stored on the boot volume, a variable indicating a portion of the boot volume that has been encrypted or decrypted and whether the boot volume is partially encrypted or decrypted;
in response to an interruption to the encryption or decryption of data stored on the boot volume, determine whether the boot volume is in a partially encrypted or decrypted state; and
based on the determination that the boot volume is in the partially encrypted or decrypted state, boot from the boot volume in the partially encrypted or decrypted state.
14 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for reducing problems and disadvantages associated with traditional approaches to encryption and decryption of data are provided. An information handling system may include a processor, a memory communicatively coupled to the processor, and an encryption accelerator communicatively coupled to the processor. The encryption accelerator may be configured to encrypt and decrypt information in accordance with a plurality of cryptographic functions, receive a command from the processor to perform an encryption or decryption task upon data associated with an input/output operation, and in response to receiving the command, encrypt or decrypt the data associated with the input/output operation based on a particular one of the plurality of cryptographic functions.
-
Citations
14 Claims
-
1. An information handling system, comprising:
-
a processor; a memory communicatively coupled to the processor; a storage resource communicatively coupled to the processor; and instructions stored in the memory, the instructions, when loaded and executed by the processor, cause the processor to; determine an encryption status of a boot volume of the storage resource; initiate encryption or decryption of data stored on the boot volume; track the encryption status of the boot volume by periodically storing, during an encryption or decryption of data stored on the boot volume, a variable indicating a portion of the boot volume that has been encrypted or decrypted and whether the boot volume is partially encrypted or decrypted; in response to an interruption to the encryption or decryption of data stored on the boot volume, determine whether the boot volume is in a partially encrypted or decrypted state; and based on the determination that the boot volume is in the partially encrypted or decrypted state, boot from the boot volume in the partially encrypted or decrypted state. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method for encryption and decryption of data, comprising:
-
determining, by a processor loading and executing instructions stored on a memory, an encryption status of a boot volume of a storage resource; initiating, by the processor, encryption or decryption of data stored on the boot volume; tracking, by the processor, the encryption status of the boot volume by periodically storing, during an encryption or decryption of data stored on the boot volume, a variable indicating a portion of the boot volume that has been encrypted or decrypted and whether the boot volume is partially encrypted or decrypted; in response to an interruption to the encryption or decryption of data stored on the boot volume, determining whether the boot volume is in a partially encrypted or decrypted state; and based on the determination that the boot volume is in the partially encrypted or decrypted state, booting from the boot volume in the partially encrypted or decrypted state. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A non-transitory computer-readable medium comprising instructions stored therein, the instructions readable by a processor and, when read and executed, configured to cause the processor to:
-
determine an encryption status of a boot volume of a storage resource; initiate encryption or decryption of data stored on the boot volume; track the encryption status of the boot volume by periodically storing, during an encryption or decryption of data stored on the boot volume, a variable indicating a portion of the boot volume that has been encrypted or decrypted and whether the boot volume is partially encrypted or decrypted; in response to an interruption to the encryption or decryption of data stored on the boot volume, determine whether the boot volume is in a partially encrypted or decrypted state; and based on the determination that the boot volume is in the partially encrypted or decrypted state, boot from the boot volume in the partially encrypted or decrypted state. - View Dependent Claims (14)
-
Specification