DE112020003666T5 - Krypto-löschung durch interne und/oder externe massnahmen - Google Patents

Krypto-löschung durch interne und/oder externe massnahmen Download PDF

Info

Publication number
DE112020003666T5
DE112020003666T5 DE112020003666.9T DE112020003666T DE112020003666T5 DE 112020003666 T5 DE112020003666 T5 DE 112020003666T5 DE 112020003666 T DE112020003666 T DE 112020003666T DE 112020003666 T5 DE112020003666 T5 DE 112020003666T5
Authority
DE
Germany
Prior art keywords
key
storage medium
data
stored
processor
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
DE112020003666.9T
Other languages
German (de)
English (en)
Inventor
Glen Jaquette
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
International Business Machines Corp
Original Assignee
International Business Machines Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by International Business Machines Corp filed Critical International Business Machines Corp
Publication of DE112020003666T5 publication Critical patent/DE112020003666T5/de
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0822Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using key encryption key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0866Generation of secret information including derivation or calculation of cryptographic keys or passwords involving user or device identifiers, e.g. serial number, physical or biometrical information, DNA, hand-signature or measurable physical characteristics
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • H04L9/0897Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/14Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
DE112020003666.9T 2019-09-13 2020-09-03 Krypto-löschung durch interne und/oder externe massnahmen Pending DE112020003666T5 (de)

Applications Claiming Priority (5)

Application Number Priority Date Filing Date Title
US201962900045P 2019-09-13 2019-09-13
US62/900,045 2019-09-13
US16/808,174 2020-03-03
US16/808,174 US12047492B2 (en) 2019-09-13 2020-03-03 Crypto-erasure via internal and/or external action
PCT/IB2020/058194 WO2021048708A1 (en) 2019-09-13 2020-09-03 Crypto-erasure via internal and/or external action

Publications (1)

Publication Number Publication Date
DE112020003666T5 true DE112020003666T5 (de) 2022-06-15

Family

ID=74866631

Family Applications (1)

Application Number Title Priority Date Filing Date
DE112020003666.9T Pending DE112020003666T5 (de) 2019-09-13 2020-09-03 Krypto-löschung durch interne und/oder externe massnahmen

Country Status (6)

Country Link
US (1) US12047492B2 (https=)
JP (1) JP7590085B2 (https=)
CN (1) CN114342314A (https=)
DE (1) DE112020003666T5 (https=)
GB (1) GB2603371A (https=)
WO (1) WO2021048708A1 (https=)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US12323517B2 (en) * 2020-12-15 2025-06-03 International Business Machines Corporation Crypto-erasure of data stored in a key per IO-enabled device via internal action
US12411961B2 (en) 2023-06-09 2025-09-09 International Business Machines Corporation Use of ‘type’ encryption keys with key per IO-enabled devices
EP4521282A1 (en) * 2023-09-06 2025-03-12 Mastercard International Incorporated A computer-implemented method for providing access to encrypted, archived and then erased data
CN117421747A (zh) 2023-10-24 2024-01-19 上海兆芯集成电路股份有限公司 计算机系统以及系统内存加解密方法

Family Cites Families (33)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH09134310A (ja) 1995-11-07 1997-05-20 Fujitsu Ltd データの復号アルゴリズムを記憶する記憶媒体および方法
US5940507A (en) 1997-02-11 1999-08-17 Connected Corporation Secure file archive through encryption key management
US6363480B1 (en) 1999-09-14 2002-03-26 Sun Microsystems, Inc. Ephemeral decryptability
WO2001093002A2 (en) * 2000-05-30 2001-12-06 Dataplay, Incorporated Method of decrypting data stored on a storage device using an embedded encryption/decryption means
JP4486828B2 (ja) * 2003-02-04 2010-06-23 パナソニック株式会社 半導体メモリカード、コンピュータ読取可能なプログラム
CA2623141C (en) 2005-05-13 2014-07-22 Cryptomill Inc. Content cryptographic firewall system
JP2008085900A (ja) * 2006-09-28 2008-04-10 Toshiba Corp 情報処理装置および情報処理方法
US20080141039A1 (en) 2006-12-11 2008-06-12 Matze John E G System for using a virtual tape encryption format
US8635461B2 (en) * 2007-05-22 2014-01-21 International Business Machines Corporation Retrieval and display of encryption labels from an encryption key manager certificate ID attached to key certificate
JP2009111687A (ja) 2007-10-30 2009-05-21 Fujitsu Ltd 記憶装置、暗号化データ処理方法
US20090268902A1 (en) * 2008-04-25 2009-10-29 Koolspan, Inc. System for and method of cryptographic provisioning
JP2009245227A (ja) 2008-03-31 2009-10-22 Fujitsu Ltd 情報記憶装置
US8813247B1 (en) * 2008-04-07 2014-08-19 Alex I. Alten Providing cryptographic security for objective-oriented programming files
JP5338306B2 (ja) * 2008-12-26 2013-11-13 富士通株式会社 データ記憶装置およびデータ記憶装置におけるデータ管理方法
KR101601790B1 (ko) * 2009-09-22 2016-03-21 삼성전자주식회사 암호키 선택장치를 구비하는 스토리지 시스템 및 암호 키 선택방법
JP5645725B2 (ja) 2010-04-28 2014-12-24 キヤノン株式会社 データ処理装置およびデータ処理システムおよびその制御方法
US8938624B2 (en) 2010-09-15 2015-01-20 Lsi Corporation Encryption key destruction for secure data erasure
JP2012212294A (ja) 2011-03-31 2012-11-01 Dainippon Printing Co Ltd 記憶媒体管理システム、記憶媒体管理方法、及びプログラム
US8917872B2 (en) 2011-07-06 2014-12-23 Hewlett-Packard Development Company, L.P. Encryption key storage with key fragment stores
JP6175807B2 (ja) * 2013-03-04 2017-08-09 株式会社リコー 情報処理装置、プログラム
US9323943B2 (en) 2013-04-30 2016-04-26 Hewlett Packard Enterprise Development Lp Decrypt and encrypt data of storage device
US9594698B2 (en) 2013-08-13 2017-03-14 Dell Products, Lp Local keying for self-encrypting drives (SED)
US9311500B2 (en) 2013-09-25 2016-04-12 Amazon Technologies, Inc. Data security using request-supplied keys
KR20150101683A (ko) 2014-02-27 2015-09-04 삼성전자주식회사 자기 암호화 드라이브 및 그것을 포함한 유저 장치
US10205594B1 (en) * 2016-03-30 2019-02-12 EMC IP Holding Company LLC Crypto-erasure resilient to network outage
US20170372085A1 (en) 2016-06-28 2017-12-28 HGST Netherlands B.V. Protecting data in a storage device
US9720700B1 (en) 2016-10-05 2017-08-01 Apricorn Secure storage devices, with physical input device, for secure configuration in a configuration-ready mode
US11270012B2 (en) 2017-04-21 2022-03-08 Hewlett-Packard Development Company, L.P. Encryption key shares to different devices for rendering
US10756888B2 (en) * 2017-11-20 2020-08-25 Rubrik, Inc. Managing key encryption keys using a key wrapping tree
US11599479B2 (en) 2018-05-09 2023-03-07 Intel Corporation Technology for fine-grain encryption and secure key injection on self-encrypting drives
US11093627B2 (en) * 2018-10-31 2021-08-17 L3 Technologies, Inc. Key provisioning
US11329814B2 (en) * 2018-12-10 2022-05-10 Marvell Asia Pte, Ltd. Self-encryption drive (SED)
US12323517B2 (en) * 2020-12-15 2025-06-03 International Business Machines Corporation Crypto-erasure of data stored in a key per IO-enabled device via internal action

Also Published As

Publication number Publication date
JP7590085B2 (ja) 2024-11-26
GB202204420D0 (en) 2022-05-11
US20210083858A1 (en) 2021-03-18
GB2603371A (en) 2022-08-03
US12047492B2 (en) 2024-07-23
JP2022547942A (ja) 2022-11-16
WO2021048708A1 (en) 2021-03-18
CN114342314A (zh) 2022-04-12

Similar Documents

Publication Publication Date Title
DE112021005968T5 (de) Krypto-löschung von in einer „key per io“-fähigen einheit gespeicherten daten über eine interne aktion
EP3259698B1 (de) Autonom bootendes system mit einem sicherheitsmodul
DE112020003666T5 (de) Krypto-löschung durch interne und/oder externe massnahmen
DE102008021567B4 (de) Computersystem mit sicherem Hochlaufmechanismus auf der Grundlage einer Verschlüsselung mit symmetrischem Schlüssel
DE112020000269T5 (de) Ferngewährung des zugangs zu einer gesperrten datenspeichervorrichtung
DE112014000584T5 (de) Erreichen von Speichereffizienz bei durchgängiger Verschlüsselung unter Verwendung von nachgelagerten (Downstream-)Decryptern
DE102018129976A1 (de) System und Verfahren zur Überprüfung einer sicheren Löschoperation an einer Speichervorrichtung
DE102013105248A1 (de) Vorrichtung zum Erzeugen eines Sicherheitsschlüssels unter Verwendung einer Vorrichtungs-ID und von Benutzer-Authentifizierungsinformation
US10346319B1 (en) Separate cryptographic keys for protecting different operations on data
US9910791B1 (en) Managing system-wide encryption keys for data storage systems
DE112020000268T5 (de) Sichere protokollierung von ereignissen der datenspeicherungsvorrichtungen
DE112020000179T5 (de) Entsperren einer datenspeicherungsvorrichtung
DE112021002747T5 (de) Sicheres wiederherstellen von geheimen schlüsseln
DE112020000235T5 (de) Anmeldung einer vorautorisierten vorrichtung
DE112021000150T5 (de) Datenspeicherungsvorrichtungsverschlüsselung
DE112018002947T5 (de) Computersystem-software/firmware und prozessoreinheit mit einem sicherheitsmodul
US20220286283A1 (en) Secure Recovery of Security Credential Information
DE112020001061T5 (de) Verschlüsselte gang-programmierung
DE112021000149T5 (de) Verschlüsselung einer datenspeicherungsvorrichtung
DE102013210837B4 (de) Startanwendung kryptographischer Schlüsselspeicher
DE112023003980T5 (de) Verwaltung des zugriffs auf bandkassetten bei einem bandarchivierungsdienstanbieter
DE102020007114B4 (de) Datenverkehrsbasiertes Erkennen einer Sicherheitsbedrohung für ein Speichersystem
US9870481B1 (en) Associating a data encryption keystore backup with a computer system
TWI745784B (zh) 磁碟資安系統
US10437655B2 (en) Hardware-locked encrypted backup

Legal Events

Date Code Title Description
R012 Request for examination validly filed
R084 Declaration of willingness to licence