Invention Grant
US08645715B2 Configuring host settings to specify an encryption setting and a key label referencing a key encryption key to use to encrypt an encryption key provided to a storage drive to use to encrypt data from the host
失效
配置主机设置以指定加密设置和引用密钥加密密钥的密钥标签,用于加密提供给存储驱动器的加密密钥,以用于从主机加密数据
- Patent Title: Configuring host settings to specify an encryption setting and a key label referencing a key encryption key to use to encrypt an encryption key provided to a storage drive to use to encrypt data from the host
- Patent Title (中): 配置主机设置以指定加密设置和引用密钥加密密钥的密钥标签,用于加密提供给存储驱动器的加密密钥,以用于从主机加密数据
-
Application No.: US11853719Application Date: 2007-09-11
-
Publication No.: US08645715B2Publication Date: 2014-02-04
- Inventor: Erika Marianna Dawson , Richard Henry Guski , Michael James Kelly , Cecelia Carranza Lewis , Jon Arthur Lynds , Wayne Erwin Rhoten , Peter Grimm Sutton
- Applicant: Erika Marianna Dawson , Richard Henry Guski , Michael James Kelly , Cecelia Carranza Lewis , Jon Arthur Lynds , Wayne Erwin Rhoten , Peter Grimm Sutton
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agency: Konrad Raynes Davda & Victor LLP
- Main IPC: G06F11/30
- IPC: G06F11/30 ; G06F12/14 ; H04L9/00 ; H04L9/08
Abstract:
Provided are a method, system, and article of manufacture for configuring host settings to specify encryption and a key label referencing a key encrypting key to use to encrypt an encryption key provided to a storage drive to use to encrypt data from the host. User settings are received to configure a data class having data attributes with encryption settings. The data class is stored with the received user encryption settings. A job is received indicating a data set to store to a removable storage medium. A data class is determined having data class attributes matching data attributes of the data set indicated in the job. A determination is made from the determined data class whether to encrypt the data. The data set and a command to encrypt the data set are transmitted to a storage drive in response to determining that the determined data class indicates to encrypt the data, wherein the command to encrypt the data set causes the storage drive to encrypt the data sets written to the removable storage medium with an encryption key.
Public/Granted literature
Information query
