Invention Grant
US08798262B1 Preserving LBA information between layers of a storage I/O stack for LBA-dependent encryption
有权
在LBA依赖加密的存储I / O堆栈的层之间保留LBA信息
- Patent Title: Preserving LBA information between layers of a storage I/O stack for LBA-dependent encryption
- Patent Title (中): 在LBA依赖加密的存储I / O堆栈的层之间保留LBA信息
-
Application No.: US12977971Application Date: 2010-12-23
-
Publication No.: US08798262B1Publication Date: 2014-08-05
- Inventor: Helen Raizen , Atul Kabra
- Applicant: Helen Raizen , Atul Kabra
- Applicant Address: US MA Hopkinton
- Assignee: EMC Corporation
- Current Assignee: EMC Corporation
- Current Assignee Address: US MA Hopkinton
- Agency: BainwoodHuang
- Main IPC: G06F21/00
- IPC: G06F21/00 ; G06F21/60
Abstract:
An encryption endpoint (EE) receives, via a storage I/O stack (having a key controller module (KCM)), encryption metadata identifying an encryption key and a set of region entries. Each region entry includes an identification of a region within a storage device subject to encryption with the encryption key and an identification of a correlation between the region and a corresponding region on a logical volume (LV) managed by the KCM. The EE receives, via the stack, a storage command to process a block having a first address on the storage device. It corresponds to a second address located within the corresponding region of the LV. The EE determines the second address within the LV and then cryptographically processes the block using an address-dependent cryptographic algorithm and (a) data of the block, (b) the determined second address, and (c) the encryption key.
Information query
