Patent application number | Description | Published |
20080273696 | Use of Indirect Data Keys for Encrypted Tape Cartridges - A method, system and program are provided for enabling selective access to multiple users' encrypted data in a single storage cartridge. A unique, derived key is generated for each user's data by performing cryptographic operations on a combination of a common base key and metadata related to the data to be encrypted (e.g. its total block count). The base data key is wrapped with one or more encryption keys to form one or more encryption encapsulated data keys (EEDKs). The base key and the derived key are wrapped to create a session encrypted data key (SEDK), which along with the EEDKs, are conveyed to the tape drive, where the SEDK is decrypted. The EEDKs are then stored in one or more places on the storage cartridge. The base key and the derived key are used to encrypt a predetermined user's data, with the derived key stored on the cartridge with the encrypted data. The encrypted data may be subsequently decrypted by retrieving the EEDK and decrypting it with a decryption key to extract the base data key. The extracted base data key can then be used with other information to calculate the derived key. Once calculated, the derived key is used to decrypt its associated encrypted data. | 11-06-2008 |
20080273697 | Use of Indirect Data Keys for Encrypted Tape Cartridges - A method, system and program are provided for enabling selective access to multiple users' encrypted data in a single storage cartridge. A unique, derived key is generated for each user's data by performing cryptographic operations on a combination of a common base key and metadata related to the data to be encrypted (e.g. its total block count). The base data key is wrapped with one or more encryption keys to form one or more encryption encapsulated data keys (EEDKs). The base key and the derived key are wrapped to create a session encrypted data key (SEDK), which along with the EEDKs, are conveyed to the tape drive, where the SEDK is decrypted. The EEDKs are then stored in one or more places on the storage cartridge. The base key and the derived key are used to encrypt a predetermined user's data, with the derived key stored on the cartridge with the encrypted data. The encrypted data may be subsequently decrypted by retrieving the EEDK and decrypting it with a decryption key to extract the base data key. The extracted base data key can then be used with other information to calculate the derived key. Once calculated, the derived key is used to decrypt its associated encrypted data. | 11-06-2008 |
20090030652 | Monitoring and Reporting Normalized Device System Performance - Apparatus and computer program products are provided to monitor and report performance data of a device such as a data storage drive. A plurality of quantitative values are obtained from feedback and measurement mechanisms in a data storage device of a first model during operation of the storage device. The plurality of quantitative values are normalized. Then, one or more qualitative values are generated from one or more normalized quantitative values and evaluated against corresponding baseline performance values established for the first model. | 01-29-2009 |
20110176380 | PAIRED PROGRAMMABLE FUSES - A plurality of fuses are arranged in pairs and configured such that each pair of fuses represents a data bit when one fuse of the pair is blown; represents an un-programmed bit when no fuse of the pair is blown; and represents a zero-ized bit when both fuses of the pair are blown. A fuse programming system programs the fuses of the pairs such that each pair represents a bit, comprising blowing a first fuse of a pair to represent a “1” bit, blowing a second fuse of a pair to represent a “0” bit, and blowing both fuses of a pair to represent a zero-ized pair, whereby if neither fuse of a pair is blown represents a null, un-programmed bit. | 07-21-2011 |
20110197100 | NON-VOLATILE REDUNDANT VERIFIABLE INDICATION OF DATA STORAGE STATUS - A non-volatile redundant verifiable indication of data storage status is provided with respect to data storage operations conducted with respect to removable data storage media, and store the indication with an auxiliary non-volatile memory of the data storage media, such that the indication stays with the media. At least one state value indicating the status of the data storage operation is written to one page of the auxiliary non-volatile memory, and a redundancy check is provided with respect to at least the written state value of the one page of the auxiliary non-volatile memory; and the same state value is written to a second page of the auxiliary non-volatile memory, and a redundancy check is provided with respect to at least the written state value of the second page of the auxiliary non-volatile memory. The redundancy checks indicate the validity of the state values. | 08-11-2011 |
20110219199 | VOLUME COHERENCY VERIFICATION FOR SEQUENTIAL-ACCESS STORAGE MEDIA - A method for determining volume coherency is disclosed herein. Upon completing a first write job to a volume partition, the method makes a copy of a volume change reference (VCR) value associated with the volume. The VCR value is configured to change in a non-repeating manner each time content on the volume is modified. Prior to initiating a second write job to the volume partition, the method retrieves the copy and compares the copy to the VCR value. If the copy matches the VCR value, the method determines that a logical object on the partition was not modified between the first and second write jobs. If the copy does not match the VCR value, the method determines that the logical object on the partition was modified between the first and second write jobs. A corresponding system and computer program product are also disclosed herein. | 09-08-2011 |
20140022663 | MONITORING OF RESIDUAL ENCRYPTED DATA TO IMPROVE ERASE PERFORMANCE ON A MAGNETIC MEDIUM - In one embodiment, a system includes a processor, logic in the processor and/or memory configured to determine a physical position on a magnetic medium that corresponds to an end of encrypted data written over residual unencrypted data, and logic configured to store an indicator of the physical position on at least one of the magnetic medium and a memory coupled thereto. In another embodiment, a method includes determining a physical position on a magnetic medium that corresponds to an end of encrypted data written over residual unencrypted data, storing an indicator of the physical position on at least one of the magnetic medium and a memory coupled thereto. | 01-23-2014 |
20140025885 | MONITORING OF EXTENT OF WRITING OF UNOBSCURED DATA TO IMPROVE ERASE PERFORMANCE ON A MAGNETIC MEDIUM - A system according to one embodiment includes a processor; logic in the processor and/or a memory configured to determine a furthest physical position on a magnetic medium that unobscured data has been written to; and logic configured to store an indicator of the furthest physical position on at least one of the magnetic medium and a memory coupled thereto. A system according to another embodiment includes a processor; logic in the processor and/or a memory configured to receive an instruction to obscure data on a magnetic medium; logic configured to read an indicator of a furthest physical position on the magnetic medium that unobscured data has been written to; and logic configured to cause obscuring of the unobscured data on the magnetic medium, and terminating the obscuring upon reaching the physical position in the indicator. | 01-23-2014 |
20140142744 | DATA STORAGE DRIVE WITH TARGET OF OPPORTUNITY RECOGNITION - A method according to one embodiment includes receiving a command to mount a tape cartridge in a tape drive, mounting the tape cartridge in the tape drive, and determining that at least one special operation can be performed by the tape drive after mounting of the tape cartridge thereby. A first notification that the tape drive is in a not ready state is sent in response to determining the at least one special operation can be performed. The at least one special operation is performed. A second notification that the tape drive is in a ready state or an error state is sent after performing the at least one special operation. | 05-22-2014 |
20140247515 | TAPE DRIVE BUFFER UTILIZATION - Records or filemarks read from data segments are aggregated into at least one single data segment. The records and the filemarks are reorganized and restructured in the single data segment such that buffer utilization is improved. | 09-04-2014 |