| CPC G06F 21/6218 (2013.01) [G06F 21/554 (2013.01); G06F 21/602 (2013.01); G06F 2221/031 (2013.01)] | 20 Claims |
|
1. A first storage device among a plurality of storage devices of a file system comprising the first storage device, a second storage device, and a third storage device, the first storage device comprising:
a storage that stores:
an original first encryption key associated with the first storage device;
a first copy of a first slice of a file, wherein the first copy of the first slice is encrypted using a second encryption key associated with the second storage device; and
a first copy of a second slice of the file, wherein the first copy of the second slice is encrypted using a third encryption key associated with the third storage device; and
a processor coupled to the storage, wherein the processor is configured to execute a file recovery method comprising:
detecting that the first storage device is compromised and deleting the first copy of the first slice, the first copy of the second slice, and the original first encryption key from the storage;
after the deleting:
generating a new first encryption key different from the original first encryption key;
executing a first replacement to replace copies of slices of the file on the second storage device and the third storage device encrypted using the original first encryption key with new copies of slices of the file encrypted with the new first encryption key; and
executing a second replacement to replace the deleted first copy of the first slice and the deleted first copy of the second slice with a new copy the first slice encrypted with the second encryption key and a new copy of the second slice encrypted with the third encryption key.
|