US 11,954,239 B2
Data storage system using selective encryption and port identification in communications with drive subsystem
Gregory W. Lazar, Upton, MA (US)
Assigned to Dell Products L.P., Round Rock, TX (US)
Filed by Dell Products L.P., Round Rock, TX (US)
Filed on Dec. 27, 2021, as Appl. No. 17/562,150.
Prior Publication US 2023/0205936 A1, Jun. 29, 2023
Int. Cl. G06F 21/78 (2013.01); G06F 3/06 (2006.01); G06F 21/60 (2013.01); H04L 9/40 (2022.01)
CPC G06F 21/78 (2013.01) [G06F 3/0622 (2013.01); G06F 3/0659 (2013.01); G06F 3/067 (2013.01); G06F 21/602 (2013.01); H04L 63/166 (2013.01)] 18 Claims
OG exemplary drawing
 
1. A method by which a drive subsystem engages in data communication with a storage controller, comprising the steps, performed by the drive subsystem, of:
establishing a first port and a second port for receiving data communications from the storage controller, the second port configured for decryption of received data communications and forwarding of decrypted data communications to the first port, the first port being configured for processing of non-encrypted data communications including a non-encrypted portion received directly from the storage controller and a decrypted portion forwarded from the second port; and
receiving and processing data communications from the storage controller having selective encryption and identification of target port, by (1) for a security command containing secret data enabling operation of a target drive of the drive subsystem, receiving the security command at the second port, decrypting the security command and forwarding the decrypted security command to the first port for delivery to the target drive, and (2) for data commands by which the storage controller stores and retrieves data to/from the target drive, receiving the data commands in non-encrypted form at the first port directly from the storage controller for delivery to the target drive.