US 11,956,356 B2
Key management device and storage system
Masahiro Kusaka, Yokohama (JP); and Kenichi Numata, Kokubunji (JP)
Assigned to Kioxia Corporation, Tokyo (JP)
Filed by Kioxia Corporation, Tokyo (JP)
Filed on Jun. 16, 2021, as Appl. No. 17/349,492.
Claims priority of application No. 2020-154498 (JP), filed on Sep. 15, 2020.
Prior Publication US 2022/0085997 A1, Mar. 17, 2022
Int. Cl. H04L 29/06 (2006.01); H04L 9/08 (2006.01); H04L 9/32 (2006.01); H04L 67/1097 (2022.01)
CPC H04L 9/0894 (2013.01) [H04L 9/0825 (2013.01); H04L 9/3247 (2013.01); H04L 67/1097 (2013.01)] 18 Claims
OG exemplary drawing
 
1. A key management device connectable to a host, comprising:
a first storage device that includes:
a first port;
a first nonvolatile memory; and
a first controller configured to:
encrypt, using a first media encryption key, data transmitted from the host and received through the first port; and
store the encrypted data in the first nonvolatile memory, and a server that includes:
a second nonvolatile memory, the second nonvolatile memory storing a first key; and
a second controller configured to transmit the first key from the second nonvolatile memory to the first storage device without passing through the host, wherein
the first controller of the first storage device is configured to generate the first media encryption key using the first key; and
the second controller of the server is further configured to:
manage a public key of the host;
receive a second key from the host, the second key accompanying a signature of a user of the host, the signature being generated using a private key of the host;
perform a verification of the signature of the user of the host using the public key; and
upon the verification succeeding, transmit the second key to the first storage device.