US 11,994,950 B2
Secondary key allocation to storage drive failure domains
Stacey Secatch, Niwot, CO (US); and Mark A. Gaertner, St. Paul, MN (US)
Assigned to SEAGATE TECHNOLOGY LLC, Fremont, CA (US)
Filed by Seagate Technology LLC, Fremont, CA (US)
Filed on Dec. 28, 2021, as Appl. No. 17/564,078.
Prior Publication US 2023/0205633 A1, Jun. 29, 2023
Int. Cl. G06F 11/00 (2006.01); G06F 11/10 (2006.01); G06F 21/60 (2013.01); H04L 9/14 (2006.01)
CPC G06F 11/1092 (2013.01) [G06F 21/602 (2013.01); H04L 9/14 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method for limiting access to data within a failure domain of a storage drive, the method comprising:
associating a failure domain-specific cryptographic key with a failure domain of a storage drive, wherein the failure domain comprises a portion of, but not all, storage resources in the storage drive, and wherein the failure domain is one of a plurality of failure domains of the storage drive that each has a uniquely associated failure domain-specific cryptographic key;
writing encrypted data to storage media comprising the failure domain using the failure domain-specific cryptographic key;
detecting a condition related to a failure of the storage drive within the failure domain associated with the failure-domain specific cryptographic key; and
deleting the failure domain-specific cryptographic key to limit access to the encrypted data written to the storage media in the failure domain using the failure domain-specific cryptographic key, wherein others of the plurality of failure domains are unaffected.