| CPC G06F 11/1092 (2013.01) [G06F 21/602 (2013.01); H04L 9/14 (2013.01)] | 20 Claims |
|
1. A method for limiting access to data within a failure domain of a storage drive, the method comprising:
associating a failure domain-specific cryptographic key with a failure domain of a storage drive, wherein the failure domain comprises a portion of, but not all, storage resources in the storage drive, and wherein the failure domain is one of a plurality of failure domains of the storage drive that each has a uniquely associated failure domain-specific cryptographic key;
writing encrypted data to storage media comprising the failure domain using the failure domain-specific cryptographic key;
detecting a condition related to a failure of the storage drive within the failure domain associated with the failure-domain specific cryptographic key; and
deleting the failure domain-specific cryptographic key to limit access to the encrypted data written to the storage media in the failure domain using the failure domain-specific cryptographic key, wherein others of the plurality of failure domains are unaffected.
|