摘要 |
Cryptographic keys or metadata implement timely deletion of data stored on removable storage media that has exceeded its desired lifespan. The data itself is not destroyed, rather metadata is deleted or the data is encrypted at the time it is written, and the encryption key used for the data is deleted. The data is thereby rendered incomprehensible. The encryption/decryption process may be performed in hardware by the device that reads/writes the removable storage media. The encryption/decryption process is transparent to software interfacing with the read/write device and is performed automatically whenever a piece of removable storage media is detected as having an encryption key present. Thus, this encryption does not provide confidentiality, although a separate confidentiality encryption key may be used to encrypt the temporary encryption key. In one embodiment a circuit within each case or carrier for removable storage media is capable of autonomously deleting the temporary encryption key.
|