Trans-locality based fixed storage security

摘要

Trans-locality based fixed storage security includes storing in the memory of a fixed (but moveable) disk (140) (e.g. hard disk drive or solid state disk drive) a key (130) received from a key source (160) (e.g. a server) over a computer communications network (120). The data (150) stored within the fixed storage may be encrypted using the key. A request (190) to access the encrypted data stored in the disk is received by its firmware from a physically coupled computer (170) by way of a drive interface cable (110) and the key received from the key source is retrieved (e.g. in response to the request) and the keys validity is determined. The encrypted data is decrypted and returned (180) to the computer if the retrieved key is valid, but otherwise the request is denied. The key may expire after a certain time has elapsed necessitating the receipt of a new key. The stored data may be encrypted and decrypted both by using the key retrieved from the key source, and also using a second key present in the disk.