发明名称 |
Method and system for making information in a data set of a copy-on-write file system inaccessible |
摘要 |
Information in a data set of a copy-on-write file system may be made inaccessible. A first key for encrypting a data set of a copy-on-write file system is generated and wrapped with a second key. An encrypted data set is created with the first key. The wrapped first key is stored with the encrypted data set. A command to delete the encrypted data set is received and the second key is altered or changed to make information in the encrypted data set of the copy-on-write file system inaccessible. |
申请公布号 |
US9215066(B2) |
申请公布日期 |
2015.12.15 |
申请号 |
US200812145684 |
申请日期 |
2008.06.25 |
申请人 |
Oracle America, Inc. |
发明人 |
Moffat Darren James;Hughes James Prescott |
分类号 |
H04L9/08;H04L9/14 |
主分类号 |
H04L9/08 |
代理机构 |
Brooks Kushman P.C. |
代理人 |
Brooks Kushman P.C. |
主权项 |
1. A method for making information in a data set of a copy-on-write file system inaccessible, the method comprising:
generating, by a computer, a first key for encrypting a data set of a copy-on-write file system; wrapping the first key with a second key; creating an encrypted data set with the first key; storing the wrapped first key with the encrypted data set in any available free blocks of the copy-on-write file system, wherein the free blocks are new blocks allocated; receiving a command to delete the encrypted data set; and without overwriting in place blocks allocated to the second key, using the copy-on-write file system to alter or change the second key to make information in the encrypted data set of the copy-on-write file system inaccessible. |
地址 |
Redwood City CA US |