A data encryption and decryption method and device

By introducing a shared key mechanism between storage devices and secure processing devices, the problem of low data encryption and decryption security in existing technologies is solved, enabling high-security encryption and decryption of user data and preventing key leakage and tampering.

CN115943381BActive Publication Date: 2026-06-09HUAWEI TECH CO LTD

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
HUAWEI TECH CO LTD
Filing Date
2021-05-29
Publication Date
2026-06-09

AI Technical Summary

Technical Problem

Existing data encryption and decryption technologies in smartphones and PCs have low security, especially when system software or storage keys are attacked, making the encryption and decryption process of user data insecure.

Method used

By introducing a shared key mechanism between the storage device and the secure processing device, the storage device uses the shared key to decrypt the ciphertext of the encryption/decryption key transmitted by the secure processing device, and generates the corresponding final encryption/decryption key based on the key information of the data, ensuring that different data uses different encryption/decryption keys and improving data storage security.

Benefits of technology

It achieves high security when storing and retrieving user data, strengthens the authentication and transmission process of encryption and decryption keys, prevents key leakage or tampering, and improves the security of user data.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure CN115943381B_ABST
    Figure CN115943381B_ABST
Patent Text Reader

Abstract

A data encryption and decryption method and device, the method comprising: a storage device receiving first ciphertext of a first encryption and decryption key sent by a security processing device; the storage device decrypting the first ciphertext using a shared key to obtain the first encryption and decryption key; the storage device receiving first data and first key information of the first data sent by a file system running on a host processor, and obtaining a second encryption and decryption key of the first data according to the first key information and the first encryption and decryption key; the storage device encrypting the first data using the second encryption and decryption key to obtain second ciphertext of the first data, and sending the second ciphertext to an external storage. The method can ensure the security of the transmission of the encryption and decryption key from the security processing device to the storage device, and can also make the encryption and decryption keys used by different data of the file system different, thereby improving the security of the data.
Need to check novelty before this filing date? Find Prior Art