公开(公告)号：US20160321460A1

公开(公告)日：2016-11-03

申请号：US14700070

申请日：2015-04-29

Applicant: Apple Inc.

Inventor： Christopher J. SUTER ,  Eric B. TAMURA ,  George K. COLLEY ,  Mark S. DAY

IPC: G06F21/62 ,  G06F21/60 ,  G06F21/79 ,  H04L9/14

CPC classification number: G06F21/6209 ,  G06F21/602 ,  H04L9/14

Abstract: This application relates to a key rolling process for a file system of a computing device. The key rolling process allows for files to be transparently re-encrypted in a background process while still allowing applications to access files being re-encrypted. During re-encryption, a portion of the file is decrypted using a current key for the file and re-encrypted using a new key for the file. During re-encryption, the portion of the file can be relocated to another location in memory. Metadata associated with the file can be updated to include information pertaining to the location of the re-encrypted portion. The metadata can also be updated include information pertaining to how much of the file has been re-encrypted with the new key and how much of the file remains encrypted with the current key.

Abstract translation: 本申请涉及计算设备的文件系统的关键滚动过程。 关键滚动过程允许在后台进程中透明地重新加密文件，同时仍允许应用程序访问要重新加密的文件。 在重新加密期间，文件的一部分将使用文件的当前密钥进行解密，并使用该文件的新密钥重新加密。 在重新加密期间，文件的一部分可以重定位到内存中的另一个位置。 可以更新与文件相关联的元数据，以包括与再加密部分的位置有关的信息。 还可以更新元数据，包括关于用新密钥重新加密了多少文件的信息以及使用当前密钥保存多少文件。