Secure mass storage device with embedded biometri record that blocks access by disabling plug-and-play configuration
First Claim
1. A secure external mass storage device comprising:
- a host interface, for coupling the secure external mass storage device to a host computer, the host computer reading data from the secure external mass storage device through the host interface;
a memory media with a protected memory area, for storing data for access by an authorized user of the host computer;
a biometric reader that generates biometric data from the authorized user; and
a controller that executes an initialization routine, the controller coupled to the biometric reader to accept the biometric data from the biometric reader, the controller comparing the biometric data to a biometric record to determine when the biometric data is for the authorized user, the controller blocking access to the protected memory area when the biometric data is not for the authorized user, whereby the host computer is blocked from accessing the protected memory area when the biometric reader does not input the biometric data for the authorized user.
1 Assignment
0 Petitions
Accused Products
Abstract
An external mass storage device is secured against unauthorized access. A fingerprint reader is integrated on the external mass storage device. An initialization routine is executed when the device is plugged into a personal computer (PC) using a USB, IEEE 1394, PCMCIA, or other interface. The initialization routine scans the user'"'"'s fingerprint and extracts biometric information. The biometric information is compared to stored biometric records to determine if the user is authorized to access the external mass storage device. When authorization fails, the initialization routine halts, preventing the PC from mounting the external mass storage, thus blocking access. When authentication passes, initialization continues and the external mass storage is mounted and accessible from the PC. Since the initialization routine and stored biometric records are stored on the external mass storage, the external mass storage is protected even when moved to a different PC. Special biometric security software does not have to be installed on the PC.
114 Citations
20 Claims
-
1. A secure external mass storage device comprising:
-
a host interface, for coupling the secure external mass storage device to a host computer, the host computer reading data from the secure external mass storage device through the host interface;
a memory media with a protected memory area, for storing data for access by an authorized user of the host computer;
a biometric reader that generates biometric data from the authorized user; and
a controller that executes an initialization routine, the controller coupled to the biometric reader to accept the biometric data from the biometric reader, the controller comparing the biometric data to a biometric record to determine when the biometric data is for the authorized user, the controller blocking access to the protected memory area when the biometric data is not for the authorized user, whereby the host computer is blocked from accessing the protected memory area when the biometric reader does not input the biometric data for the authorized user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for securing an external mass storage comprising:
-
activating an initialization routine when an external mass storage device is connected to a host;
executing the initialization routine stored in the external mass storage device by reading a firmware memory containing the initialization routine;
activating a biometric input to capture biometric information from a user;
comparing the biometric information to a biometric record for an authorized user to determine when the biometric information matches within a threshold;
when the biometric information matches, continuing to execute the initialization routine to mount the external mass storage to the host, allowing the host to access protected data in the external mass storage; and
when the biometric information does not match, halting execution of the initialization routine to prevent mounting of the external mass storage to the host, preventing the host from accessing protected data in the external mass storage, whereby the initialization routine authenticates biometric information when the external mass storage is connected to the host. - View Dependent Claims (12, 13, 14, 15, 16, 18, 19, 20)
-
-
17. An external peripheral comprising:
-
host interface means for coupling the external peripheral to a host computer;
controller means, coupled to the host interface means, for executing programmable routines;
memory means, coupled to the controller means, for storing data from the host computer, the memory means having protected memory means for storing data for access by an authorized user of the host computer; and
biometric reader means, coupled to the controller means, for generating biometric data from the authorized user;
the controller means for accepting the biometric data from the biometric reader means, comparing the biometric data to a biometric record to determine when the biometric data is for the authorized user, and for blocking access to the protected memory means when the biometric data is not for the authorized user, whereby the host computer is blocked from accessing protected memory when the biometric data is not for the authorized user.
-
Specification