System and method for delivering versatile security, digital rights management, and privacy services from storage controllers
First Claim
Patent Images
1. A method for providing enhanced security features in a storage device, the method comprising:
- partitioning a storage media in the storage device into a hidden partition and a storage partition in the storage media;
writing a base class to the hidden partition; and
instantiating a security provider base class from the base class, the security provider base class adapted to control access to the storage media.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for providing enhanced security features in a storage device involves partitioning a storage media in the storage device into a hidden partition and a storage partition in the storage media. A base class is written to the hidden partition. A security provider base class is instantiated from the base class. The security provider base class is adapted to control access to the storage media.
79 Citations
35 Claims
-
1. A method for providing enhanced security features in a storage device, the method comprising:
-
partitioning a storage media in the storage device into a hidden partition and a storage partition in the storage media;
writing a base class to the hidden partition; and
instantiating a security provider base class from the base class, the security provider base class adapted to control access to the storage media. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for promoting security in a storage device, the storage device having a processor and firmware adapted to access data stored on a storage media, the method comprising:
-
writing trusted drive firmware to a controller of the storage device;
partitioning the storage media of the storage device into a hidden portion and a data portion;
writing a security provider object template to the hidden partition; and
instantiating security providers using the security provider object template, each security provider adapted to control access to the storage device. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A storage device for providing hardened security features having a storage media partitioned into a hidden portion and a data portion and having a storage controller adapted to control access to the storage media, the storage device comprising:
-
a trusted drive feature stored in a firmware of the storage controller, the trusted drive feature adapted to authenticate access requests to determine whether each access request can be trusted; and
a SP base object stored in the hidden portion and adapted to cooperate with the trusted drive feature to control access rights to data on the storage media. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. A storage device comprising:
-
a storage media comprising a plurality of partitions, one or more of the partitions being hidden from a host operating system;
a controller coupled to the storage media and to controller firmware, the controller adapted to read and to write data to and from the storage media;
a trusted drive feature stored in the controller firmware; and
one or more security provider objects stored in the one or more hidden partitions, each security provider object cooperating with the trusted drive feature to restrict unauthorized access to data stored on the storage media. - View Dependent Claims (28, 29, 30, 31)
-
-
32. An enhanced security feature for use in a storage device having a storage media and a controller, the enhanced security feature comprising:
-
a trusted drive feature stored in firmware of the controller of the storage device, and a security provider stored in a hidden partition defined on the storage media, the security provider cooperating with the trusted drive feature to control access to data stored on the storage media. - View Dependent Claims (33, 34, 35)
-
Specification