Method and apparatus for securing data storage while insuring control by logical roles
First Claim
Patent Images
1. A storage device with hardened security features comprising:
- a storage medium;
an interface adapted to communicatively couple the storage device to a host system; and
a controller within the storage device adapted to read and to write information to and from the storage medium, the controller adapted to require a security partition authorization from a manufacturer of the storage device before executing a security partition creation command received over the interface.
9 Assignments
0 Petitions
Accused Products
Abstract
A storage device with hardened security features has a storage medium, an interface, and a controller. The interface is adapted to communicatively couple the storage device to a host system. The controller is within the storage device and is adapted to read and to write information to and from the storage medium. The controller is adapted to require a security partition authorization from a manufacturer of the storage device before executing a security partition creation command received over the interface.
-
Citations
20 Claims
-
1. A storage device with hardened security features comprising:
-
a storage medium;
an interface adapted to communicatively couple the storage device to a host system; and
a controller within the storage device adapted to read and to write information to and from the storage medium, the controller adapted to require a security partition authorization from a manufacturer of the storage device before executing a security partition creation command received over the interface. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for managing creation of security partitions on a storage medium of a storage device, the method comprising:
-
capturing a security partition request with a controller within the storage device, the security partition requests received from a host system coupled to the storage medium by an interface connection;
establishing a secure link with an authorization server using the controller, the secure link providing a secure communications tunnel between the controller and an authorization server through which the controller requests a security partition authorization to create the requested security partition; and
instantiating a respective security partition on the storage medium using the controller upon receipt of the security partition authorization. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A storage device coupled to a host system, the storage device comprising:
-
a storage medium;
a read/write mechanism coupled to the storage medium for reading and writing information to and from the storage medium; and
a controller within the storage device coupled to the read/write mechanism and adapted to control reading and writing of information to the storage medium, the controller adapted to capture requests for security partition creation received from the host system and to require a security partition authorization from an authorization server prior to creation of a respective security partition responsive to the captured requests. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification