Content Control System Using Certificate Revocation Lists
First Claim
Patent Images
1. A memory system configured to be removably connected to a host, comprising:
- a non-volatile memory storing at least one certificate revocation list, said non-volatile memory capable of storing data; and
a controller controlling access by the host to said data through an authentication process, in which the host presents at least one certificate to the memory system, and said controller checks whether the at least one certificate presented by the host is on the at least one certificate revocation list, and fails the authentication process when the at least one certificate presented by the host is on the at least one certificate revocation list.
3 Assignments
0 Petitions
Accused Products
Abstract
Host devices present both the host certificate and the pertinent certificate revocation lists to the memory device for authentication so that the memory device need not obtain the list on its own. Processing of the certificate revocation list and searching for the certificate identification may be performed concurrently by the memory device. The certificate revocation lists for authenticating host devices to memory devices may be stored in an unsecured area of the memory device for convenience of users.
-
Citations
8 Claims
-
1. A memory system configured to be removably connected to a host, comprising:
-
a non-volatile memory storing at least one certificate revocation list, said non-volatile memory capable of storing data; and a controller controlling access by the host to said data through an authentication process, in which the host presents at least one certificate to the memory system, and said controller checks whether the at least one certificate presented by the host is on the at least one certificate revocation list, and fails the authentication process when the at least one certificate presented by the host is on the at least one certificate revocation list. - View Dependent Claims (2)
-
- 3. A non-volatile memory device removably connected to a host that sends sequentially portions of a certificate revocation list to the memory device for verification of a certificate, said memory device comprising a controller that verifies the certificate revocation list, processes said portions of the certificate revocation list sequentially, and searches for an identification of a certificate on said list, wherein said processing and searching are performed concurrently.
Specification