METHOD AND APPARATUS FOR SECURE SCAN OF DATA STORAGE DEVICE FROM REMOTE SERVER
First Claim
1. A method comprising:
- receiving a block read request from a remote server driver using an out-of-band (OOB) agent executing on a computing device, the OOB agent being capable of communicating with the remote server driver irrespective of the state of an operating system of the computing device;
sending a storage command to a data storage device using a host driver of the computing device, in response to receiving the block read request;
receiving data retrieved from the data storage device and authentication metadata generated by the data storage device, in response to the storage command; and
verifying the data, with the OOB agent or the remote server driver, using the authentication metadata.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and device for providing a secure scan of a data storage device from a remote server are disclosed. In some embodiments, a computing device may include an in-band processor configured to execute an operating system and at least one host driver, communication circuitry configured to communicate with a remote server, and an out-of-band (OOB) processor capable of communicating with the remote server using the communication circuitry irrespective of the state of the operating system. The OOB processor may be configured to receive a block read request from the remote server, instruct the at least one host driver to send a storage command to a data storage device, receive data retrieved from the data storage device and authentication metadata generated by the data storage device, and transmit the data and the authentication metadata to the remote server.
-
Citations
25 Claims
-
1. A method comprising:
-
receiving a block read request from a remote server driver using an out-of-band (OOB) agent executing on a computing device, the OOB agent being capable of communicating with the remote server driver irrespective of the state of an operating system of the computing device; sending a storage command to a data storage device using a host driver of the computing device, in response to receiving the block read request; receiving data retrieved from the data storage device and authentication metadata generated by the data storage device, in response to the storage command; and verifying the data, with the OOB agent or the remote server driver, using the authentication metadata. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. One or more tangible, machine-readable media comprising a plurality of instructions that, in response to being executed, result in a computing device:
-
receiving a block read request from a remote server using an out-of-band (OOB) processor of the computing device, the OOB processor being capable of communicating with the remote server irrespective of whether an in-band processor of the computing device is executing an operating system; sending a storage command to a data storage device using the in-band processor of the computing device, in response to receiving the block read request; receiving data retrieved from the data storage device and authentication metadata generated by the data storage device, in response to the storage command; and transmitting the data and the authentication metadata to the remote server using the OOB processor. - View Dependent Claims (15, 16, 17, 18, 19)
-
-
20. A computing device comprising:
-
an in-band processor configured to execute an operating system and at least one host driver; communication circuitry configured to communicate with a remote server; and an out-of-band (OOB) processor capable of communicating with the remote server using the communication circuitry irrespective of the state of the operating system, the OOB processor configured to; receive a block read request from the remote server; instruct the at least one host driver to send a storage command to a data storage device; receive data retrieved from the data storage device and authentication metadata generated by the data storage device; and transmit the data and the authentication metadata to the remote server. - View Dependent Claims (21, 22, 23)
-
-
24. A computing device comprising:
-
an in-band processor configured to execute an operating system and at least one driver, the in band processor executing the driver in a secure container that is separate from the operating system; communication circuitry configured to communicate with a remote server; and an out-of-band (OOB) processor capable of communicating with the remote server using the communication circuitry irrespective of the state of the operating system, the OOB processor configured to; receive a block read request from the remote server; instruct the at least one driver executing in the secure container to send a storage command to a data storage device; receive data retrieved from the data storage device via the at least one driver executing in the secure container; and transmit the data to the remote server. - View Dependent Claims (25)
-
Specification