Customizable Storage Controller With Integrated F+ Storage Firewall Protection
First Claim
1. A data storage apparatus, comprising:
- a host interface for coupling said storage apparatus to a host computer;
a protected storage component; and
a storage firewall adapted to communicatively couple said protected storage component and said host interface, said storage firewall being operative to provide application software authentication including application registration, runtime authentication of application identity and permission to execute, user authentication &
authorization in the execution of an application, and examination, verification, and authentication of all storage access requests.
0 Assignments
0 Petitions
Accused Products
Abstract
A Customizable Storage Controller (CSC) is a software defined storage device controller, a replacement for the ASIC storage controller approach that has been used up to now. The differences from the current storage controllers are that the CSC software will need to be protected from unauthorized modification and provides an excellent place to add additional storage management functionality. The CSC type of storage controller is a good place to integrate the F+ Storage Firewall storage protection technology, fitting the needs of the CSC as well as protecting stored data from unauthorized access. This portion of the larger patent disclosure provides the design of a CSC both with a software version of a F+ Storage Firewall, as well as an improved (more secure) CSC designed with a security co-processor and locked firmware. These designs can be implemented with standard parts such as microprocessors and/or FPGAs (Field Programmable Gate Arrays), RAM (Random Access Memory), and some version of nonvolatile memory as a program store.
412 Citations
2 Claims
-
1. A data storage apparatus, comprising:
- a host interface for coupling said storage apparatus to a host computer;
a protected storage component; and
a storage firewall adapted to communicatively couple said protected storage component and said host interface, said storage firewall being operative to provide application software authentication including application registration, runtime authentication of application identity and permission to execute, user authentication &
authorization in the execution of an application, and examination, verification, and authentication of all storage access requests.
- a host interface for coupling said storage apparatus to a host computer;
-
2. A data storage apparatus, comprising:
- a host interface for coupling said storage apparatus to a host computer;
protected storage media; and an integrated customizable storage controller and storage firewall adapted to communicatively couple said protected storage media and said host interface, said integrated customizable storage controller and storage firewall being operative to provide storage controller functionality including protected storage media access operations including read and write operations, and/or protected storage media management, and/or storage device management, and/or storage device monitoring, and/or storage architecture collaboration and integration, and/or data encryption, and/or application software authentication including application registration, runtime authentication of application identity and permission to execute, user authentication &
authorization in the execution of an application, and examination, verification, and authentication of all storage access requests.
- a host interface for coupling said storage apparatus to a host computer;
Specification
-
- Resources
-
Current AssigneeRichard Fetik
-
Original AssigneeRichard Fetik
-
InventorsFETIK, Richard
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current726/11
-
CPC Class CodesG06F 21/44 Program or device authentic...G06F 21/552 involving long-term monitor...G06F 21/6209 to a single file or object,...G06F 21/78 to assure secure storage of...G06F 2221/2141 Access rights, e.g. capabil...H04L 63/0209 Architectural arrangements,...H04L 63/0227 Filtering policies mail mes...H04L 63/101 Access control lists [ACL]
