PREVENTION OF CABLE-SWAP SECURITY ATTACK ON STORAGE DEVICES
First Claim
1. A host system for securing a storage device, said host system comprising:
- a provisioning module to generate a challenge-response verification key-pair and further to provide said key-pair to said storage device to enable said challenge-response verification;
a link error detection module to detect a link error between said host system and said storage device; and
a challenge-response protocol module to initiate, in response to said link-error detection, a verification challenge from said storage system and further to provide a response to said verification challenge based on said key-pair.
2 Assignments
0 Petitions
Accused Products
Abstract
Generally, this disclosure provides systems, devices, methods and computer readable media for prevention of cable swap security attacks on storage devices. A host system may include a provisioning module configured to generate a challenge-response verification key-pair and further to provide the key-pair to the storage device to enable the challenge-response verification. The system may also include a link error detection module to detect a link error between the host system and the storage device. The system may further include a challenge-response protocol module configured to initiate, in response to the link-error detection, a verification challenge from the storage system and to provide a response to the verification challenge based on the key-pair.
62 Citations
30 Claims
-
1. A host system for securing a storage device, said host system comprising:
-
a provisioning module to generate a challenge-response verification key-pair and further to provide said key-pair to said storage device to enable said challenge-response verification; a link error detection module to detect a link error between said host system and said storage device; and a challenge-response protocol module to initiate, in response to said link-error detection, a verification challenge from said storage system and further to provide a response to said verification challenge based on said key-pair. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A storage device comprising:
-
a data storage module to store data for access by a host system coupled to said storage device; a link error detection module to detect a link error between said storage device and said host system and further, in response to said detection, to cause said storage device to enter a read/write failure mode; and a challenge-response protocol module to, in response to a verification challenge initiation received from said host system, generate a verification challenge and transmit said verification challenge to said host system. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. At least one computer-readable storage medium having instructions stored thereon which when executed by a processor result in the following operations for securing a storage device, said operations comprising:
-
generating a challenge-response verification key-pair; providing said key-pair to said storage device to enable said challenge-response verification; detecting a link error between a host system and said storage device; initiating, by said host system, in response to said link-error detection, a verification challenge from said storage system; and providing a response to said verification challenge based on said key-pair. - View Dependent Claims (19, 20, 21, 22)
-
-
23. At least one computer-readable storage medium having instructions stored thereon which when executed by a processor result in the following operations for securing a storage device, said operations comprising:
-
detecting a link error between said storage device and a host system; entering a read/write failure mode in response to said detection; receiving a verification challenge initiation from said host system; generating a verification challenge in response to said receiving; and transmitting said verification challenge to said host system. - View Dependent Claims (24, 25, 26, 27, 28, 29, 30)
-
Specification