Securing trusted personal computer system against unauthorized movement
First Claim
1. A personal computer system for receiving and retaining data and capable of securing data retained within the system against unauthorized access, the system comprising:
- a normally closed enclosure;
an erasable memory element mounted within said enclosure for selective activation to active and inactive states and for receiving and storing a privileged access password when in the active state;
a manually operable option switch mounted within said enclosure, said option switch being operatively connected with said erasable memory element and manually settable by a user of the personal computer system for setting said erasable memory element to the active and inactive states;
a movement detection switch;
means for selectively enabling and disabling the movement detection switch;
said movement detection switch mounted within said enclosure and operatively connected with said erasable memory element for detecting unauthorized movement of the computer system;
means including the movement detection switch for preventing a successful power-up of the computer system in response to any switching of said movement detection switch while it is enabled; and
a system processor mounted within said enclosure and operatively connected with said erasable memory element for controlling access to at least certain levels of data stored within the system by distinguishing between entry and non-entry of the password, and between enabled and disabled state of the movement detection switch.
2 Assignments
0 Petitions
Accused Products
Abstract
A personal computer system is described, having security features enabling control over access to data retained in such a system. The system has a normally closed enclosure, at least one erasable memory element for selective activation to active and inactive states and for receiving and storing a privileged access password when in the active state, an option switch operatively connected with the erasable memory element for setting the erasable memory element to the active and inactive states, a tamper detection switch operatively connected with the erasable memory element for detecting opening of the enclosure, and a system processor operatively connected with the erasable memory element for controlling access to at least certain levels of data stored within the system by distinguishing between entry and non-entry of any stored privileged access password. In addition, switch means are provided for monitoring unauthorized movement of the system together with means for rendering the movement monitoring switch enabled or disabled. When the movement monitoring switch detects movement of the system while the switch is enabled and when the tamper detection switch detects opening of the enclosure, power-up of the system is prevented until the privileged access password (or a power-on password) is successfully entered into the system by a user.
156 Citations
22 Claims
-
1. A personal computer system for receiving and retaining data and capable of securing data retained within the system against unauthorized access, the system comprising:
-
a normally closed enclosure; an erasable memory element mounted within said enclosure for selective activation to active and inactive states and for receiving and storing a privileged access password when in the active state; a manually operable option switch mounted within said enclosure, said option switch being operatively connected with said erasable memory element and manually settable by a user of the personal computer system for setting said erasable memory element to the active and inactive states; a movement detection switch; means for selectively enabling and disabling the movement detection switch; said movement detection switch mounted within said enclosure and operatively connected with said erasable memory element for detecting unauthorized movement of the computer system; means including the movement detection switch for preventing a successful power-up of the computer system in response to any switching of said movement detection switch while it is enabled; and a system processor mounted within said enclosure and operatively connected with said erasable memory element for controlling access to at least certain levels of data stored within the system by distinguishing between entry and non-entry of the password, and between enabled and disabled state of the movement detection switch. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A personal computer system for receiving and retaining data and capable of securing data retained within the system against unauthorized access, the system comprising:
-
a normally closed enclosure; an erasable memory element mounted within said enclosure for selective activation to active and inactive states and for receiving and storing a power-on password and a privileged access password when in the active state; a manually operable option switch mounted within said enclosure, said option switch being operatively connected with said erasable memory element and manually settable by a user of the personal computer system for setting said erasable memory element to the active and inactive states; a tamper detection switch mounted within said enclosure and operatively connected with said erasable memory element for detecting opening of said enclosure; a movement detection switch mounted within said enclosure and operatively connected with said erasable memory element for detecting unauthorized movement of the computer system; program controlled means for selectively enabling and disabling the movement detection switch; means for preventing a successful power-up of the computer system in response to switching of either the tamper detection switch or said movement detection switch while it is enabled; and a system processor mounted within said enclosure and operatively connected with said erasable memory element for controlling access to at least certain levels of data stored within the system by distinguishing between the active and inactive states of said memory element, between entry and non-entry of the passwords, and between the enabled and disabled state of the movement detection switch. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A personal computer system for receiving and retaining data and capable of securing data retained within the system against unauthorized access, the system comprising:
-
a normally closed enclosure; a movement detection switch; program controlled means for selectively rendering the movement detection switch enabled and disabled; a first erasable memory element mounted within said enclosure for selective activation to active and inactive states and for receiving and storing a privileged access password when in the active state; an option switch mounted within said enclosure and operatively connected with said first erasable memory element for setting said first erasable memory element to the active and inactive states; a second erasable memory element mounted within said enclosure for receiving and storing a power-on password and data indicative of the enabled state of the movement detection switch, the state of said first erasable memory element, and of correct installation of any stored power-on password and privileged access password; a tamper detection switch mounted within said enclosure and operatively connected with said second erasable memory element for detecting unauthorized opening of said enclosure; said movement detection switch mounted within said enclosure and operatively connected with said second erasable memory element for detecting unauthorized movement of the computer system; means effective with the privileged access password installed for preventing a successful power-up of the computer system in response to switching of the tamper detection switch and in response to switching of the movement detection switch while it is enabled; and a system processor mounted within said enclosure and operatively connected with said erasable memory elements for controlling access to at least certain levels of data stored within the system by distinguishing between the enabled and disabled state of the movement detection switch and between entry and non-entry of any valid stored privileged access password and any valid stored power-on password in the first and second erasable memory elements. - View Dependent Claims (15, 16, 17, 18, 19)
-
-
20. A method of operating a personal computer system having an enclosure, a system processor mounted within the enclosure, a selectively activatable erasable memory element mounted within the enclosure, a manually operable option switch mounted within the enclosure manually settable by a user of the personal computer system for setting the memory element to active and inactive states, a tamper detection switch mounted within the enclosure for detecting opening of the enclosure, a movement detection switch mounted within the enclosure for detecting movement of the computer system from a normal operating position, and a utility program invocable by the user for rendering the movement detection switch enabled, the method comprising the steps of:
-
manually setting the option switch and selectively setting the memory element into the active state; storing a privileged access password in the active memory element; invoking the utility program to enable the movement detection switch; controlling access to at least certain levels of data stored within the system by distinguishing between entry and non-entry of the password and between an enabled and disabled state of the movement detection switch; and inhibiting a power-up of the system in response to any switching of the tamper switch and in response to switching of the enabled movement detection switch. - View Dependent Claims (21, 22)
-
Specification