Disk drive employing a disk with a pristine area for storing encrypted data accessible only by trusted devices or clients to facilitate secure network communications

US 7,003,674 B1
Filed: 07/31/2000
Issued: 02/21/2006
Est. Priority Date: 07/31/2000
Status: Expired due to Fees

First Claim

Patent Images

1. A disk drive comprising:

(a) a disk for storing data including embedded servo sectors comprising servo bursts, the disk comprising a public area for storing plaintext data and a pristine area for storing encrypted data;

(b) a head for reading the encrypted data from the pristine area of the disk;

(c) a control system for interfacing with a host computer to facilitate read and write commands to write data to and read data from the pristine area of the disk, the control system comprising;

authentication circuitry for authenticating a request received from the host computer to access the pristine area of the disk;

a secret drive key;

decryption circuitry, responsive to the secret drive key, for decrypting the encrypted data stored in the pristine area of the disk to generate decrypted data; and

a servo control system responsive to the embedded servo sectors;

wherein;

the servo bursts are written to the disk in encrypted form; and

the authentication circuitry enables the servo control system to decrypt the servo bursts.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A disk drive is disclosed comprising a disk for storing data, the disk comprising a public area for storing plaintext data and a pristine area for storing encrypted data. The disk drive comprises a head for reading the encrypted data from the pristine area of the disk, and a control system for controlling access to the pristine area of the disk. Authentication circuitry within the disk drive is provided for authenticating a request received from an external entity to access the pristine area of the disk and for enabling the control system if the request is authenticated. The disk drive further comprises a secret drive key, and decryption circuitry responsive to the secret drive key, for decrypting the encrypted data stored in the pristine area of the disk.

247 Citations

26 Claims

1. A disk drive comprising:
- (a) a disk for storing data including embedded servo sectors comprising servo bursts, the disk comprising a public area for storing plaintext data and a pristine area for storing encrypted data;
  
  (b) a head for reading the encrypted data from the pristine area of the disk;
  
  (c) a control system for interfacing with a host computer to facilitate read and write commands to write data to and read data from the pristine area of the disk, the control system comprising;
  
  authentication circuitry for authenticating a request received from the host computer to access the pristine area of the disk;
  
  a secret drive key;
  
  decryption circuitry, responsive to the secret drive key, for decrypting the encrypted data stored in the pristine area of the disk to generate decrypted data; and
  
  a servo control system responsive to the embedded servo sectors;
  
  wherein;
  
  the servo bursts are written to the disk in encrypted form; and
  
  the authentication circuitry enables the servo control system to decrypt the servo bursts.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The disk drive of claim 1, wherein the encrypted data comprises encrypted authentication data.
  - 3. The disk drive of claim 2, wherein the authentication circuitry is responsive to the decrypted data.
  - 4. The disk drive of claim 2, wherein the encrypted authentication data comprises encrypted user authentication data.
  - 5. The disk drive of claim 2, wherein the encrypted authentication data comprises encrypted device authentication data for authenticating a device, the device comprising a unique device ID configured during manufacture of the device.
  - 6. The disk drive of claim 2, wherein the encrypted authentication data comprises encrypted information for implementing a challenge and response verification sequence.
  - 7. The disk drive of claim 2, wherein the encrypted authentication data comprises encrypted message authentication data.
  - 8. The disk drive of claim 7, wherein the encrypted authentication data comprises encrypted key data for generating a message authentication code.
  - 9. The disk drive of claim 1, wherein the encrypted data comprises encrypted key data for decrypting an encrypted message.
  - 10. The disk drive of claim 1, wherein the encrypted data comprises encrypted message data.
  - 11. The disk drive of claim 1, wherein the disk drive further comprises encryption circuitry for encrypting plaintext data into the encrypted data stored in the pristine area.
  - 12. The disk drive of claim 1, wherein:
    - (a) the servo bursts are written to the disk with additive noise generated from a pseudo random sequence;
      
      (b) the pseudo random sequence is generated from a polynomial;
      
      (c) the servo control system uses the polynomial to decrypt the servo bursts; and
      
      (d) the authentication circuitry provides the polynomial to the servo control system.

13. A method of processing a request received by a disk drive from a host computer to access encrypted data stored in a pristine area of a disk, wherein the disk further comprises embedded servo sectors comprising servo bursts, the method comprising the steps of:
- (a) using a control system internal to the disk drive to receive the request from the host computer;
  
  (b) using the control system internal to the disk drive to authenticate the request to access the pristine area and to enable access to the pristine area if the request is authenticated;
  
  (c) using the control system internal to the disk drive to read the encrypted data stored in the pristine area;
  
  (d) using the control system internal to the disk drive to decrypt the encrypted data using a secret drive key within the disk drive to generate decrypted data;
  
  (e) using the control system internal to the disk drive to servo a head over the disk in response to the embedded servo sectors; and
  
  (f) using the control system internal to the disk drive to enable servoing in the pristine area if the request is authenticated,wherein;
  
  the servo bursts are written to the disk in encrypted form; and
  
  the step of authenticating the request to access the pristine area comprises the step of decrypting the servo bursts.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
- - 14. The method as recited in claim 13, wherein the encrypted data comprises encrypted authentication data.
  - 15. The method as recited in claim 14, wherein the step of authenticating is responsive to the decrypted data.
  - 16. The method as recited in claim 14, wherein the encrypted authentication data comprises encrypted user authentication data.
  - 17. The method as recited in claim 14, wherein the encrypted authentication data comprises encrypted device authentication data for authenticating a device, the device comprising a unique device ID configured during manufacture of the device.
  - 18. The method as recited in claim 14, wherein the encrypted authentication data comprises encrypted information for implementing a challenge and response verification sequence.
  - 19. The method as recited in claim 14, wherein the encrypted authentication data comprises encrypted message authentication data.
  - 20. The method as recited in claim 19, wherein the encrypted authentication data comprises encrypted key data for generating a message authentication code.
  - 21. The method as recited in claim 13, wherein the encrypted data comprises encrypted key data for decrypting an encrypted message.
  - 22. The method as recited in claim 13, wherein the encrypted data comprises encrypted message data.
  - 23. The method as recited in claim 13, further comprising the step of encrypting plaintext data to generate the encrypted data stored in the pristine area.
  - 24. The method as recited in claim 13, wherein:
    - (a) the servo bursts are written to the disk with additive noise generated from a pseudo random sequence;
      
      (b) the pseudo random sequence is generated from a polynomial; and
      
      (c) the step of servoing uses the polynomial to decrypt the servo bursts.

25. A method of processing a request received by a disk drive from a host computer to access data stored on a disk, the disk comprising a public area for storing plaintext data and a pristine area for storing encrypted data, the disk further comprises embedded servo sectors comprising servo bursts, the method comprising the steps of:
- (a) using a control system internal to the disk drive to receive the request from the host computer;
  
  (b) using the control system internal to the disk drive to decrypt the encrypted data stored in the pristine area of the disk using a secret drive key within the disk drive to generate decrypted data;
  
  (c) using the control system internal to the disk drive to process the decrypted data to authenticate the request received from the host computer before allowing access to the disk;
  
  (d) using the control system internal to the disk drive to servo a head over the disk in response to the embedded servo sectors; and
  
  (e) using the control system internal to the disk drive to enable servoing in the pristine area if the request is authenticated,wherein;
  
  the servo bursts are written to the disk in encrypted form; and
  
  the step of authenticating the request to access the pristine area comprises the step of decrypting the servo bursts.

26. A disk drive comprising a disk for storing data including embedded servo sectors comprising servo bursts, and a head for reading data from the disk, the improvement comprising:
- a control system for interfacing with a host computer to facilitate read and write commands to write data to and read data from the disk, the control system comprising;
  
  authentication circuitry for authenticating a request received from the host computer to access the disk;
  
  a secret drive key;
  
  decryption circuitry, responsive to the secret drive key, for decrypting the encrypted data stored on the disk to generate decrypted data; and
  
  a servo control system responsive to the embedded servo sectors;
  
  wherein;
  
  the servo bursts are written to the disk in encrypted form; and
  
  the authentication circuitry enables the servo control system to decrypt the servo bursts.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Western Digital Ventures Incorporated (Western Digital Corporation)
Original Assignee
Western Digital Ventures Incorporated (Western Digital Corporation)
Inventors
Hamlin, Christopher L.
Primary Examiner(s)
Morse, Gregory
Assistant Examiner(s)
HENEGHAN, MATTHEW E

Application Number

US09/630,256
Time in Patent Office

2,031 Days
Field of Search

713/165, 713172-174, 713/182, 713/183, 713/185, 713189-200, 711/111, 711112-114, 360/27, 369/17, 369/133, 369/174
US Class Current

713/193
CPC Class Codes

G06F 21/80 in storage media based on m...

G11B 5/59688 Servo signal format pattern...

Disk drive employing a disk with a pristine area for storing encrypted data accessible only by trusted devices or clients to facilitate secure network communications

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

247 Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Disk drive employing a disk with a pristine area for storing encrypted data accessible only by trusted devices or clients to facilitate secure network communications

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

247 Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links