Methods and systems for promoting security in a computer system employing attached storage devices
First Claim
1. A disk drive data storage device comprising:
- a data storage medium comprising a data storage disk;
a secure area defined on the data storage disk, the secure area containing at least one authority record for determining access to associated data contained on the secure area, the at least one authority record comprising a master record comprising a master passcode, associated master data, and access permissions to the associated master data, wherein the master data comprises another of the at least one authority records; and
a controller and firmware within the data storage device, which are adapted to control access to the associated data based on the at least one authority record.
6 Assignments
0 Petitions
Accused Products
Abstract
The present methods and systems use specially isolated techniques for promoting security in a computer system. In one embodiment of these methods and systems, a simple file system is concealed in the storage of the computer system and is managed with a processor and simple non-writeable code operating on the storage device. Strong cryptographic design permits the present computer security methods and systems to secure data on the storage device. In one method embodiment, a computer system is provided with an operating system in operative association with at least one storage device, wherein the storage device includes firmware and a processor for processing data and instructions stored on the storage device. The method includes creating at least one security partition in, and restricting access to, at least a portion of the storage device by the operating system. The method also includes creating at least one security partition in the storage device. The method also includes providing at least one authority record and data associated with the authority record in the storage device. System and computer-readable medium embodiments structured in accordance with the method embodiments discussed herein are also provided.
-
Citations
27 Claims
-
1. A disk drive data storage device comprising:
-
a data storage medium comprising a data storage disk; a secure area defined on the data storage disk, the secure area containing at least one authority record for determining access to associated data contained on the secure area, the at least one authority record comprising a master record comprising a master passcode, associated master data, and access permissions to the associated master data, wherein the master data comprises another of the at least one authority records; and a controller and firmware within the data storage device, which are adapted to control access to the associated data based on the at least one authority record. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method for securing data in a disk drive data storage device comprising:
-
Storing associated data and one or more authority records for determining access to the associated data in one or more secure partitions formed on at least one data storage disk of the disk drive data storage device; and controlling with a controller and firmware, which are located in the disk drive data storage device, access to the associated data by an operating system of an attached computer system based upon the at least one authority record, wherein the one or more authority record comprising a master record comprising a master passcode, associated master data, and access permissions to the associated master data, wherein the master data comprises another of the one or more authority records. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
-
21. A disk drive data storage device comprising:
-
a data storage disk; a secure area defined on the data storage disk, the secure area containing associated data and containing at least one authority record for determining access to the associated data, wherein the at least one authority record comprises a master record comprising a master passcode, associated master data, and access permissions to the associated master data, wherein the master data comprises another of the at least one authority records; and a controller and firmware within the disk drive data storage device, which are adapted to control access to any data stored within the secure area based on the at least one authority record. - View Dependent Claims (22, 23, 24, 25, 26, 27)
-
Specification