System and method for providing security to a portable storage device
First Claim
1. A system comprising a portable storage device and a host system, said portable storage device being coupleable to said host system using a Universal Serial Bus (USB) interface such that a microprocessor disposed on the portable storage device is accessible by a central processing unit of the host system through the USB interface when the portable storage device is coupled to the host system,wherein said portable storage device includes a random number generator operable to generate a new random number each time the portable storage device is accessed by the host system;
- wherein said host system includes an encryption engine operable to encrypt a password, a logical block address and data using the random number generated by the portable storage device,wherein said portable storage device includes a secure area for storing the encrypted password, encrypted logical block address and encrypted data,the host system encryption engine being further operable to encrypt the random number using a key to generate an encrypted random number, the encrypted random number being stored in the secure area of the portable storage device and associated with the encrypted data;
wherein said host system further includes a decryption engine operable to decrypt the encrypted random number using the key and to decrypt the encrypted data associated with the encrypted random number; and
wherein said portable storage further includes a decryption engine operable to decrypt the encrypted password and the encrypted logical block address and to generate an encrypted password and an unencrypted logical block address.
2 Assignments
0 Petitions
Accused Products
Abstract
A system for providing security to a portable storage device coupleable to a host system and associated methods are disclosed. The system includes a portable storage device random number generator operable to generate a random number for storage in the portable storage device and the host system each time the portable storage device is accessed by the host system. A random number generated in this manner may be used by the host system in a write process to encrypt a logical branch address, a user password, and user data which may be written to the portable storage device as encrypted data and stored in a secure area of the portable storage device. The write process may further include encrypting the random number using a key associated with the portable storage device to generate an encrypted random number, which may be written to the portable storage device and associated with the encrypted data. The random number is not stored in the host system. A new random number may be generated each time the portable storage device is queried. In a read process the host system may decrypt the encrypted random number associated with the encrypted data to be read using the key associated with the portable storage device to generate the random number. The read process may further include using the random number to decrypt the associated encrypted data. Access to read/write processes may be password protected.
-
Citations
20 Claims
-
1. A system comprising a portable storage device and a host system, said portable storage device being coupleable to said host system using a Universal Serial Bus (USB) interface such that a microprocessor disposed on the portable storage device is accessible by a central processing unit of the host system through the USB interface when the portable storage device is coupled to the host system,
wherein said portable storage device includes a random number generator operable to generate a new random number each time the portable storage device is accessed by the host system; -
wherein said host system includes an encryption engine operable to encrypt a password, a logical block address and data using the random number generated by the portable storage device, wherein said portable storage device includes a secure area for storing the encrypted password, encrypted logical block address and encrypted data, the host system encryption engine being further operable to encrypt the random number using a key to generate an encrypted random number, the encrypted random number being stored in the secure area of the portable storage device and associated with the encrypted data; wherein said host system further includes a decryption engine operable to decrypt the encrypted random number using the key and to decrypt the encrypted data associated with the encrypted random number; and wherein said portable storage further includes a decryption engine operable to decrypt the encrypted password and the encrypted logical block address and to generate an encrypted password and an unencrypted logical block address. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for providing security to a portable storage device coupleable to a host system using a Universal Serial Bus (USB) interface such that a microprocessor disposed on the portable storage device is accessible by a central processing unit of the host system through the USB interface when the portable storage device is coupled to the host system, the method comprising the steps of:
-
receiving in the host system a random number generated by the portable storage device each time the portable storage device is accessed by the host system, wherein the portable storage device includes a random number generator that generates a new said random number each time the portable storage device is accessed by the host system; encrypting a user password using the random number in the host system; sending the encrypted password to the portable storage device; decrypting the encrypted password using the random number, wherein said decrypting is performed by a decryption engine disposed on the portable storage device; hashing the decrypted password in the portable storage device, wherein said hashing is performed by a hash engine disposed on the portable storage device; comparing the hashed password to a hashed password stored in the portable storage device, wherein said comparing is performed by a comparator disposed on the portable storage device; and allowing access to a secure area of the portable storage device in the case where the hashed password is the same as the stored hashed password. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A method for providing security to a portable storage device coupleable to a host system using a Universal Serial Bus (USB) interface such that a microprocessor disposed on the portable storage device is accessible by a central processing unit of the host system through the USB interface when the portable storage device is coupled to the host system, the method comprising the steps of:
-
generating a random number in the portable storage device each time the portable storage device is accessed by the host system, wherein the portable storage device includes a random number generator that generates a new said random number each time the portable storage device is accessed by the host system; providing the generated random number to the host system; encrypting a password, a logical block address and data using the random number in the host system; providing the encrypted password, encrypted logical block address and encrypted data to the portable storage device; storing the encrypted password, encrypted logical block address and encrypted data in a secure area of the portable storage device; encrypting the random number using a key to generate an encrypted random number in the host system; providing the encrypted random number to the portable storage device; storing the encrypted random number in the secure area of the portable storage device; and associating the encrypted random number with the stored encrypted data. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification