Apparatus and method for securing data on a portable storage device
First Claim
Patent Images
1. A method for accessing a secure user area of a portable storage device, the method comprising:
- performing, by a portable storage device that has a storage medium including a clear user area and a secure user area, wherein the portable storage device is operative to allow access to the clear user area without requiring a user password and to allow access to the secure user area only upon receiving the user password;
receiving the user password from a host device in communication with the portable storage device; and
performing at least one of (a) and (b);
(a) receiving data from the host device, performing on-the-fly encryption of the data, and storing the encrypted data in the secure user area; and
(b) reading encrypted data from the secure user area, performing on-the-fly decryption of the encrypted data, and sending the decrypted data to the host device;
wherein the portable storage device stores a key used for at least one of on-the-fly encryption and on-the-fly decryption, and wherein the key is encrypted.
3 Assignments
0 Petitions
Accused Products
Abstract
A portable storage device including a microprocessor and a secure user data area, the microprocessor operable to perform on-the-fly encryption/decryption of secure data stored on the storage device under a user password, the microprocessor also operable to exclude access to the secure user data area unless the user password is provided.
69 Citations
35 Claims
-
1. A method for accessing a secure user area of a portable storage device, the method comprising:
-
performing, by a portable storage device that has a storage medium including a clear user area and a secure user area, wherein the portable storage device is operative to allow access to the clear user area without requiring a user password and to allow access to the secure user area only upon receiving the user password; receiving the user password from a host device in communication with the portable storage device; and performing at least one of (a) and (b); (a) receiving data from the host device, performing on-the-fly encryption of the data, and storing the encrypted data in the secure user area; and (b) reading encrypted data from the secure user area, performing on-the-fly decryption of the encrypted data, and sending the decrypted data to the host device; wherein the portable storage device stores a key used for at least one of on-the-fly encryption and on-the-fly decryption, and wherein the key is encrypted. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A storage device comprising:
-
an interface to a host device; and a storage medium including a clear user area and a secure user area; wherein the storage device is operative to allow access to the clear user area without requiring a user password and to allow access to the secure user area only upon receiving the user password; and wherein the storage device is further operative to; receive the user password from the host device via the interface; and perform at least one of (a) and (b); (a) receive data from the host device, perform on-the-fly encryption of the data, and store the encrypted data in the secure user area; and (b) read encrypted data from the secure user area, perform on-the-fly decryption of the encrypted data, and send the decrypted data to the host device; wherein the storage device stores a key used for at least one of on-the-fly encryption and on-the-fly decryption, and wherein the key is encrypted. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A method for accessing a secure user area of a portable storage device, the method comprising:
-
performing, by a portable storage device that has a storage medium including a clear user area and a secure user area, wherein the portable storage device is operative to allow access to the clear user area without requiring a user password and to allow access to the secure user area only upon receiving the user password; receiving the user password from a host device in communication with the portable storage device; and performing at least one of (a) and (b); (a) receiving data from the host device, performing on-the-fly encryption of the data, and storing the encrypted data in the secure user area; and (b) reading encrypted data from the secure user area, performing on-the-fly decryption of the encrypted data, and sending the decrypted data to the host device; wherein the portable storage device stores a key used for at least one of on-the-fly encryption and on-the-fly decryption, and wherein the portable storage device is operative to access the secure user area by offsetting a logical address received from the host device by an offset parameter before transforming the logical address to a physical address. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26)
-
-
27. A storage device comprising:
-
an interface to a host device; and a storage medium including a clear user area and a secure user area; wherein the storage device is operative to allow access to the clear user area without requiring a user password and to allow access to the secure user area only upon receiving the user password; and wherein the storage device is further operative to; receive the user password from the host device via the interface; and perform at least one of (a) and (b); (a) receive data from the host device, perform on-the-fly encryption of the data, and store the encrypted data in the secure user area; and (b) read encrypted data from the secure user area, perform on-the-fly decryption of the encrypted data, and send the decrypted data to the host device; wherein the storage device stores a key used for at least one of on-the-fly encryption and on-the-fly decryption, and wherein the storage device is operative to access the secure user area by offsetting a logical address received from the host device by an offset parameter before transforming the logical address to a physical address. - View Dependent Claims (28, 29, 30, 31, 32, 33, 34, 35)
-
Specification