Multiple stakeholder secure memory partitioning and access control
First Claim
Patent Images
1. A machine implemented system that effectuates secure access to a flash memory component, comprising:
- a security component that intercepts communications between an external processor and the flash memory component and implements authentication and access control to the flash memory component, wherein, based on the security component receiving appropriate public key infrastructure authentication information associated with a partition formed within the flash memory and the partition being in an open state, the security component permits access to the partition, wherein the partition is further associated with a change access right access type that requires a password and the appropriate public key infrastructure authentication information to be supplied in order to change the change access right access type; and
a processing component that rounds a start address or an end address to an erase unit boundary of the flash memory component.
8 Assignments
0 Petitions
Accused Products
Abstract
A machine implemented system and method that effectuates secure access to a flash memory associated with a mobile device. The system includes a security component that intercepts transactions between an external processor and the flash memory and implements authentication and access control to the flash memory. The system further includes components that can partition the flash memory and can associate authentication and access control information with the partitioned flash memory.
-
Citations
20 Claims
-
1. A machine implemented system that effectuates secure access to a flash memory component, comprising:
-
a security component that intercepts communications between an external processor and the flash memory component and implements authentication and access control to the flash memory component, wherein, based on the security component receiving appropriate public key infrastructure authentication information associated with a partition formed within the flash memory and the partition being in an open state, the security component permits access to the partition, wherein the partition is further associated with a change access right access type that requires a password and the appropriate public key infrastructure authentication information to be supplied in order to change the change access right access type; and a processing component that rounds a start address or an end address to an erase unit boundary of the flash memory component. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method implemented on a processor for facilitating and effectuating secure access to a flash memory component, comprising:
-
intercepting communications between an external host and the flash memory; and utilizing a cryptographic technique to enforce the secure access to the flash memory component that is partitioned based on a start address or an end address that are rounded to an erase unit boundary of the flash memory component, wherein enforcement of the secure access includes utilization of appropriate public key infrastructure authentication information and the flash memory that is partitioned being in an open state, and wherein the flash memory that is partitioned is associated with a change access right access type of with password or with pki, wherein the change access right access type of with password or with pki requires that a password or the appropriate public key infrastructure authentication information be supplied in order to modify the change access right access type associated with the flash memory that is partitioned. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
-
20. A method that divides a flash memory component into one or more partitions, comprising:
-
partitioning the flash memory component into the one or more partitions, wherein a start or end address of the one or more partitions is aligned on an erase unit boundary of the flash memory component; assigning a pass code to the one or more partitions; and ascertaining and associating a public key infrastructure (PKI) key and an access control attribute to the one or more partitions, wherein access to the one or more partitions is permitted when the one or more partitions are in an open state and the access control attribute is set to when_open_or_with_PKI, wherein the access control attribute when_open_or_with_PKI permits access to the one or more partitions in response to one of the one or more partitions being in an open state and an appropriate PKI key being supplied.
-
Specification