Method for versatile content control with partitioning
First Claim
1. A method for access control, the method comprising:
- performing by a storage device that has a non-volatile memory with a partition and contains an account with authentication credentials and further contains permissions;
receiving a request to access the partition, the request including a session ID, the session ID being associated with the permissions upon authenticating an entity to the account using the authentication credentials, wherein the storage device stores the permissions prior to receiving a request to authenticate the entity;
using the session ID included in the request to look up in the storage device the permissions associated with the session ID;
determining whether the permissions authorize the requested access to the partition; and
granting the requested access to the partition if the permissions authorize the requested access to the partition;
wherein the session ID is sharable among other entities to share access to the partition, and wherein after the entity is authenticated to the account using the authentication credentials, the storage device identifies the other entities by the session ID and not the authentication credentials.
3 Assignments
0 Petitions
Accused Products
Abstract
In some applications, it may be more convenient to the user to be able to log in the memory system using one application, and then be able to use different applications to access protected content without having to log in again. In such event, all of the content that the user wishes to access in this manner may be associated with a first account, so that all such content can be accessed via different applications (e.g. music player, email, cellular communication etc.) without having to log in multiple times. Then a different set of authentication information may then be used for logging in to access protected content that is in an account different from the first account, even where the different accounts are for the same user or entity.
-
Citations
24 Claims
-
1. A method for access control, the method comprising:
performing by a storage device that has a non-volatile memory with a partition and contains an account with authentication credentials and further contains permissions; receiving a request to access the partition, the request including a session ID, the session ID being associated with the permissions upon authenticating an entity to the account using the authentication credentials, wherein the storage device stores the permissions prior to receiving a request to authenticate the entity; using the session ID included in the request to look up in the storage device the permissions associated with the session ID; determining whether the permissions authorize the requested access to the partition; and granting the requested access to the partition if the permissions authorize the requested access to the partition; wherein the session ID is sharable among other entities to share access to the partition, and wherein after the entity is authenticated to the account using the authentication credentials, the storage device identifies the other entities by the session ID and not the authentication credentials. - View Dependent Claims (2, 3, 4, 5, 6)
-
7. A method for access control, the method comprising:
performing by a storage device that has a non-volatile memory with a partition and contains an account with authentication credentials and further contains permissions; allowing one of read and write access to the partition in the non-volatile memory of the storage device without authentication; and allowing the other one of read and write access to the partition only upon authentication of an entity to the account using the authentication credentials, in which a session ID is provided to the entity and is associated with the permissions, wherein the storage device stores the permissions prior to receiving a request to authenticate the entity, and only upon; receiving a request to perform the other one of read and write access to the partition, the request including the session ID; using the session ID included in the request to look up in the storage device the permissions associated with the session ID; and determining that the permissions authorize the other one of read and write access to the partition; wherein the session ID is sharable among other entities to share permission to perform the other one of read and write access to the partition, and wherein after the entity is authenticated to the account using the authentication credentials, the storage device identifies the other entities by the session ID and not the authentication credentials. - View Dependent Claims (8, 9, 10, 11, 12)
-
13. A storage device comprising:
-
a non-volatile memory having a partition and containing an account with authentication credentials and further containing permissions; and a controller in communication with the non-volatile memory, wherein the controller is operative to; receive a request to access the partition, the request including a session ID, the session ID being associated with the permissions upon authenticating an entity to the account using the authentication credentials, wherein the storage device stores the permissions prior to receiving a request to authenticate the entity; use the session ID included in the request to look up in the storage device the permissions associated with the session ID; determine whether the permissions authorize the requested access to the partition; and grant the requested access to the partition if the permissions authorize the requested access to the partition; wherein the session ID is sharable among other entities to share access to the partition, and wherein after the entity is authenticated to the account using the authentication credentials, the storage device identifies the other entities by the session ID and not the authentication credentials. - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. A storage device comprising:
-
a non-volatile memory having a partition and containing an account with authentication credentials and further containing permissions; and a controller in communication with the non-volatile memory, wherein the controller is operative to; allow one of read and write access to the partition in the non-volatile memory without authentication; and allow the other one of read and write access to the partition only upon authentication of an entity to the account using the authentication credentials, in which a session ID is provided to the entity and is associated with the permissions, wherein the storage device stores the permissions prior to receiving a request to authenticate the entity, and only upon; receiving a request to perform the other one of read and write access to the partition, the request including the session ID; using the session ID included in the request to look up in the storage device the permissions associated with the session ID; and determining that the permissions authorize the other one of read and write access to the partition; wherein the session ID is sharable among other entities to share permission to perform the other one of read and write access to the partition, and wherein after the entity is authenticated to the account using the authentication credentials, the storage device identifies the other entities by the session ID and not the authentication credentials. - View Dependent Claims (20, 21, 22, 23, 24)
-
Specification