Removable hard disk with front panel input
First Claim
1. A security system for a removable data storage device (RDSD), comprising:
- an information handling system comprising a processor, the processor accessing a plurality of data files stored in said RDSD;
a trusted information module (TIM) comprising a non-volatile storage medium operable to securely store security credentials, wherein said security credentials are not associated with a user; and
one or more hardware or software security information input receivers;
wherein said TIM initiate initiates executable software authentication and authorization processes to;
authenticate said RDSD to said information handling systems, wherein said executable software authentication and authorization processes are performed using said security credentials without user input of additional authentication or authorization information; and
use said security credentials and predetermined user identity verification information received from said hardware or software security information input receivers to authenticate a user, said RDSD and said one or more information handling systems to each other; and
,convey a message via the TIM to the one or more information handling systems asserting authenticity of the RDSD; and
whereinsaid non-volatile storage medium securely stores passwords, digital keys, digital certificates and other security mechanisms;
said non-volatile storage medium comprises a removable smart card to securely communicate trusted information using physical contacts or a removable hardware device to securely communicate trusted information using a universal serial bus (USB) connection;
said predetermined user identity verification information comprises two or more received user identity verification factors to authenticate said RDSD, said information handling system, and said user to each other; and
,said predetermined user identity verification information comprises two or more received user identity verification factors to authorize predetermined access to said plurality of data files.
14 Assignments
0 Petitions
Accused Products
Abstract
A system and method is disclosed for authenticating a removable data storage device (RDSD) by using a trusted information module (TIM) to control access to data files stored on the RDSD. A security information input receiver receives identity verification factors from a user and provides the identity verification factors to the TIM for processing. In some embodiments of the invention, the TIM uses identity verification factors in cryptographic operation to authenticate the user, the RDSD and the information processing system to each other. The TIM then performs similar operations with the contents of one or more authorization files to control access and usage of the data files stored on the RDSD.
-
Citations
10 Claims
-
1. A security system for a removable data storage device (RDSD), comprising:
-
an information handling system comprising a processor, the processor accessing a plurality of data files stored in said RDSD; a trusted information module (TIM) comprising a non-volatile storage medium operable to securely store security credentials, wherein said security credentials are not associated with a user; and one or more hardware or software security information input receivers; wherein said TIM initiate initiates executable software authentication and authorization processes to; authenticate said RDSD to said information handling systems, wherein said executable software authentication and authorization processes are performed using said security credentials without user input of additional authentication or authorization information; and use said security credentials and predetermined user identity verification information received from said hardware or software security information input receivers to authenticate a user, said RDSD and said one or more information handling systems to each other; and
,convey a message via the TIM to the one or more information handling systems asserting authenticity of the RDSD; and
whereinsaid non-volatile storage medium securely stores passwords, digital keys, digital certificates and other security mechanisms; said non-volatile storage medium comprises a removable smart card to securely communicate trusted information using physical contacts or a removable hardware device to securely communicate trusted information using a universal serial bus (USB) connection; said predetermined user identity verification information comprises two or more received user identity verification factors to authenticate said RDSD, said information handling system, and said user to each other; and
,said predetermined user identity verification information comprises two or more received user identity verification factors to authorize predetermined access to said plurality of data files. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method for securing information stored in a plurality of data files on a removable data storage device (RDSD), comprising:
-
storing security credentials on a trusted information module (TIM) comprising a non-volatile storage medium, wherein said security credentials are not associated with a user; and using hardware or software security information input receivers to receive user identity verification information from a user; initiating executable software authentication and authorization processes using said TIM to; authenticate said RDSD to an information handling system, wherein said executable software authentication and authorization processes are performed using said security credentials without user input of additional authentication or authorization information; and use said security credentials and predetermined user identity verification information received from said hardware or software security information input receivers to authenticate a user, said RDSD and said information handling system to each other; and
,convey a message via the TIM to said information handling system asserting authenticity of the RDSD; and
whereinsaid non-volatile storage medium securely stores passwords, digital keys, digital certificates and other security mechanisms; said non-volatile storage medium comprises a removable smart card to securely communicate trusted information using physical contacts or a removable hardware device to securely communicate trusted information using a universal serial bus (USB) connection; said predetermined user identity verification information comprises two or more received user identity verification factors to authenticate said RDSD, said information handling system, and said user to each other; and
,said predetermined user identity verification information comprises two or more received user identity verification factors to authorize predetermined access to said plurality of data files. - View Dependent Claims (7, 8, 9, 10)
-
Specification