Method to provide chip based security for I/O packets in an array using dynamic topology
First Claim
Patent Images
1. An apparatus comprising:
- a controller circuit configured to read or write a plurality of data packets in response to one or more input/output requests; and
an array configured to present or receive said plurality of data packets to or from said controller circuit in response to said input/output requests, wherein (A) each of said plurality of data packets are only transmitted to or from said array after a successful authentication between (i) a first code that dynamically changes between transmission of each of said data packets embedded within each of said plurality of packets and (ii) a second code stored on a non-volatile memory within said controller circuit, (B) said first code is verified after each of said plurality of packets is received, (C) said first code is generated during an initial access to said array by a particular user, and (D) said first code of said particular user allows said particular user to access only portions of said array with data previously written by said particular user.
9 Assignments
0 Petitions
Accused Products
Abstract
An apparatus comprising a controller circuit and an array. The controller circuit may be configured to read/write data in response to one or more input/output requests. The array may be configured to present/receive data to/from the controller circuit in response to the input/output requests. The data may be only transmitted to/from the array after a successful authentication between (i) a first code embedded within each of the input/output requests and (ii) a second code stored on a non-volatile memory within the controller circuit.
-
Citations
17 Claims
-
1. An apparatus comprising:
-
a controller circuit configured to read or write a plurality of data packets in response to one or more input/output requests; and an array configured to present or receive said plurality of data packets to or from said controller circuit in response to said input/output requests, wherein (A) each of said plurality of data packets are only transmitted to or from said array after a successful authentication between (i) a first code that dynamically changes between transmission of each of said data packets embedded within each of said plurality of packets and (ii) a second code stored on a non-volatile memory within said controller circuit, (B) said first code is verified after each of said plurality of packets is received, (C) said first code is generated during an initial access to said array by a particular user, and (D) said first code of said particular user allows said particular user to access only portions of said array with data previously written by said particular user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for providing security on data stored on a network, comprising the steps of:
-
reading or writing a plurality of data packets in response to one or more input/output requests; and presenting or receiving said plurality of data packets to or from a controller circuit in response to said input/output requests, wherein (A) each of said plurality of data packets are only transmitted to or from an array after a successful authentication between (i) a first code that dynamically changes between transmission of each of said data packets embedded within each of said plurality of packets and (ii) a second code stored on a non-volatile memory within said controller circuit, (B) said first code is verified after each of said plurality of packets is received, (C) said first code is generated during an initial access to said array by a particular user, and (D) said first code of said particular user allows said particular user to access only portions of said array with data previously written by said particular user. - View Dependent Claims (12, 13, 14, 15, 16)
-
-
17. An apparatus comprising:
-
means for reading or writing a plurality of data packets in response to one or more input/output requests; and means for presenting or receiving said plurality of data packets to or from a controller circuit in response to said input/output requests, wherein (A) each of said plurality of data packets are only transmitted to or from an array after a successful authentication between (i) a first code that dynamically changes between transmission of each of said data packets embedded within each of said plurality of packets and (ii) a second code stored on a non-volatile memory within said controller circuit, (B) said first code is verified after each of said plurality of packets is received, (C) said first code is generated during an initial access to said array by a particular user, and (D) said first code of said particular user allows said particular user to access only portions of said array with data previously written by said particular user.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeAvago Technologies International Sales Pte Limited (Broadcom, Inc.)
-
Original AssigneeLSI Corporation (Broadcom, Inc.)
-
InventorsJibbe, Mahmoud K., Marathe, Chandan A., Gangadharan, Manjunath Balgatte, Somanna, Natesh
-
Primary Examiner(s)Brown, Christopher
-
Assistant Examiner(s)MOHAMMADI, FAHIMEH M
-
Application NumberUS13/091,381Publication NumberTime in Patent Office1,062 DaysField of Search726/3, 726/5, 382/115, 713/186US Class Current726/5CPC Class CodesG06F 21/44 Program or device authentic...G06F 21/572 Secure firmware programming...G06F 21/80 in storage media based on m...G06F 21/85 interconnection devices, e....G06F 2221/2129 Authenticate client device ...H04L 63/08 for authentication of entit...H04L 63/108 when the policy decisions a...H04L 9/0894 Escrow, recovery or storing...H04L 9/16 the keys or algorithms bein...
