Apparatus and method for securing data on a portable storage device
First Claim
Patent Images
1. A method for accessing a secure user area of a physical storage device, the method comprising:
- performing by a physical storage device that has a physical storage medium including a clear user area and a secure user area, wherein the clear user area is in a first range of physical addresses in the storage medium, wherein the secure user area is in a second range of physical addresses in the storage medium, wherein the clear user area and the secure user area are physically separate areas in the storage medium, and wherein the physical storage device is operative to allow access to the clear user area without requiring a user password and to allow access to the secure user area only upon receiving the user password;
receiving the user password from a host device in communication with the physical storage device; and
performing at least one of (a) and (b);
(a) receiving data from the host device, performing on-the-fly encryption of the data, and storing the encrypted data in the secure user area; and
(b) reading encrypted data from the secure user area, performing on-the-fly decryption of the encrypted data, and sending the decrypted data to the host device.
1 Assignment
0 Petitions
Accused Products
Abstract
A portable storage device including a microprocessor and a secure user data area, the microprocessor operable to perform on-the-fly encryption/decryption of secure data stored on the storage device under a user password, the microprocessor also operable to exclude access to the secure user data area unless the user password is provided.
97 Citations
20 Claims
-
1. A method for accessing a secure user area of a physical storage device, the method comprising:
performing by a physical storage device that has a physical storage medium including a clear user area and a secure user area, wherein the clear user area is in a first range of physical addresses in the storage medium, wherein the secure user area is in a second range of physical addresses in the storage medium, wherein the clear user area and the secure user area are physically separate areas in the storage medium, and wherein the physical storage device is operative to allow access to the clear user area without requiring a user password and to allow access to the secure user area only upon receiving the user password; receiving the user password from a host device in communication with the physical storage device; and performing at least one of (a) and (b); (a) receiving data from the host device, performing on-the-fly encryption of the data, and storing the encrypted data in the secure user area; and (b) reading encrypted data from the secure user area, performing on-the-fly decryption of the encrypted data, and sending the decrypted data to the host device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
11. A physical storage device comprising:
-
an interface to a host device; and a physical storage medium including a clear user area and a secure user area, wherein the clear user area is in a first range of physical addresses in the storage medium, wherein the secure user area is in a second range of physical addresses in the storage medium, and wherein the clear user area and the secure user area are physically separate areas in the storage medium; wherein the physical storage device is operative to allow access to the clear user area without requiring a user password and to allow access to the secure user area only upon receiving the user password; and wherein the physical storage device is further operative to; receive the user password from the host device via the interface; and perform at least one of (a) and (b); (a) receive data from the host device, perform on-the-fly encryption of the data, and store the encrypted data in the secure user area; and (b) read encrypted data from the secure user area, perform on-the-fly decryption of the encrypted data, and send the decrypted data to the host device. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification