Secure access to encrypted information
First Claim
1. A method of using a mini filter driver which is part of a file system manager in a self-service terminal to secure access to encrypted information stored on a removable storage device inserted in a port terminal to the self-service terminal by an authorized client, the method comprising:
- registering the mini filter driver with the file system filter manager, wherein the mini filter driver is stored in kernel mode, and comprises a list of authorized clients and decryption technology;
receiving by the mini filter driver a request to read information from the removable storage device;
ascertaining by the mini filter driver if the request originates from an authorized client on the list of authorized clients;
receiving encrypted information read from the removable storage device;
decrypting the encrypted information read by the file manager by the mini filter driver in response to a request originated from an authorized client on said list, wherein the authorized client request makes the request via a management application registered with the mini filter driver as an authorized application; and
conveying the decrypted information to the authorized client.
7 Assignments
0 Petitions
Accused Products
Abstract
A method of using a mini filter driver to secure access to encrypted information stored on a removable storage device. The method comprises receiving a request to read information from the removable storage device. The mini filter driver ascertains if the request originated from an authorized client. The mini filter driver receives encrypted information read from the removable storage device, and decrypts the encrypted information in the event that the request originated from an authorized client. The decrypted information can then be conveyed to the authorized client. If the client is not authorized, then the mini filter driver does not decrypt the information.
10 Citations
20 Claims
-
1. A method of using a mini filter driver which is part of a file system manager in a self-service terminal to secure access to encrypted information stored on a removable storage device inserted in a port terminal to the self-service terminal by an authorized client, the method comprising:
-
registering the mini filter driver with the file system filter manager, wherein the mini filter driver is stored in kernel mode, and comprises a list of authorized clients and decryption technology; receiving by the mini filter driver a request to read information from the removable storage device; ascertaining by the mini filter driver if the request originates from an authorized client on the list of authorized clients; receiving encrypted information read from the removable storage device; decrypting the encrypted information read by the file manager by the mini filter driver in response to a request originated from an authorized client on said list, wherein the authorized client request makes the request via a management application registered with the mini filter driver as an authorized application; and conveying the decrypted information to the authorized client. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A file management system to recognize a removable storage device presented to provide maintenance to a self-service terminal, where the removable storage device contains encrypted information relating to maintaining the self-service terminal, the file management system implemented as software stored in a non-transitory computer readable medium, the file management system comprising:
-
a storage device driver for reading information from and writing information to a removable storage device in conjunction with a physical device driver; a file system driver in communication with the storage device driver for organizing files stored on the removable storage device; a file system filter manager in communication with the file system driver; and a mini filter driver registered with the file system filter manager, wherein the mini filter driver is stored in kernel mode, the mini filter driver further comprising; a list of authorized clients to provide maintenance and decryption technology, and whereby the mini filter driver decrypts the encrypted information read by the file system driver in response to a request from the authorized client, wherein the authorized client makes the request via the management application. - View Dependent Claims (10, 11)
-
-
12. A self-service terminal including a plurality of devices requiring periodic maintenance, the terminal comprising:
-
a file system filter manager including a file system driver; a management application, registered with a mini filter driver as an authorized application, for providing restricted functions accessible only by an authorized client; a port internal to the self-service terminal for receiving a removable storage device from the authorized client providing maintenance to the self-service terminal, where the removable storage device contains encrypted information relating to maintaining the devices; and the mini filter driver registered with the file system filter manager, wherein the mini filter driver is stored in kernel mode, the mini filter driver comprising; a list of authorized clients and decryption technology, and whereby the mini filter driver decrypts the encrypted information read by the file system driver in response to a request from the authorized client, wherein the authorized client makes the request via the management application. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification