Encryption sentinel system and method
First Claim
1. A system for controlling access to sensitive data, said system comprising:
- a data storage device, configured for storing data and including a data storage controller, responsive to a request to access data from a client access device, for providing a request indication of said request to access data, and for providing said data only upon receiving an authorization indication from a data access control server that said client access device is authorized to access said data;
the data access control server, coupled to said data storage device and to said client access device and including an encryption sentinel server, said encryption sentinel server responsive to said request indication from said data storage device, and responsive to a security indication of whether said client access device is secure, for controlling access to said data on said data storage device by said client access device;
the client access device, coupled to said data storage device and to said data access control server and including a client data access controller, configured for initiating said request to access data, and responsive to said encryption sentinel server, for providing the security indication of a secure status of a storage device on said client access device; and
wherein said data stored on said data storage device is encrypted.
1 Assignment
0 Petitions
Accused Products
Abstract
An encryption sentinel system and method protects sensitive data stored on a storage device and includes sentinel software that runs on a client machine, sentinel software that runs on a server machine, and a data storage device. When a client machine requests sensitive data from the data storage device, the data storage device interrogates the sentinel software on the server machine to determine if this client machine has previously been deemed to have proper encryption procedures and authentication. If the sentinel server software has this information stored, it provides an approval or denial to the storage device that releases the data if appropriate. If the sentinel server software does not have this information at hand or the previous information is too old, the sentinel server interrogates the sentinel software that resides on the client machine which scans the client machine and provides an encryption update to the sentinel server software, following which data will be released if appropriate.
-
Citations
6 Claims
-
1. A system for controlling access to sensitive data, said system comprising:
-
a data storage device, configured for storing data and including a data storage controller, responsive to a request to access data from a client access device, for providing a request indication of said request to access data, and for providing said data only upon receiving an authorization indication from a data access control server that said client access device is authorized to access said data; the data access control server, coupled to said data storage device and to said client access device and including an encryption sentinel server, said encryption sentinel server responsive to said request indication from said data storage device, and responsive to a security indication of whether said client access device is secure, for controlling access to said data on said data storage device by said client access device; the client access device, coupled to said data storage device and to said data access control server and including a client data access controller, configured for initiating said request to access data, and responsive to said encryption sentinel server, for providing the security indication of a secure status of a storage device on said client access device; and wherein said data stored on said data storage device is encrypted. - View Dependent Claims (2, 3, 4, 5, 6)
-
Specification