Remote access control of storage devices
First Claim
1. A method of provisioning an access control device comprising:
- communicationally coupling the access control device to a provisioning computing device, the access control device having a physical configuration of a memory card;
storing, on the access control device, using the provisioning computing device, a first set of access control information identifying whether the access control device will allow a storage device, to which the access control device will be communicationally coupled, to meaningfully respond to data storage related requests directed to a first set of data that is stored on the storage device; and
storing, on the access control device, using the provisioning computing deice, a second set of access control information, differing from the first set of access control information, identifying whether the access control device will allow the storage device to meaningfully respond to data storage related requests directed to a second set of data that is also stored on the storage device, the second set of data differing from the first set of data;
wherein the access control device comprises one or more processing units that are configured to;
determine whether to allow the storage device to meaningfully respond to the data storage related requests based, at least in part, on the stored first set of access control information or the store second set of access control information.
1 Assignment
0 Petitions
Accused Products
Abstract
An access control device can be communicationally coupled to a storage device and can control access thereto. The access control device can comprise information, such as identities of authorized entities, to enable the access control device to independently determine whether to provide access to an associated storage device. Alternatively, the access control device can comprise information to establish a secure connection to an authorization computing device and the access control device can implement the decisions of the authorization computing device. The access control device can control access by instructing a storage device to execute specific firmware instructions to prevent meaningful responses to data storage related requests. The access control device can also comprise storage-related cryptographic information utilized by the storage device to encrypt and decrypt data. In such a case, the access control device can control access by not releasing the storage-related cryptographic information to the storage device.
-
Citations
20 Claims
-
1. A method of provisioning an access control device comprising:
-
communicationally coupling the access control device to a provisioning computing device, the access control device having a physical configuration of a memory card; storing, on the access control device, using the provisioning computing device, a first set of access control information identifying whether the access control device will allow a storage device, to which the access control device will be communicationally coupled, to meaningfully respond to data storage related requests directed to a first set of data that is stored on the storage device; and storing, on the access control device, using the provisioning computing deice, a second set of access control information, differing from the first set of access control information, identifying whether the access control device will allow the storage device to meaningfully respond to data storage related requests directed to a second set of data that is also stored on the storage device, the second set of data differing from the first set of data; wherein the access control device comprises one or more processing units that are configured to;
determine whether to allow the storage device to meaningfully respond to the data storage related requests based, at least in part, on the stored first set of access control information or the store second set of access control information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method of accessing data stored on a storage device comprising:
-
communicationally coupling the storage device to a host computing device issuing data storage related requests to the storage device; receiving, at the host computing device, an indication from the storage device that an access control device, having a physical configuration of a memory card, is communicationally connected to the storage device; establishing a communicational connection between the host computing device and the access control device through the storage device; providing, to the access control device, from the host computing device, identifying information; and receiving, at the host computing device, meaningful responses to data storage related requests directed to the storage device after the access control device allows the storage device to do so; wherein one or more processing units of the access control device are configured to;
determine whether to allow the storage device to provide the meaningful responses based, at least in part, on the provided identifying information. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
-
19. A system comprising:
-
an access control device having a physical configuration of a memory card, the access control device comprising; one or more processing units that are configured to; determine whether to allow a storage device, to which the access control device will be communicationally coupled, to meaningfully respond to data storage related requests; wherein the determining is based, at least in part, on a first set of access control information stored on the access control device or a second set of access control information also stored on the access control device; and a provisioning computing device comprising; a communicational coupling to the access control device; one or more processing units; and computer-readable storage media comprising computer-executable instructions, which, when executed by the one or more processing units, cause the provisioning computing device to; store, on the access control device, the first set of access control information, wherein the first set of access control information identifies whether the access control device will allow the storage device, to which the access control device will be communicationally coupled, to meaningfully respond to data storage related requests directed to a first set of data that is stored on the storage device; and store, on the access control device, the second set of access control information, wherein the second set of access control information differs from the first set of access control information and identifies whether the access control device will allow the storage device to meaningfully respond to data storage related requests directed to a second set of data that is also stored on the storage device, the second set of data differing from the first set of data. - View Dependent Claims (20)
-
Specification