Location based disk drive access

US 9,946,892 B2
Filed: 06/28/2016
Issued: 04/17/2018
Est. Priority Date: 08/21/2014
Status: Active Grant

First Claim

Patent Images

1. A method of providing data security for a computing device having a data storage drive, comprising:

identifying with the computing device a predetermined geographical area within which access to the data storage drive of the computing device is permitted;

identifying with the computing device a geographical location of the computing device;

denying access to at least a portion of the data storage drive with the computing device when the identified geographical location of the computing device is outside of the identified geographical area;

permitting access to at least a portion of the data storage drive with the computing device when the identified geographical location of the computing device is within the identified geographical area;

determining with the computing device that the geographical location of the computing device is not able to be identified;

upon determining the geographical location of the computing device is not able to be identified, determining with the computing device an amount of movement of the computing device; and

denying access to at least a portion of the data storage drive with the computing device when the determined amount of movement exceeds a threshold value.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods, apparatuses, systems, and devices are described for providing data security. In one method, data security is provided for a computing device having a data storage drive. A predetermined geographical area within which access to the data storage drive of the computing device is permitted may be identified. A geographical location of the computing device also may be identified. When the identified geographical location of the computing device is outside of the identified geographical area, access to at least a portion of the data storage drive may be denied. When the identified geographical location of the computing device is within the identified geographical area, access to the portion (or all) of the data storage drive may be allowed.

Citations

20 Claims

1. A method of providing data security for a computing device having a data storage drive, comprising:
- identifying with the computing device a predetermined geographical area within which access to the data storage drive of the computing device is permitted;
  
  identifying with the computing device a geographical location of the computing device;
  
  denying access to at least a portion of the data storage drive with the computing device when the identified geographical location of the computing device is outside of the identified geographical area;
  
  permitting access to at least a portion of the data storage drive with the computing device when the identified geographical location of the computing device is within the identified geographical area;
  
  determining with the computing device that the geographical location of the computing device is not able to be identified;
  
  upon determining the geographical location of the computing device is not able to be identified, determining with the computing device an amount of movement of the computing device; and
  
  denying access to at least a portion of the data storage drive with the computing device when the determined amount of movement exceeds a threshold value.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The method of claim 1, further comprising:
    - encrypting with the computing device all data stored on at least the portion of the data storage drive.
  - 3. The method of claim 1, further comprising:
    - determining with the computing device that the identified geographical location of the computing device is outside of the identified geographical area for at least one of a predetermined period of time or for a predetermined number of geographical identifications;
      
      wherein denying access is based at least in part on the determining.
  - 4. The method of claim 1, further comprising:
    - determining with the computing device that the computing device is altered with respect to at least one of identifying the predetermined geographical area or identifying the geographical location; and
      
      denying access to at least the portion of the data storage drive with the computing device based at least in part on the determining.
  - 5. The method of claim 1, further comprising:
    - removing from memory of the computing device data accessed from the data storage drive with the computing device when the identified geographical location of the computing device is outside of the identified geographical area.
  - 6. The method of claim 1, further comprising:
    - identifying with the computing device when the computing device is moved; and
      
      re-identifying with the computing device the geographical location of the computing device when the computing device is identified as moved.
  - 7. The method of claim 1, further comprising:
    - determining with the computing device a failure of identifying the geographical location of the computing device; and
      
      denying access to at least the portion of the data storage drive with the computing device based at least in part on the determining.
  - 8. The method of claim 1, further comprising:
    - determining with the computing device that the identified geographical location of the computing device is within the identified geographical area;
      
      determining with the computing device that the geographical location of the computing device is not able to be identified during subsequent operation of the computing device;
      
      determining with the computing device an amount of movement of the computing device; and
      
      denying access to at least a portion of the data storage drive with the computing device when the determined amount of movement exceeds a threshold value.
  - 9. The method of claim 1, further comprising:
    - setting the threshold value with the computing device based at least in part on the identified geographical area.
  - 10. The method of claim 1, wherein denying access is performed by shutting down the data storage drive.
  - 11. The method of claim 1, wherein denying access is performed by disabling at least part of the data storage drive.
  - 12. The method of claim 1, wherein denying access is performed by destroying at least part of the data storage drive.
  - 13. The method of claim 1, wherein the predetermined geographical area is discontinuous.
  - 14. The method of claim 1, wherein the predetermined geographical area comprises a plurality of distinct geographical areas.

15. A computing device, comprising:
- a data storage drive;
  
  a location component configured to;
  
  identify a geographical location of the computing device; and
  
  a controller configured to;
  
  deny access to at least a portion of the data storage drive when the geographical location of the computing device identified by the location component is outside of a predetermined geographical area within which access to the data storage drive of the computing device is permittedpermit access to at least a portion of the data storage drive when the identified geographical location of the computing device is within the predetermined geographical area;
  
  determine that the geographical location of the computing device is not able to be identified;
  
  upon determining the geographical location of the computing device is not able to be identified, determine an amount of movement of the computing device; and
  
  denying access to at least a portion of the data storage drive when the determined amount of movement exceeds a threshold value.
- View Dependent Claims (16, 17)
- - 16. The computing device of claim 15, further comprising:
    - a movement detector configured to indicate when the computing device is moved;
      
      wherein the location component is configured to re-identify the geographical location of the computing device based at least in part on an indication from the movement detector.
  - 17. The computing device of claim 15, further comprising:
    - a tamper detector configured to indicate when the location component is altered in an unauthorized manner;
      
      wherein the controller is configured to deny access to the portion of the data storage drive based at least in part on an indication from the tamper detector.

18. A system for providing data security for a computing device having a data storage drive, comprising:
- a stored security policy for the computing device that identifies a predetermined geographical area within which access to the data storage drive of the computing device is permitted;
  
  a processor configured to;
  
  identify a current geographical location of the computing device;
  
  deny access to at least a portion of the data storage drive of the computing device when the current geographical location of the computing device is outside of the predetermined geographical area;
  
  permit access to at least a portion of the data storage drive when the identified geographical location of the computing device is within the predetermined geographical area;
  
  determine that the geographical location of the computing device is not able to be identified;
  
  upon determining the geographical location of the computing device is not able to be identified, determine an amount of movement of the computing device; and
  
  denying access to at least a portion of the data storage drive when the determined amount of movement exceeds a threshold value.
- View Dependent Claims (19, 20)
- - 19. The system of claim 18, further comprising:
    - a device identifier configured to identify the computing device;
      
      wherein the processor is configured to access the stored security policy for the computing device from a plurality of stored security policies based at least in part on an identity of the computing device from the device identifier.
  - 20. The system of claim 18, further comprising:
    - a location component configured to separately identify the geographical location of the computing device and determine the amount of movement of the computing device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Seagate Technology LLC (Seagate Technology Holdings Plc)
Original Assignee
Seagate Technology LLC (Seagate Technology Holdings Plc)
Inventors
Sand-Soll, Catherine Ellen
Primary Examiner(s)
Schwartz, Darren B

Application Number

US15/195,802
Publication Number

US 20160306993A1
Time in Patent Office

658 Days
Field of Search
US Class Current
CPC Class Codes

G06F 16/22   Indexing; Data structures t...

G06F 16/29   Geographical information da...

G06F 21/31   User authentication

G06F 21/6218   to a system of files or obj...

G06F 21/86   Secure or tamper-resistant ...

G06F 2221/2111   Location-sensitive, e.g. ge...

H04W 4/02   Services making use of loca...

H04W 4/021   Services related to particu...

H04W 4/029   Location-based management o...

Location based disk drive access

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Location based disk drive access

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links