17898045. STORAGE CONTROLLER AND METHOD OF OPERATING ELECTRONIC SYSTEM simplified abstract (SAMSUNG ELECTRONICS CO., LTD.)
STORAGE CONTROLLER AND METHOD OF OPERATING ELECTRONIC SYSTEM
Organization Name
Inventor(s)
Kyungwoo Noh of Yongin-si (KR)
Younghyun Ji of Hwaseong-si (KR)
STORAGE CONTROLLER AND METHOD OF OPERATING ELECTRONIC SYSTEM - A simplified explanation of the abstract
This abstract first appeared for US patent application 17898045 titled 'STORAGE CONTROLLER AND METHOD OF OPERATING ELECTRONIC SYSTEM
Simplified Explanation
The abstract describes a storage device that includes a memory device and a controller. The controller obtains and stores a certificate with a public key from a host device. It provides a nonce (random number) to the host device upon request. It receives a token request signature from the host device, which includes the nonce, a user identifier, an allowed command list, and a lifetime. The controller verifies the token request signature using the public key and generates a token and a token secret key. It then provides these to the host device.
- The storage device includes a memory device and a controller.
- The controller obtains and stores a certificate with a public key from a host device.
- It provides a nonce to the host device upon request.
- It receives a token request signature from the host device, which includes a nonce, user identifier, allowed command list, and lifetime.
- The controller verifies the token request signature using the public key.
- It generates a token and a token secret key.
- The controller provides the token and token secret key to the host device.
Potential Applications
- Secure storage devices for sensitive data.
- Access control systems for data storage.
- Authentication and authorization mechanisms for storage devices.
Problems Solved
- Unauthorized access to data stored in the storage device.
- Ensuring that only legitimate administrators can generate tokens for user access.
- Protecting sensitive data from unauthorized commands.
Benefits
- Enhanced security for data storage.
- Improved access control and authorization mechanisms.
- Protection against unauthorized commands and actions on the storage device.
Original Abstract Submitted
A storage device includes a memory device storing data, and a controller controlling the memory device. The controller obtains and stores a certificate including a public key of an administrator from a host device, provides a nonce to the host device in response to a request from the host device, receives a token request signature including the nonce, a user identifier (ID), an allowed command list and a lifetime from the host device, and when it is verified that the token request signature is generated by a legitimate administrator by decrypting the token request signature with the public key, generates a token for allowing a user corresponding to the user ID to execute a command included in the allowed command list during the lifetime, and a token secret key corresponding to the token, and provides the token and the token secret key to the host device.