发明授权
- 专利标题: Trusted storage
- 专利标题(中): 可信存储
-
申请号: US12025777申请日: 2008-02-05
-
公开(公告)号: US08307217B2公开(公告)日: 2012-11-06
- 发明人: Lane W. Lee , Mark J. Gurkowski , Randal Hines
- 申请人: Lane W. Lee , Mark J. Gurkowski , Randal Hines
- 主分类号: G06F12/14
- IPC分类号: G06F12/14 ; H04L9/08
摘要:
In one embodiment, a method for authenticating access to encrypted content on a storage medium, wherein the encrypted content is encrypted according to a full disk encryption (FDE) key, the storage medium including an encrypted version of the FDE key and an encrypted version of a protected storage area (PSA) key, and wherein the encrypted version of the FDE key is encrypted according to the PSA key, the method comprising: providing an authenticated communication channel between a host and a storage engine associated with the storage medium; at the storage engine, receiving a pass code from the host over the authenticated communication channel; hashing the pass code to form a derived key, wherein the encrypted version of the PSA key is encrypted according to the derived key; verifying an authenticity of the pass code; if the pass code is authentic, decrypting the encrypted version of the PSA key to recover the PSA key; decrypting the encrypted FDE key using the recovered PSA key to recover the FDE key; and decrypting the encrypted content using the FDE key.
公开/授权文献
- US20080294914A1 Trusted storage 公开/授权日:2008-11-27