公开(公告)号：US12124710B2

公开(公告)日：2024-10-22

申请号：US18217736

申请日：2023-07-03

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Hyunsook Hong ,  Jisoo Kim ,  Yongsuk Lee ,  Younsung Chu ,  Hyungsup Kim

IPC: G06F3/06 ,  G06F21/78 ,  G06F7/58

CPC classification number: G06F3/0622 ,  G06F3/0637 ,  G06F3/0659 ,  G06F3/0673 ,  G06F21/78 ,  G06F7/588

Abstract: A method of writing data to a protected region in response to a request from a host includes receiving a first write request including a first host message authentication code and a first random number from the host, verifying the first write request based on a write count, the first random number, and the first host message authentication code, updating the write count based on a result of verifying the first write request, generating a first device message authentication code based on the updated write count and the first random number, and providing the host with a first response including the first device message authentication code and a result of the verifying of the first write request.

公开(公告)号：US11423182B2

公开(公告)日：2022-08-23

申请号：US17213756

申请日：2021-03-26

Applicant: Samsung Electronics Co., Ltd.

Inventor： Brian Myungjune Jung ,  Daeok Kim ,  Moonwook Oh ,  Hyunsook Hong

IPC: G06F21/79 ,  G06F3/06 ,  G06F21/78

Abstract: A storage device providing a function of securely discarding data and an operating method of the storage device are provided. The storage device includes a safety pin device removably mounted on the storage device, the safety pin device configured to store first encrypted information and second encrypted information, the first encrypted information encrypted using a first key associated with a first user, and the second encrypted information encrypted using a second key associated with a second user, security circuitry configured to, receive the first encrypted information from the safety pin device, decrypt the first encrypted information, and generate a data encryption key based on results of the decrypting the first encrypted information, and a nonvolatile memory configured to store data encrypted with the data encryption key.

公开(公告)号：US20200169395A1

公开(公告)日：2020-05-28

申请号：US16674413

申请日：2019-11-05

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Hyunsook Hong ,  Jintaek Kwon ,  Myeongjong Lee ,  Seung-Jae Lee ,  Seokgi Hong ,  Byung-Gook Kim ,  Jisoo Kim

IPC: H04L9/08 ,  H04L9/32 ,  G06F12/14

Abstract: A storage device includes a nonvolatile memory device, and a controller that manages a data encryption key (DEK). The DEK is used to encrypt data to be written in a storage space of the nonvolatile memory device by a first user and to decrypt data read from the storage space. The controller grants a second user authority to access the storage space by encrypting the DEK based on a Diffie-Hellman (DH) algorithm, grants a second user authority to access the encrypted DEK, and decrypts the encrypted DEK based on the DH algorithm.

公开(公告)号：US11714561B2

公开(公告)日：2023-08-01

申请号：US17358367

申请日：2021-06-25

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Hyunsook Hong ,  Jisoo Kim ,  Yongsuk Lee ,  Younsung Chu ,  Hyungsup Kim

IPC: G06F3/06 ,  G06F21/78 ,  G06F7/58

CPC classification number: G06F3/0622 ,  G06F3/0637 ,  G06F3/0659 ,  G06F3/0673 ,  G06F21/78 ,  G06F7/588

Abstract: A method of writing data to a protected region in response to a request from a host includes receiving a first write request including a first host message authentication code and a first random number from the host, verifying the first write request based on a write count, the first random number, and the first host message authentication code, updating the write count based on a result of verifying the first write request, generating a first device message authentication code based on the updated write count and the first random number, and providing the host with a first response including the first device message authentication code and a result of the verifying of the first write request.

公开(公告)号：US11381388B2

公开(公告)日：2022-07-05

申请号：US16674413

申请日：2019-11-05

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Hyunsook Hong ,  Jintaek Kwon ,  Myeongjong Lee ,  Seung-Jae Lee ,  Seokgi Hong ,  Byung-Gook Kim ,  Jisoo Kim

IPC: H04L9/08 ,  G06F12/14 ,  H04L9/32

Abstract: A storage device includes a nonvolatile memory device, and a controller that manages a data encryption key (DEK). The DEK is used to encrypt data to be written in a storage space of the nonvolatile memory device by a first user and to decrypt data read from the storage space. The controller grants a second user authority to access the storage space by encrypting the DEK based on a Diffie-Hellman (DH) algorithm, grants a second user authority to access the encrypted DEK, and decrypts the encrypted DEK based on the DH algorithm.

公开(公告)号：US20210334416A1

公开(公告)日：2021-10-28

申请号：US17213756

申请日：2021-03-26

Applicant: Samsung Electronics Co., Ltd.

Inventor： Brian Myungjune Jung ,  Daeok Kim ,  Moonwook Oh ,  Hyunsook Hong

IPC: G06F21/79

Abstract: A storage device providing a function of securely discarding data and an operating method of the storage device are provided. The storage device includes a safety pin device removably mounted on the storage device, the safety pin device configured to store first encrypted information and second encrypted information, the first encrypted information encrypted using a first key associated with a first user, and the second encrypted information encrypted using a second key associated with a second user, security circuitry configured to, receive the first encrypted information from the safety pin device, decrypt the first encrypted information, and generate a data encryption key based on results of the decrypting the first encrypted information, and a nonvolatile memory configured to store data encrypted with the data encryption key.

公开(公告)号：US09509495B2

公开(公告)日：2016-11-29

申请号：US14455257

申请日：2014-08-08

Applicant: Samsung Electronics Co., Ltd. ,  SNU R&DB Foundation

Inventor： Kyunghee Lee ,  Junghee Cheon ,  Eunyoung Kwon ,  Bumhan Kim ,  Jinsu Kim ,  Hongtae Kim ,  Hansol Ryu ,  Hyunsook Hong

IPC: H04L29/06 ,  H04L9/06 ,  G09C1/00

CPC classification number: H04L9/0631 ,  G09C1/00 ,  H04L2209/12

Abstract: A data protection method and apparatus that can protect data through encryption using a Boolean function is provided. The data protection method includes applying an inverse affine transformation to data to be encrypted using a Boolean function; applying round operations of an Advanced Encryption Standard (AES) cryptographic algorithm to the inverse-affine transformed data; and producing ciphertext data by applying an affine transformation to the result of the round operations.

Abstract translation: 提供了可以使用布尔函数通过加密来保护数据的数据保护方法和装置。 数据保护方法包括使用布尔函数对待加密的数据应用逆仿射变换; 将高级加密标准（AES）加密算法的轮次操作应用于反仿射变换数据; 以及通过对循环操作的结果应用仿射变换来生成密文数据。