公开(公告)号：US20230087260A1

公开(公告)日：2023-03-23

申请号：US17724857

申请日：2022-04-20

Applicant: Samsung Electronics Co., Ltd.

Inventor： Moon Chan PARK ,  Ji Soo KIM ,  Youn Sung CHU

IPC: G06F3/06

Abstract: A storage controller and a storage system comprising the same are provided. Provided is a device security manager configured to set a first device security zone to allow a first tenant to access first tenant data stored in a non-volatile memory, receive access information from a host device and writing the received access information in a mapping table, wherein the access information includes a first host memory address in which the first tenant data is stored in the host device, a first namespace identifier for identifying the first tenant data stored in the non-volatile memory, a first logic block address corresponding to the first namespace identifier, and an encryption key, encrypt the first tenant data by using the encryption key, and write the encrypted first tenant data in the first device security zone of the non-volatile memory.

公开(公告)号：US20230082136A1

公开(公告)日：2023-03-16

申请号：US17842201

申请日：2022-06-16

Applicant: Samsung Electronics Co., Ltd.

Inventor： Mun Gyu BAE ,  Ji Soo KIM ,  Hyun Soo KWON ,  Youn Sung CHU

IPC: H04L9/08 ,  H04L9/32 ,  G06F21/78

Abstract: A storage device having improved security reliability includes a non-volatile memory, and a storage controller configured to control an operation of the non-volatile memory, generate a key material, receive a key identification (ID) from a firmware, determine whether a salt value matching the key ID is stored in the non-volatile memory, generate a private key using the salt value stored in the non-volatile memory and the key material in response to determining that the salt value matching the key ID is stored in the non-volatile memory, and, in response to determining that the sale value matching the key ID is not stored in the non-volatile memory, receive a salt value from the firmware and generate the private key using the salt value from the firmware and the key material, and store the salt value used for generating the private key in the non-volatile memory.

公开(公告)号：US20210191883A1

公开(公告)日：2021-06-24

申请号：US16996304

申请日：2020-08-18

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Min Gon SHIN ,  Ji Soo KIM ,  Seung-Jae LEE ,  Ye Jin YOON ,  Hwa Soo LEE

IPC: G06F12/14 ,  G06F21/31 ,  G06F21/79 ,  G06F13/16 ,  G06F13/12 ,  G06F13/42

Abstract: A storage device including: a bridge board to receive a first command; an authenticator to receive user information; and a memory device to receive the first command from the bridge board, the memory device includes a memory controller which determines a status of the memory device, provides status information including the determined status of the memory device to the bridge board, determines the status of the memory device as an unlocked status or a locked status, the bridge board includes a transceiver which communicates with the host through an interface, a register which stores interface information, and a bridge board controller which generates a first response to the first command in a format corresponding to the interface using the interface information, and provides the first response to a host, the first response includes a status bit which inhibits or allows a write operation with respect to the memory device.

公开(公告)号：US20250125948A1

公开(公告)日：2025-04-17

申请号：US18999902

申请日：2024-12-23

Applicant: Samsung Electronics Co., Ltd.

Inventor： Mun Gyu BAE ,  Ji Soo KIM ,  Hyun Soo KWON ,  Youn Sung CHU

IPC: H04L9/08 ,  G06F21/78 ,  H04L9/32

Abstract: A storage device having improved security reliability includes a non-volatile memory, and a storage controller configured to control an operation of the non-volatile memory, generate a key material, receive a key identification (ID) from a firmware, determine whether a salt value matching the key ID is stored in the non-volatile memory, generate a private key using the salt value stored in the non-volatile memory and the key material in response to determining that the salt value matching the key ID is stored in the non-volatile memory, and, in response to determining that the sale value matching the key ID is not stored in the non-volatile memory, receive a salt value from the firmware and generate the private key using the salt value from the firmware and the key material, and store the salt value used for generating the private key in the non-volatile memory.

公开(公告)号：US20220283714A1

公开(公告)日：2022-09-08

申请号：US17514059

申请日：2021-10-29

Applicant: Samsung Electronics Co., Ltd.

Inventor： Myeong Jong LEE ,  Hyun Sook HONG ,  Ji Soo KIM ,  Seung-Jae LEE

IPC: G06F3/06

Abstract: A storage device includes a non-volatile memory configured to store an encryption key and a data key encrypted with the encryption key, writes data using the data key, and reads the data using the data key; and a storage controller, wherein the storage controller is configured to receive a first security setting command which allows access to the data key, using a first password, generates a first key on the basis of the first password in response to the first security setting command, encrypts the encryption key with the first key to generate a first encrypted encryption key, encrypts the first key with the encryption key to generate an encrypted first key, and stores the first encrypted encryption key and the encrypted first key in the non-volatile memory.

公开(公告)号：US20220067166A1

公开(公告)日：2022-03-03

申请号：US17237532

申请日：2021-04-22

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Jin Taek KWON ,  Ye Jin YOON ,  Seung-Jae LEE ,  Ji Soo KIM

IPC: G06F21/57 ,  G06F21/64 ,  G06F21/79

Abstract: A storage device is provided. The storage device includes a boot ROM stores a plurality of public keys and a boot ROM image, an OTP memory identifies a first public key among the plurality of public keys, a first memory including a first area the stores the plurality of public keys and a flash boot image different from the boot ROM image, and a second area that stores a first boot signature corresponding to the flash boot image, a second memory including a first firmware image including a first firmware signature, and a memory controller that receives a second firmware image including a second firmware signature and a second boot signature, receives a second public key among the plurality of public keys and the flash boot image based on the second firmware image being received, and write the second boot signature in the second area of the first memory.