专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2006069194A2 MEMORY SYSTEM WITH VERSATILE CONTENT CONTROL 审中-公开
标题翻译：带有多种内容控制的内存系统
公开(公告)号：WO2006069194A2
公开(公告)日：2006-06-29
申请号：PCT/US2005/046478
申请日：2005-12-21
申请人： SANDISK CORPORATION , DISCRETIX TECHNOLOGIES LTD. , JOGAND-COULUMB, Fabrice , HOLTZMAN, Michael , QAWANI, Bahman , BARZILAI, Ron , HAGAI, Bar-el
发明人： JOGAND-COULUMB, Fabrice , HOLTZMAN, Michael , QAWANI, Bahman , BARZILAI, Ron , HAGAI, Bar-el
IPC分类号： G06F21/31 , G06F21/62 , G06F21/79
CPC分类号： G06F21/79 , G06F21/31 , G06F21/6218 , G06F2221/2103
摘要： The owner of proprietor interest is in a better position to control access to the encrypted content in the medium if the encryption-decryption key is stored in the medium itself and substantially inaccessible to external devices. Only those host devices with the proper credentials are able to access the key. An access policy may be stored which grants different permissions (e.g. to different authorized entities) for accessing data stored in the medium. A system incorporating a combination of the two above features is particularly advantageous. On the one hand, the content owner or proprietor has the ability to control access to the content by using keys that are substantially inaccessible to external devices and at the same time has the ability to grant different permissions for accessing content in the medium. Thus, even where external devices gain access, their access may still be subject to the different permissions set by the content owner or proprietor recorded in the storage medium. When implemented in a flash memory, the above features result in a particularly useful medium for content protection. Many storage devices are not aware of file systems while many computer host devices read and write data in the form of files. The host device provides a key reference or ID, while the memory system generates a key value in response which is associated with the key ID, which is used as the handle through which the memory retains complete and exclusive control over the generation and use of the key value for cryptographic processes, while the host retains control of files.
摘要翻译：如果加密 - 解密密钥存储在介质本身中并且基本上不能被外部设备访问，则所有者感兴趣的所有者能够更好地控制对介质中加密内容的访问。只有具有正确凭据的主机设备才能访问密钥。访问策略可以被存储，其授予不同的许可（例如，针对不同的授权实体）以访问存储在介质中的数据。包含上述两个特征的组合的系统是特别有利的。一方面，内容拥有者或所有者能够通过使用外部设备基本上不可访问的密钥来控制对内容的访问，并且同时能够授予访问介质中内容的不同权限。因此，即使外部设备获得访问权限，他们的访问仍可能受到记录在存储介质中的内容所有者或所有者设置的不同权限的限制。当在闪存中实施时，上述特征导致用于内容保护的特别有用的介质。许多存储设备不知道文件系统，而许多计算机主机设备以文件形式读取和写入数据。主机设备提供密钥引用或ID，而存储器系统产生与密钥ID相关联的响应中的密钥值，该密钥值用作通过其存储器保持完整和排他地控制生成和使用密钥处理的关键价值，而主机保留对文件的控制。

2. 发明申请

WO2006069311A2 CONTROL STRUCTURE FOR VERSATILE CONTENT CONTROL AND METHOD USING STRUCTURE 审中-公开
标题翻译：用于各种内容控制的控制结构和使用结构的方法
公开(公告)号：WO2006069311A2
公开(公告)日：2006-06-29
申请号：PCT/US2005/046793
申请日：2005-12-21
申请人： SANDISK CORPORATION , JOGAND-COULUMB, Fabrice , HOLTZMAN, Michael , QAWANI, Bahman , BARZILAI, Ron
发明人： JOGAND-COULUMB, Fabrice , HOLTZMAN, Michael , QAWANI, Bahman , BARZILAI, Ron
IPC分类号： G06F21/24
CPC分类号： G06F21/6218 , G06F21/10 , G06F21/805 , G06F2221/2141 , G06F2221/2145
摘要： A tree structure stored in the storage medium provides control over what an entity can do even after gaining access. Each of the nodes of the tree specifies permissions by an entity who has gained entry through such node of the tree. Some trees have different levels, where the permission or permissions at a node of the tree has a predetermined relationship to permission or permissions at another node at a higher or lower or the same level in the same tree. By requiring entities to comply with the permissions so specified at each of the nodes, the tree feature of this application allows a content owner to control which entities can take action, and which actions each of the entities can take, irrespective of whether the tree has different levels. To enhance the commercial value that can be provided by the mobile storage medium, it is desirable for mobile storage devices to be capable of supporting more than one application simultaneously. When two or more applications are accessing the mobile storage device at the same time, it can be important to be able to separate the operations of the two or more applications so that they do not interfere with one another in a phenomena referred to herein as crosstalk. Two or more preferably hierarchical trees control access to the memory. Each tree comprises nodes at different levels for controlling access to data by a corresponding set of entities where a node of each tree specifies permission or permissions of the corresponding entity or entities for accessing memory data. The permission or permissions at a node of each of the trees has a predetermined relationship to permission or permissions at another node at a higher or lower level in the same tree. Preferably, there is no crosstalk between at least two of the trees.
摘要翻译：存储在存储介质中的树结构提供对实体甚至在获得访问之后可以执行什么的控制。树中的每个节点都指定通过树的这种节点获取入口的实体的权限。一些树具有不同的级别，其中树的节点上的许可或许可与在同一树中较高或较低或相同级别的另一节点处的权限或权限具有预定关系。通过要求实体遵守在每个节点上如此指定的权限，该应用的树特征允许内容所有者控制哪些实体可以采取行动，以及每个实体可以采取哪些动作，而不管树是否具有不同层次。为了增强可由移动存储介质提供的商业价值，期望移动存储设备能够同时支持多个应用。当两个或多个应用程序同时访问移动存储设备时，能够分离两个或更多应用程序的操作是非常重要的，使得它们在这里被称为串扰的现象中不会彼此干扰。两个或更多个优选的分级树控制对存储器的访问。每个树包括不同级别的节点，用于控制对应的实体集合的访问，其中每个树的节点指定用于访问存储器数据的相应实体或实体的许可或许可。每个树的节点上的权限或权限与同一棵树中较高或较低级别的另一个节点的权限或权限具有预定关系。优选地，在至少两棵树之间不存在串扰。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式