专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2006069274A2 VERSATILE CONTENT CONTROL WITH PARTITIONING 审中-公开
标题翻译：通过分区进行多功能内容控制
公开(公告)号：WO2006069274A2
公开(公告)日：2006-06-29
申请号：PCT/US2005/046689
申请日：2005-12-21
申请人： SANDISK CORPORATION , JAGOND-COULOMB, Fabrice , HOLTZMAN, Michael , QAWAMI, Bahman , BARZILAI, Ron
发明人： JAGOND-COULOMB, Fabrice , HOLTZMAN, Michael , QAWAMI, Bahman , BARZILAI, Ron
IPC分类号： G06F21/62 , G06F21/78
CPC分类号： G06F21/6209 , G06F21/6218 , G06F21/78
摘要： In some mobile storage devices, content protection is afforded by dividing the memory into separate areas where access to protected areas requires prior authentication. While such feature does provide some protection, it does not protect against a user who obtained a password by illicit means. Thus, another aspect of the invention is based on the recognition that a mechanism or structure may be provided to divide a memory into partitions and so that at least some data in the partitions can be encrypted with a key, so that in addition to authentication that is required for accessing some of the partitions, access to one or more keys may be required to decrypt the encrypted data in such partitions. In some applications, it may be more convenient to the user to be able to log in the memory system using one application, and then be able to use different applications to access protected content without having to log in again. In such event, all of the content that the user wishes to access in this manner may be associated with a first account, so that all such content can be accessed via different applications (e.g. music player, email, cellular communication etc.) without having to log in multiple times. Then a different set of authentication information may then be used for logging in to access protected content that is in an account different from the first account, even where the different accounts are for the same user or entity.
摘要翻译：在某些移动存储设备中，内容保护是通过将内存分成单独的区域来提供的，其中访问保护区需要事先验证。尽管此功能确实提供了一些保护，但它不能防止以非法手段获取密码的用户。因此，本发明的另一方面基于这样的认识，即可以提供一种机制或结构来将存储器划分成分区，并且使得分区中的至少一些数据可以用密钥加密，使得除了认证是访问某些分区所必需的，则可能需要访问一个或多个密钥来解密这些分区中的加密数据。在某些应用程序中，用户可以更方便地使用一个应用程序登录存储器系统，然后可以使用不同的应用程序访问受保护的内容，而无需再次登录。在这种情况下，用户希望以这种方式访问的所有内容可以与第一账户相关联，使得所有这样的内容可以经由不同的应用（例如音乐播放器，电子邮件，蜂窝通信等）被访问，而无需多次登录。然后，可以使用不同的一组认证信息登录以访问与第一账户不同的账户中的受保护内容，即使在不同账户是针对同一用户或实体的情况下。

2. 发明申请

WO2006069312A2 SYSTEM FOR CREATING CONTROL STRUCTURE FOR VERSATILE CONTENT CONTROL 审中-公开
标题翻译：用于创建各种内容控制的控制结构的系统
公开(公告)号：WO2006069312A2
公开(公告)日：2006-06-29
申请号：PCT/US2005/046795
申请日：2005-12-21
申请人： SANDISK CORPORATION , JOGAND-COULOMB, Fabrice , HOLTZMAN, Michael , QAWAMI, Bahman , BARZILAI, Ron
发明人： JOGAND-COULOMB, Fabrice , HOLTZMAN, Michael , QAWAMI, Bahman , BARZILAI, Ron
IPC分类号： G06F3/06
CPC分类号： G06F12/1491 , G06F21/10 , G06F21/6218 , G06F2221/2103 , G06F2221/2113 , G06F2221/2117 , G06F2221/2141 , G06F2221/2145
摘要： The mobile storage device may be provided with a system agent that is able to create at least one hierarchical tree comprising nodes at different levels for controlling access to data stored in the memory by corresponding entities. Each node of the tree specifies permission or permissions of a corresponding entity or entities for accessing memory data. The permission or permissions at the node of each of the trees has a predetermined relationship to permission or permissions at nodes at a higher or lower or the same level in the same tree. Thus, the mobile storage devices may be issued without any trees already created so that the purchaser of the devices has a free hand in creating hierarchical trees adapted to the applications the purchaser has in mind. Alternatively, the mobile storage devices may also be issued with the trees already created so that a purchaser does not have to go through the trouble of creating the trees. In both situations, preferably certain functionalities of the trees can become fixed after the devices are made so that they cannot be further changed or altered. This provides greater control over access to the content in the device by the content owner. Thus, in one embodiment, the system agent can preferably be disabled so that no additional trees can be created.
摘要翻译：移动存储设备可以被提供有能够创建包括不同级别的节点的至少一个分级树的系统代理，用于控制对相应实体存储在存储器中的数据的访问。树的每个节点指定用于访问存储器数据的相应实体或实体的许可或许可。每个树的节点的权限或权限与同一树中较高或较低或相同级别的节点处的许可或许可具有预定关系。因此，移动存储设备可以在没有任何已经创建的树的情况下被发布，使得设备的购买者可以自由地创建适应购买者所考虑的应用的分层树。或者，移动存储设备也可以被发布已经创建的树，使得购买者不必经历创建树的麻烦。在这两种情况下，优选地，在制造装置之后，树的某些功能可以变得固定，使得它们不能被进一步改变或改变。这可以更好地控制内容所有者对设备内容的访问。因此，在一个实施例中，系统代理可以优选地被禁用，使得不能创建额外的树。

3. 发明申请

WO2009076405A1 INTEGRATION OF SECURE DATA TRANSFER APPLICATIONS FOR GENERIC IO DEVICES 审中-公开
标题翻译：用于一般IO设备的安全数据传输应用的集成
公开(公告)号：WO2009076405A1
公开(公告)日：2009-06-18
申请号：PCT/US2008/086168
申请日：2008-12-10
申请人： SANDISK CORPORATION , LIU, Xian Jun , CHANG, Robert, C. , YUAN, Po , WANG, Junzhi , BARZILAI, Ron , QAWAMI, Bahman , SABET-SHARGHI, Farshid
发明人： LIU, Xian Jun , CHANG, Robert, C. , YUAN, Po , WANG, Junzhi , BARZILAI, Ron , QAWAMI, Bahman , SABET-SHARGHI, Farshid
IPC分类号： G06F3/06
CPC分类号： G06F12/0886 , G06F12/0804 , G06F12/0871 , G06F12/0891 , G06F2212/1004 , G06F2212/1032 , G06F2212/2146 , G06F2212/462
摘要： Techniques are presented for sending an application instruction from a hosting digital appliance to a portable medium, where the instruction is structured as one or more units whose size is a first size, or number of bytes. After flushing the contents of a cache, the instruction is written to the cache, where the cache is structured as logical blocks having a size that is a second size that is larger (in terms of number of bytes) than the first size. In writing the instruction (having a command part and, possibly, a data part), the start of the instruction is aligned with one of the logical block boundaries in the cache and the instruction is padded out with dummy data so that it fills an integral number of the cache blocks. When a response from a portable device to an instruction is received at a hosting digital appliance, the cache is similarly flushed prior to receiving the response. The response is then stored to align with a logical block boundary of the cache.
摘要翻译：呈现用于将应用指令从主机数字设备发送到便携式介质的技术，其中指令被构造为大小为第一大小或字节数的一个或多个单元。在刷新高速缓存的内容之后，该指令被写入高速缓存，其中高速缓存被构造为具有比第一大小更大（以字节数计）的第二大小的逻辑块。在写入指令（具有命令部分和可能的数据部分）时，指令的开始与缓存中的逻辑块边界中的一个对齐，并且用虚拟数据填充指令，使得其填充积分高速缓存块的数量。当在主机数字设备处接收到从便携式设备到指令的响应时，高速缓存在接收到响应之前被类似地刷新。然后存储响应以与高速缓存的逻辑块边界对齐。

4. 发明申请

WO2011002435A1 METHOD AND MEMORY DEVICE FOR PERFORMING AN OPERATION ON DATA 审中-公开
标题翻译：用于执行数据操作的方法和存储器件
公开(公告)号：WO2011002435A1
公开(公告)日：2011-01-06
申请号：PCT/US2009/006395
申请日：2009-12-04
申请人： SANDISK CORPORATION , DOLGUNOV, Boris , HOLTZMAN, Michael , BARZILAI, Ron , SHEN, Eran
发明人： DOLGUNOV, Boris , HOLTZMAN, Michael , BARZILAI, Ron , SHEN, Eran
IPC分类号： G06F13/38
CPC分类号： G06F13/385
摘要： A method and memory device for implementing long operations and supporting multiple streams are provided. In one embodiment, a memory device receives data and a command from a host to perform an operation on the data, wherein a time required for the memory device to complete the operation exceeds a maximum response time for the memory device to respond to the command. The memory device begins performing the operation on the data and, before exceeding the maximum response time and before completing the operation, sends the context of the operation to the host. At a later time, the memory device receives from the host: (i) a command to resume performing the operation and (ii) the context. The memory device then resumes performing the operation on the data based on the context received from the host.
摘要翻译：提供了一种用于实现长操作并支持多个流的方法和存储器件。在一个实施例中，存储器设备从主机接收数据和命令以执行对数据的操作，其中存储器设备完成操作所需的时间超过存储器设备响应命令的最大响应时间。存储设备开始对数据执行操作，并且在超过最大响应时间之前并且在完成操作之前，将操作的上下文发送到主机。在稍后的时间，存储器装置从主机接收：（i）恢复执行操作的命令和（ii）上下文。然后，存储器设备基于从主机接收的上下文恢复对数据的操作。

5. 发明申请

WO2008154309A1 MEMORY DEVICE USING THE TIME FROM A TRUSTED HOST DEVICE AND METHOD FOR USE THEREWITH 审中-公开
标题翻译：使用来自受信任主机设备的时间的存储器件及其使用方法
公开(公告)号：WO2008154309A1
公开(公告)日：2008-12-18
申请号：PCT/US2008/065970
申请日：2008-06-05
申请人： SANDISK CORPORATION , CONLEY, Kevin, M. , HOLTZMAN, Michael , SELA, Rotem , BARZILAI, Ron , JOGAND-COULOMB, Fabrice, E.
发明人： CONLEY, Kevin, M. , HOLTZMAN, Michael , SELA, Rotem , BARZILAI, Ron , JOGAND-COULOMB, Fabrice, E.
IPC分类号： G06F21/00
CPC分类号： G06F21/10 , G06F21/725 , G06F2221/0771
摘要： A memory device for using time from a trusted host device and a method for use therewith are disclosed. In one embodiment, an application on a memory device receives a request to perform a time-based operation from an entity authenticated by the memory device, wherein the entity is running on a host device. The application selects time from the host device instead of time from a time module on the memory device to perform the time-based operation and uses the time from the host device to perform the time-based operation. Other embodiments are disclosed, and each of the embodiments can be used alone or together in combination.
摘要翻译：公开了一种用于从可信主机设备使用时间的存储设备及其使用方法。在一个实施例中，存储设备上的应用从由存储器设备认证的实体接收执行基于时间的操作的请求，其中所述实体在主机设备上运行。应用程序从主机设备中选择时间，而不是从存储设备上的时间模块开始执行时间操作，并使用主机设备执行时间操作的时间。公开了其它实施例，并且每个实施例可以单独使用或组合使用。

6. 发明申请

WO2008008243A3 CONTROL SYSTEM AND METHOD USING IDENTITY OBJECTS 审中-公开
公开(公告)号：WO2008008243A3
公开(公告)日：2008-01-17
申请号：PCT/US2007/015430
申请日：2007-06-28
申请人： SANDISK CORPORATION , HOLTZMAN, Michael , BARZILAI, Ron , JOGAND-COULOMB
发明人： HOLTZMAN, Michael , BARZILAI, Ron , JOGAND-COULOMB
IPC分类号： G06F21/00
摘要： An object known as an identity object comprises a public key and a private key pair and at least one certificate issued by a certificate authority that certifies that the public key of the pair is genuine. This object may be used as proof of identification by using the private key to sign data provided to it or signals derived from the data. An identity object may be stored in a non-volatile memory as proof of identity. The memory is controlled by a controller. Preferably, a housing encloses the memory and the controller. The memory system is removably connected to a host device. After the host device has been successfully authenticated, the private key of the object is used to encrypt data from the host device or signals derived from said data, and the at least one certificate and the encrypted data or signals are sent to the host device. After an entity has been authenticated by a control data structure of the memory system, the public key of the identity object and the at least one certificate to certify the public key are provided to the entity. If encrypted data encrypted by means of the public key of the identity object is received from the entity, the memory system will then be able to decrypt the encrypted data using the private key in the identity object.

7. 发明申请

WO2010141174A1 METHOD FOR PERFORMING DOUBLE DOMAIN ENCRYPTION A MEMORY DEVICE 审中-公开
标题翻译：用于执行双域加密存储器件的方法
公开(公告)号：WO2010141174A1
公开(公告)日：2010-12-09
申请号：PCT/US2010/033666
申请日：2010-05-05
申请人： SANDISK CORPORATION , BARZILAI, Ron , HOLTZMAN, Michael
发明人： BARZILAI, Ron , HOLTZMAN, Michael
IPC分类号： H04L29/06
CPC分类号： H04L63/0464 , G06F21/10 , H04L63/0485
摘要： A method for performing double domain encryption is provided. In one embodiment, a memory device receives content encrypted with a transport encryption key. The memory device decrypts the content with the transport encryption key and then re-encrypts the content with a key unique to the memory device. The memory device then stores the re-encrypted content in the memory device.
摘要翻译：提供了一种执行双域加密的方法。在一个实施例中，存储器设备接收用传输加密密钥加密的内容。存储装置利用传输加密密钥对内容进行解密，然后使用存储装置唯一的密钥重新加密内容。存储装置然后将重新加密的内容存储在存储装置中。

8. 发明申请

WO2010080089A1 MANAGING ACCESS TO AN ADDRESS RANGE IN A STORAGE DEVICE 审中-公开
标题翻译：管理访问存储设备中的地址范围
公开(公告)号：WO2010080089A1
公开(公告)日：2010-07-15
申请号：PCT/US2009/006010
申请日：2009-11-05
申请人： SANDISK CORPORATION , SELA, Rotem , HOLTZMAN, Michael , BARZILAI, Ron , BRYANT-RICH, Donald, Ray
发明人： SELA, Rotem , HOLTZMAN, Michael , BARZILAI, Ron , BRYANT-RICH, Donald, Ray
IPC分类号： G06F12/14 , G06F21/00
CPC分类号： G06F12/1441 , G06F12/0246 , G06F21/31 , G06F21/6218 , G06F2212/1016 , G06F2212/2022 , G06F2221/2107 , G06F2221/2113 , G06F2221/2129 , G06F2221/2141 , G06F2221/2149
摘要： Enhanced configuration of security and access control for data in a storage device is disclosed. A request is received to access an addressable memory location in a storage media within the storage device. A set of addressable memory locations with contiguous addresses identified by an address range is associated with first and second characteristics. The first characteristic is applied if the addressable memory location is within the set of addressable memory locations, and an entity is currently authenticated to and authorized to access the set of addressable memory locations. The second characteristic is applied if the addressable memory location is within the set of addressable memory locations, and no entity is currently authenticated to and authorized to access the set of addressable memory locations. The set of addressable memory locations can also be a logical partition, where the first and second characteristics are stored in a logical partition table.
摘要翻译：公开了对存储设备中的数据的安全性和访问控制的增强配置。接收到请求以访问存储设备内的存储介质中的可寻址存储器位置。具有由地址范围标识的连续地址的一组可寻址存储器位置与第一和第二特性相关联。如果可寻址存储器位置在可寻址存储器位置的集合内，则应用第一特性，并且实体当前被认证并被授权访问该组可寻址存储器位置。如果可寻址存储器位置在可寻址存储器位置的集合内，并且没有实体当前没有身份验证并被授权访问该组可寻址存储器位置，则应用第二特性。该可寻址存储器位置集合也可以是逻辑分区，其中第一和第二特征被存储在逻辑分区表中。

9. 发明申请

WO2008154308A1 MEMORY DEVICE WITH CIRCUITRY FOR IMPROVING ACCURACY OF A TIME ESTIMATE USED IN DIGITAL RIGHTS MANAGEMENT (DRM) LICENSE VALIDATION AND METHOD FOR USE THEREWITH 审中-公开
标题翻译：具有电路的存储器件，用于提高数字权限管理（DRM）使用的时间估计精度及其使用方法
公开(公告)号：WO2008154308A1
公开(公告)日：2008-12-18
申请号：PCT/US2008/065968
申请日：2008-06-05
申请人： SANDISK CORPORATION , HOLTZMAN, Michael , SELA, Rotem , BARZILAI, Ron , JOGAND-COULOMB, Fabrice, E.
发明人： HOLTZMAN, Michael , SELA, Rotem , BARZILAI, Ron , JOGAND-COULOMB, Fabrice, E.
IPC分类号： G06F21/00
CPC分类号： G06F21/10 , G06F21/725
摘要： A memory device with circuitry for improving accuracy of a time estimate used in digital rights management (DRM) license validation and a method for use therewith are disclosed. In one embodiment, a memory device receives a request to validate a DRM license stored on the memory device, wherein the DRM license is associated with a time stamp update policy (TUP) that specifies when a new time stamp is needed. Before attempting to validate the DRM license, the memory device determines if a new time stamp is needed based on the TUP associated with the DRM license. If a new time stamp is needed, the memory device receives the new time stamp and then attempts to validate the DRM license using a time estimate based on the new time stamp. Other embodiments are disclosed, and each of the embodiments can be used alone or together in combination.
摘要翻译：公开了一种具有用于提高数字版权管理（DRM）许可证验证中使用的时间估计的精度的电路的存储器件及其使用方法。在一个实施例中，存储器设备接收用于验证存储在存储设备上的DRM许可的请求，其中DRM许可证与指定何时需要新时间戳的时间戳更新策略（TUP）相关联。在尝试验证DRM许可证之前，存储器设备基于与DRM许可证相关联的TUP来确定是否需要新的时间戳。如果需要新的时间戳，则存储设备接收新的时间戳，然后尝试使用基于新时间戳的时间估计来验证DRM许可。公开了其它实施例，并且每个实施例可以单独使用或组合使用。

10. 发明申请

WO2008154307A2 MEMORY DEVICE WITH CIRCUITRY FOR IMPROVING ACCURACY OF A TIME ESTIMATE AND METHOD FOR USE THEREWITH 审中-公开
标题翻译：具有提高时间估计精度的电路的存储器件及其使用方法
公开(公告)号：WO2008154307A2
公开(公告)日：2008-12-18
申请号：PCT/US2008/065965
申请日：2008-06-05
申请人： SANDISK CORPORATION , HOLTZMAN, Michael , SELA, Rotem , BARZILAI, Ron , JOGAND-COULOMB, Fabrice, E.
发明人： HOLTZMAN, Michael , SELA, Rotem , BARZILAI, Ron , JOGAND-COULOMB, Fabrice, E.
IPC分类号： G06F1/14
CPC分类号： G06F1/14 , G06F21/10 , G06F21/725
摘要： A memory device with circuitry for improving accuracy of a time estimate and a method for use therewith are disclosed. In one embodiment, a memory device receives a time stamp and measures active time with respect to the received time stamp. The memory device determines accuracy of previously-measured active time and generates a time estimate using the measured active time, the accuracy of previously-measured active time, and the received time stamp. In another embodiment, measured active time is adjusted, with or without generating a time estimate. Other embodiments are disclosed, and each of the embodiments can be used alone or together in combination.
摘要翻译：公开了一种具有提高时间估计精度的电路的存储器件及其使用方法。在一个实施例中，存储器设备接收时间戳并且测量相对于所接收的时间戳的活动时间。存储器件确定先前测量的有效时间的精度，并使用测量的有效时间，先前测量的有效时间的精度和接收的时间戳来产生时间估计。在另一个实施例中，测量的活动时间被调整，有或没有产生时间估计。公开了其它实施例，并且每个实施例可以单独使用或组合使用。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式