CN101120355B - 用于控制在存储器装置中存取的方法 - Google Patents

用于控制在存储器装置中存取的方法 Download PDF

Info

Publication number
CN101120355B
CN101120355B CN200580048232.3A CN200580048232A CN101120355B CN 101120355 B CN101120355 B CN 101120355B CN 200580048232 A CN200580048232 A CN 200580048232A CN 101120355 B CN101120355 B CN 101120355B
Authority
CN
China
Prior art keywords
tree
acr
key
access
permission
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN200580048232.3A
Other languages
English (en)
Chinese (zh)
Other versions
CN101120355A (zh
Inventor
法布里斯·约刚-库仑
迈克尔·霍尔茨曼
巴赫曼·卡瓦米
罗恩·巴尔齐莱
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
SanDisk Corp
Original Assignee
SanDisk Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US11/314,055 external-priority patent/US20060242067A1/en
Priority claimed from US11/313,538 external-priority patent/US8051052B2/en
Application filed by SanDisk Corp filed Critical SanDisk Corp
Publication of CN101120355A publication Critical patent/CN101120355A/zh
Application granted granted Critical
Publication of CN101120355B publication Critical patent/CN101120355B/zh
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F12/00Accessing, addressing or allocating within memory systems or architectures
    • G06F12/14Protection against unauthorised use of memory or access to memory
    • G06F12/1458Protection against unauthorised use of memory or access to memory by checking the subject access rights
    • G06F12/1491Protection against unauthorised use of memory or access to memory by checking the subject access rights in a hierarchical protection system, e.g. privilege levels, memory rings
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/101Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by binding digital rights to specific entities
    • G06F21/1011Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by binding digital rights to specific entities to devices
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2103Challenge-response
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2113Multi-level security, e.g. mandatory access control
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2117User registration
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2141Access rights, e.g. capability lists, access control lists, access tables, access matrices
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2145Inheriting rights or properties, e.g., propagation of permissions or restrictions within a hierarchy

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Technology Law (AREA)
  • Multimedia (AREA)
  • Databases & Information Systems (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Storage Device Security (AREA)
CN200580048232.3A 2004-12-21 2005-12-21 用于控制在存储器装置中存取的方法 Expired - Fee Related CN101120355B (zh)

Applications Claiming Priority (7)

Application Number Priority Date Filing Date Title
US63880404P 2004-12-21 2004-12-21
US60/638,804 2004-12-21
US11/314,055 2005-12-20
US11/314,055 US20060242067A1 (en) 2004-12-21 2005-12-20 System for creating control structure for versatile content control
US11/313,538 2005-12-20
US11/313,538 US8051052B2 (en) 2004-12-21 2005-12-20 Method for creating control structure for versatile content control
PCT/US2005/046795 WO2006069312A2 (en) 2004-12-21 2005-12-21 System for creating control structure for versatile content control

Related Child Applications (1)

Application Number Title Priority Date Filing Date
CN201210277333XA Division CN102981980A (zh) 2004-12-21 2005-12-21 用于在存储装置控制存取的方法

Publications (2)

Publication Number Publication Date
CN101120355A CN101120355A (zh) 2008-02-06
CN101120355B true CN101120355B (zh) 2012-09-26

Family

ID=36146948

Family Applications (2)

Application Number Title Priority Date Filing Date
CN200580048232.3A Expired - Fee Related CN101120355B (zh) 2004-12-21 2005-12-21 用于控制在存储器装置中存取的方法
CN201210277333XA Pending CN102981980A (zh) 2004-12-21 2005-12-21 用于在存储装置控制存取的方法

Family Applications After (1)

Application Number Title Priority Date Filing Date
CN201210277333XA Pending CN102981980A (zh) 2004-12-21 2005-12-21 用于在存储装置控制存取的方法

Country Status (6)

Country Link
EP (1) EP1836643A2 (enExample)
JP (1) JP4857284B2 (enExample)
KR (1) KR20070091349A (enExample)
CN (2) CN101120355B (enExample)
TW (1) TWI388985B (enExample)
WO (1) WO2006069312A2 (enExample)

Families Citing this family (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7743409B2 (en) 2005-07-08 2010-06-22 Sandisk Corporation Methods used in a mass storage device with automated credentials loading
KR20080043402A (ko) * 2005-09-08 2008-05-16 샌디스크 코포레이션 미디어 컨텐츠의 보안 저장 및 전달을 위한 이동식 메모리시스템
CN101490689B (zh) * 2006-07-07 2012-05-16 桑迪士克股份有限公司 用于由存储装置验证实体的方法及使用该方法的存储装置
WO2008008244A2 (en) * 2006-07-07 2008-01-17 Sandisk Corporation Content control system and method using versatile control structure
WO2008008245A2 (en) * 2006-07-07 2008-01-17 Sandisk Corporation System and method for controlling information supplied from memory device
US9104618B2 (en) 2008-12-18 2015-08-11 Sandisk Technologies Inc. Managing access to an address range in a storage device
EP2256660B1 (en) * 2009-05-28 2015-08-12 Sap Se Computer-implemented method, computer system, and computer program product for optimization of evaluation of a policy specification
US10165007B2 (en) 2011-09-15 2018-12-25 Microsoft Technology Licensing, Llc Securing data usage in computing devices
CN102609368B (zh) * 2012-01-11 2014-12-17 记忆科技(深圳)有限公司 固态硬盘数据加解密的方法及其固态硬盘
CN103870724B (zh) * 2012-12-12 2017-03-01 财团法人资讯工业策进会 主要管理装置、代理管理装置、电子装置及授权管理方法
GB2565411A (en) * 2017-06-12 2019-02-13 British Telecomm Improved hardware security module management
KR102227363B1 (ko) * 2019-05-30 2021-03-15 트럼피아 주식회사 다중 계층 구조의 데이터 접근 제어 시스템 및 방법
CN110321302B (zh) * 2019-06-28 2021-10-01 兆讯恒达科技股份有限公司 一种嵌入式系统数据存储区管理方法
US11050569B2 (en) * 2019-08-14 2021-06-29 Macronix International Co., Ltd. Security memory scheme
JP2021077208A (ja) 2019-11-12 2021-05-20 キオクシア株式会社 ストレージ装置
AT524620B1 (de) * 2020-12-07 2025-07-15 Insitu Software Gmbh Verfahren zum Migrieren einer IT-Anwendung

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1536529A (zh) * 2003-04-09 2004-10-13 ������������ʽ���� 数据通信设备以及用于管理该设备中的存储器的方法

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6026402A (en) * 1998-01-07 2000-02-15 Hewlett-Packard Company Process restriction within file system hierarchies
JP2002244552A (ja) * 2001-02-13 2002-08-30 Sony Corp 情報再生装置、情報再生方法、および情報記録媒体、並びにプログラム記憶媒体
JP2002278838A (ja) * 2001-03-15 2002-09-27 Sony Corp メモリアクセス制御システム、デバイス管理装置、パーティション管理装置、メモリ搭載デバイス、およびメモリアクセス制御方法、並びにプログラム記憶媒体
US6895503B2 (en) * 2001-05-31 2005-05-17 Contentguard Holdings, Inc. Method and apparatus for hierarchical assignment of rights to documents and documents having such rights
KR100538659B1 (ko) * 2001-08-13 2005-12-26 콸콤 인코포레이티드 컴퓨터 장치의 저장 영역에 대한 애플리케이션 레벨 액세스 특권을 부여하는 방법 및 장치
US20040139021A1 (en) * 2002-10-07 2004-07-15 Visa International Service Association Method and system for facilitating data access and management on a secure token

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1536529A (zh) * 2003-04-09 2004-10-13 ������������ʽ���� 数据通信设备以及用于管理该设备中的存储器的方法

Also Published As

Publication number Publication date
JP4857284B2 (ja) 2012-01-18
TWI388985B (zh) 2013-03-11
KR20070091349A (ko) 2007-09-10
WO2006069312A2 (en) 2006-06-29
CN102981980A (zh) 2013-03-20
WO2006069312A3 (en) 2006-11-09
TW200700992A (en) 2007-01-01
CN101120355A (zh) 2008-02-06
EP1836643A2 (en) 2007-09-26
JP2008524758A (ja) 2008-07-10

Similar Documents

Publication Publication Date Title
CN101120352B (zh) 用于保护存储在存储设备中的数据的方法和设备
CN101120353A (zh) 具有分区的通用内容控制
US8504849B2 (en) Method for versatile content control
US8051052B2 (en) Method for creating control structure for versatile content control
US8601283B2 (en) Method for versatile content control with partitioning
JP5180203B2 (ja) メモリ装置から供給される情報を制御するシステムおよび方法
US20070168292A1 (en) Memory system with versatile content control
US20060242150A1 (en) Method using control structure for versatile content control
CN102906755A (zh) 利用证书撤销列表的内容控制方法
CN101120355B (zh) 用于控制在存储器装置中存取的方法
US20060242066A1 (en) Versatile content control with partitioning
KR20090052321A (ko) 다기능 제어 구조를 이용하는 콘텐트 제어 시스템과 방법
KR20090026357A (ko) 증명서 체인을 이용한 콘텐트 제어 시스템과 방법
KR20090028806A (ko) 증명서 철회 리스트를 이용한 콘텐트 제어 시스템과 방법
US20060242067A1 (en) System for creating control structure for versatile content control
JP2008524758A5 (enExample)
CN101120356A (zh) 用于通用内容控制的控制结构和使用结构的方法

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
ASS Succession or assignment of patent right

Owner name: SANDISK TECHNOLOGY CO., LTD.

Free format text: FORMER OWNER: SANDISK CORP.

Effective date: 20130121

C41 Transfer of patent application or patent right or utility model
TR01 Transfer of patent right

Effective date of registration: 20130121

Address after: American Texas

Patentee after: Sandisk Corp.

Address before: American California

Patentee before: Sandisk Corp.

C17 Cessation of patent right
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20120926

Termination date: 20131221