JP2019511791A - Data security system with encryption - Google Patents

Abstract

A data security system and method of operation thereof comprising: a data security transceiver or receiver; an authentication subsystem operatively connected to said data security transceiver or receiver; a storage subsystem connected to said authentication subsystem Equipped with

Description

  The present invention relates generally to electronic devices, and more particularly to memory devices.

  Security is an important issue in almost every aspect of computer use. A storage medium such as a hard disk drive connected to a computer contains valuable information at risk of data theft. Large amounts of money and effort are being made to protect personal information, corporate information, and government security information.

  Portable memory storage devices have become smaller, more likely to be lost, become more ubiquitous, become less expensive, and have increasingly increased memory capacity, making security problems more noticeable. Universal serial bus flash drive and micro drive, mobile phone, video camera, digital camera, iPOD, MP3 / 4 player, smart phone, palm computer, laptop computer, game machine, authenticator, portable token such as memory (including memory) It is possible to secretly download large amounts of information to a memory storage device, typically a mass storage device (MSD).

  Specifically, there are various MSDs for backup, transfer, intermediate storage, and main storage that can easily download and take away information from a computer. The main purpose of any MSD is to store and retrieve "portable content", that is, data and information tied to a particular owner rather than a particular computer.

  The most common means of providing storage security is to authenticate the user with the password entered into the computer. The password is verified against the MSD stored value and if it matches, the drive will be opened. Alternatively, the password itself is used as an encryption key for encrypting and decrypting data stored in the MSD.

  For drives that support on-the-fly encryption, the encryption key may be stored on the storage medium in an encrypted form. Since the encryption key is stored on the storage medium, it bypasses the standard interface and becomes immediately available to those who want to read the storage medium directly. Therefore, the password is used as a key for encrypting the encryption key.

  In the case of self-certifying drives, those certification subsystems are responsible for maintaining security and do not depend on the host computer to which they are connected. Thus, no password can be sent from the host to unlock the MSD (which is not necessary). In fact, it is no longer necessary to store the encryption key in the storage medium, and the authentication subsystem is a means of managing the encryption key.

  Therefore, security improvements are still needed. Given the growing consumer expectations and diminished opportunities for significant product differentiation in the market, it is important to find solutions to these problems given the growing commercial competitive pressure. In addition, the need to reduce costs, improve efficiency and performance, and respond to competitive pressures has further heightened the urgency of finding solutions to these problems.

  Solutions to these problems have been sought for a long time, but the previous development has neither taught nor suggested any solutions, so solutions to these problems have long not been found by those skilled in the art.

  The present invention provides a method of operating a data security system, the method comprising: providing a mobile device with a data security system application for connection with the data security system; and activating the data security system application And a step of maintaining the connection between the data security system and the mobile device.

  The invention relates to a data security system comprising a data security transceiver or receiver, an authentication subsystem operatively connected to said data security transceiver or receiver, and a storage subsystem connected to said authentication subsystem. I will provide a.

  Certain embodiments of the present invention have other aspects in addition to or instead of the aspects described above. These aspects will become apparent to those skilled in the art by reading the following detailed description with reference to the accompanying drawings.

FIG. 1 is a schematic view of a data security system according to an embodiment of the present invention. FIG. 7 is a diagram showing an authentication key distribution method used using a data security system. FIG. 6 illustrates another system for a user to interact with a data security system. FIG. 5 illustrates how a user interacts with a data security system using a host computer system. FIG. 7 illustrates a data security method with user verification for a data security system. FIG. 1 illustrates an exemplary data security communication system. FIG. 6 is a manager sequence diagram showing the sequence of operation of the mobile device and the data security system. The unlocking sequence figure when a mobile device is an authentication factor. FIG. 6 is an unlock sequence diagram illustrating unlocking with a PIN entry from a mobile device. An unlock sequence diagram showing unlocking with PIN entry and user ID / location / time verification via server / console. A reset sequence diagram showing a reset of a data security system using a server / console. An unlock sequence diagram showing unlocking of a data security system using a server / console. User password change sequence diagram using server / console.

  The following embodiments are described in sufficient detail to enable those skilled in the art to make and use the invention. It is to be understood that other embodiments based on the present disclosure are apparent and that system, process or mechanical changes may be made without departing from the scope of the present invention.

  In the following, numerous specific details are set forth in order to provide a thorough understanding of the present invention. However, it will be apparent that the invention may be practiced without these specific details. Several well-known circuits, system configurations, and process steps have not been disclosed in detail to avoid obscuring the present invention.

  Similarly, the drawings showing embodiments of the system are semi-schematic and not to scale and in particular are shown for the purpose of clarity in the drawings and are shown exaggerated in the drawings. Where multiple embodiments having several features in common are disclosed and described, like or similar features are generally referred to as similar or identical for clarity of illustration, explanation and understanding thereof. Write with a number. Similarly, although the views of the drawings are shown in generally similar orientation for ease of explanation, the manner of this illustration is largely arbitrary. In general, the invention can be practiced in any orientation.

  The term "system" as used herein, depending on the context in which the term is used, refers to the method and apparatus of the present invention and is defined as the method and apparatus of the present invention. The term "method" as used herein refers to an operating process of a device and is defined as the operating process.

  For convenience, but not limitation, the term "data" is defined as information that can be generated or stored by a computer. The term "data security system" is defined to mean any portable memory device incorporating a storage medium. The term "storage medium" as used herein refers to and is defined as a solid state, NAND flash, and / or magnetic data recording system. The term "locked" refers to a data security system in which the storage medium can not be accessed, and the term "unlocked" refers to a data security system in which the storage medium is accessible.

  There are generally two ways to make a storage device tamper resistant, the first being the method of applying an epoxy to the component, the epoxy resin applied to the printed circuit board destroying the storage medium It can be difficult to disassemble the storage device without. The second is a method of encrypting memory data, which is encrypted when it is written to a storage medium, and an encryption key is needed to decipher the data.

  Referring to FIG. 1, a schematic diagram of a data security system 100 according to one embodiment of the present invention is shown. The data security system 100 comprises an external communication channel 102, an authentication subsystem 104 and a storage subsystem 106.

  Storage subsystem 106 is an electronic circuit that includes interface controller 108, encryption engine 110, and storage medium 112. The storage medium 112 may be an internal or external hard disk drive, a USB flash drive, a solid state drive, a hybrid drive, a memory card, a tape cartridge, and an optical disc (e.g. Blu-ray disc, digital versatile disc or DVD, and compact disc or CD) ) And any optical media. Storage media 112 may include data protection devices, archive storage systems, and cloud data storage systems. The cloud storage system uses a plug-in application or extension software installed in the browser application to another system coupled to the host computer or to the host computer via a wired or RF or optical wireless network Or you can access the World Wide Web.

  The interface controller 108 includes electronic components such as a microcontroller with a software or hardware encryption engine 110, although the encryption engine 110 may be in a separate controller within the storage subsystem 106.

  The authentication subsystem 104 is an electronic circuit that includes an authentication controller 114, such as a microcontroller, which may itself have non-volatile memory, such as electrically erasable programmable read only memory (EEPROM).

  External communication channel 102 provides a means of data exchange with host computer system 120. Universal Serial Bus (USB) is one of the most common means of connecting data security system 100 to host computer system 120. Other examples of the external communication channel 102 include Firewire, wireless USB, Serial ATA (SATA), High Detail Multimedia Interface (HDMI), RS-232 (Recommended Standard 232), and Radio Frequency Radio Network Be

The interface controller 108 can convert USB packet data into data that can be written to the storage medium 112 in the USB flash drive.
The encryption engine 110 is implemented as part of the interface controller 108 and receives clear text and / or data (information) from the host computer system 120 and puts it in encrypted form to be written to the MSD or storage medium 112 Convert. The encryption engine 110 converts the encrypted information from the storage medium 112 and decrypts it into clear information for the host computer system 120. The encryption engine 110 includes an encryption controller having an encryption function for encrypting / decrypting data on the fly while managing communication protocols, memories, and other operating conditions, a communication key management, and an encryption controller. There may be two controller subsystems with a communication / security controller to handle the communication of

  The encryption engine 110 requires an encryption key 116 to encrypt / decrypt information. The encryption key 116 is used in an algorithm (eg, 256-bit Advanced Encryption Standard (AES) encryption) that encrypts / decrypts data with an encryption algorithm to make the data unreadable or readable. . The encryption key 116 can be stored either internally or externally to the authentication controller 114.

Once the user 122 having the identification number or key is verified against the authentication key 118, the encryption key 116 is sent by the authentication subsystem 104 to the encryption engine 110.
It has been found that the portable memory storage device of the various embodiments of the present invention can, by using the authentication key 118 and the encryption key 116, provide a very high level of security that was not previously available to such devices. .

  When the data security system 100 is locked, the authentication key 118 remains inside the authentication subsystem 104 and can not be read from the outside. One way to hide the authentication key 118 is to store the authentication key 118 in the authentication controller 114 within the authentication subsystem 104. By setting the safety fuse of the authentication control unit 114, it is not possible to access the authentication key 118 unless the user 122 is confirmed and the authentication control unit 114 permits extraction. Many microcontrollers are equipped with safety fuses, which can not access internal memory when the safety fuse is blown. This is a well known and widely used security feature. Such a microcontroller can be used for the authentication controller 114. Authentication controller 114 may be a microcontroller or microprocessor.

The authentication key 118 can be used in several functions,
1 ... can be used as an encryption key 116 to directly encrypt / decrypt information,
2 can be used as a key to recover the encryption key 116 stored in the data security system 100 accessible by the interface controller 108,
3... Can be used for direct comparison by interface controller 108 to activate external communication channel 102.

  Referring to FIG. 2, an authentication key distribution method used with data security system 100 is shown. In this figure, the authentication key 118 and the encryption key 116 are identical. The encryption engine 110 uses the authentication key 118 as the encryption key 116.

  The user 122 must interact with the authentication subsystem 104 by providing user identification information 202 (number or key) to the authentication subsystem 104. Authentication subsystem 104 authenticates user 122 against authentication key 118. Next, the authentication subsystem 104 sends the authentication key 118 to the interface controller 108 as the encryption key 116.

  The encryption engine 110 within the interface controller 108 uses its authentication key 118 to convert clear information to encrypted information and to convert encrypted information to clear information along the channel 206. An attempt to read encrypted information from storage medium 112 without encryption key 116 will only result in information not usable by any computer.

  Referring to FIG. 3, another system for user 122 to interact with data security system 300 is illustrated. This interaction may be performed by communication combination 301, which may be physical contact, wired connection, or wireless connection from a mobile phone, smart phone, smart watch, wearable device, or other wireless device.

  In one authentication system, mobile transceiver 302 is used to transmit user identification information 304 to data security transceiver 306 in authentication subsystem 310. Although multiple transceivers are used for the flexibility of bi-directional communication for illustration purposes, a combination of transceivers for unidirectional communication can also be used. Authentication subsystem 310 includes an authentication controller 114 connected to interface controller 108 in storage subsystem 106. The user identification information 304 is provided by the mobile transceiver 302 from outside the storage subsystem 106 of the data security system 300 to the data security transceiver 306 in the authentication subsystem 310. Wireless communications include WiFi (Bluetooth), Bluetooth (BT), Bluetooth Smart, Near Field Communication (NFC), Global Positioning System (GPS), Optical, Cellular Communication (eg LTE-A), Code Division Multiple Access (CDMA) , Wideband Code Division Multiple Access (WCDMA), Universal Mobile Telecommunications System (UMTS), Wireless Broadband (WiBro), or Global System for Mobile Communications (GSM), etc.).

  The authentication subsystem 310 authenticates the user 122 to the authentication key 118 by the code sent from the mobile transceiver 302 being matched against the authentication key 118. Next, the authentication subsystem 310 sends the encryption key 116 to the interface controller 108 via the communication combination 301.

  The encryption engine 110 then uses the encryption key 116 to convert the clear information to encrypted information and to convert the encrypted information to clear information along the channel 206. Attempting to read encrypted information from storage medium 112 without encryption key 116 will only provide unusable information by host computer system 120.

  In an optional second authentication mechanism, the authentication subsystem 310 causes the user 122 to use the biometric sensor 320 to provide biometric input 322 to verify that the user's identity is an authenticated user. Causes the user 122 to be authenticated with respect to the authentication key 118. Types of biometrics include fingerprints, iris scans, voiceprints and the like.

  In an optional third authentication mechanism, the authentication subsystem 310 allows the user 122 to use the electromechanical input mechanism 330 to identify the unique code 332 to verify that the user's identity is an authenticated user. By supplying, the user 122 is authenticated to the authentication key 118. The unique code 332 can include numeric, alphanumeric or alphabetic codes, such as a PIN. The electromechanical input mechanism 330 is within the authentication subsystem 310. The electromechanical input mechanism 330 receives the unique code 332 from the user 122 from outside the data security system 300. The unique code 332 is supplied from outside the storage subsystem 106 of the data security system 300 to the electromechanical input mechanism 330 in the authentication subsystem 310.

Whichever method is used to match user 122, authentication key 118 and encryption key 116 remain hidden until user 122 is authenticated.
Referring to FIG. 4, the manner in which the user 122 interacts with the data security system 400 using the host computer system 120 is shown.

  The host computer system 120 comprises a host application 402. Host application 402 is software or firmware that communicates via external communication channel 102 of data security system 400.

  The host application 402 is created by the serial number of internal components (eg hard drive), media access control (MAC) address of network card, user's login name, network internet protocol (IP) address, data security system and stored in host A host identifier 406 associated with the environment, such as an ID, an ID created by the data security system and stored on the network, is delivered. Host identifier 406 is used by authentication subsystem 408 in data security system 400.

  When the authentication subsystem 408 authenticates the user 122 to the authentication key 118 by verifying the host identifier 406, the data security system 400 is unlocked.

  For example, user 122 connects locked data security system 400 to host computer system 120. The host application 402 sends the MAC address of the network card to the data security system 400. The data security system 400 recognizes that this MAC address is valid and unlocks without causing the user 122 of FIG. 1 to input the user identification information. This is an example implementation that does not require interaction with the user 122. In this case, it is the host computer system 120 and the environment associated therewith that is verified.

  The data security system 400 provides the authentication key 118 stored in the authentication subsystem 104, verifies the host computer system 120 by the authentication subsystem 104, the encryption key 116 to the storage subsystem 106 by the authentication subsystem 104 Presenting includes enabling access to storage medium 112 by storage subsystem 106 by decrypting the contents of the storage medium.

The data security system further includes an authentication subsystem 104 for interpreting biometric input and validating the user 122.
The data security system further includes using the authentication key 118 directly as the encryption key 116.

The data security system further includes decrypting and retrieving the encryption key 116 used to decrypt the internal content using the authentication key 118.
The data security system further includes an authentication subsystem 104 for interpretation of the signal input and verification of the transmission unit.

The data security system further includes an authentication subsystem 104 for interpretation of manually entered input and verification of the user 122.
The data security system further includes an authentication subsystem 104 for interpreting the input sent by the host resident software application for verification of the host computer system 120.

  The data security system is an encryption engine 110 external to the interface controller 108 and connected to the external communication channel 102 for the purpose of converting clear data into encrypted data for unlocking the data security system 100. Further includes an internalization engine 110.

  Referring to FIG. 5, a data security method 500 using user verification for data security system 100 is shown. The method 500 of data security verifies the user against the authentication key at block 502, uses the authentication key to retrieve the encryption key at block 504, and between the host computer system and the storage medium at block 506. Using an encryption key to enable unencrypted communication through the storage subsystem of

  Referring to FIG. 6, an exemplary data security communication system 600 is shown. An exemplary data security communication system 600 includes a mobile device 610, a data security system (DSS) 620, a host computer 630, and a server / console 640. Mobile device 610 and server / console 640 are connected by a wired connection or by a wireless connection via cloud 650, which may be an internet cloud. Mobile device 610 and data security system 620 are connected by communication combination 301.

  The communication combination 301 in the exemplary data security communication system 600 includes a mobile transceiver 612 in the mobile device 610 having an antenna 614 in wireless communication with the antenna 622 of the data security transceiver 624 in the data security system 620.

  In one embodiment, mobile device 610 may be a smartphone. At mobile device 610, mobile transceiver 612 may be connected to a conventional mobile device component and may be connected to a data security system SS) application 618 that provides information used with data security system 620.

  Although the data security transceiver 624 is connected to the security controller 626, the security controller 626 may include identification information, passwords, profiles, etc. that can access the data security system 620, including those of different mobile devices. Information can be held. The security controller 626 is connected to a subsystem similar to the authentication subsystem 310, the storage subsystem 106 (which in some embodiments may have a cipher for encrypting data), and the external communication channel 102. Ru.

External communication channel 102 is connectable to host computer 630 and provides access to data in storage subsystem 106 under defined conditions.
In one implementation of the data security system 620, the biometric sensor 320 and the electromechanical input mechanism 330 of FIG. 3 may be omitted and only have a wireless link to a mobile device 610, such as a smartphone. It has been found that this implementation can make data security system 620 more secure and useful.

  Data security system application 618 allows mobile device 610 to discover all data security systems near mobile device 610 and indicate their status (locked / unlocked / blanked, paired / not paired, etc.) Do.

  Data security system application 618 allows mobile device 610 to connect / pair, lock, unlock, change name and password, and reset all data on data security system 620.

  Data security system application 618 allows mobile device 610 to set an inactive auto lock mode in which data security system 620 automatically locks after a predetermined length of inactive period, or mobile for a predetermined period of time Allows the mobile device 610 to set the proximity autolock mode so that the data security system 620 is locked (to improve reliability and avoid signal debounce) when the device 610 is not within the predetermined proximity range Make it

  Data security system application 618 allows mobile device 610 to store passwords and use TouchID and AppleWatch (both TouchID and AppleWatch are listed as examples only, but with biometric sensors and wearables The data security system 620 can be unlocked without re-entering the password on the mobile device, as used in similar modes, where many other mobile devices exist.

  Data security system application 618 can configure mobile device 610 to operate only when there is a particular mobile device, such as mobile device 610, to prevent data security system 620 from being unlocked on other mobile devices (see FIG. 1 Phone).

Data security system application 618 allows mobile device 610 to set data security system 620 in a read only mode.
Data security system application 618 allows mobile device 610 to operate in user mode or administrator mode (administrator mode ignores user settings) and to use server / console 640. The server / console 640 is a combination of a computer and a console for inputting information to the computer.

  The server / console 640 includes a user management database 642, which includes additional information that may be transmitted to the mobile device 610 via the cloud 650 to provide the mobile device 610 with additional functionality.

  The user management database 642 allows the server / console 640 to create and identify a user using a user ID (user name and password), prohibit / permit unlocking of the data security system 620 and provide remote help Make it possible.

The user management database 642 allows the server / console 640 to remotely reset or unlock the data security system 620.
The user management database 642 allows the server / console 640 to remotely change the data security system user PIN.

  The user management database 642 allows the server / console 640 to limit / authorize (by use of geofencing) the data security system 620 from a specific location.

  The user management database 642 allows the server / console 640 to limit / authorize the data security system 620 to defined time periods and different time zones.

  The user management database 642 enables the server / console 640 to limit the unlocking of the data security system 620 outside of a defined team / organization / network etc.

Referring to FIG. 7, an administrator sequence diagram is shown that illustrates the operational sequence between the mobile device 610 and the data security system 620.
First, the connection state 700 between the data security system 620 and the mobile device 610 is established by mutual discovery between the device and the system, pairing between the device and the system, and connection between the device and the system. This connection state 700 is protected by the use of shared secret, which is used to protect (encrypt) communication between data security system 620 and mobile device 610 during a subsequent communication session. Be done. A standard encryption algorithm is selected that is efficient to execute on the data security system 620 and that is approved to global security standards.

  As long as the data security system 620 and the mobile device 610 are within a predetermined distance of each other, the connection state 700 is maintained by the data security system application 618 or by the security controller 628 or both together. Once away from the predetermined distance, the data security system 620 is locked after the connection state 700 is maintained for a predetermined period of time.

  After connecting the mobile device 610 and the data security system 620, a data security system administrator application start operation 702 is performed on the mobile device 610. Next, in the administrator password operation 704, the administrator sets a password. After connecting the mobile device 610 and the data security system 620, the data security system 620 is powered and discoverable by the host computer 630 in the data security system 620 in the data security system connection, power supply, discovery operation 706. To be connected to the host computer 630 of FIG.

  After administrator password operation 704, mobile device 610 sends administrator password setting and unlock signal 708 to data security system 620. The administrator password set and unlock signal 708 causes the administrator password set and data security system unlock operation 716 in the data security system 620.

  When the administrator password setting and data security system unlocking operation 716 is completed, a data security system unlock confirmation signal 712 is sent to the mobile device 610 and the data security system unlock confirmation as the administrator operation 714 in the mobile device 610 Is executed. With confirmation of data security system unlocking as administrator action 714, other limit setting actions 716 performed using the mobile device 610 are allowed. If there are other limit setting operations 716, an administrator limit setting signal 718 is sent to the data security system 620, where administrator restrictions are set in the data security system 620, and a limit setting confirmation signal 720 is sent back to the mobile device 610. Be done. Thereafter, the mobile device 610 and the data security system 620 are in fully operational communication.

  As it is possible to communicate with the data security system 620 without having physical contact with the data security system 620, important interactions with the data security system 620 are printed on the data security system 620 itself or the data security system It is required to accompany the data security system specific identifier, which comes with the package 620 and is readily available to the owner of the data security system 620.

  This unique identifier (unique ID) is required when requesting an action that affects user data, such as unlocking or resetting of the data security system 620. Attempts to perform these actions without the correct identifier are ignored and made harmless. This unique identifier allows the user to have physical control over the data security system 620 and establish a connection state 700 between an authenticated and previously paired device and system such as the mobile device 610 and the data security system 620. Is used to cause the mobile device 610 to identify the data security system 620 in a manner to verify that it is. When paired, the device uses the shared secret to keep the communication confidential.

Pairing involves the mobile device and data security system establishing and maintaining a unique and defined relationship at some point in the past.
The unique identifier gives the user some control over the data security system when the user has physical control over the data security system.

  If the mobile device 610 is a smart phone, the user may select to enable functionality, such as the functionality referred to as "1 Phone" in this embodiment, to enhance the security of communication with the data security system 620. This feature limits significant user interaction with data security system 620 to only one mobile device 610. This is done by replacing the data security system specific identifier described above with a random identifier that is securely shared between data security system 620 and mobile device 610. Thus, for example, when the user unlocks the data security system 620, instead of presenting the data security system unique identifier, one phone identifier must be presented. In practice, this causes the user's mobile device 610 to be the second authentication factor for using the data security system 620 in addition to the PIN or password. As an example, a paired user phone selected as "1 Phone" can be used without a PIN, and can be used as a single factor of user authentication and / or in combination with other user authentication factors. If this feature (1 Phone) is selected, other phones can not open the data security system 620 unless the administrator unlock has been previously enabled.

  It will be appreciated that in other embodiments, an administrator password may be required on the data security system 620 to use the 1 Phone feature. In another embodiment, the server / console 640 may be able to recover the data security system 620 if the 1Phone data of the mobile device 610 is lost.

  The user can enable the proximity auto-locking feature of data security system 620. During a communication session, data security transceiver 624 of FIG. 6 reports signal strength measurements of mobile device 610 to data security system 620. The data security system application 618 on the mobile device 610 sends to the data security system 620 both the source signal power level and the proximity range threshold.

  As the signal strength varies with environmental conditions around the transceiver, the data security system 620 mathematically smooths the signal strength measurements to reduce the possibility of false positives. As soon as the data security system 620 detects that the received signal strength has fallen below a defined threshold for a predetermined period of time, it locks the data security system 620 and prevents access to the storage subsystem 106 of FIG.

  Data security system 620 can be used in three different modes. That is, the user mode in which the user can determine the function of the data security system 620, the administrator can set the administrator password, and the data security system 620 can not be released by the user with some restrictions (for example, after a predetermined period of inactivity). Administrator mode, which can add auto lock, read only, 1 phone), and server / console 640 can remotely reset data security system 620, change user password, unlock data security system 620 This is a server mode to set the administrator role for

  Referring to FIG. 8, an unlock sequence diagram is shown when the mobile device 610 is an authentication factor. This figure illustrates the automatic unlocking process of data security system 620 initiated by data security system application 618 from mobile device 610 which is a particular mobile device. The user can use only a single mobile device previously paired with data security system 620. If you lose the paired mobile device 610, you will not be able to unlock the data security system 620 (unless the administrator password was previously set as shown in FIG. 7).

  Similar to FIG. 7, but after the connection state 700 is established, a data security system application start operation 800 is performed. After the data security system connect, power on, enable discovery operation 706, an unlock request signal 802 with a mobile device ID is sent from the mobile device 610 to the data security system 620. A data security system unlock operation 804 is performed and a data security system unlock confirmation signal 712 is sent from the data security system 620. After the data security system unlock confirmation operation 806, the mobile device 610 and the data security system 620 are in fully operational communication.

If a PIN (Personal Identification Number) is not set, the paired mobile device is used as a 1-authentication factor.
Referring to FIG. 9, an unlock sequence diagram illustrating an unlock operation using a PIN entry from mobile device 610 is shown. This figure illustrates the process of unlocking data security system 620 by entering a PIN into data security system application 618 in mobile device 610. The data security system 620 can not be unlocked without entering the correct PIN.

  Similar to FIGS. 7 and 8, after the start data security system application operation 800, a username / password input operation 900 is performed. After the username / password input operation 900, the mobile device 610 transmits a user ID verification signal 902 to the server / console 640. Next, the server / console 640 performs the username / password validity determination 904.

  Once the username / password validity determination 904 validates the user, a goodness user signal 906 is sent to the mobile device 610, causing the user to enter the correct PIN in a PIN input operation 908 of the mobile device 610. The mobile device 610 then sends an unlock verification signal 910 to determine if the correct PIN has been entered into the server / console 640.

  Server / console 640 performs user authentication determination 912 to determine whether the user is authorized to use the particular data security system (eg, data security system 620) for which the PIN is authorized. If authenticated, an unlock grant signal 914 is sent to the mobile device 610, which passes an unlock request signal 916 to the data security system 620.

  A data security system unlock operation 804 is performed, a data security system unlock confirmation signal 712 is sent to the mobile device 610, and a data security system unlock operation confirmation 806 is performed.

  Referring to FIG. 10, an unlock sequence diagram illustrating an unlock operation using PIN entry and user ID / location / time verification via the server / console 640 is shown. This figure is entered by entering the PIN from the mobile device 610 into the data security system application 618 and verifying with the server / console 640 server using the user ID (user name / password), and the specific location and time range By verifying the geofencing permissions for unlocking the data security system 620 at, the most secure process of unlocking the data security system 620 is shown. Data security system 620 unlocks if PIN, username and password are not entered and mobile device 610 does not exist at a specific (predetermined) location at a specific (predetermined) time. It will not be possible.

  Similar to FIGS. 7-9, but to allow the server / console 640 to configure the conditions required for the designated data security system such as the data security system 620 to operate, the designated data security system is A locking operation 1000 is performed. For example, the condition may be within a particular geographic area and / or within a particular time frame.

  At the mobile device 610, a determination of the current state is performed, such as a position and / or current time acquisition operation 1002. This operation is performed to determine where the mobile device 610 is located and / or the current time at the location where the mobile device 610 is located. Other current conditions around the mobile device 610 may be determined and sent by the unlock verification signal 1004 to the server / console 640 where a condition match determination 1006 is made.

  When the desired conditions are met, an unlock permission signal 1008 is sent to the mobile device 610 to cause the PIN input operation 908 to be performed. After entry of the PIN, an unlock verification signal 1010 is sent, along with the PIN and identification information of the data security system 620 that is in close proximity to the mobile device 610. When the verification unlock signal 1010 is received by the server / console 640, a data security system authorization decision 1012 is made to determine that the authorized user is authorized to unlock the designated data security system. The server / console 640 verifies that this “specific” user is authorized to use the designated data security system.

  After determining that the correct information has been provided, the server / console 640 provides the mobile device 610 with an unlock grant signal 914 and the mobile device 610 provides an unlock request signal 916. The unlock request signal 916 operates the data security system 620.

  Referring to FIG. 11, a reset sequence diagram illustrating the operation of resetting data security system 620 using server / console 640 is shown. This figure illustrates the ability to remotely reset data security system 620 via server / console 640. Data security system 620 may only receive commands from mobile device 610 via a wireless connection. However, the data security system application 618 running on the mobile device 610 can be configured with the server / console 640 by setting the “reset” flag for the particular data security system (with serial number) in the server / console 640. To query any flag / pending request in the user management database 642. When the user connects to the data security system 620, the data security system application 618 on the mobile device 610 will execute a "wait for reset" command. After a successful reset (after all user data and credentials have been lost), server / console 640 removes the reset flag so that it will be reset the next time mobile device 610 is connected to a particular data security system. Not run.

  Similar to FIGS. 7-10, in response to the proper user signal 906, the mobile device 610 sends an optional command wait signal 1100 to the server / console 640 to perform a reset command determination 1102. FIG. A reset enable signal 1104 is sent to the mobile device 610 when a reset command is present.

  Mobile device 610 transmits security system reset signal 1106 to data security system 620 to initiate data security system reset operation 1108. Once the data security system reset operation 1108 is complete, the data security system 620 sends a data security system reset confirmation signal 1110 to the mobile device 610 to configure the data security system reset confirmation operation 1112 to be performed. Thereafter, the mobile device 610 and the data security system 620 are in fully operational communication with the reset data security system 620.

  Referring to FIG. 12, an unlock sequence diagram illustrating the operation of unlocking the data security system 620 using the server / console 640 is shown. This figure illustrates the ability to remotely unlock data security system 620 via server / console 640. Data security system 620 may only receive commands from mobile device 610 via a wireless connection. However, by setting the “Admin Unlock” flag on the server / console 640 console for a particular data security system (with serial number), the data security system application 618 running on the mobile device 610 can be: It will ask the server / console 640 for any flag / pending request. When the user connects to the data security system 620, the data security system application 618 on the mobile device 610 executes a “manager unlock” wait command. After successful administrator unlocking, the user data remains but the user password is deleted (data security system 620 can not be unlocked by the user). The server / console 640 removes the reset flag for the data security system 620 so that the reset will not be performed the next time the mobile device 610 is connected to the data security system 620.

  Although similar to FIGS. 7-11, the server / console 640 executes the unlock 1200 when there is a command to unlock with the administrator password after receiving an arbitrary command waiting signal 1100. When the administrator password unlocked signal 1202 is sent to the mobile device 610, the mobile device 610 provides the administrator password unlocked signal 1204 to the data security system 620 to initiate the data security system unlock operation 804. . Thereafter, the mobile device 610 and the data security system 620 are in fully operational communication.

  Referring to FIG. 13, a user password change sequence diagram using server / console 640 is shown. This figure shows the ability to remotely change the user password of data security system 620 via server / console 640. While the data security system 620 can only receive commands from the mobile device 610 via a wireless connection, setting the "Change User Password" flag on the server / console 640 console for a particular data security system (using serial number) Causes the data security system application 618 running on the mobile device 610 to query the server / console 640 for any flags / pending requests. When the user connects to his data security system 620, the data security system application 618 on the mobile device 610 executes a "change user password" wait command. After successful unlocking and password change, the user data remains, but the data security system 620 can be unlocked with a new user password. The server / console 640 removes this “change user password” flag for the data security system 620 so that the user password change is not performed the next time the mobile device 610 is connected to a particular data security system.

  Similar to FIGS. 7-12, server / console 640 responds to any command wait signal 1100 by making a password change decision 1300. When there is a password change at server / console 640, a user password change signal 1302 is sent to mobile device 610, which sends a user password change signal 1304 to data security system 620. Thereafter, the mobile device 610 and the data security system 620 are in fully operational communication with the new password.

  A method of operating a data security system comprises: providing a mobile device with a data security system application for connection with the data security system; activating the data security system application; the data security system and the mobile device Maintaining the connection state of

In the above method, maintaining the connected state maintains the connected state when the data security system is within a predetermined proximity range from the mobile device.
In the above method, maintaining the connected state maintains the connected state when the data security system is within a predetermined proximity from the mobile device for a predetermined period of time.

In the above method, establishing the connection state comprises using bi-directional communication between the data security system and the mobile device.
In the above method, establishing the connection state comprises using unidirectional communication between the data security system and the mobile device.

The above method further comprises communication between the mobile device having the data security system application and a server comprising a user management database.
The above method further comprises the step of providing security information to a security controller of the data security system.

  The above method comprises the steps of providing identification information of a designated data security system to a server, providing identification identification information to the data security system, and the identification information of the designated data security system being one of the data security system And f) unlocking the data security system when the identification information is the same.

  In the above method, the step of providing the data security system application to a mobile device may comprise providing a data security system administrator application, and further setting an administrator password on the mobile device, and the administrator password. Transmitting from the mobile device to the data security system, setting the administrator password in the data security system, and unlocking the data security system.

  The method comprises the steps of providing an unlock request along with mobile device identification information from the mobile device to the data security system, and receiving the unlock request in the data security system and unlocking the data security system. Further equipped.

  The method comprises the steps of: entering a username or password into the mobile device; determining when the username or password is valid on a server after receiving the username or password from the mobile device; Communicating from the server to the mobile device if the username or password is valid; and when the username or password is valid for unlocking the data security system. Communicating with the data security system.

  The method described above comprises the steps of: entering a username or password into the mobile device; and determining when the username or password is valid at the server after receiving the username or password from the mobile device. Communicating from the server to the mobile device if the user name or password is valid; determining if the identification number is valid at the server after receiving an identification number from the mobile device; Unlocking the data security system via the mobile device if the server determines that the identification number is valid.

  The method comprises the steps of: providing a server with a valid position of the mobile device; determining at the server when the mobile device is in the valid position; and the server when the mobile device is in the valid position And D. unlocking the data security system via the mobile device, when determined.

  The method described above comprises providing a current time of operation for the data security system at the mobile device to a server, determining at the server when the mobile device is within the current time, and the mobile device Unlocking the data security system via the mobile device if the server determines that it has the current time.

  The method comprises the steps of providing a command on a server, providing the command from the server to the mobile device in response to a command wait signal from the mobile device, and when the command is provided from the server And executing the command in the data security system via the mobile device.

  The above method comprises the steps of: providing a password change command in a server; providing the password change command from the server to the mobile device in response to a password change signal from the mobile device; And D. unlocking the data security system with the post-change password.

The above method further comprises connecting the data security system to a host computer for power and making it discoverable by the host computer.
The data security system comprises a data security transceiver or receiver, an authentication subsystem operatively connected to the data security transceiver or receiver, and a storage subsystem connected to the authentication subsystem.

The above system further comprises a security controller connected to the data security transceiver or receiver and the authentication subsystem.
The above system further comprises a mobile device having a data security system application that cooperates with the security controller to maintain connection when the data security system is within a predetermined proximity of the mobile device.

  The above system further includes the mobile device having a data security system application that cooperates with the security controller to maintain connection when the data security system is within a predetermined proximity of the mobile device for a predetermined period of time. Prepare.

  The above system further comprises the mobile device having a mobile transceiver or receiver for maintaining connectivity including using bi-directional communication between the data security system and the mobile device.

  The above system further comprises the mobile device having a mobile transceiver or receiver for maintaining connectivity including using one way communication between the data security system and the mobile device.

  The above system further comprises wired or wireless connection communication between the mobile device and the mobile device having the data security system application and the server containing the user management database, and the server containing the user management database.

In the above system, the data security system includes an external communication channel for connecting to a host computer.
While the invention has been described in conjunction with the specific best mode, it is to be understood that many alternatives, modifications and variations will be apparent to those skilled in the art in light of the foregoing description. Accordingly, it is intended to embrace all such alternatives, modifications and variations that fall within the scope of the appended claims. All matter described herein or shown in the accompanying drawings should be interpreted in an illustrative and non-limiting sense.

Claims (25)

The method of operation of the data security system,
Providing a mobile device with a data security system application for connection with said data security system;
Launching the data security system application;
Maintaining the connection between the data security system and the mobile device.   The method of claim 1, wherein maintaining the connection state comprises maintaining the connection state when the data security system is within a predetermined proximity of the mobile device.   The method according to claim 1, wherein maintaining the connection state comprises maintaining the connection state when the data security system is within a predetermined proximity from the mobile device for a predetermined period of time. .   The method of claim 1, wherein establishing the connection comprises using bi-directional communication between the data security system and the mobile device.   The operating method according to claim 1, wherein establishing the connection state comprises using unidirectional communication between the data security system and the mobile device.   The operating method according to claim 1, further comprising communication between the mobile device having the data security system application and a server comprising a user management database.   The method of claim 1, further comprising: providing security information to a security controller of the data security system. Providing the identification information of the designated data security system to the server;
Providing the identification information to the data security system;
The method according to claim 1, further comprising the step of unlocking the data security system when the identification information of the designated data security system is the same as the identification identification information of the data security system. Providing the data security system application to a mobile device, providing a data security system administrator application, and setting an administrator password on the mobile device;
Sending the administrator password from the mobile device to the data security system;
The method according to claim 1, comprising setting the administrator password in the data security system and unlocking the data security system. Providing an unlock request along with mobile device identification information from the mobile device to the data security system;
The method of claim 1, further comprising receiving the unlock request in the data security system and unlocking the data security system. Entering a username or password on the mobile device;
Determining when the username or password is valid at the server after receiving the username or password from the mobile device;
Communicating from the server to the mobile device if the username or password is valid;
The method of claim 1, further comprising communicating from the mobile device to the data security system when the username or password is valid for unlocking the data security system. Entering a username or password on the mobile device;
Determining when the username or password is valid at the server after receiving the username or password from the mobile device;
Communicating from the server to the mobile device if the username or password is valid;
Determining when the identification number is valid at the server after receiving the identification number from the mobile device;
The method of claim 1, further comprising: unlocking the data security system via the mobile device if the server determines that the identification number is valid. Providing the effective location of the mobile device to a server;
Determining at the server when the mobile device is in the valid position;
The method of claim 1, further comprising: unlocking the data security system via the mobile device when the server determines that the mobile device is at the valid position. Providing a current time of operation for the data security system at the mobile device to a server;
Determining at the server when the mobile device is within the current time;
The method of claim 1, further comprising: unlocking the data security system via the mobile device if the server determines that the mobile device has the current time. Providing a command on the server;
Providing the command from the server to the mobile device in response to a command wait signal from the mobile device;
The method of claim 1, further comprising: executing the command in the data security system via the mobile device when the command is provided from the server. Providing a password change command on the server;
Providing the password change command from the server to the mobile device in response to a password change signal from the mobile device;
The method of claim 1, further comprising the step of unlocking the data security system with a post-change password in the data security system. The operating method according to claim 1, further comprising connecting the data security system to a host computer for power and making it discoverable by the host computer. Data security transceiver or receiver,
An authentication subsystem operatively connected to the data security transceiver or receiver;
And a storage subsystem connected to the authentication subsystem. The data security system according to claim 18, further comprising a security controller connected to the data security transceiver or receiver and the authentication subsystem. The data according to claim 18, further comprising a mobile device having a data security system application that cooperates with the security controller to maintain a connection when the data security system is within predetermined proximity from a mobile device. Security system. 18. The mobile device further comprising a data security system application that cooperates with the security controller to maintain a connection when the data security system is within a predetermined proximity of the mobile device for a predetermined period of time. Data security system described in. 19. The data security system according to claim 18, further comprising the mobile device having a mobile transceiver or receiver for maintaining a connection including using bi-directional communication between the data security system and a mobile device. . 19. The data security according to claim 18, further comprising the mobile device having a mobile transceiver or receiver for maintaining a connection including using one way communication between the data security system and a mobile device. system. The data security system according to claim 18, further comprising wired or wireless connection communication between a mobile device having a data security system application and a server comprising a user management database. The data security system according to claim 18, wherein the data security system comprises an external communication channel for connecting with a host computer.