JPH11238306A - Information storage device and control method thereof - Google Patents

Abstract

(57) Abstract: An information storage device capable of ensuring confidentiality and security of data recorded on a storage medium. In an information storage device that reads and / or writes information from / to a storage medium, a storage unit that stores a first identification code of the storage medium, and a second identification code that is read from a mounted storage medium. An identification symbol acquisition unit to be acquired, and a control unit that controls access to read and / or write information from / to a mounted storage medium in accordance with the correspondence between the first identification symbol and the second identification symbol. An information storage device is provided. For example, when the first identification symbol and the second identification symbol do not match, the control unit prohibits reading and writing of information with respect to the attached storage medium, and performs the first identification symbol and the second identification symbol. If they match, reading and writing of information from and to the mounted storage medium are permitted. As described above, the confidentiality of the information is ensured in the storage medium having the identification symbol different from the identification symbol stored in the information storage device by making the information storage device unable to read and write the information.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to an information storage device for recording data (information) on a storage medium such as a magneto-optical disk, and more particularly, to information capable of ensuring confidentiality and security of recorded data. It relates to a storage device.

[0002]

2. Description of the Related Art In general, a storage medium on which data can be written, such as a magneto-optical disk (MO), is an information storage device (hereinafter, referred to as a "data storage device") for reading and writing data.
(Referred to as a storage device), and when mounted, the storage device reads and writes data.
The storage device is controlled by a command from a higher-level device such as a personal computer connected by a SCSI cable or the like.

In such a storage medium, conventionally, from the viewpoint of emphasizing compatibility, the data can be read and written by another storage device different from the storage device to which the data is written.

FIG. 18 is a flowchart for reading and writing data in a conventional storage device. When the medium is inserted into the storage device in step S1, the medium is loaded in step S2. That is, the medium is installed at a predetermined position of the storage device and rotates at a specified rotation speed. Then, after predetermined medium information such as the configuration and storage capacity of the medium is read in step S3, data can be read and written by an operation or process corresponding to the medium information (step S4).

[0005]

Accordingly, there has been a problem that if a storage medium is obtained, confidential information recorded on the storage medium, such as a customer database and design information, can be easily stolen or falsified.

Accordingly, an object of the present invention is to provide an information storage device capable of ensuring confidentiality and security of data recorded on a storage medium in view of the above problems.

[0007]

According to a first aspect of the present invention, there is provided an information storage device for reading and / or writing information from / to a storage medium. A storage unit that stores the symbol, an identification symbol acquisition unit that acquires the second identification symbol from the attached storage medium, and a second identification symbol according to the correspondence between the first identification symbol and the second identification symbol. A control unit that controls access to read and / or write information from / to the storage medium.

For example, when the first identification code and the second identification code do not match, the control unit prohibits reading and writing of information from and to the mounted storage medium, and controls the first identification code and the second identification code. When the identification symbols match, reading and writing of information from and to the mounted storage medium are permitted.

As described above, in a storage medium having an identification code different from the identification code written in the information storage device, the confidentiality of the information is ensured by making the information storage device unable to read and write the information.

[0010] The predetermined area of the mounted storage medium is:
The control unit has read address information that controls reading of information or write address information that controls writing, and the control unit compares the result of the comparison between the first identification symbol and the second identification symbol with the read address information or the write address, respectively. Reading of information may be permitted or prohibited based on the information.

Further, an information storage device according to the present invention for achieving the above object has a storage unit for storing a first identification code of a storage medium, and an identification unit for obtaining a second identification code from a mounted storage medium. When the first address information is specified for the mounted storage medium, the address information obtaining section that obtains the second address information from the mounted storage medium, Control for performing information read and / or write access control on the mounted storage medium based on the correspondence between the second identification symbol and the correspondence between the first address information and the second address information. And a unit.

Thus, security can be set for each of a plurality of pieces of information recorded in the attached storage medium.

Further, the predetermined area of the loaded storage medium is:
The control unit has read address information or write address information for controlling reading of information, and the control unit determines that the first identification symbol matches the second identification symbol, and the second address information is included in the first address information. In such a case, reading of information may be permitted or prohibited based on the read address information or the write address information, respectively.

Further, in the information storage device having the above-described configuration, the control unit may control the read address information and the write address based on a predetermined setting command sent from the control device of the information storage device connected to the information storage device. The information or the second address information is recorded in a predetermined area of the attached storage medium. Then, the predetermined setting command is, for example, a format command or a vendor unique command in the scuzzy interface. further,
It is preferable that the control unit can initialize a predetermined area based on a predetermined release command sent from the control device.

[0015]

Embodiments of the present invention will be described below. However, the technical scope of the present invention is not limited to this embodiment. In the drawings, the same or similar components will be described with the same reference numerals or reference symbols.

In the embodiment of the present invention, a description will be given based on a magneto-optical disk (MO) as a medium on which data is recorded. However, the storage medium is not limited to this, and for example, a magnetic disk, a floppy disk, or the like. Other exchangeable storage media such as a disk, an optical disk, and a phase change optical disk may be used.

FIG. 1 is a schematic block diagram of a magneto-optical disk drive according to an embodiment of the present invention. According to FIG. 1, the magneto-optical disk device 1 is connected to a personal computer 2 as a host device via a SCSI interface.

The magneto-optical disk drive 1 has a mechanism control unit 10 for writing and reading to and from the magneto-optical disk, and further has a magneto-optical disk control having firmware for storing software for executing the present invention. And a control circuit unit including an ODC (ODC) 11.

The control circuit further includes an MPU 12 for performing overall control of the magneto-optical disk device 1, a D-RAM 13 as a read / write buffer memory, a DSP 14 for performing positioning control, a write data amplifier circuit 14, a read data amplifier circuit. It has a circuit 16, an AGC amplifier circuit 17, a head drive power amplifier circuit 18, and a disk rotation motor control circuit 19.

The mechanism control unit 10 includes a head sensor 100,
Data reading / writing laser diode 101,
It has a detector 102 for detecting the inclination of the head and the like. Further, the mechanism control unit 10 includes a focus actuator circuit 103, a track actuator circuit 104, a disk ejection (eject) motor 105, and a head driving voice coil motor 106, which are controlled by the head driving power amplifier circuit 18. The motor control circuit 19 includes a spindle motor 107 whose rotation is controlled and rotates the disk.

On the other hand, in response to an operator's instruction input from the keyboard 3 of the personal computer 2, a SCSI command is transmitted from the computer 2 to the magneto-optical disk control unit (ODC) 11, and data write / read control is performed. Is performed. Further, a display 4 for displaying write data and read data is connected to the computer 2.

The magneto-optical disk control unit (ODC) 11
It has firmware composed of flash ROM,
It has a function of analyzing a SCSI command sent from the computer 2. Further, it has a function of performing write / read control on the mechanism control unit 10 in cooperation with the MPU 12 in response to the SCSI command.

It is needless to say that the application of the present invention is not limited to the SCSI command system, but can be applied to other command systems such as ATA / ATAPI / SASI.

FIG. 2 is a layout example of a disk format of a magneto-optical disk (MO), which is a region division of a medium defined by the ISO standard for a 3.5-inch magneto-optical disk cartridge. As shown in Fig. 2, the radius from the center of the disc-shaped MO is 23.72mm.
The area of 41.00 mm is the data area where the user can write data. And the inside and outside in the radial direction,
This is a medium information management area in which various medium information such as the type and configuration of the medium is recorded.

In the embodiment of the present invention, a security area is newly provided in the medium information management area, and an identification symbol such as a serial number of a medium, which is security information recorded in advance in the security area, is an optical symbol. The data is written to a magnetic disk device (hereinafter referred to as a storage device). Alternatively, for example, an inner test zone and an outer test zone shown in FIG.
Test Zone's manufacturer zone (for manufact)
ures) or a buffer zone may be used as a security area.

When a magneto-optical disk (hereinafter, referred to as a medium) on which security information as an identification symbol is recorded in advance is inserted into a storage device, the identification symbol written on the storage device and the medium are recorded in advance on the medium. Data read / write is controlled in accordance with the corresponding relationship with the identified identification symbol. For example, data can be read and written only when both identification symbols match. That is, in a storage device having an identification symbol different from the identification symbol written on the medium, data confidentiality is ensured by making data read / write disabled on the medium.

The process of writing the identification code into the storage device is performed by the magneto-optical disk control unit (ODC) 1 of the storage device based on a security setting command from the host device.
1 is performed.

FIG. 3 is a diagram showing a flowchart of a process of writing an identification symbol into a storage device. According to FIG. 3, when the storage device receives the security setting command in step S11, it is determined in step S12 whether security information has already been written to the storage device. At this time, if the information has already been written, that is, if security has already been set, in step S13, the identification symbol of the written security information and
The identification symbols of the inserted storage media are compared. If the two identification symbols do not match, the security setting command ends abnormally to ensure security of the inserted storage medium (step S19). On the other hand, if it is the initial state in which the security information has not been written, the process proceeds to step S14, where the identification symbol of the inserted storage medium is read. Then, in step S15, the identification symbol is written to a predetermined storage area of the ODC 11 of the storage device 1. Further, as described later, when security is set only for a part of the data stored in the storage medium, in step S16, the address information of the data to be security set is written to the security area of the storage medium. . Then, in step S17, the storage device 1 is changed to the mode specified by the security setting command, and the security setting command ends normally (step S18).

FIG. 4 shows the CDB of the security setting command sent from the personal computer 2 to the storage device 1.
It is a figure showing the example of (command descriptor block). The security setting command in FIG.
Vendor Unique in Interface
ique) command. Then, as described above, the security setting information that enables access to the medium only when the identification symbol written on the medium matches the identification symbol of the inserted storage device is set in the security level of the security setting command. You.

The security level may be set to a normal format command instead of a security setting command using a vendor unique command. FIG. 5 is a diagram showing an example of a CDB of a format command in which the security level is set in a SCSI command.

FIG. 6 is a flowchart of a security process according to the first embodiment of the present invention in the storage device described above. The security processing described below is executed in the magneto-optical control unit (ODC) 11 of the storage device 1.

According to FIG. 6, when the medium is inserted into the storage device in step S101, in step S102,
The media is loaded. That is, the medium is installed at a predetermined position of the storage device and rotates at a specified rotation speed. Then, in step S103, information on the medium information management area in the medium is read, and further, in step S104,
The security information (identification symbol) written in the security area therein is read.

In step S105, it is determined whether or not the information on the security area is in an initial state. Then, when the security area is in the initial state, that is, when the identification symbol is not written in the security area, it is determined that security has not been set, and the process proceeds to step S108 to read out data written on the medium. And writing of data to the medium is permitted.

On the other hand, in step S105, when the identification code is written in the security area, that is, when security is set, in step S106, the read identification code and the current medium are inserted. The identification code of the storage device is compared, and it is determined whether or not they match.

If they match, the security is released and the flow advances to step S108 to permit reading of data written on the medium and writing of data on the medium.

On the other hand, if the two do not match in step S106, the security is not released, and reading and writing of data is prohibited (step S107).

As described above, in the embodiment of the present invention, the security area in which the security information is written is provided in the medium information management area on the medium. And
If the identification symbol (security information) of the loaded storage medium does not match the identification symbol written on the medium when the medium is loaded into the storage device, the medium is stolen by prohibiting reading and writing of data. Even in such a case, the confidentiality of the data written on the medium can be ensured.

In the first embodiment, even if security is set on the medium, for example, another person who has stolen the medium has the same identification code as the identification code written on the medium. By using the storage device, reading and writing of data on the medium is possible.

Therefore, the identification code written on the medium,
It is preferable that a security function for restricting reading and writing of data be set even if the identification code of the storage device on which the medium is loaded matches.

For this purpose, read address information and write address information are set in the parameter header of the parameter specified by the security setting command (FIG. 4) or the format command in which the security level is set (FIG. 5). FIG. 7 is an example of the configuration of parameters specified by the above commands. The parameters are shown in FIG.
It comprises a parameter head shown in FIG. 7A and a level descriptor shown in FIG. And
Each of the above address information is set in the parameter head of FIG. The level descriptor shown in FIG. 7B includes a 2-byte header and a parameter field following the header. The parameter field is further classified into units called pages for each functional attribute.

For example, when read address information is set, data read is prohibited even if the identification symbols match. If the read address information is not set, data reading is permitted.

Further, when write address information is set, data writing is prohibited even if the identification symbols match. When the write address information is not set, data writing is permitted. The read address information and the write address information are written to the security area at the same time as the storage device identification code is written to the security area.

If the read address information or the write address information is set, it is inconvenient that data cannot be read or written even if the identification symbols match. Therefore, when read address information or write address information is set, a predetermined password is set at the same time. Even when each address information is set, reading or writing is possible if a password is input. It is preferable that Furthermore, regardless of whether or not each address information is set, a predetermined password is set, and when both the identification symbol and the password match, by permitting reading and writing, it is possible to set security twice. Data confidentiality can be further improved.

The password is set in the level descriptor of the above parameter. FIG. 8A is a diagram showing a password page in the parameter field of the level descriptor (see FIG. 7B). Then, this password is written in the security area of the medium together with the address information at the time of security setting. FIG. 8B is a diagram showing a specified page of a logical block address (LBA) to be described later in a parameter field of the level descriptor.

FIG. 9 is a flowchart of a security process according to the second embodiment of the present invention. In the second embodiment, the case where the read address information is set in the parameter header is described. In FIG. 9, steps S201 to S205 are the same as those in FIG.
Are the same as steps S101 to S105 in FIG.

If the security area is in the initial state in step S205, it is determined that security has not been set, and the flow advances to step S211 to permit reading of data written on the medium and writing of data on the medium. You. On the other hand, if security information is set in step S205, in step S206, the read identification symbol is compared with the identification symbol of the storage device in which the medium is currently inserted, and whether they match. It is determined whether or not. If they do not match, the security is not released and reading / writing of data is prohibited (step S207).

On the other hand, if they match, step S2
Proceeding to 08, a determination is made as to whether or not reading is possible based on the read address information. If the read address information has not been set, the process proceeds to step S209, where data reading is permitted, but data writing is prohibited.
That is, the stored data can be read and its contents can be viewed, but the data cannot be modified or written. If the read address information has been set, the process proceeds to step S210, where both reading and writing are prohibited.

FIG. 10 is a flowchart of a security process according to the third embodiment of the present invention. The present embodiment is a case where the write address information is set in the parameter header. In FIG. 10, steps S301 to S305 are the same as steps S101 to S105 in FIG. 6 described above, and a description thereof will be omitted.

If the security area is in the initial state in step S305, it is determined that security has not been set, and the flow advances to step S311 to read data written on the medium and write data on the medium. You. On the other hand, when security is set in step S305, in step S306,
The read identification code is compared with the identification code of the storage device in which the medium is currently inserted, and it is determined whether or not they match. If they do not match, the security is not released, and reading and writing of data is prohibited (step S307).

On the other hand, if they match, step S3
Proceeding to 08, a determination is made as to whether or not reading is possible based on the write address information. If the read address information has not been set, the process proceeds to step S309, where data writing is permitted, but data reading / writing is prohibited. That is, new data can be created, but stored data cannot be read.
If the read address information is set,
Proceeding to step S310, both reading and writing are prohibited.

FIG. 11 is a flowchart of a security process according to the fourth embodiment of the present invention. In the fourth embodiment, both the read address information and the write address information are set in the parameter header.

If the security area is in the initial state in step S405, it is determined that security has not been set, and the flow advances to step S415 to permit reading of data written on the medium and writing of data on the medium. You. On the other hand, if security information is set in step S405, in step S406, the read identification symbol is compared with the identification symbol of the storage device in which the medium is currently inserted, and whether or not they match. It is determined whether or not. If they do not match, the security is not released and reading and writing of data is prohibited (step S407).

On the other hand, if they match, step S4
In step 08, first, a determination is made as to whether or not reading is possible based on the read address information. If the read address information has not been set, the process proceeds to step S409,
Next, it is determined whether or not writing is possible based on the write address information. If the write address information has not been set, both reading and writing of data are permitted as shown in step S410. On the other hand, when the write address information is set in step S409, as shown in step S411, data reading is permitted, but data writing is prohibited.

If the read address information has been set in step S408, the process proceeds to step S412, and similarly to step S409, it is determined whether or not writing is possible based on the write address information. If the write address information has not been set, step SS4
As shown in FIG. 13, writing of data is permitted, but reading of data is prohibited. On the other hand, when the write address information is set in step S412,
As shown in step S414, both reading and writing of data are prohibited.

The reading of data in each of the above-described embodiments targets all data stored in the medium. However, when a plurality of data are stored in a medium, it is assumed that security is desired to be set for only a part of the data.

Therefore, when security setting is performed on the medium, the logical block address (LBA) of the data whose security is to be set is specified in the parameter level descriptor of FIG. More specifically, an LBA designation page for designating security setting data is set in the parameter field of the level descriptor (see FIG. 8B). Then, as shown in FIG. 8B, security setting 1 is performed.
The LBA (security LBA) of the data is specified by, for example, a 3-byte length. The information of the security LBA is simultaneously written into the security area when the storage device identification code is written into the security area.

FIG. 12 is a flowchart of a security process according to the fifth embodiment of the present invention. In the fifth embodiment, similar to the above-described second embodiment, when read address information is set,
This is a case where a security LBA is set. FIG.
In step 2, steps S501 to S505 are the same as steps S101 to S105 in FIG. 6 described above, and a description thereof will be omitted.

If the security area is in the initial state in step S505, it is determined that security has not been set, and the flow advances to step S516 to permit reading of data written on the medium and writing of data on the medium. You. On the other hand, if security information is set in step S505, in step S506, the read identification symbol is compared with the identification symbol of the storage device in which the medium is currently inserted, and whether or not they match. It is determined whether or not. If they do not match, in step S507, it is determined whether a security LBA has been specified in the security area. If no security LBA is specified, reading and writing of the entire medium is prohibited (step S508).

On the other hand, if the security LBA is designated in step S507,
The LBA of the data being accessed is the security LB
It is determined whether or not it is included in A. If it is included, the process proceeds to step S510, and reading of the data and writing of the data are prohibited.

If not included, step S5
Proceeding to 11, the reading and writing of the data are permitted.

Further, also in step S506, when the two identification symbols match, in step S512, it is determined whether the LBA of the data being accessed is included in the security LBA. If it is included, the process proceeds to step S513 to determine whether or not reading is possible based on the read address information.

If the read address information has not been set, the process proceeds to step S514, where data reading is permitted, but data writing is prohibited. That is, the stored data can be read and its contents can be viewed, but the data cannot be modified or written. If the read address information has been set, the process proceeds to step S515, where both reading and writing are prohibited.

If it is determined in step S512 that the LBA of the data being accessed does not include the security LBA, the flow advances to step S516 to permit both reading and writing of data.

FIG. 13 is a flowchart of a security process according to the sixth embodiment of the present invention. In the sixth embodiment, similar to the above-described third embodiment, when write address information is set,
This is a case where a security LBA is set. FIG.
In step 3, steps S601 to S605 are the same as steps S101 to S105 in FIG. 6 described above, and a description thereof will be omitted.

If the security area is in the initial state in step S605, it is determined that security has not been set, and the flow advances to step S616 to permit reading of data written on the medium and writing of data on the medium. You. On the other hand, when security information is set in step S605, the read identification symbol is compared with the identification symbol of the storage device in which the medium is currently inserted in step S606, and whether or not they match. It is determined whether or not. If they do not match, in step S607, it is determined whether or not a security LBA has been specified in the security area. If no security LBA is specified, reading and writing of the entire medium is prohibited (step S608).

On the other hand, if the security LBA is specified in step S607,
The LBA of the data being accessed is the security LB
It is determined whether or not it is included in A. If it is included, the process proceeds to step S610, and reading of the data and writing of the data are prohibited.

If not included, step S6
Proceeding to 11, the reading and writing of the data are permitted.

Further, also in step S606, when both identification symbols match, in step S612, it is determined whether the LBA of the data being accessed is included in the security LBA. If it is included, the process proceeds to step S613 to determine whether writing is possible based on the write address information.

If the write address information has not been set, the flow advances to step S614 to permit data writing, but prohibit data reading. That is, creation of new data is permitted, but stored data cannot be viewed. If the write address information has been set, the process proceeds to step S615,
Both reading and writing are prohibited.

If it is determined in step S612 that the LBA of the data being accessed does not include the security LBA, the flow advances to step S616 to permit both reading and writing of data.

FIG. 14 is a flowchart of a security process according to the seventh embodiment of the present invention. The seventh embodiment is a case where the read address information and the write address information are set and the security LBA is further set, as in the third embodiment. In FIG. 14, step S701
Steps S705 to S705 are the same as steps S101 to S105 in FIG. 6, and a description thereof will be omitted.

If the security area is in the initial state in step S705, it is determined that security has not been set, and the flow advances to step S720 to permit reading of data written on the medium and writing of data on the medium. You. On the other hand, if security information is set in step S705, the read identification symbol is compared with the identification symbol of the storage device in which the medium is currently inserted in step S506, and whether or not they match. It is determined whether or not. If they do not match, in step S707, it is determined whether or not a security LBA has been specified in the security area. If no security LBA is specified, reading and writing of the entire medium is prohibited (step S708).

On the other hand, if the security LBA is specified in step S707,
The LBA of the data being accessed is the security LB
It is determined whether or not it is included in A. If it is included, the process proceeds to step S710, and reading of the data and writing of the data are prohibited.

The LBA of the data being accessed
Is not included in the security LBA, the process proceeds to step S711, and reading and writing of the data are permitted.

Further, also in step S706, if the two identification symbols match, in step S512, it is determined whether the LBA of the data being accessed is included in the security LBA. If it is included, the process proceeds to step S713, and first, a determination is made as to whether or not reading is possible based on the read address information. If the read address information has not been set, step S714
Then, it is determined whether or not writing is possible based on the write address information. If the write address information has not been set, both reading and writing of data are permitted as shown in step S715. On the other hand, when the write address information is set in step S715, as shown in step S716,
Data reading is permitted, but data writing is prohibited.

If the read address information has been set in step S713, the flow advances to step S717 to determine whether or not writing is possible based on the write address information as in step S714. If the write address information has not been set, step S718
As shown in (1), writing of data is permitted, but reading of data is prohibited. On the other hand, if the write address information is set in step S717, both reading and writing of data are prohibited as shown in step S719. Also, in step S712,
The LBA of the data being accessed is the security LBA
If not included, the process proceeds to step S720, where both reading and writing of data are permitted.

FIG. 15 is a flowchart of a security release process for releasing the security setting state in which the various security processes described above are executed.

First, in step S801, a security release command is sent from the computer 2 to the storage device.
The security release command is configured by using the vendor unique SCSI command as in the case of the security setting command.

Then, in step S802, the address information of the security area is read, and in step S803, the presence or absence of security information in the security area is confirmed. If the security information has been written, the process proceeds to step S804, where the identification symbol included in the security information is compared with the identification symbol of the storage device in which the medium is inserted. If they match, a predetermined initial value is written in the security area, and the security area is returned to the initial state (initialized) (step S805).

On the other hand, when the identification symbols do not match, or when security information is not originally written in the security area, the security is not released.

Although not shown in the above flow chart, if the security information has a password, a step of inputting a password is provided, and the password included in the security information matches the input password. Only in this case, the security release may be executed.

In each embodiment of the present invention described above,
The security information (identification symbol, address information, password, etc.) written in the security area further
It may be encrypted and written to increase confidentiality. In this case, predetermined security information for instructing encryption is added to the security setting command, and security information encrypted based on the security information is written in the security area.

FIG. 16 is a flowchart of an example of processing when loading the medium when the security information is encrypted. In FIG. 16, in step S901,
When a medium is inserted into the storage device, in step S902, loading of the medium is started. Then, in step S903, the medium management information is read out.
In S904, the presence or absence of security information in the information is determined.

If there is no security information in step S904, the flow advances to step S909 to enable reading and writing of data on the medium.

On the other hand, if there is security information in step S904, it is next determined in step S905 whether or not the security information has been encrypted. Then, in step S906, if the security information has been encrypted, the security information is decrypted.

Then, in step S907, the identification symbol of the security information is compared with the identification symbol of the storage device in which the medium is currently inserted, and it is determined whether or not they match. If they match, the security is released and the process proceeds to step S909, where reading and writing of data on the medium become possible.

On the other hand, if the two do not match in step S907, the security is not released and reading and writing of data on the medium become impossible (step S908).

FIG. 17 is a flow chart of a processing example when loading the medium in the case where the security information further has a password in FIG. According to FIG. 17, step S910 is added to the flowchart of FIG. That is, in step S906, when the encryption is released, the input password is compared with the password included in the security information. If the two do not match, the security is not released and reading and writing of data on the medium become impossible (step
S908).

On the other hand, if they match, step S9
Proceeding to 07, the above-described comparison of the identification symbols is performed.

At this time, steps S907 and S910
That is, the order of the password comparison and the identification symbol comparison may be reversed. The setting of the password comparison step and the identification symbol comparison step can be arbitrarily set by the user or the manufacturer or seller of the storage device, and the setting can also be arbitrarily changed.

Further, the encryption of the security information is as follows.
For example, it is performed by a DES algorithm or simple bit rearrangement. Further, the security information may be converted into ASCII, JIS, EDICIBIC, ECU code, or the like and written in the security area.

Further, in each of the above-described embodiments of the present invention, the control for permitting reading or writing is performed when the identification symbols match, but the control for permitting when the identification symbols do not match is performed. You may.

[0093]

As described above, according to the present invention,
An identification symbol (security information) recorded in advance in a security area provided in a medium information management area of a storage medium such as a magneto-optical disk is written as an identification symbol unique to the information storage device. When such a storage medium is inserted into the information storage device, if the identification symbol recorded on the storage medium does not match the identification symbol of the inserted information storage device, data on the storage medium is inaccessible. By doing so, data confidentiality can be ensured. As described above, the confidentiality of the information is ensured in the storage medium having the identification symbol different from the identification symbol stored in the information storage device by making the information storage device unable to read and write the information.

[Brief description of the drawings]

FIG. 1 is a block diagram of a data storage device according to an embodiment of the present invention.

FIG. 2 is a layout example of a disk format of a magneto-optical disk.

FIG. 3 is a diagram illustrating a flowchart of a process of writing an identification symbol to a storage device.

FIG. 4 is a configuration example of a CDB of a security setting command using a vendor unique command.

FIG. 5 is a configuration example of a CDB of a format command in which a security level is set.

FIG. 6 is a security processing flowchart according to the first embodiment of the present invention.

FIG. 7 is a configuration example of a parameter header and a level descriptor of a parameter.

FIG. 8 is a configuration example of a parameter field of a level descriptor.

FIG. 9 is a security processing flowchart according to the second embodiment of the present invention.

FIG. 10 is a security processing flowchart according to the third embodiment of the present invention.

FIG. 11 is a security processing flowchart according to the fourth embodiment of the present invention.

FIG. 12 is a flowchart of a security process according to the fifth embodiment of the present invention.

FIG. 13 is a security processing flowchart according to the sixth embodiment of the present invention.

FIG. 14 is a security processing flowchart according to the seventh embodiment of the present invention.

FIG. 15 is a processing flowchart of security release.

FIG. 16 is a flowchart of an example of a process when loading a medium when security information is encrypted.

FIG. 17 is a flowchart of an example of processing when loading a medium when security information is encrypted and a password is set.

FIG. 18 is a flowchart of a conventional medium access process.

[Explanation of symbols]

 DESCRIPTION OF SYMBOLS 1 Data storage device 2 Personal computer 10 Mechanism control unit 11 Magneto-optical disk control unit

Claims (36)

[Claims] 1. An information storage device for reading and / or writing information from / to a storage medium, comprising: a storage unit for storing a first identification code of a storage medium; and a second identification code of a mounted storage medium. And a control for controlling access to read and / or write of information with respect to the mounted storage medium in accordance with a correspondence between the first identification symbol and the second identification symbol. And an information storage device. 2. The control unit according to claim 1, wherein the control unit determines whether reading and / or writing of information is prohibited or permitted based on a result of comparing the first identification symbol with the second identification symbol. An information storage device, characterized in that: 3. The storage medium according to claim 1, wherein the mounted storage medium has read address information for controlling reading of information, and the control unit controls the first identification symbol and the second identification symbol. An information storage device that permits or prohibits reading of information based on a result of the comparison and the read address information. 4. The storage medium according to claim 1, wherein the mounted storage medium has write address information for controlling writing of information, and wherein the control unit controls the first identification code and the second identification code. An information storage device characterized in that information writing is permitted or prohibited based on a result of comparison with a symbol and the write address information. 5. An information storage device for reading and / or writing information from / to a storage medium, comprising: a storage unit for storing a first identification code of a storage medium; and a second identification code of a mounted storage medium. An identification information acquisition unit that acquires the second address information from the attached storage medium when the first address information is specified for the attached storage medium. Reading information from the mounted storage medium based on the correspondence between the first identification symbol and the second identification symbol and the correspondence between the first address information and the second address information. And / or a control unit for performing write access control. 6. The storage medium according to claim 5, wherein the mounted storage medium has read address information for controlling reading of information, and the control unit controls the first identification symbol and the second identification symbol. An information storage device for permitting or prohibiting the reading of information based on the result of comparing the first address information and the second address information and the read address information. . 7. The storage medium according to claim 5, wherein the mounted storage medium has write address information for controlling writing of information, and wherein the control unit controls the first identification code and the second identification code. Writing of information is permitted or prohibited based on a result of comparing a symbol, a result of comparing the first address information and the second address information, and the write address information. Information storage device. 8. The storage medium according to claim 1, wherein the attached storage medium has a password, and the control unit further reads or / writes the attached storage medium based on the determination of the password. An information storage device for performing control. 9. The information storage device according to claim 1, wherein the control unit performs control for recording the first identification symbol in the storage unit based on a designated setting command. . 10. The storage unit according to claim 3, wherein the control unit records the read address information in a predetermined area of the mounted storage medium based on a specified setting command having the specified read address information. An information storage device characterized by performing control to perform the following. 11. The storage unit according to claim 4, wherein the control unit records the write address information in a predetermined area of the mounted storage medium based on a specified setting command having the specified write address information. An information storage device characterized by performing control to perform the following. 12. The storage unit according to claim 5, wherein the control unit stores the second address information in a predetermined area of the mounted storage medium based on a specified setting command having the specified second address information. An information storage device for performing control for recording data in a storage device. 13. The information storage device according to claim 10, wherein the control unit encrypts information recorded in the predetermined area of the mounted storage medium. 14. The control unit according to claim 13, wherein the control unit encrypts information recorded in the predetermined area of the mounted storage medium based on a predetermined setting command having the designated encryption information. An information storage device, characterized in that: 15. The information storage device according to claim 10, wherein the setting command is a command for initializing the mounted storage medium or a special command provided for setting. 16. The information storage device according to claim 10, wherein the control unit initializes the predetermined area based on a specified release command. 17. The information storage according to claim 10, wherein the predetermined area of the mounted storage medium is a medium information management area set other than a data area of the mounted storage medium. apparatus. 18. The storage medium according to claim 1, wherein the storage medium is a magnetic disk, a floppy disk,
An information storage device, being an exchangeable storage medium of any one of an optical disk, a magneto-optical disk, and a phase change optical disk. 19. The information storage device according to claim 1, wherein the first and second identification symbols are a serial number of the storage medium. 20. Reading and / or reading information from / to a storage medium.
Or a control method of an information storage device that performs writing, a step of storing a first identification code of a storage medium, a step of obtaining the first identification code, and a step of obtaining a second identification code of a mounted storage medium. And controlling access to reading and / or writing of information from / to the mounted storage medium in accordance with the correspondence between the first identification symbol and the second identification symbol. Control method of the information storage device. 21. The method according to claim 20, wherein the step of performing access control permits or prohibits reading and / or writing of information based on a result of comparing the first identification symbol with the second identification symbol. A method for controlling an information storage device, wherein a determination is made. 22. The storage medium according to claim 20, wherein the mounted storage medium has read address information for controlling reading of information, and the step of performing the access control includes the first identification symbol and the second identification code. A method for controlling an information storage device, comprising: permitting or prohibiting reading of information based on a result of comparison with an identification symbol and the read address information. 23. The storage medium according to claim 20, wherein the mounted storage medium has write address information for controlling writing of information, and the step of performing the access control comprises: A method of controlling an information storage device, comprising: permitting or prohibiting writing of information based on a result of comparison with a second identification symbol and the write address information. 24. A method for controlling an information storage device for reading and / or writing information by designating first address information on a storage medium, wherein the first identification symbol of the first storage medium is stored. Obtaining the first identification code; obtaining the second identification code of the mounted storage medium mounted; obtaining the first address information; setting the storage medium Obtaining the obtained second address information, and the corresponding relationship between the first identification symbol and the second identification symbol, and the corresponding relationship between the first address information and the second address information. Controlling the access of reading and / or writing of information to / from the mounted storage medium based on the information storage device. 25. The storage medium according to claim 24, wherein the mounted storage medium has read address information for controlling reading of the information, and the step of performing the access control includes the first identification symbol and the second A result of comparing an identification symbol, a result of comparing the first address information and the second address information, and, based on the read address information, permitting or prohibiting information reading. Control method for an information storage device. 26. The storage medium according to claim 24, wherein the mounted storage medium has write address information for controlling writing of information, and the step of performing access control comprises: Based on the result of comparing the second identification symbol, the result of comparing the first address information and the second address information, and the write address information, permitting or prohibiting the writing of information. A method for controlling an information storage device, which is a feature. 27. The attached storage medium according to claim 20, wherein the attached storage medium has a password, and the step of performing access control further comprises reading and / or reading the attached storage medium based on the determination of the password. A method for controlling an information storage device, comprising: performing write access control. 28. The method according to claim 22, further comprising the step of recording said read address information in a predetermined area of said mounted storage medium. 29. The method according to claim 23, further comprising the step of recording the write address information in a predetermined area of the mounted storage medium. 30. The method according to claim 24, further comprising the step of recording the second address information in a predetermined area of the mounted storage medium. 31. The control method for an information storage device according to claim 27, further comprising a step of encrypting information recorded in the predetermined area of the mounted storage medium. 32. An information storage according to claim 27, wherein said recording step is performed based on an initialization command of said mounted storage medium or a special command provided for recording. How to control the device. 33. The control method for an information storage device according to claim 27, wherein when the setting of the predetermined area is canceled, the predetermined area is initialized. 34. The control of an information storage device according to claim 27, wherein the predetermined area of the mounted storage medium is a medium information management area set other than a data area of the storage medium. Method. 35. The storage medium according to claim 20, wherein the storage medium is a magnetic disk, a floppy disk,
A method for controlling an information storage device, wherein the information storage device is any one of an optical disk, a magneto-optical disk, and a phase-change optical disk. 36. A method according to claim 20, wherein said first and second identification symbols are a serial number of said storage medium.