SECURITY SYSTEM AND METHOD FOR COMPUTERS

• Main Authors: RICHARD KABZINZKI, MICHAEL ALFRED HEARN
• Format: Patent
• Language: English
• Published: 31.12.2007
• Subjects: CALCULATING; COMPUTING; COUNTING; ELECTRIC DIGITAL DATA PROCESSING; PHYSICS

A COMPUTER SECURITY DEVICE (35) COMPRISING A PROCESSOR (37) THAT IS INDEPENDENT OF THE HOST CPU (13) FOR CONTROLLING ACCESS BETWEEN THE HOST CPU (13) AND THE STORAGE DEVICE (21). A PROGRAM MEMORY (41) THAT IS INDEPENDENT OF THE COMPUTER MEMORY AND THE STORAGE DEVICE (21) UNALTERABLY STORES AND PROVIDES COMPUTER PROGRAMS FOR OPERATING THE PROCESSOR (37) IN A MANNER SO AS TO CONTROL ACCESS TO THE STORAGE DEVICE (21). THE SECURITY DEVICE (35) IS CONNECTED ONLY IN LINE WITH THE DATA ACCESS CHANNEL (33) BETWEEN THE HOST CPU (13) AND THE STORAGE DEVICE (21), AND OFF THE MAIN DATA AND CONTROL BUS (15) OF THE HOST CPU (13). ALL DATA ACCESS BY THE HOST CPU (13) TO THE DATA STORAGE DEVICE (21) IS BLOCKED BEFORE INITIALISATION OF THE SECURITY DEVICE (35) AND IS INTERCEPTED IMMEDIATELY AFTER THE INITIALISATION UNDER THE CONTROL OF THE PROCESSOR (37). THE PROCESSOR (37) EFFECTS INDEPENDENT CONTROL OF THE HOST CPU (13) AND CONFIGURATION OF THE COMPUTER (11) TO PREVENT UNAUTHORISED ACCESS TO THE STORAGE DEVICE (21) DURING THE INTERCEPTION PHASE. ALL USERS OF THE COMPUTER (11) ARE AUTHENTICATED WITH A PRESCRIBED PROFILE OF ACCESS TO THE STORAGE DEVICE (21) AND DATA ACCESS TO THE STORAGE DEVICE REMAINS BLOCKED UNTIL A USER OF THE COMPUTER (11) IS CORRECTLY AUTHENTICATED.