| 发明名称 |
ENABLING AN EXTERNAL OPERATING SYSTEM TO ACCESS ENCRYPTED DATA UNITS OF A DATA STORAGE SYSTEM |
| 摘要 |
A method for allowing an operating system (OS), to access an encrypted data storage system of a computer, wherein: the data storage system comprises: a partition; and first encrypted data units that comprise partition table data of said data storage system; and said computer is connectable to an external device comprising: a boot loader for an external OS that is not installed on the computer; and partitioning information capturing an expected location of said partition in the data storage system; and wherein second encrypted data units that comprise reference partition table data for said data storage system are available from said computer or said external device, the method comprising: upon connection of said external device to the computer, instructing to boot the computer from said boot loader; and during or after booting of the computer: comparing the first and second encrypted data units; and if the first and second encrypted data units match, allow the external OS to access, based on the partitioning information stored on the external device, one or more data units of said partition on the data storage system. |
| 申请公布号 |
US2015332052(A1) |
申请公布日期 |
2015.11.19 |
| 申请号 |
US201514807435 |
申请日期 |
2015.07.23 |
| 申请人 |
International Business Machines Corporation |
发明人 |
Buhler Peter;Gschwind Thomas;Scotton Paolo |
| 分类号 |
G06F21/57;H04L9/32 |
主分类号 |
G06F21/57 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method for allowing an operating system, or OS, to access an encrypted data storage system of a computer, wherein:
the encrypted data storage system comprises:
a partition; andfirst encrypted data units that comprise partition table data of said data storage system, and said computer is connectable to an external device comprising:
a boot loader for an external OS that is not installed on the computer; andpartitioning information capturing an expected location of said partition in the data storage system, and second encrypted data units that comprise reference partition table data for said data storage system are available from said computer or said external device, the method comprising: upon connection of said external device to the computer, instructing to boot the computer from said boot loader; and during or after booting of the computer:
comparing the first and second encrypted data units; andif the first and second encrypted data units match, allow the external OS to access, based on the partitioning information stored on the external device, one or more data units of said partition on the data storage system. |
| 地址 |
Armonk NY US |
