Patents by Inventor Christopher Nicholas Allo

Christopher Nicholas Allo has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Publication number: 20210194870
    Abstract: Method and apparatus for implementing data security and privacy for a processing device. In some embodiments, the processing device is authenticated using a trusted authority. Self-authentication information is stored in a keystore of the processing device as a result of the authentication. The processing device subsequently operates in an untrusted mode by performing self-authentications using the self-authentication information in the keystore without further reference to the trusted authority. The trusted authority can be a remote server with which the processing device communicates over a network. The processing device can subsequently transition to a trust mode in which all authentications take place with the trusted authority without reference to the keystore. The processing device can be a data storage device such as a solid-state drive (SSD), a hard disc drive (HDD) or a hybrid drive (HDSD). The processing device can use untrust mode during manufacturing, and trust mode during field use.
    Type: Application
    Filed: December 18, 2019
    Publication date: June 24, 2021
    Inventors: Christopher Nicholas Allo, Benjamin T. Cordova
  • Publication number: 20210144133
    Abstract: Apparatus and method for local authentication of a collection of processing devices, such as but not limited to storage devices (e.g., SSDs, etc.). In some embodiments, an edge computing device is coupled between the collection of processing devices and an external network. The edge computing device performs a network authentication over the external network with a remote server using an edge token. The edge computing device further performs a local authentication of the collection using storage tokens of the respective processing devices, with the local authentication not utilizing the external network or the remote server. Both the edge token and the storage tokens may be generated from a client token of a client device.
    Type: Application
    Filed: November 8, 2019
    Publication date: May 13, 2021
    Inventor: Christopher Nicholas Allo
  • Patent number: 11004467
    Abstract: A data storage device can transition a functional data storage medium into a read only data surface. Data can be written to a data storage medium with a data writer of a transducing head prior to a security threat being identified. A write head of the transducing head is deactivated in response to the security threat by selecting a permanent deactivation mechanism.
    Type: Grant
    Filed: May 10, 2019
    Date of Patent: May 11, 2021
    Assignee: Seagate Technology LLC
    Inventor: Christopher Nicholas Allo
  • Patent number: 10983943
    Abstract: A data storage system can employ at least one data storage device having a supplemental processing bus that connects a first controller to a second controller with the supplemental bus being exposed to an exterior surface of a housing. The second controller may be positioned on a portable computing component connected to the supplemental bus while the portable computing component is positioned external to the housing. The computing capabilities of the portable computing component are identified with the first controller to allow a supplementation strategy to be generated with the first controller in response to connection of the portable computing component to the supplemental bus. The supplementation strategy can then be executed by assigning at least one processing task from the first controller to the second controller.
    Type: Grant
    Filed: November 16, 2018
    Date of Patent: April 20, 2021
    Assignee: Seagate Technology LLC
    Inventor: Christopher Nicholas Allo
  • Patent number: 10956068
    Abstract: A data storage device can have one or more timestamps to indicate chronological information associated with data stored in the data storage device. A controller may be connected to a timestamp module and a transducing head to allow a timestamp to be written to a magnetic data storage medium as directed by the timestamp module. The timestamp can consist of chronological information relating to user-generated data stored on the data storage medium.
    Type: Grant
    Filed: May 10, 2019
    Date of Patent: March 23, 2021
    Assignee: Seagate Technology LLC
    Inventor: Christopher Nicholas Allo
  • Patent number: 10929319
    Abstract: A data storage device can employ a front end bus to optimize data storage performance. A first controller may be connected to a first memory via a first bus and to a second memory via a second bus with the first bus and first memory housed within an internal cavity of an enclosure while the second bus is exposed to an exterior surface of the housing and the second memory is separated from the internal cavity. The first controller can be configured to substitute the second memory for the first memory in response to a front end controller identifying a type of data storage of the second memory.
    Type: Grant
    Filed: May 10, 2019
    Date of Patent: February 23, 2021
    Assignee: Seagate Technology LLC
    Inventor: Christopher Nicholas Allo
  • Publication number: 20200410105
    Abstract: A data storage device can employ a front end bus for boot operations. The physical connection of a secure boot assembly to the front end bus can provide efficient and reliable booting of the data storage device without a connection to a remote host or network. A secure boot assembly can provide a security module that connects to the boot module of the data storage device to authenticate a trustworthiness of the data storage device while the data storage device is disconnected from any remote host.
    Type: Application
    Filed: June 24, 2020
    Publication date: December 31, 2020
    Inventor: Christopher Nicholas Allo
  • Publication number: 20200410138
    Abstract: A data storage system can provide device provenance with a storage device encoded with a key certificate and initialized into a distributed data system. A handshake module of the data storage device may derive a secure identifier and a provenance module of the data storage device can monitor data storage device activity to maintain an in-device provenance. A trusted data pathway between the data storage device and a host of the distributed data storage system can be formed with the secure identifier.
    Type: Application
    Filed: June 24, 2020
    Publication date: December 31, 2020
    Inventor: Christopher Nicholas Allo
  • Patent number: 10855451
    Abstract: Security of data storage devices and servers can be improved by the system and methods described herein. In some embodiments, a key management server may be locally or externally located. An encryption key may be used for locking a portion or the entirety of a storage device. The key management server may communicate with data storage devices regarding encryption keys using secure protocols. For example, the key management server may generate a communication key that may be used to securely encrypt messages between the server and a data storage device.
    Type: Grant
    Filed: August 2, 2017
    Date of Patent: December 1, 2020
    Assignee: SEAGATE TECHNOLOGY LLC
    Inventor: Christopher Nicholas Allo
  • Patent number: 10803206
    Abstract: Systems and methods for wireless enabled security in relation to a storage drive are described. In one embodiment, the systems and methods may include receiving, at a storage drive, a request from a host of the storage drive. In some cases, the request may be received via a wired connection between the storage drive and the host. In some embodiments, the systems and methods may include determining whether the request is flagged by the host as a secure connection request, processing the request upon determining the request is not flagged as a secure connection request, and establishing a wireless connection with the host upon determining the request is flagged by the host as a secure connection request.
    Type: Grant
    Filed: February 18, 2019
    Date of Patent: October 13, 2020
    Assignee: SEAGATE TECHNOLOGY LLC
    Inventor: Christopher Nicholas Allo
  • Patent number: 10725676
    Abstract: Apparatus and method for configuring a data storage device as a write once read many (WORM) drive. In some embodiments, the storage device has a rotatable disc with at least one data recording layer, and a data transducer that is selectively moveable with respect to the rotatable disc. The data transducer has a write element configured to write data to the data recording layer, and a read element configured to read data from the data recording layer. A control circuit is configured to physically disable the write element in response to a write element disable signal. The disabling of the write element prevents further writing of data to the data recording layer. The read element remains operative to continue reading data from the data recording layer after the write element has been disabled.
    Type: Grant
    Filed: December 13, 2018
    Date of Patent: July 28, 2020
    Assignee: Seagate Technology, LLC
    Inventor: Christopher Nicholas Allo
  • Patent number: 10678953
    Abstract: A local key management system can be implemented with a unified extensible firmware interface (“UEFI”) basic input/output system (“BIOS”). The local key management system may be part of a removable data storage device that has a first secure area protected by a cryptographic module (e.g. hardware integrated circuit). The removable data storage device may also have a second secure area that stores a key to unlock a security enabled data storage device. The UEFI BIOS may be implemented to manage unlocking of security enabled data storage devices or data bands. The UEFI BIOS may also load a UEFI registration shell to manage registration of one or more security enabled drives or bands.
    Type: Grant
    Filed: April 26, 2017
    Date of Patent: June 9, 2020
    Assignee: Seagate Technology LLC
    Inventors: Christopher Nicholas Allo, Saheb Biswas
  • Publication number: 20200159682
    Abstract: A data storage system can employ at least one data storage device having a supplemental processing bus that connects a first controller to a second controller with the supplemental bus being exposed to an exterior surface of a housing. The second controller may be positioned on a portable computing component connected to the supplemental bus while the portable computing component is positioned external to the housing. The computing capabilities of the portable computing component are identified with the first controller to allow a supplementation strategy to be generated with the first controller in response to connection of the portable computing component to the supplemental bus. The supplementation strategy can then be executed by assigning at least one processing task from the first controller to the second controller.
    Type: Application
    Filed: November 16, 2018
    Publication date: May 21, 2020
    Inventor: Christopher Nicholas Allo
  • Publication number: 20190347025
    Abstract: A data storage device can have one or more timestamps to indicate chronological information associated with data stored in the data storage device. A controller may be connected to a timestamp module and a transducing head to allow a timestamp to be written to a magnetic data storage medium as directed by the timestamp module. The timestamp can consist of chronological information relating to user-generated data stored on the data storage medium.
    Type: Application
    Filed: May 10, 2019
    Publication date: November 14, 2019
    Inventor: Christopher Nicholas Allo
  • Publication number: 20190347222
    Abstract: A data storage device can employ a front end bus to optimize data storage performance. A first controller may be connected to a first memory via a first bus and to a second memory via a second bus with the first bus and first memory housed within an internal cavity of an enclosure while the second bus is exposed to an exterior surface of the housing and the second memory is separated from the internal cavity. The first controller can be configured to substitute the second memory for the first memory in response to a front end controller identifying a type of data storage of the second memory.
    Type: Application
    Filed: May 10, 2019
    Publication date: November 14, 2019
    Inventor: Christopher Nicholas Allo
  • Publication number: 20190348070
    Abstract: A data storage device can transition a functional data storage medium into a read only data surface. Data can be written to a data storage medium with a data writer of a transducing head prior to a security threat being identified. A write head of the transducing head is deactivated in response to the security threat by selecting a permanent deactivation mechanism.
    Type: Application
    Filed: May 10, 2019
    Publication date: November 14, 2019
    Inventor: Christopher Nicholas Allo
  • Publication number: 20190347020
    Abstract: Apparatus and method for configuring a data storage device as a write once read many (WORM) drive. In some embodiments, the storage device has a rotatable disc with at least one data recording layer, and a data transducer that is selectively moveable with respect to the rotatable disc. The data transducer has a write element configured to write data to the data recording layer, and a read element configured to read data from the data recording layer. A control circuit is configured to physically disable the write element in response to a write element disable signal. The disabling of the write element prevents further writing of data to the data recording layer. The read element remains operative to continue reading data from the data recording layer after the write element has been disabled.
    Type: Application
    Filed: December 13, 2018
    Publication date: November 14, 2019
    Inventor: Christopher Nicholas Allo
  • Patent number: 10474361
    Abstract: Apparatus and method for managing data. A host device is coupled to multiple hybrid data storage devices each having a primary non-volatile memory (NVM), a secondary NVM, a top level controller and a secondary controller. During a normal I/O processing mode, host access commands are serviced by the top level controllers to direct transfers with the respective primary and secondary NVMs. During a front end I/O processing mode, the host device forms a consolidated, distributed memory space in which data are separately stored to the secondary NVMs by the host device. The primary NVM may be rotatable recording media and the secondary NVM may be flash memory. The secondary NVM may be in the form of removable SSD cards that plug into the storage devices to support replacement and performance upgrades, as well as allowing transitions between cold and hot data storage modes in a single system.
    Type: Grant
    Filed: May 2, 2018
    Date of Patent: November 12, 2019
    Assignee: Seagate Technology LLC
    Inventor: Christopher Nicholas Allo
  • Publication number: 20190339867
    Abstract: Apparatus and method for managing data. A host device is coupled to multiple hybrid data storage devices each having a primary non-volatile memory (NVM), a secondary NVM, a top level controller and a secondary controller. During a normal I/O processing mode, host access commands are serviced by the top level controllers to direct transfers with the respective primary and secondary NVMs. During a front end I/O processing mode, the host device forms a consolidated, distributed memory space in which data are separately stored to the secondary NVMs by the host device. The primary NVM may be rotatable recording media and the secondary NVM may be flash memory. The secondary NVM may be in the form of removable SSD cards that plug into the storage devices to support replacement and performance upgrades, as well as allowing transitions between cold and hot data storage modes in a single system.
    Type: Application
    Filed: May 2, 2018
    Publication date: November 7, 2019
    Inventor: Christopher Nicholas Allo
  • Publication number: 20190342301
    Abstract: Apparatus and method for establishing trust among processing devices arranged into a trust family. In some embodiments, each processing device in a group of devices has an internal token value as a unique ID value associated with the corresponding device. The internal token values are distributed among the various devices so that each device stores the internal token value of another device as an external token value. A host controller circuit authenticates the trust family by querying the devices and receiving responses therefrom. Each response is generated by a device using the external token value stored by the device. In this way, the trust family is authenticated by matching each of the external token values to each of the devices in the group. The devices may be data storage devices such as solid state drives (SSDs) in a multi-device storage environment.
    Type: Application
    Filed: May 2, 2018
    Publication date: November 7, 2019
    Inventor: Christopher Nicholas Allo