Smarter leaders trust GlobalData

Data Insights Microsoft Corp - Company Profile

Buy the Report

Access deeper industry intelligence

Experience unmatched clarity with a single platform that combines unique data, AI, and human expertise.

Find out more

According to GlobalData’s company profile on Microsoft, AI for workflow management was a key innovation area identified from patents. Microsoft's grant share as of September 2023 was 56%. Grant share is based on the ratio of number of grants to total number of patents.

Enhancing security of device-internal encryption with external entropy

A recently granted patent (Publication Number: US11775657B2) describes a system and method for enhancing the security of device-internal encryption using externally generated entropy. The system includes a host operating system (OS) that is connected to a Self-Encrypting Drive (SED) and a remote network entropy source. The host OS is responsible for transmitting data generated by an application to the SED and receiving a public key from the remote network entropy source. The public key is stored in the SED for future use. The host OS also receives a communication from the remote network entropy source, which includes a first random number and a signature generated using a private key. The communication is authenticated using the public key stored in the SED. The first random number is then provided to an encryption controller embedded within the SED.

The encryption controller receives a second random number from a drive entropy source also embedded within the SED. It combines the first and second random numbers to generate an encryption key. The data generated by the application is then encrypted using the encryption key and written to a storage medium within the SED.

The system also includes additional features such as the use of an additive cipher to generate the encryption key and a random number generator (RNG) as the drive entropy source. The first random number can be provided to the encryption controller through an application programming interface (API) call that facilitates the initialization protocol of the SED.

The patent also describes a computer-implemented method that follows a similar process. The host OS transmits data to an encryption device, receives a public key and a communication from a remote network entropy source, authenticates the communication, and provides the first random number to the encryption device. The encryption device generates a second random number, combines it with the first random number, and applies algorithms to generate an encryption key. The data is then encrypted and can be written to a storage medium within the encryption device or transmitted to external data storage.

Overall, this patent describes a system and method for enhancing the security of device-internal encryption by incorporating externally generated entropy. By utilizing a combination of random numbers and cryptographic functions, the system ensures a higher level of security for data encryption and storage within a Self-Encrypting Drive.

To know more about GlobalData’s detailed insights on Microsoft, buy the report here.

GlobalData, the leading provider of industry intelligence, provided the underlying data, research, and analysis used to produce this article.

GlobalData Patent Analytics tracks bibliographic data, legal events data, point in time patent ownerships, and backward and forward citations from global patenting offices. Textual analysis and official patent classifications are used to group patents into key thematic areas and link them to specific companies across the world’s largest industries.