	US 11,863,664 B2
	Method of performing key exchange for security operation in storage device and method of performing authority transfer in storage device using the same
Younsung Chu, Yongin-si (KR)
Assigned to SAMSUNG ELECTRONICS CO., LTD., Suwon-si (KR)
Filed by SAMSUNG ELECTRONICS CO., LTD., Suwon-si (KR)
Filed on May 21, 2021, as Appl. No. 17/326,718.
Claims priority of application No. 10-2020-0135849 (KR), filed on Oct. 20, 2020.
Prior Publication US 2022/0123921 A1, Apr. 21, 2022
Int. Cl. H04L 29/06 (2006.01); H04L 9/08 (2006.01); H04L 9/32 (2006.01)

CPC H04L 9/083 (2013.01) [H04L 9/0822 (2013.01); H04L 9/0825 (2013.01); H04L 9/0869 (2013.01); H04L 9/3247 (2013.01); H04L 9/3263 (2013.01)]

20 Claims

1. A method of performing key exchange for a security operation in a storage device to be accessed by a plurality of user identifications (IDs), the method comprising:

generating, by a trusted third party (TTP) in or coupled to the storage device, a first certificate based on a first user ID and a first public key;

generating, by the TTP, a second certificate based on a second user ID and a second public key;

while the storage device is accessed by the first user ID, performing a first verification on the second certificate based on a third certificate in or accessed by the TTP;

when the first verification is successfully completed, deriving a ciphering key based on a first private key and the second public key obtained by the first verification;

while the storage device is accessed by the second user ID, performing a second verification on the first certificate based on the third certificate; and

when the second verification is successfully completed, deriving the ciphering key based on a second private key and the first public key obtained by the second verification.