US 12,229,301 B2
Access control of protected data using storage system-based multi-factor authentication
Yevgeni Gehtman, Modi'in (IL); Maxim Balin, Gan-Yavne (IL); and Tomer Shachar, Omer (IL)
Assigned to EMC IP Holding Company LLC, Hopkinton, MA (US)
Filed by EMC IP Holding Company LLC, Hopkinton, MA (US)
Filed on May 5, 2021, as Appl. No. 17/308,114.
Prior Publication US 2022/0358235 A1, Nov. 10, 2022
Int. Cl. G06F 21/62 (2013.01); H04L 9/40 (2022.01)
CPC G06F 21/6227 (2013.01) [H04L 63/08 (2013.01); H04L 2463/082 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method, comprising:
obtaining, in a storage system, at least one input/output operation requesting data, the storage system comprising at least one processing device and a plurality of storage devices that stores the requested data, the at least one processing device comprising a processor coupled to a memory;
determining, by the storage system, in response to the obtained at least one input/output operation requesting data, whether a multi-factor authentication is required for the requested data by evaluating whether at least a portion of the requested data is marked as protected data, wherein the marking as protected data provides an indication to the storage system to perform a multi-factor authentication in response to a request to access the protected data associated with the at least one input/output operation requesting data;
initiating, by the storage system, the multi-factor authentication of a user associated with the at least one input/output operation, in response to a result of the determining, to obtain a verification result; and
processing, in the storage system, the at least one input/output operation requesting data based at least in part on the verification result.