Securing Data Storage Commands with Passcodes
This patent describes a system for securely executing commands on data storage systems by requiring a generated passcode, which is based on user authentication and specific storage entity attributes.
Original patent title: “Securing storage control path against unauthorized access”
This patent describes a system for securely executing commands on data storage systems by requiring a generated passcode, which is based on user authentication and specific storage entity attributes. Granted to EMC IP Holding Co LLC in 2018 with 22 claims and 89 forward citations.
Key facts
Coverage
What does this patent actually cover?
This patent details a method for protecting data storage systems from unauthorized actions. When a user wants to issue a command, like modifying or deleting data, they first provide their user ID and authentication info. If that checks out (like a password and a code from an app), the system generates a special passcode. This passcode isn't random; it's created using specific details about the storage system or the data being targeted, like its serial number or a snapshot ID. The user then sends their command along with this passcode. The storage system checks if the passcode is valid for that specific command and data, and only if it matches does it execute the command. This ensures that even if someone intercepts a command, they can't run it without the correct, context-aware passcode.
The gap
What does this patent NOT cover?
- Commands that do not require a passcode because they are not part of a predefined subset of sensitive operations.
- Executing control commands without first successfully authenticating the user identifier.
- Generating a passcode that is not based on at least one attribute of the specific data storage entity being targeted.
- Using a passcode that has not been validated by the data storage system against the specific command and entity.
- Control commands that are not part of an 'allowable' set of operations defined by policies.
These exclusions are unique to PatentBrief — derived from the actual claim language, not patent-office boilerplate.
What made this novel
The innovation lies in generating a dynamic passcode that is intrinsically linked to the specific data storage entity and the type of command being issued. Instead of a static password, it uses attributes of the target data, making the passcode context-aware and much harder to spoof or reuse incorrectly.
Schematic visualization of the patent's claim structure. Hand-drawn diagrams in progress for each landmark patent.
Where you've seen this
Real-world examples
Enterprise storage management software
Cloud storage control planes
Data backup and recovery systems
Why it matters
The bigger picture
In enterprise data centers, managing vast amounts of storage is critical. Unauthorized changes to storage configurations, like deleting critical data or logical devices, can have catastrophic consequences. This patent provides a robust mechanism to prevent such accidental or malicious actions by adding an extra layer of security specifically for sensitive storage operations.
Filed
March 9, 2016
Granted
October 16, 2018
Market context
Who's building on this
Companies in this space
Companies like Dell EMC (the assigneeassigneeThe entity that owns the patent — usually the inventor's employer or a company.Read more →), IBM, NetApp, and other major enterprise storage vendors likely implement similar security protocols in their management software to protect customer data. Cloud providers such as Amazon Web Services, Microsoft Azure, and Google Cloud also employ sophisticated access control mechanisms for their storage services.
Market impact
This patent addresses a key security concern in the rapidly growing data storage market. By requiring context-aware passcodes for sensitive operations, it helps prevent data loss and ensures compliance, making it a valuable asset for vendors in the competitive enterprise storage landscape.
Claim 1 — Plain English
What this patent covers
This patent details a method for protecting data storage systems from unauthorized actions. When a user wants to issue a command, like modifying or deleting data, they first provide their user ID and authentication info. If that checks out (like a password and a code from an app), the system generates a special passcode. This passcode isn't random; it's created using specific details about the storage system or the data being targeted, like its serial number or a snapshot ID. The user then sends their command along with this passcode. The storage system checks if the passcode is valid for that specific command and data, and only if it matches does it execute the command. This ensures that even if someone intercepts a command, they can't run it without the correct, context-aware passcode.
The clever bit
The innovation lies in generating a dynamic passcode that is intrinsically linked to the specific data storage entity and the type of command being issued. Instead of a static password, it uses attributes of the target data, making the passcode context-aware and much harder to spoof or reuse incorrectly.
What it does not cover
- Commands that do not require a passcode because they are not part of a predefined subset of sensitive operations.
- Executing control commands without first successfully authenticating the user identifier.
- Generating a passcode that is not based on at least one attribute of the specific data storage entity being targeted.
- Using a passcode that has not been validated by the data storage system against the specific command and entity.
- Control commands that are not part of an 'allowable' set of operations defined by policies.
Patent timeline
Application submitted to the patent office
Application published, typically 18 months after filing
Patent officially issued
PatentBrief Score
Impact Score
Strong
Citation count
39/40
Highly cited
Claim breadth
15/20
Broad claimsclaimsThe numbered statements at the end of a patent that legally define what the inventor owns.Read more →
Recency
10/20
Granted 5–10 years ago
Assignee scale
0/20
Independent or smaller assigneeassigneeThe entity that owns the patent — usually the inventor's employer or a company.Read more →
PatentBrief Impact Score — based on citation count, claim breadth, recency, and assignee scale. Not a legal assessment.
Heuristic Value Estimate
What this patent might be worth
$312K – $998K
Midpoint $624K · 9.7 yr remaining · industry ×1.6
Heuristic only — blends forward/backward citation counts, claim scope, time remaining, litigation history, and CPC-derived industry baseline. Real valuations need a professional appraisal.
The original legal language
Original claims
22 claims as filed with the patent office.
Concepts involved
Citations
Patent lineage
Cite this patent
Sahin, A., & Specht, M. (2018). Securing Data Storage Commands with Passcodes (U.S. Patent No. 10,102,356). U.S. Patent and Trademark Office. https://patentbrief.org/patent/us/10102356/macos-dark-mode
Auto-generated from the patent record. Double-check author order and the issue date against the official USPTO document before submitting.
Embed
Add this patent to your site
Drop this plain-English patent card into any blog post or article — free, no signup. It always links back to the full breakdown here.
<div data-patentlens-widget data-patent-number="US10102356"></div> <script src="https://patentbrief.org/embed.js" async></script>
Stay in the loop
Get a weekly digest of new patents.
One email per week. No spam. Unsubscribe anytime.
Keep exploring
Related patents you should know
US 4683195 · 1987
How to Make Billions of Copies of a DNA Segment
This patent describes the Polymerase Chain Reaction (PCR), a method to rapidly create many copies of a specific piece of DNA or RNA, enabling its detection and analysis.
Cetus Corp
US 8697359 · 2014
How to Edit Genes in Human Cells Using an Engineered CRISPR System
This patent describes an engineered CRISPR-Cas9 system for precisely cutting DNA in eukaryotic cells to change how genes work, opening the door for gene editing in complex organisms.
Massachusetts Institute of Technology
US 7657849 · 2010
How the iPhone's Slide-to-Unlock Gesture Works
Apple's 2010 patent describes unlocking a device by dragging a specific graphical image across the touchscreen along a predefined path, a gesture that became iconic with the original iPhone.
Apple Inc
US 4733665 · 1988
How Doctors Implant a Permanent Stent Using a Balloon
This patent describes the method for placing a permanent, expandable wire mesh tube inside a blood vessel or other body tube using a balloon-tipped catheter to widen it and keep it open.
Expandable Grafts Partnership
US 4965188 · 1990
How to Make Many Copies of a DNA Piece with Heat
This patent describes the Polymerase Chain Reaction (PCR) method, a technique to make millions of copies of a specific DNA segment using a heat-resistant enzyme and repeated temperature changes.
Cetus Corp
US 4235871 · 1980
How to Encapsulate Active Materials in Lipid Bubbles Efficiently
This patent describes a method for trapping biologically active substances inside tiny, multi-layered fat bubbles called liposomes, using a specific water-in-oil emulsion and gel-forming process to improve how much material gets captured.
Individual
More to explore
More in Consumer Electronics
US 7657849 · 2010 · Apple Inc
How the iPhone's Slide-to-Unlock Gesture Works
US 7479949 · 2009 · Apple Inc
How Touchscreens Understand Your Finger Swipes and Scrolls
US 4528643 · 1985 · FPDC Inc
How Stores Make Custom Products On-Demand with Remote Approval
US 7469381 · 2008 · Apple Inc
How Touchscreens Show and Snap Back When You Scroll Past an Edge
New to patents?
Common Questions
Frequently Asked Questions
What does Securing Data Storage Commands with Passcodes cover?
This patent describes a system for securely executing commands on data storage systems by requiring a generated passcode, which is based on user authentication and specific storage entity attributes.
Who owns patent US 10102356?
EMC IP Holding Co LLC owns this patent, granted in 2018.
When does this patent expire?
This patent is expected to expire on October 16, 2038, when the invention enters the public domain.
What is patent US 10102356 cited by?
This patent has been cited by 89 later patents that build on its ideas.
What problem does this patent solve?
In enterprise data centers, managing vast amounts of storage is critical. Unauthorized changes to storage configurations, like deleting critical data or logical devices, can have catastrophic consequences. This patent provides a robust mechanism to prevent such accidental or malicious actions by adding an extra layer of security specifically for sensitive storage operations.
What does this patent NOT cover?
Commands that do not require a passcode because they are not part of a predefined subset of sensitive operations.
Same assignee
More from EMC IP Holding Co LLC
Patent monitoring