Binding data to a network in the presence of an entity with revocation capabilities
US10129025B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 19, 2016 |
| Grant date | Nov 13, 2018 |
| Priority date | — |
| Expiry date | May 6, 2037 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/061
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Implementations of the disclosure provide for binding data to a network in the presence of an entity with revocation capabilities. A cryptographic system is provided that includes a memory to store revocation information comprising a plurality of identifiers and a processing device operatively coupled to the memory. A provisioning public key is recovered in view of a first intermediate public key associated with a client device storing encrypted data. A binding identifier is generated for the client device in view of the provisioning public key. It is determined whether access to the encrypted data associated with the binding identifier is revoked or allowed in view of the revocation information. Responsive to determining that the access is allowed, provide a second intermediate public key to derive an encryption key to access the encrypted data in view of at least the provisioning public key and the first intermediate public key.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.