Patent · US Active

Encrypting and decrypting sensitive files on a network device

US10534933B1 · kind B1 · utility

2Cited by

1References

20Claims

0Family size

Assignee

Symantec Corporation · US

Inventors

Kevin Roundy · El Segundo, US
Yuqiong Sun · Mountain View, US
Christopher Gates · Culver City, US
Michael Hart · Farmington, US
Saurabh Shintre · Sunnyvale, US
Brian Witten · Reston, US

Key dates

Filing date	Dec 27, 2017
Grant date	Jan 14, 2020
Priority date	—
Expiry date	Jul 9, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/082
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Encrypting and decrypting sensitive files on a network device. In one embodiment, a method may include determining that a file stored on a network device is a sensitive file, encrypting the sensitive file, sending, to an authentication server, an encryption key, initializing, at the network device, a Software Guard Extension (SGX) enclave, loading, into the SGX enclave, a retrieval application, receiving, at the retrieval application, an attestation from the authentication server that the retrieval application is authentic, receiving, at the retrieval application, the encryption key from the authentication server, receiving, at the retrieval application, a user request to decrypt the encrypted sensitive file, authenticating, at the retrieval application, the user request, decrypting, at the network device, the particular encrypted sensitive file, and providing the sensitive file to the user.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.