Fault-tolerant key management system

Assignee

• Quintessence Labs Pty Ltd. · AU

Inventors

• John Leiseboer · Canberra, AU
• Mayank Daswani · Canberra, AU
• Teresa Bradbury · Canberra, AU
• Florian Poppa · Canberra, AU
• Kenli Chong · Canberra, AU
• John M. Green · Arlington, US
• Warren Armstrong · Canberra, AU
• Martin Shannon · Canberra, AU
• Vello Tabur · Canberra, AU

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/061
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A configuration for a key management system is provided for managing cryptographic keys in cryptosystems. The configuration includes the use of database replication to improve the reliability, accessibility, and partition tolerance of the key management system. The configuration also includes the use of database sharding and distributed networks to improve the functionality of the key management system. From a logical level, the system can appear multi-master because client software can connect with any compute node in a plurality of compute nodes and perform key management operations on the entire key database from that compute node. From a physical level, the system can be a master-slave configuration with each database shard replication group having a single master shard instance and one or more slave shard instances. In some examples, the present disclosure provides better redundancy, load balancing, availability, and partition tolerance for key management systems.