Patent · US Active

Multi-user storage volume encryption via secure enclave

US10691837B1 · kind B1 · utility

11Cited by

2References

25Claims

0Family size

Assignee

Apple Inc. · US

Inventors

Pierre-Olivier J. Martel · Mountain View, US
Arthur Mesh · San Francisco, US
Wade Benson · San Jose, US

Key dates

Filing date	Dec 6, 2017
Grant date	Jun 23, 2020
Priority date	—
Expiry date	May 18, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L9/14
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Embodiments described herein enable multi-user storage volume encryption via a secure enclave processor. One embodiment provides for a computing device comprising a first processor to execute a first operating system having one or more user accounts; a second processor to execute a second operating system, the second processor including a secure enclave, the secure enclave to receive a first encrypted key from the first processor and decrypt a volume encryption key via a key encryption key derived from the first encrypted key, the first encrypted key derived via the secure enclave without user-provided entropy; and a non-volatile memory controller to access encrypted data within non-volatile memory using the volume encryption key.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.