Performing an operation on a data storage
US10740478B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jul 31, 2017 |
| Grant date | Aug 11, 2020 |
| Priority date | — |
| Expiry date | Apr 21, 2038 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F16/22
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
A method of performing an operation on a data storage for storing data being encrypted with a key KD associated with an owner of the data is provided. The method includes deriving, for each authorized client Cj, a first key KCj and a second key KTj, providing the client Cj with the first key KCj, and providing a Trusted Third Party (TTP) with the second key KTj. The method further includes, at a Policy Enforcement Point, receiving a request for performing the operation on the data storage from a client Ck of the authorized clients, acquiring a first key KCk from the client Ck, acquiring a second key KTk from the TTP, deriving the key KD from the first key KCk and the second key KTk, and performing the operation on the data storage using the derived key KD. The disclosed trust model uses two-part secret sharing.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.