Securing data using key agreement
US11522686B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jul 16, 2020 |
| Grant date | Dec 6, 2022 |
| Priority date | — |
| Expiry date | Oct 26, 2040 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L9/3066
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Methods and systems for securing customer data in a multi-tenant database environment are described. A key identifier received from a security server may be stored by an application server. The key identifier may be associated with a private key that is accessible by the security server and not accessible by the application server. A request to derive a symmetric key may be transmitted from the application server to the security server, the request including a public key generated by the application server, a salt value, and the key identifier. The symmetric key may then be derived based on the transmitted public key and the private key using a key derivation function. The application server may then receive and store the symmetric key in an in-memory cache, and be used to securely encrypt data received by the application server from client devices.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.