Patent · US Active

Sensitive data encryption

US11995197B2 · kind B2 · utility

0Cited by

2References

17Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Qi Feng Huo · Beijing, CN
Yan Liu · Elmsford, US
Da Li Liu · Beijing, CN
Lei Li · Zhengzhou, CN
Yuan Wang · Beijing, CN

Key dates

Filing date	Jul 27, 2021
Grant date	May 28, 2024
Priority date	—
Expiry date	Sep 23, 2042

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2149
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

In a method for encryption of sensitive data, an encrypted user private key is received in a Trusted Execution Environment (TEE) in a worker node in a container management system, the encrypted user private key being an encrypted version of a user private key for decrypting a message from a user in the container management system. The user private key is obtained in the TEE, and the encrypted user private key being decrypted into the user private key with a provider private key that is received from an encryption manager for managing the container management system. With these embodiments, the user private key may be transmitted to the worker node safely, such that the worker node may use the user private key to decrypt messages from the user. Therefore, the security level of the container management system may be increased.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.