System and method for data access management using encryption based on data sensitivity levels
US12254109B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Feb 28, 2023 |
| Grant date | Mar 18, 2025 |
| Priority date | — |
| Expiry date | Dec 13, 2043 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L9/3268
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Methods and systems for managing access to data stored in data storage systems are disclosed. An end device and/or user thereof may require access to sensitive data of varying sensitivity levels stored in a data storage system. To prevent malicious parties from gaining access to the sensitive data, an access control system may be implemented. The access control system may include a registration process that registers end device and user combinations and assigns cryptographic key pairs to each registered combination. The key pairs may be generated using information specific to the sensitivity level of the data and managed using a key tree structure. Before sensitive data may be accessed, a requesting device and its associated user may be authenticated using the key pairs generated during registration. The sensitive data may be encrypted using sensitivity level and device-specific encryption.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.