Role based encryption without key management system
US8995665B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Aug 20, 2008 |
| Grant date | Mar 31, 2015 |
| Priority date | — |
| Expiry date | Oct 10, 2031 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2463/062
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A role based security infrastructure for data encryption that does not require a key management system is provided. For each defined role, a unique key pair is generated. To encrypt a data set, a random encryption key is generated on the fly, and used to encrypt the data. To allow a role access to an encrypted data set, the corresponding encryption key is encrypted with the public key of that role, and stored in association with the encrypted data set. To access an encrypted data set, a private key associated with a role allowed access is used to decrypt the copy of the associated encryption key, which has been encrypted using the corresponding public key and stored in association with the data set. The decrypted encryption key is then used to decrypt the encrypted data set.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.