Handling key rotation problems
US9369279B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 23, 2013 |
| Grant date | Jun 14, 2016 |
| Priority date | — |
| Expiry date | Jan 11, 2034 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L9/0891
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Example embodiments include centralized systems for managing cryptographic keys and trust relationships among systems. Embodiments may include a centralized key store and a centralized policy store. Key sets comprising public/private keys may be stored in or identified by key objects. Key objects within the key store may be organized into trust sets and policies may apply at any level within the key store. Policies may identify when to rotate key sets. When rotating key sets, a new public key and a new private key may be generated. The new public/private keys may be installed at locations where the old public/private keys reside. As the new public/private keys are installed, they may be tested. If problems with the new public/private keys occur, the new public/private keys may be rolled back to the old public/private keys for locations experiencing problems. Remedial action may then be taken to resolve the problems.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.