Cloud-based key management
US9621524B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Dec 16, 2013 |
| Grant date | Apr 11, 2017 |
| Priority date | — |
| Expiry date | Apr 11, 2034 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/083
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Cloud storage of sensitive data is improved by ensuring that all cloud-based data is encrypted at all times, not only when the data is at rest (i.e., stored), but also while data is being processed or communicated. Cryptographic keys can advantageously be managed via cloud based resources without exposing sensitive data. Instead, a key management system maintains cryptographic functions on administrative hosts and endpoints outside of cloud-based resources so that any vulnerabilities of the cloud-based resources will expose only encrypted data, and keys and sensitive data will never be exposed in unencrypted form. Thus sensitive data is protected end-to-end among hosts and endpoints using, e.g., platform independent cryptographic functions and libraries within a web browser or the like, and the cloud functions simply as a storing and forwarding medium for secure data.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.