Policy-based key sharing
US9680649B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Mar 19, 2015 |
| Grant date | Jun 13, 2017 |
| Priority date | — |
| Expiry date | Jun 4, 2035 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L9/088
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Methods of providing policy based access to master keys, enabling keys to be distributed to groups of users in a secure manner while minimizing disruptions to the user in the event of changes to group membership or changes to user attributes. User attributes are identified. Policies are rewritten in terms of user attributes. New unique user attribute keys are generated for each attribute for each user. An access tree is constructed with user attribute keys as leaf nodes and Boolean algebra operations as internal nodes. Shamir polynomials are used for AND nodes, and broadcast polynomials are used for OR nodes. Master keys are accessible by traversing the access tree from the leaf nodes to the root node constructing the polynomials attached to all the nodes along the access path.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.