Trust services for securing data in the cloud

Assignee

• MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

• Irina Gorbach · Bellevue, US
• Venkatesh Krishnan · Sunnyvale, US
• Andrey Shur · Redmond, US
• Dmitry Denisov · Bellevue, US
• Lars Kuhtz · Seattle, US
• Sumalatha Adabala · Redmond, US
• Roy Peter D'Souza · Bellevue, US
• Michael Entin · Redmond, US
• Michael Ray Clark · Beavercreek, US
• Gitika Aggarwal Saubhasik · Sammamish, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L2463/062
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Embodiments are directed to securing data in the cloud, securely encrypting data that is to be stored in the cloud and to securely decrypting data accessed from the cloud. In one scenario, an instantiated trust service receives information indicating that a trust server is to be instantiated. The trust service instantiates the trust server, which is configured to store key references and encrypted keys. The trust service receives the public key portion of a digital certificate for each publisher and subscriber that is to have access to various specified portions of encrypted data. A data access policy is then defined that specifies which encrypted data portions can be accessed by which subscribers.