公开(公告)号：US20180314847A1

公开(公告)日：2018-11-01

申请号：US15878871

申请日：2018-01-24

Applicant: Google LLC

Inventor： Kevin Yeo ,  Sarvar Patel ,  Giuseppe Persiano

IPC: G06F21/62 ,  H04L9/08 ,  H04L29/06 ,  H04L9/32

CPC classification number: G06F21/6227 ,  H04L9/0631 ,  H04L9/0819 ,  H04L9/085 ,  H04L9/0866 ,  H04L9/0894 ,  H04L9/3234 ,  H04L63/0435 ,  H04L63/062 ,  H04L63/08 ,  H04L63/10

Abstract: A method for sharing read access to a document stored on memory hardware. The method includes receiving a shared read access command from a sharor sharing read access to a sharee for a document stored on memory hardware in communication with the data processing hardware, and receiving a shared read access request from the sharee. The shared read access command includes an encrypted value and a first cryptographic share value based on a write key, a read key, a document identifier, and a sharee identifier. The method also includes multiplying the first and second cryptographic share values to determine a cryptographic read access value. The cryptographic read access value authorizes read access to the sharee for the document. The method also includes storing a read access token for the sharee including the cryptographic read access value and the encrypted value in a user read set of the memory hardware.

公开(公告)号：US20240204991A1

公开(公告)日：2024-06-20

申请号：US18590514

申请日：2024-02-28

Applicant: Google LLC

Inventor： Sarvar Patel ,  Marcel M.M. Yung ,  Gang Wang ,  Karn Seth ,  Mariana Raykova ,  Benjamin R. Kreuter ,  Ananth Raghunathan

IPC: H04L9/08 ,  H04L9/32

CPC classification number: H04L9/085 ,  H04L9/0869 ,  H04L9/32 ,  H04L2209/50

Abstract: A method including at each of a number of client devices receiving a data item, receiving a public key from a second computing system, encrypting the data item using the public key to produce a singly encrypted data item, engaging in an oblivious pseudorandom function protocol with a first computing system using the singly encrypted data item to produce a seed, generating an encrypted secret share using a threshold secret sharing function under which the encrypted secret share cannot be decrypted until a threshold number of encrypted secret shares associated with the same singly encrypted data item are received, and transmitting the encrypted secret share to the first computing system and at the first computing system receiving a number of encrypted secret shares from the number of client devices, processing the number of encrypted secret shares to produce processed data, and transmitting the processed data to a second computing system.

公开(公告)号：US11943352B2

公开(公告)日：2024-03-26

申请号：US17233045

申请日：2021-04-16

Applicant: Google LLC

Inventor： Kevin Yeo ,  Sarvar Patel ,  Phillipp Schoppmann

IPC: H04L9/30 ,  G06F7/72 ,  G06F9/30 ,  G06F16/9035 ,  H04L9/08

CPC classification number: H04L9/3033 ,  G06F7/723 ,  G06F9/3001 ,  G06F16/9035 ,  H04L9/085

Abstract: A method for outsourcing exponentiation in a private group includes executing a query instruction to retrieve a query element stored on an untrusted server by selecting a prime factorization of two or more prime numbers of a modulus associated with the query element stored on the server, obtaining a group element configured to generate a respective one of the prime numbers, generating a series of base values using the prime factorization and the group element, and transmitting the series of base values from the client device to the server. The server is configured to determine an exponentiation of the group element with an exponent stored on the server using the series of base values. The method also includes receiving a result from the server based on the exponentiation of the group element with the exponent.

公开(公告)号：US11902425B2

公开(公告)日：2024-02-13

申请号：US16712487

申请日：2019-12-12

Applicant: Google LLC

Inventor： Kevin Yeo ,  Sarvar Patel

IPC: H04L9/08 ,  G06F16/9032 ,  G06F16/93 ,  G06F16/903 ,  H04L9/06

CPC classification number: H04L9/0825 ,  G06F16/9032 ,  G06F16/90335 ,  G06F16/93 ,  H04L9/0631 ,  H04L9/0637 ,  H04L9/0866 ,  H04L9/0869

Abstract: A method for searchable encryption with a public key includes receiving an operation request from a user device associated with a user requesting that encryption of data associated with the user. The data includes a corpus of documents stored on a remote storage device. The method also includes receiving a public key associated with the user. The public key includes an asymmetric cryptographic public key. The method also includes generating a random data key. The data key includes a symmetric cryptographic key. The method also includes encrypting, using the data key, a search index for the corpus of documents based on keywords within the corpus of documents. The method also includes encrypting, using the public key, the data key and sending the encrypted data key to a user device associated with the user.

公开(公告)号：US20230231698A1

公开(公告)日：2023-07-20

申请号：US18189187

申请日：2023-03-23

Applicant: Google LLC

Inventor： Kevin Yeo ,  Joon Young Seo ,  Sarvar Patel

IPC: H04L9/06 ,  G06F21/62

CPC classification number: H04L9/0662 ,  G06F21/6227

Abstract: A method includes obtaining, from a server, a filter including a set of encrypted identifiers each encrypted with a server key controlled by the server. The method includes obtaining a request that requests determination of whether a query identifier is a member of a set of identifiers corresponding to the set of encrypted identifiers. The method also includes transmitting an encryption request to the server that requests the server to encrypt the query identifier. The method includes receiving, from the server, an encrypted query identifier including the query identifier encrypted by the server key and determining, using the filter, whether the encrypted query identifier is not a member of the set of encrypted identifiers. When the encrypted query identifier is not a member of the set of encrypted identifiers, the method includes reporting that the query identifier is not a member of the set of identifiers.

公开(公告)号：US11574073B2

公开(公告)日：2023-02-07

申请号：US17446456

申请日：2021-08-30

Applicant: Google LLC

Inventor： Kevin Yeo ,  Sarvar Patel ,  Giuseppe Persiano

IPC: H04L29/06 ,  G06F21/62 ,  H04L9/08 ,  H04L9/40 ,  H04L9/32 ,  H04L9/06

Abstract: A method for sharing read access to a document stored on memory hardware. The method includes receiving a shared read access command from a sharor sharing read access to a sharee for a document stored on memory hardware in communication with the data processing hardware, and receiving a shared read access request from the sharee. The shared read access command includes an encrypted value and a first cryptographic share value based on a write key, a read key, a document identifier, and a sharee identifier. The method also includes multiplying the first and second cryptographic share values to determine a cryptographic read access value. The cryptographic read access value authorizes read access to the sharee for the document. The method also includes storing a read access token for the sharee including the cryptographic read access value and the encrypted value in a user read set of the memory hardware.

公开(公告)号：US20220147650A1

公开(公告)日：2022-05-12

申请号：US17285831

申请日：2020-08-24

Applicant: Google LLC

Inventor： Karn Seth ,  Sarvar Patel ,  Mariana Raykova ,  Srinivasan Seshadri ,  Margo Werner ,  Philip McDonnell ,  Amin Charaniya

IPC: G06F21/62 ,  H04L9/14 ,  H04L9/08 ,  H04L9/06

Abstract: A method disclosed herein may include receiving, at a first computing system, encrypted identifiers and encrypted values, performing, by the first computing system, a concealing operation on the encrypted identifiers to produce concealed encrypted identifiers, wherein the concealing operation conceals the encrypted identifiers from the first computing system and a second computing system but enables matching between the concealed encrypted identifiers, decrypting, by the second computing system, the concealed encrypted identifiers to produce concealed identifiers, and performing, by the second computing system, an aggregation operation using the concealed identifiers and the encrypted values to produce an encrypted aggregate value without accessing personally identifiable information associated with the encrypted values.

公开(公告)号：US11308224B2

公开(公告)日：2022-04-19

申请号：US16713872

申请日：2019-12-13

Applicant: Google LLC

Inventor： Kevin Yeo ,  Ahmet Erhan Nergiz ,  Laetitia Estelle Baudoin ,  Nicolas Lidzborski ,  Sarvar Patel

IPC: G06F21/60 ,  H04L9/00 ,  H04L9/06 ,  H04L29/06

Abstract: A method for providing an encrypted search system includes receiving a search query for a keyword that appears in one or more encrypted emails stored on an untrusted storage device and accessing, a count table to obtain a count of unique emails within the emails that include the keyword. The method also includes generating a delegatable pseudorandom function (DPRF) based on the keyword, a private cryptographic key, and the count of unique emails that include the keyword and delegating at least a portion of the DPRF to the untrusted storage device that causes the storage device to evaluate the delegated DPRF, access an encrypted search index associated with the emails, and determine one or more encrypted emails associated with the delegated DPRF based on the encrypted search index. The storage device also returns, to the user device, an identifier for each encrypted email associated with the delegated DPRF.

公开(公告)号：US20220092047A1

公开(公告)日：2022-03-24

申请号：US17457533

申请日：2021-12-03

Applicant: Google LLC

Inventor： Kevin Yeo ,  Ahmet Erhan Nergiz ,  Nicolas Lidzborski ,  Laetitia Estelle Baudoin ,  Sarvar Patel

IPC: G06F16/22 ,  G06F16/242 ,  G06F16/2455 ,  H04L9/06 ,  H04L9/08 ,  H04L9/00 ,  G06F21/60

Abstract: A method for providing encrypted search includes receiving, at a user device associated with a user, a search query for a keyword that appears in one or more encrypted documents stored on an untrusted storage device and accessing a count table to obtain a count of documents that include the keyword. The method also includes generating a delegatable pseudorandom function (DPRF) based on the keyword, a private cryptographic key, and the count of documents. The method also includes evaluating a first portion of the DPRF and delegating a remaining second portion of the DPRF to the untrusted storage device which causes the untrusted storage device to evaluate the DPRF and access an encrypted search index associated with the documents. The untrusted storage device determines one or more encrypted documents associated with DPRF and returns, to the user device, an identifier for each encrypted document associated with the DPRF.

公开(公告)号：US20220004654A1

公开(公告)日：2022-01-06

申请号：US16486281

申请日：2019-04-19

Applicant: Google LLC

Inventor： Sarvar Patel ,  Marcel M. Moti Yung ,  Karn Seth ,  Benjamin Kreuter

IPC: G06F21/62 ,  H04L9/00

Abstract: Systems, methods, devices, and other techniques for preserving privacy when comparing private datasets from first and second computing systems. The second computing system identifies a first set of identifiers corresponding to records in a private database of the second computing system. The second computing system receives blinded versions of a set of identifiers corresponding to records in a private database of the first computing system. The second computing system determines an intersection or characteristic thereof of the records in the private database of the first computing system and the records in the private database of the second computing system based on matches between the blinded versions of the first and second sets of identifiers.