-
公开(公告)号:US10592685B2
公开(公告)日:2020-03-17
申请号:US15878871
申请日:2018-01-24
Applicant: Google LLC
Inventor: Kevin Yeo , Sarvar Patel , Giuseppe Persiano
Abstract: A method for sharing read access to a document stored on memory hardware. The method includes receiving a shared read access command from a sharor sharing read access to a sharee for a document stored on memory hardware in communication with the data processing hardware, and receiving a shared read access request from the sharee. The shared read access command includes an encrypted value and a first cryptographic share value based on a write key, a read key, a document identifier, and a sharee identifier. The method also includes multiplying the first and second cryptographic share values to determine a cryptographic read access value. The cryptographic read access value authorizes read access to the sharee for the document. The method also includes storing a read access token for the sharee including the cryptographic read access value and the encrypted value in a user read set of the memory hardware.
-
公开(公告)号:US11669624B2
公开(公告)日:2023-06-06
申请号:US16715994
申请日:2019-12-16
Applicant: Google LLC
Inventor: Kevin Yeo , Sarvar Patel , Giuseppe Persiano
CPC classification number: G06F21/602 , G06F21/6227 , H04L9/0894 , G06F2221/0751 , G06F2221/2107
Abstract: A method for providing response-hiding searchable encryption includes receiving a search query for a keyword from a user device associated with a user. The keyword appears in one or more encrypted documents within a corpus of encrypted documents stored on an untrusted storage device. The method also includes accessing a document oblivious key-value storage (OKVS) to obtain a list of document identifiers associated with the keyword. Each document identifier in the list of document identifiers associated with a respective keyword identifier is concatenated with the keyword and uniquely identifies a respective one of the one or more encrypted documents that the keyword appears in. The method also includes returning the list of document identifiers obtained from the document OKVS to the user device.
-
公开(公告)号:US20230091538A1
公开(公告)日:2023-03-23
申请号:US17448565
申请日:2021-09-23
Applicant: Google LLC
Inventor: Kevin Yeo , Joon Young Seo , Sarvar Patel
Abstract: A method includes obtaining, from a server, a filter including a set of encrypted identifiers each encrypted with a server key controlled by the server. The method includes obtaining a request that requests determination of whether a query identifier is a member of a set of identifiers corresponding to the set of encrypted identifiers. The method also includes transmitting an encryption request to the server that requests the server to encrypt the query identifier. The method includes receiving, from the server, an encrypted query identifier including the query identifier encrypted by the server key and determining, using the filter, whether the encrypted query identifier is not a member of the set of encrypted identifiers. When the encrypted query identifier is not a member of the set of encrypted identifiers, the method includes reporting that the query identifier is not a member of the set of identifiers.
-
公开(公告)号:US11250151B2
公开(公告)日:2022-02-15
申请号:US16867342
申请日:2020-05-05
Applicant: Google LLC
Inventor: Kevin Yeo , Joon Young Seo , Giuseppe Persiano , Sarvar Patel
Abstract: A method for performing encrypted search includes receiving a search query for a plurality of keywords from a user device that appear in one or more encrypted documents stored on an untrusted storage device. The method also includes accessing an encrypted search index to obtain a first list of document identifiers each representative of a document that includes a first keyword and a second keyword of the plurality of keywords. The method also includes, for each remaining keyword, determining a corresponding list of document identifiers each representative of a document that includes the first, second, and respective remaining keyword. The method includes determining, based on the first list of document identifiers and each corresponding list of document identifiers, a second list of document identifiers each representative of a document that includes each of the plurality of keywords. The method also includes returning the second list to the user device.
-
公开(公告)号:US20210390202A1
公开(公告)日:2021-12-16
申请号:US17446456
申请日:2021-08-30
Applicant: Google LLC
Inventor: Kevin Yeo , Sarvar Patel , Giuseppe Persiano
Abstract: A method for sharing read access to a document stored on memory hardware. The method includes receiving a shared read access command from a sharor sharing read access to a sharee for a document stored on memory hardware in communication with the data processing hardware, and receiving a shared read access request from the sharee. The shared read access command includes an encrypted value and a first cryptographic share value based on a write key, a read key, a document identifier, and a sharee identifier. The method also includes multiplying the first and second cryptographic share values to determine a cryptographic read access value. The cryptographic read access value authorizes read access to the sharee for the document. The method also includes storing a read access token for the sharee including the cryptographic read access value and the encrypted value in a user read set of the memory hardware.
-
Patent Agency Ranking
公开(公告)号:US11126742B2
公开(公告)日:2021-09-21
申请号:US16781169
申请日:2020-02-04
Applicant: Google LLC
Inventor: Kevin Yeo , Sarvar Patel , Giuseppe Persiano
Abstract: A method for sharing read access to a document stored on memory hardware. The method includes receiving a shared read access command from a sharor sharing read access to a sharee for a document stored on memory hardware in communication with the data processing hardware, and receiving a shared read access request from the sharee. The shared read access command includes an encrypted value and a first cryptographic share value based on a write key, a read key, a document identifier, and a sharee identifier. The method also includes multiplying the first and second cryptographic share values to determine a cryptographic read access value. The cryptographic read access value authorizes read access to the sharee for the document. The method also includes storing a read access token for the sharee including the cryptographic read access value and the encrypted value in a user read set of the memory hardware.
-
公开(公告)号:US20210234688A1
公开(公告)日:2021-07-29
申请号:US17233045
申请日:2021-04-16
Applicant: Google LLC
Inventor: Kevin Yeo , Sarvar Patel , Phillipp Schoppmann
IPC: H04L9/30 , G06F16/9035 , G06F7/72 , G06F9/30 , H04L9/08
Abstract: A method for outsourcing exponentiation in a private group includes executing a query instruction to retrieve a query element stored on an untrusted server by selecting a prime factorization of two or more prime numbers of a modulus associated with the query element stored on the server, obtaining a group element configured to generate a respective one of the prime numbers, generating a series of base values using the prime factorization and the group element, and transmitting the series of base values from the client device to the server. The server is configured to determine an exponentiation of the group element with an exponent stored on the server using the series of base values. The method also includes receiving a result from the server based on the exponentiation of the group element with the exponent.
-
公开(公告)号:US11023168B2
公开(公告)日:2021-06-01
申请号:US16365224
申请日:2019-03-26
Applicant: Google LLC
Inventor: Kevin Yeo , Sarvar Patel , Giuseppe Persiano , Mariana Raykova
Abstract: A method includes executing an instruction to execute a query for a data block, the data block associated with a corresponding memory level of a logarithmic number of memory levels (li) of memory, each memory level (li) including physical memory (RAMi) residing on memory hardware of a distributed system. The method also includes retrieving a value associated with the data block from an oblivious hash table using a corresponding key, and extracting un-queried key value pairs from the oblivious hash table associated with un-queried data blocks after executing a threshold number of queries for data blocks. The method also includes a multi-array shuffle routine on the extracted key value pairs from the oblivious hash table to generate an output array containing the un-queried key value pairs.
-
公开(公告)号:US11005654B2
公开(公告)日:2021-05-11
申请号:US16411646
申请日:2019-05-14
Applicant: Google LLC
Inventor: Kevin Yeo , Sarvar Patel , Phillipp Schoppmann
IPC: H04L9/30 , G06F16/9035 , G06F7/72 , G06F9/30 , H04L9/08
Abstract: A method for outsourcing exponentiation in a private group includes executing a query instruction to retrieve a query element stored on an untrusted server by selecting a prime factorization of two or more prime numbers of a modulus associated with the query element stored on the server, obtaining a group element configured to generate a respective one of the prime numbers, generating a series of base values using the prime factorization and the group element, and transmitting the series of base values from the client device to the server. The server is configured to determine an exponentiation of the group element with an exponent stored on the server using the series of base values. The method also includes receiving a result from the server based on the exponentiation of the group element with the exponent.
-
公开(公告)号:US20200175192A1
公开(公告)日:2020-06-04
申请号:US16781169
申请日:2020-02-04
Applicant: Google LLC
Inventor: Kevin Yeo , Sarvar Patel , Giuseppe Persiano
Abstract: A method for sharing read access to a document stored on memory hardware. The method includes receiving a shared read access command from a sharor sharing read access to a sharee for a document stored on memory hardware in communication with the data processing hardware, and receiving a shared read access request from the sharee. The shared read access command includes an encrypted value and a first cryptographic share value based on a write key, a read key, a document identifier, and a sharee identifier. The method also includes multiplying the first and second cryptographic share values to determine a cryptographic read access value. The cryptographic read access value authorizes read access to the sharee for the document. The method also includes storing a read access token for the sharee including the cryptographic read access value and the encrypted value in a user read set of the memory hardware.
-
-
-
-
-
-
-
-
-
Search Results
42
records
(took 0.02 seconds)
