公开(公告)号：US20100306554A1

公开(公告)日：2010-12-02

申请号：US12471474

申请日：2009-05-26

申请人： Fabian Nunez-Tejerina ,  Jeffrey B. Kay ,  Robert C. Fruth ,  Naveen A. Palavalli ,  Ramesh Chinta ,  Tolga Acar

发明人： Fabian Nunez-Tejerina ,  Jeffrey B. Kay ,  Robert C. Fruth ,  Naveen A. Palavalli ,  Ramesh Chinta ,  Tolga Acar

IPC分类号： G06F12/14

CPC分类号： G06F21/6209 ,  H04L9/006 ,  H04L9/3263 ,  H04L63/0823

摘要： Architecture that stores specific passwords on behalf of users, and encrypts the passwords using encryption keys managed by a distributed key management system. The encryption keys are stored in a directory service (e.g., hierarchical) in an area that is inaccessible by selected entities (e.g., administrative users) having superior permissions such as supervisory administrators, but accessible to the account components that need to access the unencrypted passwords. The distributed key management system makes the encryption key stored in the directory service available to all hardware/software components that need the key to encrypt or decrypt the passwords.

摘要翻译： 代表用户存储特定密码的体系结构，并使用由分布式密钥管理系统管理的加密密钥加密密码。 加密密钥存储在具有诸如监督管理员等优越许可的选定实体（例如，管理用户）无法访问的区域中的目录服务（例如，分级）中，但是对于需要访问未加密密码的帐户组件可访问 。 分布式密钥管理系统使存储在目录服务中的加密密钥可用于需要密钥的所有硬件/软件组件来加密或解密密码。

公开(公告)号：US09047477B2

公开(公告)日：2015-06-02

申请号：US12471474

申请日：2009-05-26

申请人： Fabian Nunez-Tejerina ,  Jeffrey B. Kay ,  Robert C. Fruth ,  Naveen A. Palavalli ,  Ramesh Chinta ,  Tolga Acar

发明人： Fabian Nunez-Tejerina ,  Jeffrey B. Kay ,  Robert C. Fruth ,  Naveen A. Palavalli ,  Ramesh Chinta ,  Tolga Acar

IPC分类号： H04L9/00 ,  G06F21/62 ,  H04L9/32 ,  H04L29/06

CPC分类号： G06F21/6209 ,  H04L9/006 ,  H04L9/3263 ,  H04L63/0823

摘要： Architecture that stores specific passwords on behalf of users, and encrypts the passwords using encryption keys managed by a distributed key management system. The encryption keys are stored in a directory service (e.g., hierarchical) in an area that is inaccessible by selected entities (e.g., administrative users) having superior permissions such as supervisory administrators, but accessible to the account components that need to access the unencrypted passwords. The distributed key management system makes the encryption key stored in the directory service available to all hardware/software components that need the key to encrypt or decrypt the passwords.

摘要翻译： 代表用户存储特定密码的体系结构，并使用由分布式密钥管理系统管理的加密密钥加密密码。 加密密钥存储在具有诸如监督管理员等优越许可的选定实体（例如，管理用户）无法访问的区域中的目录服务（例如，分级）中，但是对于需要访问未加密密码的帐户组件可访问 。 分布式密钥管理系统使存储在目录服务中的加密密钥可用于需要密钥的所有硬件/软件组件来加密或解密密码。