-
公开(公告)号:US08510552B2
公开(公告)日:2013-08-13
申请号:US12756153
申请日:2010-04-07
申请人: Dallas Blake De Atley , Gordon Freedman , Thomas Brogan Duffy, Jr. , John Andrew Wright , Vrajesh Rajesh Bhavsar , Lucia Elena Ballard , Michael Lambertus Hubertus Brouwer , Conrad Sauerwald , Mitchell David Adler , Eric Brandon Tamura , David Rahardja , Carsten Guenther
发明人: Dallas Blake De Atley , Gordon Freedman , Thomas Brogan Duffy, Jr. , John Andrew Wright , Vrajesh Rajesh Bhavsar , Lucia Elena Ballard , Michael Lambertus Hubertus Brouwer , Conrad Sauerwald , Mitchell David Adler , Eric Brandon Tamura , David Rahardja , Carsten Guenther
CPC分类号: G06F9/4406 , G06F9/4401 , G06F21/602 , H04L9/0816 , H04L9/0891 , H04L9/0894 , H04L9/12 , H04L9/30 , H04L9/3226 , H04L2209/80 , H04W12/02 , H04W12/04 , H04W12/06
摘要: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for encryption and key management. The method includes encrypting each file on a computing device with a unique file encryption key, encrypting each unique file encryption key with a corresponding class encryption key, and encrypting each class encryption key with an additional encryption key. Further disclosed are systems, methods, and non-transitory computer-readable storage media for encrypting a credential key chain. The method includes encrypting each credential on a computing device with a unique credential encryption key, encrypting each unique credential encryption key with a corresponding credential class encryption key, and encrypting each class encryption key with an additional encryption key. Also disclosed is a method of verifying a password by decrypting a key bag, retrieving data from an encrypted file using an encryption key from the decrypted key bag, and verifying the password by comparing retrieved data with expected data.
摘要翻译: 本文公开了用于加密和密钥管理的系统,方法和非暂时的计算机可读存储介质。 该方法包括使用唯一文件加密密钥加密计算设备上的每个文件,用相应的类加密密钥加密每个唯一文件加密密钥,并用附加的加密密钥加密每个类加密密钥。 还公开了用于加密证书密钥链的系统,方法和非暂时的计算机可读存储介质。 该方法包括使用唯一凭证加密密钥对计算设备上的每个凭证进行加密,使用相应的凭证类加密密钥对每个唯一凭证加密密钥进行加密,以及用附加加密密钥加密每个类加密密钥。 还公开了一种通过解密密钥袋来验证密码的方法,使用来自解密密钥袋的加密密钥从加密文件检索数据,以及通过将检索到的数据与预期数据进行比较来验证密码。
-
公开(公告)号:US20110252234A1
公开(公告)日:2011-10-13
申请号:US12756153
申请日:2010-04-07
申请人: Dallas Blake De Atley , Gordon Freedman , Thomas Brogan Duffy, JR. , John Andrew Wright , Vrajesh Rajesh Bhavsar , Lucia Elena Ballard , Michael Lambertus Hubertus Brouwer , Conrad Sauerwald , Mitchell David Adler , Eric Brandon Tamura , David Rahardja , Carsten Guenther
发明人: Dallas Blake De Atley , Gordon Freedman , Thomas Brogan Duffy, JR. , John Andrew Wright , Vrajesh Rajesh Bhavsar , Lucia Elena Ballard , Michael Lambertus Hubertus Brouwer , Conrad Sauerwald , Mitchell David Adler , Eric Brandon Tamura , David Rahardja , Carsten Guenther
CPC分类号: G06F9/4406 , G06F9/4401 , G06F21/602 , H04L9/0816 , H04L9/0891 , H04L9/0894 , H04L9/12 , H04L9/30 , H04L9/3226 , H04L2209/80 , H04W12/02 , H04W12/04 , H04W12/06
摘要: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for encryption and key management. The method includes encrypting each file on a computing device with a unique file encryption key, encrypting each unique file encryption key with a corresponding class encryption key, and encrypting each class encryption key with an additional encryption key. Further disclosed are systems, methods, and non-transitory computer-readable storage media for encrypting a credential key chain. The method includes encrypting each credential on a computing device with a unique credential encryption key, encrypting each unique credential encryption key with a corresponding credential class encryption key, and encrypting each class encryption key with an additional encryption key. Also disclosed is a method of verifying a password by decrypting a key bag, retrieving data from an encrypted file using an encryption key from the decrypted key bag, and verifying the password by comparing retrieved data with expected data.
摘要翻译: 本文公开了用于加密和密钥管理的系统,方法和非暂时的计算机可读存储介质。 该方法包括使用唯一文件加密密钥加密计算设备上的每个文件,用相应的类加密密钥加密每个唯一文件加密密钥,并用附加的加密密钥加密每个类加密密钥。 还公开了用于加密证书密钥链的系统,方法和非暂时的计算机可读存储介质。 该方法包括使用唯一凭证加密密钥对计算设备上的每个凭证进行加密,使用相应的凭证类加密密钥对每个唯一凭证加密密钥进行加密,以及用附加加密密钥加密每个类加密密钥。 还公开了一种通过解密密钥袋来验证密码的方法,使用来自解密密钥袋的加密密钥从加密文件检索数据,以及通过将检索到的数据与预期数据进行比较来验证密码。
-
公开(公告)号:US20130034229A1
公开(公告)日:2013-02-07
申请号:US13204171
申请日:2011-08-05
申请人: Conrad Sauerwald , Vrajesh Rajesh Bhavsar , Kenneth Buffalo McNeil , Thomas Brogan Duffy, JR. , Michael Lambertus Hubertus Brouwer , Matthew John Byom , Mitchell David Adler , Eric Brandon Tamura
发明人: Conrad Sauerwald , Vrajesh Rajesh Bhavsar , Kenneth Buffalo McNeil , Thomas Brogan Duffy, JR. , Michael Lambertus Hubertus Brouwer , Matthew John Byom , Mitchell David Adler , Eric Brandon Tamura
IPC分类号: H04L9/00
CPC分类号: H04L63/0428 , G06F11/1458 , G06F11/1464 , H04L9/0637 , H04L9/0822 , H04L9/0825 , H04L9/0863 , H04L9/0894 , H04L63/0435 , H04L63/061 , H04L2463/062 , H04W12/04 , H04W12/08
摘要: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted file key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.
摘要翻译: 这里公开的是用于在主设备和备用设备上利用密码密钥管理的无线数据保护的系统,方法和非暂时的计算机可读存储介质。 系统使用文件密钥加密文件,并对文件密钥进行两次加密,从而产生两个加密的文件密钥。 该系统对每个文件密钥进行不同的加密,并将第一个文件密钥存储在主设备上,并将加密的文件密钥之一加到备份设备上以进行存储。 在备份设备上,系统将加密的文件密钥与受用户密码保护的一组备份密钥相关联。 在一个实施例中,系统基于文件密钥生成用于加密操作的初始化向量。 在另一个实施例中,系统在用户密码改变期间管理备份设备上的密码密钥。
-
-
搜索结果
3 条记录 (耗时 0.06 秒)
