-
1.发明申请SYSTEM AND METHOD FOR DELIVERING ENCRYPTED INFORMATION IN A COMMUNICATION NETWORK USING LOCATION INDENTITY AND KEY TABLES 有权在使用位置标识和关键表的通信网络中传送加密信息的系统和方法公开(公告)号:US20070086593A1
公开(公告)日:2007-04-19
申请号:US11561857
申请日:2006-11-20
申请人: Dorothy Denning , Barry Glick , Ronald Karpf , Mark Seiler
发明人: Dorothy Denning , Barry Glick , Ronald Karpf , Mark Seiler
IPC分类号: H04L9/00
CPC分类号: H04L9/0872 , H04L9/0891 , H04L63/0428 , H04L63/107 , H04L63/12 , H04L2209/60 , H04L2209/80
摘要: Access to digital data is controlled by encrypting the data in such a manner that, in a single digital data acquisition step, it can be decrypted only at a specified location, within a specific time frame, and with a secret key. Data encrypted in such a manner is said to be geo-encrypted. This geo-encryption process comprises a method in which plaintext data is first encrypted using a data encrypting key that is generated at the time of encryption. The data encrypting key is then encrypted (or locked) using a key encrypting key and information derived from the location of the intended receiver. The encrypted data encrypting key is then transmitted to the receiver along with the ciphertext data. The receiver both must be at the correct location and must have a copy of the corresponding key decrypting key in order to derive the location information and decrypt the data encrypting key. After the data encrypting key is decrypted (or unlocked), it is used to decrypt the ciphertext. If an attempt is made to decrypt the data encrypting key at an incorrect location or using an incorrect secret key, the decryption will fail. If the sender so elects, access to digital data also can be controlled by encrypting it in such a manner that it must traverse a specific route from the sender to the recipient in order to enable decryption of the data. Key management can be handled using either private-key or public-key cryptography. If private-key cryptography is used, the sender can manage the secret key decrypting keys required for decryption in a secure manner that is transparent to the recipient. As a consequence of its ability to manipulate the secret keys, the sender of encrypted data retains the ability to control access to its plaintext even after its initial transmission.
摘要翻译: 通过以这样的方式加密数据来控制对数字数据的访问,使得在单个数字数据获取步骤中,它可以在特定时间段内以及使用秘密密钥在指定位置进行解密。 以这种方式加密的数据被称为是地理加密的。 该地理加密处理包括使用在加密时生成的数据加密密钥来首先加密明文数据的方法。 然后使用密钥加密密钥和从预期接收器的位置导出的信息来加密(或锁定)数据加密密钥。 然后将加密的数据加密密钥与密文数据一起发送到接收器。 接收机必须位于正确的位置,并且必须具有对应的密钥解密密钥的副本,以便导出位置信息并解密数据加密密钥。 数据加密密钥解密(或解锁)后,用于解密密文。 如果尝试在不正确的位置解密数据加密密钥或使用不正确的密钥,解密将失败。 如果发件人如此选择,也可以通过对数字数据进行加密来控制数字数据的访问,使得它必须经过从发送者到接收者的特定路由,以便能够解密数据。 密钥管理可以使用私钥或公钥加密来处理。 如果使用私钥密码术,发送者可以以对收件人透明的安全方式来管理解密所需的秘密密钥解密密钥。 由于其操作秘密密钥的能力,加密数据的发送者即使在初始传输之后也保留对其明文的访问控制的能力。
搜索结果
1 条记录 (耗时 0.018 秒)
