-
公开(公告)号:US11743293B2
公开(公告)日:2023-08-29
申请号:US17305958
申请日:2021-07-19
Applicant: Google LLC
Inventor: Keith Moyer , Benjamin Seth Moore , Ari Medvinksy , Kevin Yap , Ivan Petrov , Tiziano Santoro , Ariel Joseph Feldman , Marcel Catalin Rosu
CPC classification number: H04L63/166 , H04L9/083 , H04L9/085 , H04L9/0861 , H04L9/0894 , H04L9/3236 , H04L63/0823
Abstract: A method for remote attestation includes establishing, using a cryptographic protocol, a communication session between a first computing device and a second computing device. The communication session includes communications encrypted by an ephemeral session key. The method includes receiving, at the first communication device via the communication session, from the second computing device, an attestation request requesting the first computing device to provide an attestation report. The method includes generating, by the first computing device, the attestation report based on the ephemeral session key and sending, using the communication session, the attestation report to the second computing device.
-
公开(公告)号:US20230013347A1
公开(公告)日:2023-01-19
申请号:US17305958
申请日:2021-07-19
Applicant: Google LLC
Inventor: Keith Moyer , Benjamin Seth Moore , Ari Medvinksy , Kevin Yap , Ivan Petrov , Tiziano Santoro , Ariel Joseph Feldman , Marcel Catalin Rosu
Abstract: A method for remote attestation includes establishing, using a cryptographic protocol, a communication session between a first computing device and a second computing device. The communication session includes communications encrypted by an ephemeral session key. The method includes receiving, at the first communication device via the communication session, from the second computing device, an attestation request requesting the first computing device to provide an attestation report. The method includes generating, by the first computing device, the attestation report based on the ephemeral session key and sending, using the communication session, the attestation report to the second computing device.
-
公开(公告)号:US11611558B2
公开(公告)日:2023-03-21
申请号:US16683025
申请日:2019-11-13
Applicant: Google LLC
Inventor: Il-Sung Lee , Sidharth Durgesh Telang , Jimmy C. Chau , Timothy Matthew Dierks , Ariel Joseph Feldman , Hunter James Freyer , Netanel Keidar , Gregory David Laun , Tianyuan Liu , Pedro Henrique Ribeiro Morais e Silva , Aditya Sinha , Xioalan Zhang
Abstract: A method for integrating third-party encryption managers with cloud services includes receiving, at data processing hardware, an operation request requesting a cryptographic operation on data comprising an encryption operation or a decryption operation. When the operation is an encryption operation, the method includes transmitting a data encryption key associated with the data to a remote entity. The remote entity encrypts the data encryption key with a key encryption key and transmits the encrypted data encryption key to the data processing hardware. When the operation is a decryption operation, the method includes transmitting the encrypted data encryption key to the remote entity which causes the remote entity to decrypt the encrypted data encryption key with the key encryption key and transmit the decrypted data encryption key and transmit to the data processing hardware.
-
公开(公告)号:US20210144141A1
公开(公告)日:2021-05-13
申请号:US16683025
申请日:2019-11-13
Applicant: Google LLC
Inventor: Il-Sung Lee , Sidharth Durgesh Telang , Jimmy C. Chau , Timothy Matthew Dierks , Ariel Joseph Feldman , Hunter James Freyer , Netanel Keidar , Gregory David Laun , Tianyuan Liu , Pedro Henrique Ribeiro Morais e Silva , Aditya Sinha , Xioalan Zhang
Abstract: A method for integrating third-party encryption managers with cloud services includes receiving, at data processing hardware, an operation request requesting a cryptographic operation on data comprising an encryption operation or a decryption operation. When the operation is an encryption operation, the method includes transmitting a data encryption key associated with the data to a remote entity. The remote entity encrypts the data encryption key with a key encryption key and transmits the encrypted data encryption key to the data processing hardware. When the operation is a decryption operation, the method includes transmitting the encrypted data encryption key to the remote entity which causes the remote entity to decrypt the encrypted data encryption key with the key encryption key and transmit the decrypted data encryption key and transmit to the data processing hardware.
-
公开(公告)号:US12255920B2
公开(公告)日:2025-03-18
申请号:US18352373
申请日:2023-07-14
Applicant: Google LLC
Inventor: Keith Moyer , Benjamin Seth Moore , Ari Medvinksy , Kevin Yap , Ivan Petrov , Tiziano Santoro , Ariel Joseph Feldman , Marcel Catalin Rosu
Abstract: A method for remote attestation includes establishing, using a cryptographic protocol, a communication session between a first computing device and a second computing device. The communication session includes communications encrypted by an ephemeral session key. The method includes receiving, at the first communication device via the communication session, from the second computing device, an attestation request requesting the first computing device to provide an attestation report. The method includes generating, by the first computing device, the attestation report based on the ephemeral session key and sending, using the communication session, the attestation report to the second computing device.
-
公开(公告)号:US20230362195A1
公开(公告)日:2023-11-09
申请号:US18352373
申请日:2023-07-14
Applicant: Google LLC
Inventor: Keith Moyer , Benjamin Seth Moore , Ari Medvinksy , Kevin Yap , Ivan Petrov , Tiziano Santoro , Ariel Joseph Feldman , Marcel Catalin Rosu
CPC classification number: H04L63/166 , H04L9/083 , H04L9/085 , H04L9/0861 , H04L9/0894 , H04L9/3236 , H04L63/0823
Abstract: A method for remote attestation includes establishing, using a cryptographic protocol, a communication session between a first computing device and a second computing device. The communication session includes communications encrypted by an ephemeral session key. The method includes receiving, at the first communication device via the communication session, from the second computing device, an attestation request requesting the first computing device to provide an attestation report. The method includes generating, by the first computing device, the attestation report based on the ephemeral session key and sending, using the communication session, the attestation report to the second computing device.
-
公开(公告)号:US20230231850A1
公开(公告)日:2023-07-20
申请号:US18186733
申请日:2023-03-20
Applicant: Google LLC
Inventor: ll-Sung Lee , Sidharth Durgesh Telang , Jimmy C. Chau , Timothy Matthew Dierks , Ariel Joseph Feldman , Hunter James Freyer , Gregory David Laun , Tianyuan Liu , Pedro Henrique Ribeiro Morais E Silva , Aditya Sinha , Xioalan Zhang , Netanel Keidar
CPC classification number: H04L63/0884 , H04L9/0822 , H04L9/0891 , H04L63/083 , H04L63/06 , H04L63/20
Abstract: A method for integrating third-party encryption managers with cloud services includes receiving, at data processing hardware, an operation request requesting a cryptographic operation on data comprising an encryption operation or a decryption operation. When the operation is an encryption operation, the method includes transmitting a data encryption key associated with the data to a remote entity. The remote entity encrypts the data encryption key with a key encryption key and transmits the encrypted data encryption key to the data processing hardware. When the operation is a decryption operation, the method includes transmitting the encrypted data encryption key to the remote entity which causes the remote entity to decrypt the encrypted data encryption key with the key encryption key and transmit the decrypted data encryption key and transmit to the data processing hardware.
-
-
-
-
-
-