-
公开(公告)号:US11611558B2
公开(公告)日:2023-03-21
申请号:US16683025
申请日:2019-11-13
Applicant: Google LLC
Inventor: Il-Sung Lee , Sidharth Durgesh Telang , Jimmy C. Chau , Timothy Matthew Dierks , Ariel Joseph Feldman , Hunter James Freyer , Netanel Keidar , Gregory David Laun , Tianyuan Liu , Pedro Henrique Ribeiro Morais e Silva , Aditya Sinha , Xioalan Zhang
Abstract: A method for integrating third-party encryption managers with cloud services includes receiving, at data processing hardware, an operation request requesting a cryptographic operation on data comprising an encryption operation or a decryption operation. When the operation is an encryption operation, the method includes transmitting a data encryption key associated with the data to a remote entity. The remote entity encrypts the data encryption key with a key encryption key and transmits the encrypted data encryption key to the data processing hardware. When the operation is a decryption operation, the method includes transmitting the encrypted data encryption key to the remote entity which causes the remote entity to decrypt the encrypted data encryption key with the key encryption key and transmit the decrypted data encryption key and transmit to the data processing hardware.
-
公开(公告)号:US20210144141A1
公开(公告)日:2021-05-13
申请号:US16683025
申请日:2019-11-13
Applicant: Google LLC
Inventor: Il-Sung Lee , Sidharth Durgesh Telang , Jimmy C. Chau , Timothy Matthew Dierks , Ariel Joseph Feldman , Hunter James Freyer , Netanel Keidar , Gregory David Laun , Tianyuan Liu , Pedro Henrique Ribeiro Morais e Silva , Aditya Sinha , Xioalan Zhang
Abstract: A method for integrating third-party encryption managers with cloud services includes receiving, at data processing hardware, an operation request requesting a cryptographic operation on data comprising an encryption operation or a decryption operation. When the operation is an encryption operation, the method includes transmitting a data encryption key associated with the data to a remote entity. The remote entity encrypts the data encryption key with a key encryption key and transmits the encrypted data encryption key to the data processing hardware. When the operation is a decryption operation, the method includes transmitting the encrypted data encryption key to the remote entity which causes the remote entity to decrypt the encrypted data encryption key with the key encryption key and transmit the decrypted data encryption key and transmit to the data processing hardware.
-
公开(公告)号:US12015705B1
公开(公告)日:2024-06-18
申请号:US17221291
申请日:2021-04-02
Applicant: Google LLC
Inventor: Sergio Boixo Castrillo , Alan Kar-Lun Ho , Jimmy C. Chau
CPC classification number: H04L9/0869 , G06F7/58 , G06N10/00 , H04L9/0852
Abstract: Systems and methods for quantum random number generation are provided. In some implementations, a method can include obtaining data indicative of a quantum circuit used by the quantum random number generation system to generate a quantum entropy source for determining a random number. The quantum entropy source can include a plurality of output samples. Each output sample can be obtained by measuring an output of the quantum circuit. The method can include performing one or more simulations of the quantum circuit to obtain a simulated output distribution of the quantum circuit without access to data associated with the random number. The method can include providing data indicative of the simulated output distribution for use in a verification process for the quantum random number generation system. The verification process can determine the use of the quantum computing system in generation of the quantum entropy source.
-
公开(公告)号:US20240080186A1
公开(公告)日:2024-03-07
申请号:US17939486
申请日:2022-09-07
Applicant: Google LLC
Inventor: Jimmy C. Chau
CPC classification number: H04L9/0861 , G06N7/005 , H04L9/0869
Abstract: The present disclosure provides for using a random trigger probability for determining whether to rotate cryptographic keys. The random trigger probability may be applied for each cryptographic operation that might yield a nonce collision. For example, the random trigger probability may be pre-computed, and each time a request to perform a cryptographic operation is received a random event with the trigger probability may be executed. Based on the random trigger probability, it is determined whether to rotate keys. The random trigger may be a function of a threshold for acceptable probability of failure, and parameters for a type of cryptographic operation and key.
-
公开(公告)号:US20230231850A1
公开(公告)日:2023-07-20
申请号:US18186733
申请日:2023-03-20
Applicant: Google LLC
Inventor: ll-Sung Lee , Sidharth Durgesh Telang , Jimmy C. Chau , Timothy Matthew Dierks , Ariel Joseph Feldman , Hunter James Freyer , Gregory David Laun , Tianyuan Liu , Pedro Henrique Ribeiro Morais E Silva , Aditya Sinha , Xioalan Zhang , Netanel Keidar
CPC classification number: H04L63/0884 , H04L9/0822 , H04L9/0891 , H04L63/083 , H04L63/06 , H04L63/20
Abstract: A method for integrating third-party encryption managers with cloud services includes receiving, at data processing hardware, an operation request requesting a cryptographic operation on data comprising an encryption operation or a decryption operation. When the operation is an encryption operation, the method includes transmitting a data encryption key associated with the data to a remote entity. The remote entity encrypts the data encryption key with a key encryption key and transmits the encrypted data encryption key to the data processing hardware. When the operation is a decryption operation, the method includes transmitting the encrypted data encryption key to the remote entity which causes the remote entity to decrypt the encrypted data encryption key with the key encryption key and transmit the decrypted data encryption key and transmit to the data processing hardware.
-
-
-
-