公开(公告)号：US11522704B1

公开(公告)日：2022-12-06

申请号：US17815715

申请日：2022-07-28

申请人： INTUIT INC.

发明人： Olla Nasirov ,  Noam Kachko ,  Michael Gvirtzman ,  Yair Tayeb ,  Gleb Keselman ,  Sergey Banshats

IPC分类号： H04L29/06 ,  H04L9/32 ,  G06F21/62 ,  H04L9/14

摘要： Aspects of the present disclosure provide techniques for encrypted data management. Embodiments include determining an encrypted data item in a data store that is related to a request from a data consuming user. Embodiments include determining a data owning user and an encryption key that correspond to the encrypted data item based on a key identifier associated with the encrypted data item. Embodiments include determining one or more additional encrypted data items and one or more additional encryption keys that correspond to the data owning user based on key identifiers associated with the one or more additional encrypted data items. Embodiments include generating a single data access ticket comprising information about the data consuming user, the data owning user, the encryption key, and the one or more additional encryption keys.

公开(公告)号：US11646871B2

公开(公告)日：2023-05-09

申请号：US16991218

申请日：2020-08-12

申请人： INTUIT INC.

发明人： Margarita Vald ,  Olla Nasirov ,  Gleb Keselman ,  Yaron Sheffer ,  Sergey Banshats

IPC分类号： H04L9/08 ,  H04L9/32

CPC分类号： H04L9/0822 ,  H04L9/083 ,  H04L9/0861 ,  H04L9/0891 ,  H04L9/3247 ,  H04L2209/04

摘要： Systems and methods that may be used to provide multitenant key derivation and management using a unique protocol in which key derivation may be executed between the server that holds the root key and a client that holds the derivation data and obtains an encryption key. In one or more embodiments, the derivation data may be hashed. The disclosed protocol ensures that the server does not get access to or learn anything about the client's derived key, while the client does not get access to or learn anything about the server's root key.

公开(公告)号：US11870886B2

公开(公告)日：2024-01-09

申请号：US18301886

申请日：2023-04-17

申请人： INTUIT INC.

发明人： Margarita Vald ,  Olla Nasirov ,  Gleb Keselman ,  Yaron Sheffer ,  Sergey Banshats

IPC分类号： H04L9/08 ,  H04L9/32

CPC分类号： H04L9/0822 ,  H04L9/083 ,  H04L9/0861 ,  H04L9/0891 ,  H04L9/3247 ,  H04L2209/04

摘要： Systems and methods that may be used to provide multitenant key derivation and management using a unique protocol in which key derivation may be executed between the server that holds the root key and a client that holds the derivation data and obtains an encryption key. In one or more embodiments, the derivation data may be hashed. The disclosed protocol ensures that the server does not get access to or learn anything about the client's derived key, while the client does not get access to or learn anything about the server's root key.