公开(公告)号：US20180115535A1

公开(公告)日：2018-04-26

申请号：US15333046

申请日：2016-10-24

Applicant: Netflix, Inc.

Inventor： Manish M. Mehta

IPC: H04L29/06 ,  H04L9/08 ,  H04L9/30

CPC classification number: H04L63/0442 ,  G06F7/723 ,  G06F21/10 ,  H04L9/0861 ,  H04L9/302 ,  H04L9/3249 ,  H04L9/3257 ,  H04L2209/04 ,  H04N21/4627

Abstract: Different clients encrypt secrets using a server's public RSA key, blind them using randomly generated onetime use blinding factors, and bind them to unique identifiers of corresponding client policies. Encrypted, blinded secrets bound to unique policy ids are transmitted to the server. The server processes different encrypted, blinded secrets received from different clients according to the bound policies. Processing an encrypted blinded secret can involve decrypting it using the corresponding policy id and the server's private key, resulting in a decrypted but still blinded secret which is not readable by the server. The server can then transmit the decrypted blinded secret to one or more clients according to the policy. A client that receives the decrypted blinded secret can unblind and read the secret as plaintext, provided the client has the policy id and the unblinding factor.