公开(公告)号：US20230026560A1

公开(公告)日：2023-01-26

申请号：US17385633

申请日：2021-07-26

Applicant: VMware, Inc.

Inventor： Marc Wayne BROTHERSON ,  Mark BENSON ,  Daniel James BEVERIDGE ,  Sean HUNTLEY ,  Akeem JENKINS ,  David OTT

IPC: H04L9/32 ,  H04L9/08

Abstract: The disclosure provides an approach for certificate management for cryptographic agility. Embodiments include receiving, by a cryptographic agility system, a cryptographic request related to an application. Embodiments include selecting, by the cryptographic agility system, a cryptographic technique based on contextual information associated with the cryptographic request. Embodiments include determining, by the cryptographic agility system, based on the cryptographic request, a certificate for authenticating a key related to the cryptographic technique. Embodiments include providing, by the cryptographic agility system, the certificate to an endpoint related to the cryptographic request for use in authenticating the key.

公开(公告)号：US20240080207A1

公开(公告)日：2024-03-07

申请号：US18360019

申请日：2023-07-27

Applicant: VMware, Inc.

Inventor： Marc Wayne BROTHERSON ,  Mark BENSON ,  Daniel James BEVERIDGE ,  Sean HUNTLEY ,  Akeem JENKINS ,  David OTT

IPC: H04L9/32 ,  H04L9/08

CPC classification number: H04L9/3268 ,  H04L9/0819 ,  H04L9/3236 ,  H04L9/50

Abstract: The disclosure provides an approach for certificate management for cryptographic agility. Embodiments include receiving, by a cryptographic agility system, a cryptographic request related to an application. Embodiments include selecting, by the cryptographic agility system, a cryptographic technique based on contextual information associated with the cryptographic request. Embodiments include determining, by the cryptographic agility system, based on the cryptographic request, a certificate for authenticating a key related to the cryptographic technique. Embodiments include providing, by the cryptographic agility system, the certificate to an endpoint related to the cryptographic request for use in authenticating the key.

公开(公告)号：US20230026253A1

公开(公告)日：2023-01-26

申请号：US17385287

申请日：2021-07-26

Applicant: VMware, Inc.

Inventor： Daniel James BEVERIDGE ,  Mark BENSON ,  Marc Wayne BROTHERSON ,  Sean HUNTLEY ,  Akeem JENKINS ,  David OTT

IPC: H04L9/14

Abstract: The disclosure provides an approach for cryptographic agility. Embodiments include receiving a request from an application for a cryptographic operation, wherein the request is associated with a computing device. Embodiments include determining one or more resource constraints related to the computing device. Embodiments include selecting, based on the one or more resource constraints, a cryptographic technique from a plurality of cryptographic techniques associated with indications of resource requirements. Embodiments include performing the cryptographic operation using the cryptographic technique. Embodiments include providing a response to the application based on performing the cryptographic operation.

公开(公告)号：US20230023529A1

公开(公告)日：2023-01-26

申请号：US17385401

申请日：2021-07-26

Applicant: VMware, Inc.

Inventor： Akeem JENKINS ,  Mark BENSON ,  Daniel James BEVERIDGE ,  Marc Wayne BROTHERSON ,  Sean HUNTLEY ,  David OTT

IPC: H04L9/08 ,  H04L9/06 ,  H04L29/08

Abstract: The disclosure provides an approach for cryptographic agility. Embodiments include establishing, by a proxy component associated with a cryptographic agility system, a first secure connection with an application. Embodiments include receiving, by the proxy component, via the first secure connection, a communication from the application directed to an endpoint. Embodiments include selecting, by the cryptographic agility system, a cryptographic technique based on contextual information related to the communication. Embodiments include establishing, by the proxy component, a second secure connection with the endpoint based on the cryptographic technique. Embodiments include transmitting, by the proxy component, a secure communication to the endpoint via the second secure connection based on the communication.

公开(公告)号：US20230078581A1

公开(公告)日：2023-03-16

申请号：US18055235

申请日：2022-11-14

Applicant: VMware, Inc.

Inventor： Akeem JENKINS ,  Sean HUNTLEY ,  Marc Wayne BROTHERSON

IPC: H04L67/02 ,  H04L67/561 ,  H04L67/1095 ,  H04L12/46

Abstract: The disclosure provides an approach for cross-network communication by self-replicating applications. Embodiments include identifying, by a first instance of a self-replicating application on a first computing device having a first network connection to a parent component, a second computing device that is connected to the first computing device via a second network connection. Embodiments include self-replicating, by the first instance of the self-replicating application, across the second network connection to produce a second instance of the self-replicating application on the second computing device. Embodiments include initiating, by the first instance of the self-replicating application, a proxy tunnel on the first computing device. Embodiments include receiving, by the proxy tunnel, a first communication from the second instance of the self-replicating application via the second network connection. Embodiments include sending, by the proxy tunnel, based on the first communication, a second communication to the parent component via the first network connection.

公开(公告)号：US20230058198A1

公开(公告)日：2023-02-23

申请号：US17408882

申请日：2021-08-23

Applicant: VMware, Inc.

Inventor： Sean HUNTLEY ,  Akeem JENKINS ,  Marc Wayne BROTHERSON ,  David OTT

IPC: H04L9/14 ,  H04L9/08 ,  H04L9/00 ,  H04L9/32

Abstract: The disclosure provides an approach for cryptographic agility. Embodiments include receiving, by a cryptographic agility system associated with an application, a request to establish a secure communication session. Embodiments include, prior to establishing the secure communication session, selecting, by the cryptographic agility system, a first cryptographic technique and a second cryptographic technique for the secure communication session. Embodiments include, during the secure communication session, utilizing the first encryption technique for securely communicating a first set of data. Embodiments include determining that a condition has been met for switching from the first encryption technique to the second encryption technique. Embodiments include, based on the determining that the condition has been met, utilizing the second encryption technique for securely communication a second set of data.

公开(公告)号：US20230022112A1

公开(公告)日：2023-01-26

申请号：US17385489

申请日：2021-07-26

Applicant: VMware, Inc.

Inventor： Daniel James BEVERIDGE ,  Mark BENSON ,  Marc Wayne BROTHERSON ,  Sean HUNTLEY ,  Akeem JENKINS ,  David OTT

IPC: H04L9/32 ,  G06N20/00

Abstract: The disclosure provides an approach for auditable cryptographic agility. Embodiments include receiving, by a cryptographic agility system, a request to perform a cryptographic operation related to an application. Embodiments include selecting, by the cryptographic agility system, a cryptographic technique for performing the cryptographic operation based on contextual information associated with the request. Embodiments include performing, by the cryptographic agility system, the cryptographic operation using the cryptographic technique. Embodiments include writing, by the cryptographic agility system, data related to selecting the cryptographic technique to a secure digital ledger.