WO2002073861A3 - Method and apparatus for cryptographic key storage wherein key servers are authenticated by possession and secure distribution of stored keys - Google Patents

Method and apparatus for cryptographic key storage wherein key servers are authenticated by possession and secure distribution of stored keys Download PDF

Info

Publication number
WO2002073861A3
WO2002073861A3 PCT/US2002/007392 US0207392W WO02073861A3 WO 2002073861 A3 WO2002073861 A3 WO 2002073861A3 US 0207392 W US0207392 W US 0207392W WO 02073861 A3 WO02073861 A3 WO 02073861A3
Authority
WO
WIPO (PCT)
Prior art keywords
key
access
secured
request
secured data
Prior art date
Application number
PCT/US2002/007392
Other languages
French (fr)
Other versions
WO2002073861A2 (en
WO2002073861A9 (en
Inventor
Robert Allen
Robert A Jerdonek
John Wang
Tom Wu
Original Assignee
Arcot Systems Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Arcot Systems Inc filed Critical Arcot Systems Inc
Priority to DE60228554T priority Critical patent/DE60228554D1/en
Priority to EP02721352A priority patent/EP1374474B1/en
Priority to JP2002571620A priority patent/JP4222834B2/en
Priority to AU2002252288A priority patent/AU2002252288A1/en
Publication of WO2002073861A2 publication Critical patent/WO2002073861A2/en
Publication of WO2002073861A3 publication Critical patent/WO2002073861A3/en
Publication of WO2002073861A9 publication Critical patent/WO2002073861A9/en
Priority to HK04100047.9A priority patent/HK1058270A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/083Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0825Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • H04L9/0897Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3228One-time or temporary data, i.e. information which is sent for every authentication or authorization, e.g. one-time-password, one-time-token or one-time-key

Abstract

A key management system includes secured data stored on a first system secured by a control key stored securely on a key server. The secured data is secured against attacks such as unauthorized use, modification or access, where authorization to access the secured data is determined by knowledge of an access private key of an access key pair. When an authorized user is to access the secured data, the first system generates a request to the key server, signed with the access private key, wherein the request is for a decryption control key and the request includes a one-time public key of a key pair generated by the first system for the request. The first system can decrypt the decryption control key from the response, using a one-time private key. The first system can then decrypt the secured data with the decryption control key remaining secured in transport.
PCT/US2002/007392 2001-03-09 2002-03-11 Method and apparatus for cryptographic key storage wherein key servers are authenticated by possession and secure distribution of stored keys WO2002073861A2 (en)

Priority Applications (5)

Application Number Priority Date Filing Date Title
DE60228554T DE60228554D1 (en) 2001-03-09 2002-03-11 METHOD AND DEVICE FOR STORING CRYPTOGRESITZ AND SAFE DISTRIBUTION SAVED KEY TO BE AUTHENTICATED
EP02721352A EP1374474B1 (en) 2001-03-09 2002-03-11 Method and apparatus for cryptographic key storage wherein key servers are authenticated by possession and secure distribution of stored keys
JP2002571620A JP4222834B2 (en) 2001-03-09 2002-03-11 Method and apparatus for storing a cryptographic key that authenticates a key server by obtaining and securely distributing the stored key
AU2002252288A AU2002252288A1 (en) 2001-03-09 2002-03-11 Method and apparatus for cryptographic key storage wherein key servers are authenticated by possession and secure distribution of stored keys
HK04100047.9A HK1058270A1 (en) 2001-03-09 2004-01-05 Method and apparatus for cryptographic key storage wherein key servers are authenticated by possession and secure distribution of stored keys

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US27445701P 2001-03-09 2001-03-09
US60/274,457 2001-03-09
US10/093,881 2002-03-08
US10/093,881 US7711122B2 (en) 2001-03-09 2002-03-08 Method and apparatus for cryptographic key storage wherein key servers are authenticated by possession and secure distribution of stored keys

Publications (3)

Publication Number Publication Date
WO2002073861A2 WO2002073861A2 (en) 2002-09-19
WO2002073861A3 true WO2002073861A3 (en) 2003-10-30
WO2002073861A9 WO2002073861A9 (en) 2003-12-24

Family

ID=26788006

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2002/007392 WO2002073861A2 (en) 2001-03-09 2002-03-11 Method and apparatus for cryptographic key storage wherein key servers are authenticated by possession and secure distribution of stored keys

Country Status (8)

Country Link
US (3) US7711122B2 (en)
EP (1) EP1374474B1 (en)
JP (1) JP4222834B2 (en)
AT (1) ATE406726T1 (en)
AU (1) AU2002252288A1 (en)
DE (1) DE60228554D1 (en)
HK (1) HK1058270A1 (en)
WO (1) WO2002073861A2 (en)

Families Citing this family (155)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7711122B2 (en) * 2001-03-09 2010-05-04 Arcot Systems, Inc. Method and apparatus for cryptographic key storage wherein key servers are authenticated by possession and secure distribution of stored keys
US7603703B2 (en) * 2001-04-12 2009-10-13 International Business Machines Corporation Method and system for controlled distribution of application code and content data within a computer network
US7899753B1 (en) 2002-03-25 2011-03-01 Jpmorgan Chase Bank, N.A Systems and methods for time variable financial authentication
US7174465B2 (en) * 2002-06-26 2007-02-06 Lenovo Singapore Pte, Ltd Secure method for system attribute modification
US7773754B2 (en) * 2002-07-08 2010-08-10 Broadcom Corporation Key management system and method
JP2004112510A (en) * 2002-09-19 2004-04-08 Sony Corp Data processing apparatus, program thereof, and apparatus thereof
US7437752B2 (en) * 2002-09-23 2008-10-14 Credant Technologies, Inc. Client architecture for portable device with security policies
US20060190984A1 (en) * 2002-09-23 2006-08-24 Credant Technologies, Inc. Gatekeeper architecture/features to support security policy maintenance and distribution
US7665125B2 (en) * 2002-09-23 2010-02-16 Heard Robert W System and method for distribution of security policies for mobile devices
US7665118B2 (en) * 2002-09-23 2010-02-16 Credant Technologies, Inc. Server, computer memory, and method to support security policy maintenance and distribution
US8078869B2 (en) 2003-02-28 2011-12-13 Research In Motion Limited System and method of protecting data on a communication device
AU2007216818B2 (en) * 2003-02-28 2010-05-13 Blackberry Limited System and method of protecting data on a communication device
IL154739A0 (en) * 2003-03-04 2003-10-31 Bamboo Mediacasting Ltd Segmented data delivery over non-reliable link
US7363508B2 (en) * 2003-05-21 2008-04-22 Palo Alto Research Center Incorporated System and method for dynamically enabling components to implement data transfer security mechanisms
IL157886A0 (en) * 2003-09-11 2009-02-11 Bamboo Mediacasting Ltd Secure multicast transmission
IL157885A0 (en) * 2003-09-11 2004-03-28 Bamboo Mediacasting Ltd Iterative forward error correction
US20090224889A1 (en) * 2003-12-12 2009-09-10 Abhinav Aggarwal System and method for universal identity verification of biological humans
CA2558286A1 (en) 2004-03-05 2005-09-22 Nextnet Wireless, Inc. Method and apparatus for isochronous datagram delivery over contention-based data link
US20050203843A1 (en) * 2004-03-12 2005-09-15 Wood George L. Internet debit system
US7418728B2 (en) * 2004-03-17 2008-08-26 Arcot Systems, Inc. Auditing secret key cryptographic operations
US7646872B2 (en) * 2004-04-02 2010-01-12 Research In Motion Limited Systems and methods to securely generate shared keys
WO2005096542A1 (en) * 2004-04-02 2005-10-13 Research In Motion Limited Deploying and provisioning wireless handheld devices
US8190913B2 (en) 2004-04-30 2012-05-29 Research In Motion Limited System and method for content protection on a computing device
US7996673B2 (en) * 2004-05-12 2011-08-09 Echoworx Corporation System, method and computer product for sending encrypted messages to recipients where the sender does not possess the credentials of the recipient
US7660798B1 (en) * 2004-10-04 2010-02-09 Adobe Systems Incorporated System and method for providing document security, access control and automatic identification of recipients
US20060182283A1 (en) * 2005-02-14 2006-08-17 Tricipher, Inc. Architecture for asymmetric crypto-key storage
US7630493B2 (en) * 2005-01-18 2009-12-08 Tricipher, Inc. Multiple factor private portion of an asymmetric key
US20060182277A1 (en) * 2005-02-14 2006-08-17 Tricipher, Inc. Roaming utilizing an asymmetric key pair
WO2006078572A2 (en) * 2005-01-18 2006-07-27 Tricipher, Inc. Asymmetric crypto-graphy with rolling key security
US7636940B2 (en) * 2005-04-12 2009-12-22 Seiko Epson Corporation Private key protection for secure servers
DE102005018676B4 (en) * 2005-04-21 2008-09-25 Wincor Nixdorf International Gmbh Key management procedure for cryptographic modules
US8090945B2 (en) * 2005-09-16 2012-01-03 Tara Chand Singhal Systems and methods for multi-factor remote user authentication
CN101346947B (en) * 2005-12-23 2011-08-03 艾利森电话股份有限公司 Method and apparatus for routing optimization in telecommunication network
US7769176B2 (en) 2006-06-30 2010-08-03 Verint Americas Inc. Systems and methods for a secure recording environment
US7848524B2 (en) * 2006-06-30 2010-12-07 Verint Americas Inc. Systems and methods for a secure recording environment
US7953978B2 (en) * 2006-09-07 2011-05-31 International Business Machines Corporation Key generation and retrieval using key servers
US8379865B2 (en) * 2006-10-27 2013-02-19 Safenet, Inc. Multikey support for multiple office system
JP2008177683A (en) * 2007-01-16 2008-07-31 Kyocera Mita Corp Data providing system, data receiving system, data providing method, data providing program and data receiving program
US8291227B2 (en) * 2007-02-02 2012-10-16 Red Hat, Inc. Method and apparatus for secure communication
US9846866B2 (en) * 2007-02-22 2017-12-19 First Data Corporation Processing of financial transactions using debit networks
WO2008122688A1 (en) * 2007-04-10 2008-10-16 Meridea Financial Software Oy Method, device, server arrangement, system and computer program products for securely storing data in a portable device
CA2587239A1 (en) * 2007-05-02 2008-11-02 Kryptiva Inc. System and method for ad-hoc processing of cryptographically-encoded data
US8392713B2 (en) * 2007-06-01 2013-03-05 Microsoft Corporation Secure offline activation process for licensed software application programs
US20090240937A1 (en) * 2008-03-19 2009-09-24 Safenet, Inc. Separated storage of data and key necessary to access the data
US9444622B2 (en) * 2008-09-15 2016-09-13 Hewlett Packard Enterprise Development Lp Computing platform with system key
WO2010150817A1 (en) * 2009-06-23 2010-12-29 パナソニック電工株式会社 Authentication system
US10454674B1 (en) * 2009-11-16 2019-10-22 Arm Limited System, method, and device of authenticated encryption of messages
US9231758B2 (en) 2009-11-16 2016-01-05 Arm Technologies Israel Ltd. System, device, and method of provisioning cryptographic data to electronic devices
GB201000288D0 (en) * 2010-01-11 2010-02-24 Scentrics Information Security System and method of enforcing a computer policy
US9544143B2 (en) 2010-03-03 2017-01-10 Duo Security, Inc. System and method of notifying mobile devices to complete transactions
US9532222B2 (en) 2010-03-03 2016-12-27 Duo Security, Inc. System and method of notifying mobile devices to complete transactions after additional agent verification
US8510552B2 (en) * 2010-04-07 2013-08-13 Apple Inc. System and method for file-level data protection
US8621036B1 (en) * 2010-11-17 2013-12-31 Israel L'Heureux Secure file access using a file access server
SG10201602471QA (en) 2011-04-01 2016-04-28 Ericsson Telefon Ab L M Methods and apparatuses for avoiding damage in network attacks
US8885833B2 (en) * 2011-04-11 2014-11-11 Microsoft Corporation One-time recovery credentials for encrypted data access
US20120272339A1 (en) * 2011-04-25 2012-10-25 Ganesan Kumaravel Method and system for accessing password-protected data on a device
US9467463B2 (en) 2011-09-02 2016-10-11 Duo Security, Inc. System and method for assessing vulnerability of a mobile device
US8255687B1 (en) * 2011-09-15 2012-08-28 Google Inc. Enabling users to select between secure service providers using a key escrow service
US9014023B2 (en) 2011-09-15 2015-04-21 International Business Machines Corporation Mobile network services in a mobile data network
US9524388B2 (en) 2011-10-07 2016-12-20 Duo Security, Inc. System and method for enforcing a policy for an authenticator device
EP2592805B1 (en) * 2011-11-08 2014-05-14 ATS Group (IP Holdings) Limited Method and system for preserving privacy and accountability
JP5454960B2 (en) * 2011-11-09 2014-03-26 株式会社東芝 Re-encryption system, re-encryption device, and program
US8971192B2 (en) 2011-11-16 2015-03-03 International Business Machines Corporation Data breakout at the edge of a mobile data network
US9330245B2 (en) * 2011-12-01 2016-05-03 Dashlane SAS Cloud-based data backup and sync with secure local storage of access keys
US8639928B2 (en) * 2011-12-05 2014-01-28 Certicom Corp. System and method for mounting encrypted data based on availability of a key on a network
WO2013084054A1 (en) 2011-12-08 2013-06-13 Dark Matter Labs Inc. Key creation and rotation for data encryption
US8769615B2 (en) 2011-12-19 2014-07-01 International Business Machines Corporation Key storage and retrieval in a breakout component at the edge of a mobile data network
US8966287B2 (en) 2012-03-26 2015-02-24 Symantec Corporation Systems and methods for secure third-party data storage
US8458494B1 (en) * 2012-03-26 2013-06-04 Symantec Corporation Systems and methods for secure third-party data storage
JP2013205604A (en) 2012-03-28 2013-10-07 Toshiba Corp Communication device and key management method
US9887989B2 (en) 2012-06-23 2018-02-06 Pomian & Corella, Llc Protecting passwords and biometrics against back-end security breaches
US8712044B2 (en) 2012-06-29 2014-04-29 Dark Matter Labs Inc. Key management system
US9774446B1 (en) * 2012-12-31 2017-09-26 EMC IP Holding Company LLC Managing use of security keys
US8904503B2 (en) 2013-01-15 2014-12-02 Symantec Corporation Systems and methods for providing access to data accounts within user profiles via cloud-based storage services
US9443073B2 (en) 2013-08-08 2016-09-13 Duo Security, Inc. System and method for verifying status of an authentication device
US9607156B2 (en) 2013-02-22 2017-03-28 Duo Security, Inc. System and method for patching a device through exploitation
US9338156B2 (en) 2013-02-22 2016-05-10 Duo Security, Inc. System and method for integrating two-factor authentication in a device
US9037865B1 (en) 2013-03-04 2015-05-19 Ca, Inc. Method and system to securely send secrets to users
US9130943B1 (en) * 2013-03-11 2015-09-08 Ca, Inc. Managing communications between client applications and application resources of on-premises and cloud computing nodes
US9363669B2 (en) * 2013-04-12 2016-06-07 Blackberry Limited Methods and systems for server-initiated activation of device for operation with server
US9369289B1 (en) 2013-07-17 2016-06-14 Google Inc. Methods and systems for performing secure authenticated updates of authentication credentials
US9202076B1 (en) 2013-07-26 2015-12-01 Symantec Corporation Systems and methods for sharing data stored on secure third-party storage platforms
US9053310B2 (en) 2013-08-08 2015-06-09 Duo Security, Inc. System and method for verifying status of an authentication device through a biometric profile
DE102013108714B3 (en) * 2013-08-12 2014-08-21 Deutsche Post Ag Support decryption of encrypted data
US9092302B2 (en) 2013-09-10 2015-07-28 Duo Security, Inc. System and method for determining component version compatibility across a device ecosystem
US9608814B2 (en) 2013-09-10 2017-03-28 Duo Security, Inc. System and method for centralized key distribution
EP3063919B1 (en) * 2013-10-28 2017-08-09 SEPIOR ApS A system and a method for management of confidential data
US9774448B2 (en) 2013-10-30 2017-09-26 Duo Security, Inc. System and methods for opportunistic cryptographic key management on an electronic device
US9246676B2 (en) 2013-11-22 2016-01-26 Cisco Technology, Inc. Secure access for encrypted data
KR101451639B1 (en) * 2014-02-18 2014-10-16 주식회사 시큐브 Identification and theft prevention system using one times random key, and method thereof
US9762590B2 (en) 2014-04-17 2017-09-12 Duo Security, Inc. System and method for an integrity focused authentication service
US9076004B1 (en) 2014-05-07 2015-07-07 Symantec Corporation Systems and methods for secure hybrid third-party data storage
US9654463B2 (en) 2014-05-20 2017-05-16 Airwatch Llc Application specific certificate management
US9979546B2 (en) 2014-05-30 2018-05-22 Blackberry Limited Controlling access to a resource via a computing device
CN105450400B (en) * 2014-06-03 2019-12-13 阿里巴巴集团控股有限公司 Identity verification method, client, server and system
CN104219228B (en) * 2014-08-18 2018-01-02 四川长虹电器股份有限公司 A kind of user's registration, user identification method and system
RU2710897C2 (en) 2014-08-29 2020-01-14 Виза Интернэшнл Сервис Ассосиэйшн Methods for safe generation of cryptograms
US9531542B2 (en) * 2014-09-19 2016-12-27 Bank Of America Corporation Secure remote password
US9531692B2 (en) * 2014-09-19 2016-12-27 Bank Of America Corporation Method of securing mobile applications using distributed keys
US10187213B2 (en) * 2014-11-07 2019-01-22 Venafi, Inc. Off device storage of cryptographic key material
US9979719B2 (en) 2015-01-06 2018-05-22 Duo Security, Inc. System and method for converting one-time passcodes to app-based authentication
JP6521640B2 (en) * 2015-01-14 2019-05-29 キヤノン株式会社 INFORMATION PROCESSING APPARATUS, CONTROL METHOD THEREOF, AND PROGRAM
SG11201704984SA (en) * 2015-01-27 2017-07-28 Visa Int Service Ass Methods for secure credential provisioning
US9967091B2 (en) * 2015-02-12 2018-05-08 Xerox Corporation Method for enhancing security in distributed systems
US10853592B2 (en) * 2015-02-13 2020-12-01 Yoti Holding Limited Digital identity system
AU2016220152B2 (en) * 2015-02-17 2022-01-13 Visa International Service Association Cloud encryption key broker apparatuses, methods and systems
CN104683107B (en) * 2015-02-28 2019-01-22 深圳市思迪信息技术股份有限公司 Digital certificate keeping method and device, digital signature method and device
US10541811B2 (en) * 2015-03-02 2020-01-21 Salesforce.Com, Inc. Systems and methods for securing data
US9641341B2 (en) 2015-03-31 2017-05-02 Duo Security, Inc. Method for distributed trust authentication
US9660969B2 (en) 2015-03-31 2017-05-23 Here Global B.V. Method and apparatus for providing key management for data encryption for cloud-based big data environments
US9774579B2 (en) 2015-07-27 2017-09-26 Duo Security, Inc. Method for key rotation
US9390154B1 (en) 2015-08-28 2016-07-12 Swirlds, Inc. Methods and apparatus for a distributed database within a network
US10747753B2 (en) 2015-08-28 2020-08-18 Swirlds, Inc. Methods and apparatus for a distributed database within a network
US9529923B1 (en) 2015-08-28 2016-12-27 Swirlds, Inc. Methods and apparatus for a distributed database within a network
US10454900B2 (en) * 2015-09-25 2019-10-22 Mcafee, Llc Remote authentication and passwordless password reset
WO2017082697A1 (en) * 2015-11-13 2017-05-18 Samsung Electronics Co., Ltd. Method and apparatus for downloading profile on embedded universal integrated circuit card of terminal
US10142100B2 (en) * 2016-07-06 2018-11-27 Sap Se Managing user-controlled security keys in cloud-based scenarios
US10394674B2 (en) * 2016-08-24 2019-08-27 Apple Inc. Local recovery of electronic subscriber identity module (eSIM) installation flow
CN107800535A (en) * 2016-09-05 2018-03-13 上海前隆金融信息服务有限公司 A kind of processing method and processing device of data safety
GB201617620D0 (en) * 2016-10-18 2016-11-30 Cybernetica As Composite digital signatures
LT3539026T (en) * 2016-11-10 2022-03-25 Swirlds, Inc. Methods and apparatus for a distributed database including anonymous entries
US10205709B2 (en) 2016-12-14 2019-02-12 Visa International Service Association Key pair infrastructure for secure messaging
US10686787B2 (en) * 2016-12-15 2020-06-16 Thales Dis France Sa Use of personal device for convenient and secure authentication
WO2018118930A1 (en) 2016-12-19 2018-06-28 Swirlds, Inc. Methods and apparatus for a distributed database that enables deletion of events
US10574648B2 (en) 2016-12-22 2020-02-25 Dashlane SAS Methods and systems for user authentication
KR102252731B1 (en) * 2017-01-10 2021-05-18 한국전자통신연구원 Key management method and apparatus for software authenticator
US10432397B2 (en) 2017-05-03 2019-10-01 Dashlane SAS Master password reset in a zero-knowledge architecture
US10375037B2 (en) 2017-07-11 2019-08-06 Swirlds, Inc. Methods and apparatus for efficiently implementing a distributed database within a network
US10505916B2 (en) * 2017-10-19 2019-12-10 T-Mobile Usa, Inc. Authentication token with client key
CA3076257A1 (en) 2017-11-01 2019-05-09 Swirlds, Inc. Methods and apparatus for efficiently implementing a fast-copyable database
US10848312B2 (en) 2017-11-14 2020-11-24 Dashlane SAS Zero-knowledge architecture between multiple systems
US10587409B2 (en) 2017-11-30 2020-03-10 T-Mobile Usa, Inc. Authorization token including fine grain entitlements
US10412113B2 (en) 2017-12-08 2019-09-10 Duo Security, Inc. Systems and methods for intelligently configuring computer security
US10904004B2 (en) 2018-02-27 2021-01-26 Dashlane SAS User-session management in a zero-knowledge environment
US11438168B2 (en) 2018-04-05 2022-09-06 T-Mobile Usa, Inc. Authentication token request with referred application instance public key
US11347868B2 (en) * 2018-04-17 2022-05-31 Domo, Inc Systems and methods for securely managing data in distributed systems
CN109347625B (en) * 2018-08-31 2020-04-24 阿里巴巴集团控股有限公司 Password operation method, work key creation method, password service platform and equipment
US11176539B2 (en) 2018-11-08 2021-11-16 Paypal, Inc. Card storage handler for tracking of card data storage across service provider platforms
US11444928B2 (en) * 2018-12-04 2022-09-13 Journey.ai Controlling transmission of information through a zero-knowledge data management network
US11658962B2 (en) 2018-12-07 2023-05-23 Cisco Technology, Inc. Systems and methods of push-based verification of a transaction
EP3672308B1 (en) * 2018-12-14 2021-08-25 Deutsche Telekom AG Authorisierungsverfahren zum freigeben oder sperren von ressourcen und endgerät
CN109660534B (en) * 2018-12-15 2022-01-28 平安科技(深圳)有限公司 Multi-merchant-based security authentication method and device, electronic equipment and storage medium
KR20220011161A (en) 2019-05-22 2022-01-27 스월즈, 인크. Methods and apparatus for implementing state proofs and ledger identifiers in a distributed database
US10769873B1 (en) 2019-06-28 2020-09-08 Alibaba Group Holding Limited Secure smart unlocking
US11610012B1 (en) * 2019-11-26 2023-03-21 Gobeep, Inc. Systems and processes for providing secure client controlled and managed exchange of data between parties
US11574513B2 (en) * 2020-03-31 2023-02-07 Lockfob, Llc Electronic access control
WO2021216030A1 (en) * 2020-04-20 2021-10-28 Hewlett-Packard Development Company, L.P. Remote connection decryption
US11368292B2 (en) 2020-07-16 2022-06-21 Salesforce.Com, Inc. Securing data with symmetric keys generated using inaccessible private keys
US11522686B2 (en) 2020-07-16 2022-12-06 Salesforce, Inc. Securing data using key agreement
US20230050628A1 (en) * 2020-11-09 2023-02-16 Yat Wan Lui Encryption method and system for xenomorphic cryptography
US20220343351A1 (en) * 2021-04-23 2022-10-27 Sovanta Ag Distributed scoring system
WO2023288117A1 (en) * 2021-07-16 2023-01-19 Timothy James Regan Method for encrypted communication between systems using parallel key banks and reduced character sets
US11691788B1 (en) 2022-01-20 2023-07-04 Cryoport, Inc. Foldable cassette bags for transporting biomaterials
CN114900338B (en) * 2022-04-20 2023-07-21 岚图汽车科技有限公司 Encryption and decryption method, device, equipment and medium
US20240048382A1 (en) * 2022-08-03 2024-02-08 1080 Network, Llc Systems, methods, and computing platforms for executing credential-less network-based communication exchanges

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5606617A (en) * 1994-10-14 1997-02-25 Brands; Stefanus A. Secret-key certificates
US20020016913A1 (en) * 2000-08-04 2002-02-07 Wheeler Lynn Henry Modifying message data and generating random number digital signature within computer chip
US20020026582A1 (en) * 2000-08-31 2002-02-28 Sony Corporation Person authentication system, person authentication method and program providing medium

Family Cites Families (31)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5016274A (en) * 1988-11-08 1991-05-14 Silvio Micali On-line/off-line digital signing
NZ329891A (en) * 1994-01-13 2000-01-28 Certco Llc Method of upgrading firmware of trusted device using embedded key
JP3348753B2 (en) * 1994-04-28 2002-11-20 日本電信電話株式会社 Encryption key distribution system and method
US5999711A (en) * 1994-07-18 1999-12-07 Microsoft Corporation Method and system for providing certificates holding authentication and authorization information for users/machines
US5960086A (en) * 1995-11-02 1999-09-28 Tri-Strata Security, Inc. Unified end-to-end security methods and systems for operating on insecure networks
US5815573A (en) * 1996-04-10 1998-09-29 International Business Machines Corporation Cryptographic key recovery system
US5768373A (en) * 1996-05-06 1998-06-16 Symantec Corporation Method for providing a secure non-reusable one-time password
US5937066A (en) * 1996-10-02 1999-08-10 International Business Machines Corporation Two-phase cryptographic key recovery system
US5889860A (en) * 1996-11-08 1999-03-30 Sunhawk Corporation, Inc. Encryption system with transaction coded decryption key
US8225089B2 (en) * 1996-12-04 2012-07-17 Otomaku Properties Ltd., L.L.C. Electronic transaction systems utilizing a PEAD and a private key
JPH10215284A (en) * 1997-01-29 1998-08-11 Ado Hotsuku:Kk Network connection system and network connection method
US6335972B1 (en) * 1997-05-23 2002-01-01 International Business Machines Corporation Framework-based cryptographic key recovery system
US6775382B1 (en) * 1997-06-30 2004-08-10 Sun Microsystems, Inc. Method and apparatus for recovering encryption session keys
US6978017B2 (en) * 1997-10-14 2005-12-20 Entrust Limited Method and system for providing updated encryption key pairs and digital signature key pairs in a public key system
US6160891A (en) * 1997-10-20 2000-12-12 Sun Microsystems, Inc. Methods and apparatus for recovering keys
EP0914001A1 (en) * 1997-10-28 1999-05-06 CANAL+ Société Anonyme Downloading of applications in a digital decoder
US6098056A (en) * 1997-11-24 2000-08-01 International Business Machines Corporation System and method for controlling access rights to and security of digital content in a distributed information system, e.g., Internet
US6246771B1 (en) * 1997-11-26 2001-06-12 V-One Corporation Session key recovery system and method
US6185685B1 (en) 1997-12-11 2001-02-06 International Business Machines Corporation Security method and system for persistent storage and communications on computer network systems and computer network systems employing the same
US6170058B1 (en) * 1997-12-23 2001-01-02 Arcot Systems, Inc. Method and apparatus for cryptographically camouflaged cryptographic key storage, certification and use
US6393127B2 (en) * 1998-03-02 2002-05-21 Motorola, Inc. Method for transferring an encryption key
JPH11298470A (en) * 1998-04-16 1999-10-29 Hitachi Ltd Key distribution method and system
JP2000049766A (en) * 1998-07-27 2000-02-18 Hitachi Ltd Key managing server system
GB2350981A (en) * 1999-06-11 2000-12-13 Int Computers Ltd Cryptographic key recovery
US6834112B1 (en) * 2000-04-21 2004-12-21 Intel Corporation Secure distribution of private keys to multiple clients
US7024552B1 (en) * 2000-08-04 2006-04-04 Hewlett-Packard Development Company, L.P. Location authentication of requests to a web server system linked to a physical entity
US6947556B1 (en) * 2000-08-21 2005-09-20 International Business Machines Corporation Secure data storage and retrieval with key management and user authentication
US7178169B1 (en) * 2000-09-01 2007-02-13 Zoran Corporation Method and apparatus for securing transfer of and access to digital content
US7054447B1 (en) * 2000-09-01 2006-05-30 Pgp Corporation Method and apparatus for periodically removing invalid public keys from a public key server
US7181762B2 (en) * 2001-01-17 2007-02-20 Arcot Systems, Inc. Apparatus for pre-authentication of users using one-time passwords
US7711122B2 (en) * 2001-03-09 2010-05-04 Arcot Systems, Inc. Method and apparatus for cryptographic key storage wherein key servers are authenticated by possession and secure distribution of stored keys

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5606617A (en) * 1994-10-14 1997-02-25 Brands; Stefanus A. Secret-key certificates
US20020016913A1 (en) * 2000-08-04 2002-02-07 Wheeler Lynn Henry Modifying message data and generating random number digital signature within computer chip
US20020026582A1 (en) * 2000-08-31 2002-02-28 Sony Corporation Person authentication system, person authentication method and program providing medium

Also Published As

Publication number Publication date
US20020126850A1 (en) 2002-09-12
HK1058270A1 (en) 2004-05-07
US8290165B2 (en) 2012-10-16
WO2002073861A2 (en) 2002-09-19
EP1374474B1 (en) 2008-08-27
EP1374474A2 (en) 2004-01-02
WO2002073861A9 (en) 2003-12-24
JP2005509305A (en) 2005-04-07
US20130046985A1 (en) 2013-02-21
US8904180B2 (en) 2014-12-02
US7711122B2 (en) 2010-05-04
AU2002252288A1 (en) 2002-09-24
EP1374474A4 (en) 2006-08-09
DE60228554D1 (en) 2008-10-09
US20100172504A1 (en) 2010-07-08
ATE406726T1 (en) 2008-09-15
JP4222834B2 (en) 2009-02-12

Similar Documents

Publication Publication Date Title
WO2002073861A3 (en) Method and apparatus for cryptographic key storage wherein key servers are authenticated by possession and secure distribution of stored keys
EP1636664B1 (en) Proof of execution using random function
US20080155276A1 (en) Secure storage system and method of use
CN102271037A (en) Key protectors based on online keys
WO2004040410A3 (en) Password encryption key
GB2462442A (en) A remote server centrally controls access to data stored in a data container in an encrypted form
WO2006023151A3 (en) Method of delivering direct proof private keys to devices using an on-line service
AU2002212345A1 (en) Method and system for web-based cross-domain single-sign-on authentication
US7802109B2 (en) Trusted system for file distribution
CN103003822A (en) Domain-authenticated control of platform resources
WO2004034184A3 (en) Encrypting operating system
WO2000074297A3 (en) Method and apparatus for secure distribution of public/private key pairs
WO2001065545A3 (en) Method and apparatus for using non-secure file servers for secure information storage
US20030210791A1 (en) Key management
WO2006107542A3 (en) System and method for achieving machine authentication without maintaining additional credentials
WO2006019614A3 (en) Method of delivering direct proof private keys in signed groups to devices using a distribution cd
WO2006025952A3 (en) Method of delivering direct proof private keys to devices using a distribution cd
WO2003065169A3 (en) Access system utilizing multiple factor identification and authentication
MX2007008543A (en) Device and method for digital rights management.
CA2403488A1 (en) Automatic identity protection system with remote third party monitoring
US20050033963A1 (en) Method and system for authentication, data communication, storage and retrieval in a distributed key cryptography system
Rana et al. Secure and ubiquitous authenticated content distribution framework for IoT enabled DRM system
CN1953366B (en) Password management method and system for intelligent secret key device
JP2004070875A (en) Secure system
US20100005303A1 (en) Universal authentication method

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ CZ DE DE DK DK DM DZ EC EE EE ES FI FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SD SE SG SI SK SK SL TJ TM TN TR TT TZ UA UG UZ VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 2002721352

Country of ref document: EP

Ref document number: 2002571620

Country of ref document: JP

COP Corrected version of pamphlet

Free format text: PAGES 1/7-7/7, DRAWINGS, REPLACED BY NEW PAGES 1/7-7/7

WWP Wipo information: published in national office

Ref document number: 2002721352

Country of ref document: EP

REG Reference to national code

Ref country code: DE

Ref legal event code: 8642