WO2003079165A3 - Ensuring policy enforcement before allowing usage of private key - Google Patents

Ensuring policy enforcement before allowing usage of private key Download PDF

Info

Publication number
WO2003079165A3
WO2003079165A3 PCT/GB2003/001152 GB0301152W WO03079165A3 WO 2003079165 A3 WO2003079165 A3 WO 2003079165A3 GB 0301152 W GB0301152 W GB 0301152W WO 03079165 A3 WO03079165 A3 WO 03079165A3
Authority
WO
WIPO (PCT)
Prior art keywords
private key
policy enforcement
before allowing
allowing usage
document
Prior art date
Application number
PCT/GB2003/001152
Other languages
French (fr)
Other versions
WO2003079165A2 (en
Inventor
Simon Shiu
Adrian Baldwin
Mont Marco Casassa
Original Assignee
Hewlett Packard Development Co
Simon Shiu
Adrian Baldwin
Mont Marco Casassa
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hewlett Packard Development Co, Simon Shiu, Adrian Baldwin, Mont Marco Casassa filed Critical Hewlett Packard Development Co
Priority to EP03744450A priority Critical patent/EP1532505A2/en
Publication of WO2003079165A2 publication Critical patent/WO2003079165A2/en
Publication of WO2003079165A3 publication Critical patent/WO2003079165A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6209Protecting access to data via a platform, e.g. using keys or access control rules to a single file or object, e.g. in a secure envelope, encrypted and accessed using a key, or with access control rules appended to the object itself

Abstract

A document management service comprises: receiving a document; receiving an access policy data describing an access policy applicable to said received document; encrypting said document; and signing said access policy data with a digital signature of a secure device.
PCT/GB2003/001152 2002-03-18 2003-03-17 Ensuring policy enforcement before allowing usage of private key WO2003079165A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
EP03744450A EP1532505A2 (en) 2002-03-18 2003-03-17 Ensuring policy enforcement before allowing usage of private key

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
GB0206399A GB2386710A (en) 2002-03-18 2002-03-18 Controlling access to data or documents
GB0206399.8 2002-03-18

Publications (2)

Publication Number Publication Date
WO2003079165A2 WO2003079165A2 (en) 2003-09-25
WO2003079165A3 true WO2003079165A3 (en) 2005-03-31

Family

ID=9933232

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/GB2003/001152 WO2003079165A2 (en) 2002-03-18 2003-03-17 Ensuring policy enforcement before allowing usage of private key

Country Status (3)

Country Link
EP (1) EP1532505A2 (en)
GB (1) GB2386710A (en)
WO (1) WO2003079165A2 (en)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2403107B (en) * 2003-06-19 2006-06-14 Hewlett Packard Development Co Policy enforcement
GB2405232B (en) * 2003-08-21 2007-01-03 Hewlett Packard Development Co A method of and apparatus for controlling access to data
US7606788B2 (en) * 2003-08-22 2009-10-20 Oracle International Corporation Method and apparatus for protecting private information within a database
GB0410180D0 (en) * 2004-05-07 2004-06-09 Hewlett Packard Development Co An adaptive privacy management system for data repositories
US8831228B1 (en) 2009-08-28 2014-09-09 Adobe Systems Incorporated System and method for decentralized management of keys and policies
US9830480B2 (en) 2015-05-27 2017-11-28 Google Llc Policies for secrets in trusted execution environments
US9697371B1 (en) 2015-06-30 2017-07-04 Google Inc. Remote authorization of usage of protected data in trusted execution environments
US10623184B2 (en) 2015-09-29 2020-04-14 International Business Machines Corporation Smart resource access for decrypted information

Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4713753A (en) * 1985-02-21 1987-12-15 Honeywell Inc. Secure data processing system architecture with format control
EP0702286A2 (en) * 1994-08-10 1996-03-20 Fujitsu Limited Data management module, data reproduction management device and data reproduction management system
US5696898A (en) * 1995-06-06 1997-12-09 Lucent Technologies Inc. System and method for database access control
US5721777A (en) * 1994-12-29 1998-02-24 Lucent Technologies Inc. Escrow key management system for accessing encrypted data with portable cryptographic modules
WO1998058306A1 (en) * 1997-06-17 1998-12-23 Shopnow.Com Inc. Method and system for securely incorporating electronic information into an online purchasing application
WO2000060504A1 (en) * 1999-04-07 2000-10-12 Critical Path Inc. Internet document management system and methods
WO2000079368A1 (en) * 1999-06-23 2000-12-28 The Brodia Group Software smart card
EP1076279A1 (en) * 1999-08-13 2001-02-14 Hewlett-Packard Company Computer platforms and their methods of operation
US6226618B1 (en) * 1998-08-13 2001-05-01 International Business Machines Corporation Electronic content delivery system
WO2001078285A1 (en) * 2000-04-06 2001-10-18 Macrovision Corporation System and method for controlling and enforcing access rights to encrypted media
US20010042043A1 (en) * 1995-02-13 2001-11-15 Intertrust Technologies Corp. Cryptographic methods, apparatus and systems for storage media electronic rights management in closed and connected appliances
WO2002001335A2 (en) * 2000-06-27 2002-01-03 Microsoft Corporation System and method for activating a rendering device in a multi-level rights-management architecture

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5557765A (en) * 1994-08-11 1996-09-17 Trusted Information Systems, Inc. System and method for data recovery
US6158010A (en) * 1998-10-28 2000-12-05 Crosslogix, Inc. System and method for maintaining security in a distributed computer network

Patent Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4713753A (en) * 1985-02-21 1987-12-15 Honeywell Inc. Secure data processing system architecture with format control
EP0702286A2 (en) * 1994-08-10 1996-03-20 Fujitsu Limited Data management module, data reproduction management device and data reproduction management system
US5721777A (en) * 1994-12-29 1998-02-24 Lucent Technologies Inc. Escrow key management system for accessing encrypted data with portable cryptographic modules
US20010042043A1 (en) * 1995-02-13 2001-11-15 Intertrust Technologies Corp. Cryptographic methods, apparatus and systems for storage media electronic rights management in closed and connected appliances
US5696898A (en) * 1995-06-06 1997-12-09 Lucent Technologies Inc. System and method for database access control
WO1998058306A1 (en) * 1997-06-17 1998-12-23 Shopnow.Com Inc. Method and system for securely incorporating electronic information into an online purchasing application
US6226618B1 (en) * 1998-08-13 2001-05-01 International Business Machines Corporation Electronic content delivery system
WO2000060504A1 (en) * 1999-04-07 2000-10-12 Critical Path Inc. Internet document management system and methods
WO2000079368A1 (en) * 1999-06-23 2000-12-28 The Brodia Group Software smart card
EP1076279A1 (en) * 1999-08-13 2001-02-14 Hewlett-Packard Company Computer platforms and their methods of operation
WO2001078285A1 (en) * 2000-04-06 2001-10-18 Macrovision Corporation System and method for controlling and enforcing access rights to encrypted media
WO2002001335A2 (en) * 2000-06-27 2002-01-03 Microsoft Corporation System and method for activating a rendering device in a multi-level rights-management architecture

Also Published As

Publication number Publication date
GB2386710A (en) 2003-09-24
GB0206399D0 (en) 2002-05-01
EP1532505A2 (en) 2005-05-25
WO2003079165A2 (en) 2003-09-25

Similar Documents

Publication Publication Date Title
US8837742B2 (en) Dynamic synchronization of distributed keys for encryption and decryption of network communications
WO2006033997A3 (en) System and method for providing authorized access to digital content
WO2003083646A1 (en) Distribution method, distribution system, and terminal device
WO2006045102A3 (en) Method and apparatus for intercepting events in a communication system
WO2000008909A3 (en) System for tracking end-user electronic content usage
WO2004049674A3 (en) Contextual information management methods in wireless communications devices
EP2078548A3 (en) Secure digital data format and code enforced policy
WO2005052754A3 (en) Secure network access devices with data encryption
WO2004102918A3 (en) Key agreement and transport protocol
AU2003261069A8 (en) Encryption, authentication, and key management for multimedia content pre-encryption
WO2006078654A3 (en) A cryptographic system for resource starved ce device secure upgrade and re-configuration
WO2002073378A3 (en) Receiving device for securely storing a content item, and playback device
TW200633462A (en) Stateless hardware security module
WO2007107708A3 (en) Establishing communications
WO2004021665A3 (en) Enterprise secure messaging architecture
WO2003104951A3 (en) Method for private personal identification number management
ATE453277T1 (en) METHOD AND DEVICE FOR TRANSMITTING DATA SUBJECT TO CONFIDENTIALITY RESTRICTIONS
WO2001022650A3 (en) Server-side implementation of a cryptographic system
CA2463286A1 (en) Multi-factor authentication system
WO2006117555A3 (en) Digital rights management
WO2006034151A3 (en) Digital rights management system based on hardware identification
TW200715770A (en) A system for consolidating and securing access to all out-of-band interfaces in computer, telecommunication, and networking equipment, regardless of the interface type
DE60324707D1 (en) OBILE INSTALLATION
WO2006055853A3 (en) System and method for providing authorized access to digital content
EP2051184A3 (en) Secure telemedical system

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): JP US

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
WWE Wipo information: entry into national phase

Ref document number: 2003744450

Country of ref document: EP

WWP Wipo information: published in national office

Ref document number: 2003744450

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP