JP2018170802A5 - - Google Patents

Download PDF

Info

Publication number
JP2018170802A5
JP2018170802A5 JP2018146175A JP2018146175A JP2018170802A5 JP 2018170802 A5 JP2018170802 A5 JP 2018170802A5 JP 2018146175 A JP2018146175 A JP 2018146175A JP 2018146175 A JP2018146175 A JP 2018146175A JP 2018170802 A5 JP2018170802 A5 JP 2018170802A5
Authority
JP
Japan
Prior art keywords
key
data
encryption key
management
service provider
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
JP2018146175A
Other languages
English (en)
Other versions
JP6609010B2 (ja
JP2018170802A (ja
Filing date
Publication date
Priority claimed from US13/922,875 external-priority patent/US9407440B2/en
Application filed filed Critical
Publication of JP2018170802A publication Critical patent/JP2018170802A/ja
Publication of JP2018170802A5 publication Critical patent/JP2018170802A5/ja
Application granted granted Critical
Publication of JP6609010B2 publication Critical patent/JP6609010B2/ja
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Claims (17)

  1. サービスプロバイダの顧客においてデータ暗号化鍵をローカルに生成するステップと、
    前記データ暗号化鍵を使用して前記サービスプロバイダの前記顧客においてローカルにデータを暗号化して暗号化済データとするステップと、
    鍵暗号化鍵を使用して前記サービスプロバイダの前記顧客においてローカルに前記データ暗号化鍵を暗号化して暗号化済データ鍵とするステップと、
    前記サービスプロバイダによって動作させられる鍵管理サービスに要求を送信して、前記サービスプロバイダに、管理鍵を使用して前記データ暗号化鍵を暗号化して暗号化済データ鍵とすることを実行させるステップと、
    前記暗号化済データと前記暗号化済データ鍵の両方を前記サービスプロバイダのストレージサービスにおいて格納するステップと、
    を含む方法。
  2. 前記要求は、前記データ暗号化鍵を暗号化するために使用される前記管理鍵を特定する、請求項1に記載の方法。
  3. 前記データ暗号化鍵は対称暗号化鍵である、請求項1に記載の方法。
  4. 前記管理鍵は対称暗号化鍵である、請求項1に記載の方法。
  5. 前記要求は認証されたアプリケーションプログラミングインターフェースコールである、請求項1に記載の方法。
  6. 前記暗号化済データと前記暗号化済データ鍵の両方を前記サービスプロバイダの前記ストレージサービスに格納するステップは、アプリケーションプログラミングインターフェースコールを前記ストレージサービスに送信することを含み、前記アプリケーションプログラミングインターフェースコールは前記データと前記暗号化済データ鍵の両方を含む、請求項1に記載の方法。
  7. 前記データ暗号化鍵および前記管理鍵はそれぞれ必要であるが、前記ストレージサービスにおいて前記データが格納されるときに前記データを復号するには個別的には不十分である、請求項1に記載の方法。
  8. 前記サービスプロバイダが平文形式の前記データ暗号化鍵にアクセスすることを防止するステップをさらに含む、請求項1に記載の方法。
  9. コンピュータシステムの1つまたは複数のプロセッサによって実行されると、前記コンピュータシステムに、
    サービスプロバイダの顧客においてデータ暗号化鍵を取得することと、
    前記データ暗号化鍵を使用して前記サービスプロバイダとは異なる場所においてデータを暗号化して暗号化済データとすることと、
    鍵暗号化鍵を使用して前記サービスプロバイダの前記顧客においてローカルに前記データ暗号化鍵を暗号化して暗号化済データ鍵とすることと、
    ネットワークを介して、前記サービスプロバイダによって動作させられる鍵管理サービスに要求を送信して、前記サービスプロバイダに、管理鍵を使用して前記データ暗号化鍵を暗号化して暗号化済データ鍵とすることを実行させることと、
    前記暗号化済データと前記暗号化済データ鍵の両方をストレージサービスにおいて格納するステップと、
    を実行させる命令を記憶するコンピュータ可読記録媒体。
  10. 前記命令は前記コンピュータシステムに、前記データ暗号化鍵をローカルに生成することによって前記データ暗号化鍵を取得することを実行させる、請求項9に記載のコンピュータ可読記録媒体。
  11. 前記要求は、
    前記要求は前記鍵管理サービスに前記管理鍵を示して、前記鍵管理サービスが、前記鍵管理サービスによって複数の顧客のために管理される複数の管理鍵から前記管理鍵を選択することを可能にする、請求項9に記載のコンピュータ可読記録媒体。
  12. 前記管理鍵は対称暗号化鍵である、請求項9に記載のコンピュータ可読記録媒体。
  13. 前記データ暗号化鍵は対称暗号化鍵である、請求項9に記載のコンピュータ可読記録媒体。
  14. 前記要求を送信することはHTTPを使用して実行される、請求項9に記載のコンピュータ可読記録媒体。
  15. 前記命令は、前記コンピュータシステムに、APIコールを送信して前記鍵管理サービスに前記管理鍵を生成させることを実行させる命令をさらに含む、請求項9に記載のコンピュータ可読記録媒体。
  16. 前記データ暗号化鍵および前記管理鍵は、前記ストレージサービスにおいて前記データが格納されるときに前記データを復号するには個別的には不十分である、請求項9に記載のコンピュータ可読記録媒体。
  17. 前記命令は、実行されると前記コンピュータシステムに、前記暗号化済データ鍵を復号する要求を送信することによって前記データ暗号化鍵を取得することを実行させる命令をさらに含み、前記要求は前記鍵管理サービスに前記管理鍵を示す、請求項9に記載のコンピュータ可読記録媒体。
JP2018146175A 2013-06-20 2018-08-02 複数許可データセキュリティ及びアクセス Active JP6609010B2 (ja)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US13/922,875 2013-06-20
US13/922,875 US9407440B2 (en) 2013-06-20 2013-06-20 Multiple authority data security and access

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
JP2017007841A Division JP6383019B2 (ja) 2013-06-20 2017-01-19 複数許可データセキュリティ及びアクセス

Publications (3)

Publication Number Publication Date
JP2018170802A JP2018170802A (ja) 2018-11-01
JP2018170802A5 true JP2018170802A5 (ja) 2018-12-13
JP6609010B2 JP6609010B2 (ja) 2019-11-20

Family

ID=52105163

Family Applications (3)

Application Number Title Priority Date Filing Date
JP2016521485A Active JP6082166B2 (ja) 2013-06-20 2014-06-16 複数許可データセキュリティ及びアクセス
JP2017007841A Active JP6383019B2 (ja) 2013-06-20 2017-01-19 複数許可データセキュリティ及びアクセス
JP2018146175A Active JP6609010B2 (ja) 2013-06-20 2018-08-02 複数許可データセキュリティ及びアクセス

Family Applications Before (2)

Application Number Title Priority Date Filing Date
JP2016521485A Active JP6082166B2 (ja) 2013-06-20 2014-06-16 複数許可データセキュリティ及びアクセス
JP2017007841A Active JP6383019B2 (ja) 2013-06-20 2017-01-19 複数許可データセキュリティ及びアクセス

Country Status (5)

Country Link
US (2) US9407440B2 (ja)
EP (2) EP3011429B1 (ja)
JP (3) JP6082166B2 (ja)
CN (2) CN105378649B (ja)
WO (1) WO2014204862A1 (ja)

Families Citing this family (45)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9756022B2 (en) * 2014-08-29 2017-09-05 Box, Inc. Enhanced remote key management for an enterprise in a cloud-based environment
KR102015108B1 (ko) * 2013-03-12 2019-10-22 한국전자통신연구원 이종 서비스 간 서비스 제공 방법과 사용자 단말 및 웹 서버
US10742520B2 (en) * 2013-12-31 2020-08-11 Citrix Systems, Inc. Providing mobile device management functionalities
US9298942B1 (en) * 2013-12-31 2016-03-29 Google Inc. Encrypted augmentation storage
US10574442B2 (en) * 2014-08-29 2020-02-25 Box, Inc. Enhanced remote key management for an enterprise in a cloud-based environment
US20160350544A1 (en) * 2014-10-22 2016-12-01 Sze Yuen Wong Methods And Apparatus For Sharing Encrypted Data
US9379890B1 (en) 2015-12-07 2016-06-28 Workiva Inc. System and method for managing cryptographic keys
US10122533B1 (en) * 2015-12-15 2018-11-06 Amazon Technologies, Inc. Configuration updates for access-restricted hosts
US10419214B2 (en) * 2015-12-28 2019-09-17 Dell Products L.P. Mobile device management delegate for managing isolated devices
JP6720581B2 (ja) * 2016-03-02 2020-07-08 株式会社リコー 情報処理装置、情報処理方法、及び情報処理プログラム
US10021075B1 (en) * 2016-06-23 2018-07-10 EMC IP Holding Company LLC Multiple data center data security
CA2976124A1 (en) * 2016-08-12 2018-02-12 9069569 Canada Inc. Emergency callback system
US10404452B2 (en) * 2016-08-19 2019-09-03 Amazon Technologies, Inc. Message service with distributed key caching for server-side encryption
US10491387B2 (en) * 2016-11-15 2019-11-26 International Business Machines Corporation End-to-end encryption of a block storage device with protected key
WO2018236420A1 (en) * 2017-06-20 2018-12-27 Google Llc CLOUD EQUIPMENT SECURITY MODULES FOR CRYPTOGRAPHIC EXTERNALIZATION OPERATIONS
US11146397B2 (en) * 2017-10-31 2021-10-12 Micro Focus Llc Encoding abelian variety-based ciphertext with metadata
US11539675B2 (en) 2018-06-06 2022-12-27 Slack Technologies, Llc Encryption key management for international data residency
US12019607B2 (en) 2018-12-14 2024-06-25 Salesforce, Inc. Methods, apparatuses, and computer program products for management of and search index generation based on geographically distributed data
CA3093718C (en) * 2018-06-06 2023-09-26 Slack Technologies, Inc. Method, apparatus, and computer program product for encryption key management within a group-based communication system
JP7113589B2 (ja) * 2018-07-17 2022-08-05 株式会社デンソー 情報仲介装置、情報提供装置、及び情報取得装置
US11477217B2 (en) 2018-09-18 2022-10-18 Cyral Inc. Intruder detection for a network
US11470084B2 (en) 2018-09-18 2022-10-11 Cyral Inc. Query analysis using a protective layer at the data source
US11477197B2 (en) 2018-09-18 2022-10-18 Cyral Inc. Sidecar architecture for stateless proxying to databases
CN109462475B (zh) * 2018-11-15 2021-08-13 泰康保险集团股份有限公司 数据加密方法、解密方法及相关装置
US11949739B2 (en) 2018-12-14 2024-04-02 Salesforce, Inc. Methods, apparatuses, and computer program products for management of data deletion requests based on geographically distributed data
US11763011B2 (en) 2019-02-25 2023-09-19 Oocl (Infotech) Holdings Limited Zero trust communication system for freight shipping organizations, and methods of use
US11361088B2 (en) 2019-02-25 2022-06-14 Oocl (Infotech) Holdings Limited Zero trust communication system for freight shipping organizations, and methods of use
CN110417726B (zh) * 2019-05-27 2021-08-24 腾讯科技(深圳)有限公司 一种密钥管理方法及相关设备
US20220376933A1 (en) * 2019-09-25 2022-11-24 Commonwealth Scientific And Industrial Research Organisation Cryptographic services for browser applications
US11163459B2 (en) * 2019-10-28 2021-11-02 EMC IP Holding Company LLC Rekeying information on storage devices using a proactive copy service
US11366645B2 (en) 2019-11-11 2022-06-21 Klarna Bank Ab Dynamic identification of user interface elements through unsupervised exploration
US11379092B2 (en) 2019-11-11 2022-07-05 Klarna Bank Ab Dynamic location and extraction of a user interface element state in a user interface that is dependent on an event occurrence in a different user interface
US11726752B2 (en) 2019-11-11 2023-08-15 Klarna Bank Ab Unsupervised location and extraction of option elements in a user interface
US11386356B2 (en) 2020-01-15 2022-07-12 Klama Bank AB Method of training a learning system to classify interfaces
US11409546B2 (en) 2020-01-15 2022-08-09 Klarna Bank Ab Interface classification system
US10846106B1 (en) 2020-03-09 2020-11-24 Klarna Bank Ab Real-time interface classification in an application
US11496293B2 (en) * 2020-04-01 2022-11-08 Klarna Bank Ab Service-to-service strong authentication
US11303432B2 (en) * 2020-05-01 2022-04-12 Microsoft Technology Licensing, Llc Label-based double key encryption
CA3092836A1 (en) * 2020-07-01 2022-01-01 Slack Technologies, Inc. Computer-reabable media, method and system for encryption key management
US10897351B1 (en) 2020-07-02 2021-01-19 Slack Technologies, Inc. Encryption key management for an automated workflow
CN114117460A (zh) * 2020-09-01 2022-03-01 鸿富锦精密电子(天津)有限公司 数据保护方法、装置、电子设备及存储介质
US11184159B1 (en) 2020-09-01 2021-11-23 Slack Technologies, Inc. Encryption key management for channels with multiple organizations
US10931454B1 (en) 2020-09-10 2021-02-23 Cyberark Software Ltd. Decentralized management of data access and verification using data management hub
US11012245B1 (en) * 2020-09-10 2021-05-18 Cyberark Software Ltd. Decentralized management of data access and verification using data management hub
JP2023040843A (ja) 2021-09-10 2023-03-23 株式会社東芝 クラウド鍵管理サービス基盤システム

Family Cites Families (213)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5200999A (en) 1991-09-27 1993-04-06 International Business Machines Corporation Public key cryptosystem key management based on control vectors
US5179591A (en) 1991-10-16 1993-01-12 Motorola, Inc. Method for algorithm independent cryptographic key management
US5418854A (en) 1992-04-28 1995-05-23 Digital Equipment Corporation Method and apparatus for protecting the confidentiality of passwords in a distributed data processing system
JP3684266B2 (ja) 1996-04-26 2005-08-17 株式会社日立製作所 暗号化された共有データのアクセス制御方法及びシステム
US6021202A (en) 1996-12-20 2000-02-01 Financial Services Technology Consortium Method and system for processing electronic documents
US6038563A (en) * 1997-10-31 2000-03-14 Sun Microsystems, Inc. System and method for restricting database access to managed object information using a permissions table that specifies access rights corresponding to user access rights to the managed objects
US6279110B1 (en) 1997-11-10 2001-08-21 Certicom Corporation Masked digital signatures
US6185316B1 (en) 1997-11-12 2001-02-06 Unisys Corporation Self-authentication apparatus and method
US6097817A (en) 1997-12-10 2000-08-01 Omnipoint Corporation Encryption and decryption in communication system with wireless trunk
US6453416B1 (en) 1997-12-19 2002-09-17 Koninklijke Philips Electronics N.V. Secure proxy signing device and method of use
US6084969A (en) 1997-12-31 2000-07-04 V-One Corporation Key encryption system and method, pager unit, and pager proxy for a two-way alphanumeric pager network
US6754820B1 (en) 2001-01-30 2004-06-22 Tecsec, Inc. Multiple level access system
US6985583B1 (en) 1999-05-04 2006-01-10 Rsa Security Inc. System and method for authentication seed distribution
WO2001015162A2 (en) 1999-08-13 2001-03-01 Microsoft Corporation Methods and systems of protecting digital content
US7343351B1 (en) 1999-08-31 2008-03-11 American Express Travel Related Services Company, Inc. Methods and apparatus for conducting electronic transactions
US7085931B1 (en) 1999-09-03 2006-08-01 Secure Computing Corporation Virtual smart card system and method
JP2001236259A (ja) * 1999-12-13 2001-08-31 Mitsubishi Electric Corp 貸金庫システム
JP4622064B2 (ja) 2000-04-06 2011-02-02 ソニー株式会社 情報記録装置、情報再生装置、情報記録方法、情報再生方法、および情報記録媒体、並びにプログラム提供媒体
US6826686B1 (en) 2000-04-14 2004-11-30 International Business Machines Corporation Method and apparatus for secure password transmission and password changes
US7757271B2 (en) 2000-04-19 2010-07-13 Hewlett-Packard Development Company, L.P. Computer system security service
US7512965B1 (en) 2000-04-19 2009-03-31 Hewlett-Packard Development Company, L.P. Computer system security service
US20020016840A1 (en) 2000-05-12 2002-02-07 Shai Herzog Applying recursive policy for scoping of administration of policy based networking
US7139917B2 (en) 2000-06-05 2006-11-21 Phoenix Technologies Ltd. Systems, methods and software for remote password authentication using multiple servers
US20020194483A1 (en) 2001-02-25 2002-12-19 Storymail, Inc. System and method for authorization of access to a resource
US20030041110A1 (en) 2000-07-28 2003-02-27 Storymail, Inc. System, Method and Structure for generating and using a compressed digital certificate
WO2002013435A1 (en) 2000-08-04 2002-02-14 First Data Corporation Method and system for using electronic communications for an electronic contact
US7010689B1 (en) 2000-08-21 2006-03-07 International Business Machines Corporation Secure data storage and retrieval in a client-server environment
JP2002082611A (ja) * 2000-09-06 2002-03-22 Hitachi Ltd 取引情報の保全方法及び取引情報の保管元コンピュータ
AU2001288679A1 (en) 2000-09-11 2002-03-26 Sentrycom Ltd. A biometric-based system and method for enabling authentication of electronic messages sent over a network
US7308431B2 (en) 2000-09-11 2007-12-11 Nokia Corporation System and method of secure authentication and billing for goods and services using a cellular telecommunication and an authorization infrastructure
US6959394B1 (en) 2000-09-29 2005-10-25 Intel Corporation Splitting knowledge of a password
US20020112181A1 (en) 2000-12-12 2002-08-15 Smith Mark Elwin Multilevel secure network access system
JP2002278839A (ja) 2001-03-15 2002-09-27 Sony Corp データアクセス管理システム、メモリ搭載デバイス、およびデータアクセス管理方法、並びにプログラム記憶媒体
US6957393B2 (en) 2001-03-19 2005-10-18 Accenture Llp Mobile valet
US20020162019A1 (en) 2001-04-25 2002-10-31 Berry Michael C. Method and system for managing access to services
US20020161998A1 (en) 2001-04-27 2002-10-31 International Business Machines Corporation Method and system for providing hardware cryptography functionality to a data processing system lacking cryptography hardware
WO2003003321A2 (en) 2001-06-26 2003-01-09 Enterprises Solutions, Inc. Transaction verification system and method
US7610390B2 (en) 2001-12-04 2009-10-27 Sun Microsystems, Inc. Distributed network identity
US7921288B1 (en) * 2001-12-12 2011-04-05 Hildebrand Hal S System and method for providing different levels of key security for controlling access to secured items
KR100458516B1 (ko) 2001-12-28 2004-12-03 한국전자통신연구원 웹-리소스 불법 변경 감지 장치 및 그 방법
US7073195B2 (en) 2002-01-28 2006-07-04 Intel Corporation Controlled access to credential information of delegators in delegation relationships
US20040158734A1 (en) 2002-02-01 2004-08-12 Larsen Vincent Alan System and method for process-based security in a portable electronic device
US7249379B2 (en) 2002-02-01 2007-07-24 Systems Advisory Group Enterprises, Inc. Method and apparatus for implementing process-based security in a computer system
US7228417B2 (en) 2002-02-26 2007-06-05 America Online, Inc. Simple secure login with multiple-authentication providers
US7200756B2 (en) * 2002-06-25 2007-04-03 Microsoft Corporation Base cryptographic service provider (CSP) methods and apparatuses
US7546633B2 (en) 2002-10-25 2009-06-09 Microsoft Corporation Role-based authorization management framework
US20040088260A1 (en) 2002-10-31 2004-05-06 Foster Ward Scott Secure user authentication
US7502933B2 (en) 2002-11-27 2009-03-10 Rsa Security Inc. Identity authentication system and method
US7319757B2 (en) 2003-01-02 2008-01-15 Intel Corporation Wireless communication device and method for over-the-air application service
US20040143733A1 (en) 2003-01-16 2004-07-22 Cloverleaf Communication Co. Secure network data storage mediator
US7320076B2 (en) 2003-03-05 2008-01-15 Sun Microsystems, Inc. Method and apparatus for a transaction-based secure storage file system
US7702916B2 (en) 2003-03-31 2010-04-20 Visa U.S.A. Inc. Method and system for secure authentication
JP2006522507A (ja) * 2003-04-01 2006-09-28 エントロピック・テクノロジーズ・プロプライエタリー・リミテッド セキュア通信システム及びセキュア通信方法
US20040221174A1 (en) 2003-04-29 2004-11-04 Eric Le Saint Uniform modular framework for a host computer system
US20070186102A1 (en) 2003-05-06 2007-08-09 Ng Raymond K Method and apparatus for facilitating fine-grain permission management
JP3919700B2 (ja) 2003-06-06 2007-05-30 株式会社モバイル・テクニカ 暗号システム及びその暗号文処理方法
US7711097B2 (en) 2003-07-09 2010-05-04 Fujitsu Limited Pay-per-connection scheme for wireless access to internet
CN1868187B (zh) 2003-08-13 2010-06-16 汤姆森许可公司 通过内容密钥使通信网络上内容传递安全的方法及装置
AU2004305800A1 (en) 2003-09-12 2005-03-31 Emc Corporation System and method providing disconnected authentication
US7577995B2 (en) 2003-09-16 2009-08-18 At&T Intellectual Property I, L.P. Controlling user-access to computer applications
US8453196B2 (en) 2003-10-14 2013-05-28 Salesforce.Com, Inc. Policy management in an interoperability network
TWI240530B (en) 2003-12-11 2005-09-21 Inst Information Industry Dynamic delegation method, storage medium and device using the same
US7434050B2 (en) 2003-12-11 2008-10-07 International Business Machines Corporation Efficient method for providing secure remote access
US7636941B2 (en) 2004-03-10 2009-12-22 Microsoft Corporation Cross-domain authentication
US8522039B2 (en) 2004-06-09 2013-08-27 Apple Inc. Method and apparatus for establishing a federated identity using a personal wireless device
US7814314B2 (en) 2004-08-31 2010-10-12 Ntt Docomo, Inc. Revocation of cryptographic digital certificates
GB0419479D0 (en) 2004-09-02 2004-10-06 Cryptomathic Ltd Data certification methods and apparatus
KR100645512B1 (ko) 2004-09-30 2006-11-15 삼성전자주식회사 통신 시스템에서 네트워크 접속에 대한 사용자 인증 장치및 그 방법
US8181219B2 (en) 2004-10-01 2012-05-15 Microsoft Corporation Access authorization having embedded policies
US20060130100A1 (en) 2004-10-12 2006-06-15 Pentland Joseph D Methods and apparatus for remotely displaying and distributing advertising and emergency information
US7251478B2 (en) 2004-11-01 2007-07-31 Xcellasave, Inc. Method for advertising on digital cellular telephones and reducing costs to the end user
US7251476B2 (en) 2004-11-01 2007-07-31 Xcellasave, Inc. Method for advertising on digital cellular telephones and reducing costs to the end user
EP1815413A4 (en) 2004-11-09 2009-10-21 Mobile Phone Applic Inc SYSTEM AND METHOD FOR PROVIDING CONTENT TO A MOBILE TELECOMMUNICATIONS DEVICE
US7886155B2 (en) 2004-12-20 2011-02-08 Biogy, Inc. System for generating requests to a passcode protected entity
US7734051B2 (en) 2004-11-30 2010-06-08 Novell, Inc. Key distribution
CN101120569B (zh) 2004-12-28 2011-07-27 意大利电信股份公司 用户从用户终端远程访问终端设备的远程访问***和方法
US20060149677A1 (en) 2005-01-06 2006-07-06 Microsoft Corporation Contextual ad processing on local machine
JP4548737B2 (ja) 2005-01-24 2010-09-22 パナソニック株式会社 署名生成装置及び署名検証装置
US20060174125A1 (en) 2005-01-31 2006-08-03 Brookner George M Multiple cryptographic key security device
EP1846885A2 (en) 2005-02-04 2007-10-24 Cellfire, Inc. Delivering targeted advertising to mobile devices
JP4790731B2 (ja) 2005-02-18 2011-10-12 イーエムシー コーポレイション 派生シード
US7478419B2 (en) 2005-03-09 2009-01-13 Sun Microsystems, Inc. Automated policy constraint matching for computing resources
US7770206B2 (en) 2005-03-11 2010-08-03 Microsoft Corporation Delegating right to access resource or the like in access management system
US7784092B2 (en) 2005-03-25 2010-08-24 AT&T Intellectual I, L.P. System and method of locating identity providers in a data network
US8689347B2 (en) 2005-05-13 2014-04-01 Cryptomill Inc. Cryptographic control for mobile storage means
JP2008541248A (ja) 2005-05-13 2008-11-20 クリプトミル テクノロジーズ リミティド コンテンツ暗号化ファイアウォールシステム
FI20050562A0 (fi) 2005-05-26 2005-05-26 Nokia Corp Menetelmä avainmateriaalin tuottamiseksi
US20060282878A1 (en) 2005-06-14 2006-12-14 Stanley James C Expression of packet processing policies using file processing rules
US7685430B1 (en) 2005-06-17 2010-03-23 Sun Microsystems, Inc. Initial password security accentuated by triple encryption and hashed cache table management on the hosted site's server
US7836306B2 (en) 2005-06-29 2010-11-16 Microsoft Corporation Establishing secure mutual trust using an insecure password
US20070037552A1 (en) 2005-08-11 2007-02-15 Timothy Lee Method and system for performing two factor mutual authentication
US20070061885A1 (en) 2005-09-09 2007-03-15 Hammes Peter C System and method for managing security testing
JP2007080145A (ja) * 2005-09-16 2007-03-29 Ricoh Co Ltd データ管理システム、データ処理方法およびデータ処理プログラム
US7721322B2 (en) 2005-11-22 2010-05-18 Oracle International Corporation Enterprise service-to-service trust framework
KR100825736B1 (ko) 2005-12-07 2008-04-29 한국전자통신연구원 무선 xml 전자 서명 서비스 제공 장치 및 그 방법
KR20070108315A (ko) 2005-12-07 2007-11-09 한국전자통신연구원 서명된 콜백 유알엘 메시지를 이용한 개인정보 공유 서비스제공 장치 및 방법
US8006289B2 (en) 2005-12-16 2011-08-23 International Business Machines Corporation Method and system for extending authentication methods
US7716240B2 (en) 2005-12-29 2010-05-11 Nextlabs, Inc. Techniques and system to deploy policies intelligently
US7877409B2 (en) 2005-12-29 2011-01-25 Nextlabs, Inc. Preventing conflicts of interests between two or more groups using applications
CN100571125C (zh) 2005-12-30 2009-12-16 上海贝尔阿尔卡特股份有限公司 一种用于用户设备与内部网络间安全通信的方法及装置
US8688813B2 (en) 2006-01-11 2014-04-01 Oracle International Corporation Using identity/resource profile and directory enablers to support identity management
JP4843325B2 (ja) * 2006-02-06 2011-12-21 株式会社リコー 文書アクセス制御システム
US8312523B2 (en) 2006-03-31 2012-11-13 Amazon Technologies, Inc. Enhanced security for electronic communications
US8239671B2 (en) 2006-04-20 2012-08-07 Toshiba America Research, Inc. Channel binding mechanism based on parameter binding in key derivation
US7913084B2 (en) 2006-05-26 2011-03-22 Microsoft Corporation Policy driven, credential delegation for single sign on and secure access to network resources
US8151116B2 (en) 2006-06-09 2012-04-03 Brigham Young University Multi-channel user authentication apparatus system and method
US8151317B2 (en) 2006-07-07 2012-04-03 International Business Machines Corporation Method and system for policy-based initiation of federation management
US20120245978A1 (en) 2006-07-12 2012-09-27 Arbitron, Inc. System and method for determinimg contextual characteristics of media exposure data
US20080040773A1 (en) 2006-08-11 2008-02-14 Microsoft Corporation Policy isolation for network authentication and authorization
DE102006038037A1 (de) 2006-08-14 2008-02-21 Siemens Ag Verfahren und System zum Bereitstellen eines zugangsspezifischen Schlüssels
CA2653330C (en) 2006-08-24 2021-07-27 Cfph, Llc Multi-display computer terminal system
US8705746B2 (en) 2006-09-29 2014-04-22 Microsoft Corporation Data security in an off-premise environment
US8601598B2 (en) * 2006-09-29 2013-12-03 Microsoft Corporation Off-premise encryption of data storage
US8041954B2 (en) 2006-12-07 2011-10-18 Paul Plesman Method and system for providing a secure login solution using one-time passwords
US9124602B2 (en) 2007-01-05 2015-09-01 International Business Machines Corporation Method and apparatus for creating custom access control hierarchies
US8468244B2 (en) 2007-01-05 2013-06-18 Digital Doors, Inc. Digital information infrastructure and method for security designated data and with granular data stores
KR101393674B1 (ko) 2007-01-26 2014-05-13 인터디지탈 테크날러지 코포레이션 위치 정보를 보안유지하고 위치 정보를 이용하여 액세스를 제어하기 위한 방법 및 장치
JP4916915B2 (ja) * 2007-02-28 2012-04-18 Kddi株式会社 端末装置、データ管理装置およびコンピュータプログラム
JP4973246B2 (ja) 2007-03-09 2012-07-11 日本電気株式会社 アクセス権管理システム、サーバ及びアクセス権管理プログラム
US8413221B2 (en) 2007-03-23 2013-04-02 Emc Corporation Methods and apparatus for delegated authentication
US7996823B2 (en) 2007-05-31 2011-08-09 International Business Machines Corporation Mechanism to provide debugging and optimization in policy and knowledge controlled distributed computing systems, through the use of tagged policies and knowledge representation elements
US20090049518A1 (en) 2007-08-08 2009-02-19 Innopath Software, Inc. Managing and Enforcing Policies on Mobile Devices
US8332922B2 (en) 2007-08-31 2012-12-11 Microsoft Corporation Transferable restricted security tokens
JP5458888B2 (ja) 2007-09-25 2014-04-02 日本電気株式会社 証明書生成配布システム、証明書生成配布方法およびプログラム
US8059820B2 (en) 2007-10-11 2011-11-15 Microsoft Corporation Multi-factor content protection
US8453198B2 (en) 2007-12-27 2013-05-28 Hewlett-Packard Development Company, L.P. Policy based, delegated limited network access management
US9323938B2 (en) 2007-12-31 2016-04-26 Enterra Solutions, Llc Holistic XACML and obligation code automatically generated from ontologically defined rule set
US8266306B2 (en) 2007-12-31 2012-09-11 Symantec Corporation Systems and methods for delegating access to online accounts
US8621561B2 (en) 2008-01-04 2013-12-31 Microsoft Corporation Selective authorization based on authentication input attributes
CA2621147C (en) 2008-02-15 2013-10-08 Connotech Experts-Conseils Inc. Method of bootstrapping an authenticated data session configuration
US20090210712A1 (en) 2008-02-19 2009-08-20 Nicolas Fort Method for server-side detection of man-in-the-middle attacks
US8418222B2 (en) 2008-03-05 2013-04-09 Microsoft Corporation Flexible scalable application authorization for cloud computing environments
JP2009232012A (ja) * 2008-03-21 2009-10-08 Hitachi Software Eng Co Ltd 機密データ通信システム及びプログラム
US8464058B1 (en) 2008-04-08 2013-06-11 Hewlett-Packard Development Company, L.P. Password-based cryptographic method and apparatus
US8281151B2 (en) 2008-04-09 2012-10-02 Hewlett-Packard Development Company L. P. Auditor assisted extraction and verification of client data returned from a storage provided while hiding client data from the auditor
EP2293490A1 (en) 2008-06-23 2011-03-09 Panasonic Corporation Information processing device, encryption key management method, computer program and integrated circuit
US8245039B2 (en) 2008-07-18 2012-08-14 Bridgewater Systems Corp. Extensible authentication protocol authentication and key agreement (EAP-AKA) optimization
US20110055585A1 (en) 2008-07-25 2011-03-03 Kok-Wah Lee Methods and Systems to Create Big Memorizable Secrets and Their Applications in Information Engineering
US8276184B2 (en) 2008-08-05 2012-09-25 International Business Machines Corporation User-centric resource architecture
US9258113B2 (en) 2008-08-29 2016-02-09 Red Hat, Inc. Username based key exchange
US8099768B2 (en) 2008-09-18 2012-01-17 Oracle America, Inc. Method and system for multi-protocol single logout
WO2010037201A1 (en) 2008-09-30 2010-04-08 Wicksoft Corporation System and method for secure management of mobile user access to enterprise network resources
KR101019322B1 (ko) 2008-10-22 2011-03-07 성균관대학교산학협력단 상황 인지 역할 기반 접근 제어 시스템 및 그 제어방법
US8744077B2 (en) 2008-10-28 2014-06-03 International Business Machines Corporation Cryptographic encoding and decoding of secret data
US8891756B2 (en) 2008-10-30 2014-11-18 Certicom Corp. Collision-resistant elliptic curve hash functions
US20100125894A1 (en) 2008-11-19 2010-05-20 At&T Intellectual Property I, L.P. Systems, methods and computer program products that facilitate remote access of devices in a subscriber network
US9106426B2 (en) 2008-11-26 2015-08-11 Red Hat, Inc. Username based authentication and key generation
US8505078B2 (en) 2008-12-28 2013-08-06 Qualcomm Incorporated Apparatus and methods for providing authorized device access
US20100205649A1 (en) 2009-02-06 2010-08-12 Microsoft Corporation Credential gathering with deferred instantiation
US20130132232A1 (en) 2009-04-22 2013-05-23 Florian Pestoni System And Method For Digital Rights Management With Delegated Authorization For Content Access
US8068504B2 (en) 2009-05-18 2011-11-29 Tresys Technology, Llc One-way router
US8817985B2 (en) 2009-06-23 2014-08-26 Panasonic Corporation Encryption key distribution system
JP2011008701A (ja) 2009-06-29 2011-01-13 Sony Corp 情報処理サーバ、情報処理装置、および情報処理方法
US20110055562A1 (en) 2009-08-28 2011-03-03 The Go Daddy Group, Inc. Public key certificate based social website account authentication
JPWO2011024298A1 (ja) * 2009-08-28 2013-01-24 リプレックス株式会社 サービスシステム
US8498959B2 (en) 2009-09-29 2013-07-30 Hewlett-Packard Development Company, L.P. Policy enforcement
US20110083015A1 (en) 2009-10-05 2011-04-07 Eidgenossiche Technische Hochschule Zurich System and method for an electronic signature for quick and efficient data authentication
US20110126197A1 (en) 2009-11-25 2011-05-26 Novell, Inc. System and method for controlling cloud and virtualized data centers in an intelligent workload management system
US9225526B2 (en) 2009-11-30 2015-12-29 Red Hat, Inc. Multifactor username based authentication
WO2011068996A1 (en) 2009-12-04 2011-06-09 Cryptography Research, Inc. Verifiable, leak-resistant encryption and decryption
US20110167479A1 (en) 2010-01-07 2011-07-07 Oracle International Corporation Enforcement of policies on context-based authorization
US8776204B2 (en) 2010-03-12 2014-07-08 Alcatel Lucent Secure dynamic authority delegation
FR2957737B1 (fr) * 2010-03-17 2012-08-10 Bouygues Telecom Sa Procede et systeme de diffusion securisee d'un flux de donnees numeriques
US20110231940A1 (en) 2010-03-19 2011-09-22 Microsoft Corporation Credential-based access to data
US8353019B2 (en) 2010-03-26 2013-01-08 Canon Kabushiki Kaisha Security token destined for multiple or group of service providers
US9015489B2 (en) 2010-04-07 2015-04-21 Microsoft Technology Licensing, Llc Securing passwords against dictionary attacks
US8918848B2 (en) 2010-04-26 2014-12-23 Blackberry Limited Method and system for third party client authentication
US9160738B2 (en) 2010-05-27 2015-10-13 Microsoft Corporation Delegation-based authorization
EP2583211B1 (en) 2010-06-15 2020-04-15 Oracle International Corporation Virtual computing infrastructure
US8625802B2 (en) * 2010-06-16 2014-01-07 Porticor Ltd. Methods, devices, and media for secure key management in a non-secured, distributed, virtualized environment with applications to cloud-computing security and management
US8352611B2 (en) 2010-06-29 2013-01-08 International Business Machines Corporation Allocating computer resources in a cloud environment
US20120017095A1 (en) 2010-07-19 2012-01-19 Coreguard Software Service for Encrypting and Decrypting Data
JP2012028860A (ja) 2010-07-20 2012-02-09 Toshiba Corp 記録装置、コントローラ及び記録装置の制御方法
US8799656B2 (en) 2010-07-26 2014-08-05 Intel Corporation Methods for anonymous authentication and key agreement
US8868923B1 (en) 2010-07-28 2014-10-21 Sandia Corporation Multi-factor authentication
AU2011296303B2 (en) 2010-08-30 2015-01-22 VMware LLC Unified workspace for thin, remote, and SaaS applications
US20120060035A1 (en) 2010-09-08 2012-03-08 Microsoft Corporation Secure and Verifiable Data Handling
US8776190B1 (en) 2010-11-29 2014-07-08 Amazon Technologies, Inc. Multifactor authentication for programmatic interfaces
US8832271B2 (en) 2010-12-03 2014-09-09 International Business Machines Corporation Identity provider instance discovery
US8955035B2 (en) 2010-12-16 2015-02-10 Microsoft Corporation Anonymous principals for policy languages
US8538029B2 (en) 2011-03-24 2013-09-17 Hewlett-Packard Development Company, L.P. Encryption key fragment distribution
US8561152B2 (en) 2011-05-17 2013-10-15 Microsoft Corporation Target-based access check independent of access request
US10963584B2 (en) 2011-06-08 2021-03-30 Workshare Ltd. Method and system for collaborative editing of a remotely stored document
US8862889B2 (en) * 2011-07-02 2014-10-14 Eastcliff LLC Protocol for controlling access to encryption keys
US9009315B2 (en) 2011-07-28 2015-04-14 Telefonaktiebolaget L M Ericsson (Publ) Hierarchical delegation and reservation of lookup keys
US9197409B2 (en) 2011-09-29 2015-11-24 Amazon Technologies, Inc. Key derivation techniques
US9178701B2 (en) 2011-09-29 2015-11-03 Amazon Technologies, Inc. Parameter based key derivation
JP2014533445A (ja) * 2011-10-18 2014-12-11 榮治 渡邊 人に依存しない鍵管理のシステム
US8788843B2 (en) * 2011-10-28 2014-07-22 LogMeln, Inc. Storing user data in a service provider cloud without exposing user-specific secrets to the service provider
US20140013409A1 (en) 2012-07-06 2014-01-09 Milind I. Halageri Single sign on for cloud
US20130254536A1 (en) 2012-03-22 2013-09-26 Workshare, Ltd. Secure server side encryption for online file sharing and collaboration
US9692732B2 (en) 2011-11-29 2017-06-27 Amazon Technologies, Inc. Network connection automation
US9330245B2 (en) 2011-12-01 2016-05-03 Dashlane SAS Cloud-based data backup and sync with secure local storage of access keys
US8819444B2 (en) 2011-12-27 2014-08-26 Majid Shahbazi Methods for single signon (SSO) using decentralized password and credential management
CN104025539B (zh) 2011-12-28 2017-06-13 英特尔公司 促进单点登录服务的方法和装置
US8966268B2 (en) 2011-12-30 2015-02-24 Vasco Data Security, Inc. Strong authentication token with visual output of PKI signatures
CN104115465A (zh) 2012-01-20 2014-10-22 交互数字专利控股公司 具有本地功能的身份管理
CN102624530B (zh) * 2012-03-14 2014-08-20 西安电子科技大学 无线体域网的无证书远程匿名认证方法
US8892865B1 (en) 2012-03-27 2014-11-18 Amazon Technologies, Inc. Multiple authority key derivation
US8739308B1 (en) 2012-03-27 2014-05-27 Amazon Technologies, Inc. Source identification for unauthorized copies of content
US20130282461A1 (en) 2012-04-20 2013-10-24 Visa International Service Association Systems and methods to use transaction authorization communications to process offers
US9053329B2 (en) 2012-05-24 2015-06-09 Lockbox Llc Systems and methods for validated secure data access
US20140019753A1 (en) * 2012-07-10 2014-01-16 John Houston Lowry Cloud key management
US8837734B2 (en) * 2012-09-14 2014-09-16 Red Hat, Inc. Managing encrypted data and encryption keys
US8769651B2 (en) 2012-09-19 2014-07-01 Secureauth Corporation Mobile multifactor single-sign-on authentication
US9602480B2 (en) * 2012-10-26 2017-03-21 Nokia Technologies Oy Methods and apparatus for data access control
US9137222B2 (en) * 2012-10-31 2015-09-15 Vmware, Inc. Crypto proxy for cloud storage services
US9064109B2 (en) 2012-12-20 2015-06-23 Intel Corporation Privacy enhanced key management for a web service provider using a converged security engine
JP6082589B2 (ja) 2012-12-25 2017-02-15 株式会社日立ソリューションズ 暗号鍵管理プログラム、データ管理システム
US9246678B2 (en) * 2013-03-14 2016-01-26 Intel Corporation Secure cloud storage and encryption management system
US10362006B2 (en) 2013-03-15 2019-07-23 Mastercard International Incorporated Systems and methods for cryptographic security as a service
US9300639B1 (en) * 2013-06-13 2016-03-29 Amazon Technologies, Inc. Device coordination
US9544293B2 (en) 2013-09-20 2017-01-10 Oracle International Corporation Global unified session identifier across multiple data centers

Similar Documents

Publication Publication Date Title
JP2018170802A5 (ja)
JP6609010B2 (ja) 複数許可データセキュリティ及びアクセス
JP2020528224A5 (ja)
US10965449B2 (en) Autonomous secrets management for a key distribution service
CN104145444B (zh) 操作计算设备的方法、计算设备及计算机程序
CN104104692B (zh) 一种虚拟机加密方法、解密方法及加解密控制***
US20140143550A1 (en) Securing speech recognition data
JP2022058631A5 (ja)
EP3123657A1 (en) Method and apparatus for cloud-assisted cryptography
US11469903B2 (en) Autonomous signing management operations for a key distribution service
JPWO2013069776A1 (ja) データベース暗号化システムと方法及びプログラム
US10142100B2 (en) Managing user-controlled security keys in cloud-based scenarios
KR101648364B1 (ko) 대칭키 암호화와 비대칭키 이중 암호화를 복합적으로 적용한 암/복호화 속도개선 방법
KR101580514B1 (ko) 시드 키를 이용한 패스워드 관리방법, 패스워드 관리장치 및 이를 적용한 컴퓨터로 읽을 수 있는 기록매체
WO2016169395A1 (zh) Android平台下的PIN码保护方法
US10826693B2 (en) Scalable hardware encryption
KR102298266B1 (ko) 클라우드 환경에서 안전하고 효율적인 데이터 공유를 위한 속성기반 암호를 활용한 데이터 접근 제어 방법 및 시스템
US8412955B1 (en) Framework and method for secure data management in a diversified platform
JP2023063430A5 (ja)
JP6401875B2 (ja) データ処理システム
JP2006072521A5 (ja)
CN108154042B (zh) 一种文件***加密方法及装置
US20160261566A1 (en) Replacing keys in a computer system
US10043015B2 (en) Method and apparatus for applying a customer owned encryption
CN114329390A (zh) 一种金融机构数据库访问密码保护方法及***