JP2020524421A - トラステッド実行環境のための分散型鍵管理 - Google Patents
トラステッド実行環境のための分散型鍵管理 Download PDFInfo
- Publication number
- JP2020524421A JP2020524421A JP2019559274A JP2019559274A JP2020524421A JP 2020524421 A JP2020524421 A JP 2020524421A JP 2019559274 A JP2019559274 A JP 2019559274A JP 2019559274 A JP2019559274 A JP 2019559274A JP 2020524421 A JP2020524421 A JP 2020524421A
- Authority
- JP
- Japan
- Prior art keywords
- tee
- tees
- key
- node
- computer
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3271—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
- H04L9/3273—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response for mutual authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/52—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
- G06F21/53—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by executing in a restricted environment, e.g. sandbox or secure virtual machine
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/12—Applying verification of the received information
- H04L63/123—Applying verification of the received information received data contents, e.g. message integrity
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0618—Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
- H04L9/0637—Modes of operation, e.g. cipher block chaining [CBC], electronic codebook [ECB] or Galois/counter mode [GCM]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0894—Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/14—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/321—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3236—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
- H04L9/3239—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/50—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using hash chains, e.g. blockchains or hash trees
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/12—Details relating to cryptographic hardware or logic circuitry
- H04L2209/127—Trusted platform modules [TPM]
Abstract
Description
102 コンソーシアムブロックチェーンネットワーク
106 コンピューティングデバイス
108 コンピューティングデバイス
110 ネットワーク
200 概念的なアーキテクチャ
202 主体レイヤ
204 ホストされるサービスレイヤ
206 ブロックチェーンネットワークレイヤ
208 トランザクション管理システム
210 インターフェース
212 ブロックチェーンネットワーク
214 ノード
216 ブロックチェーン
300 システム
302 ブロックチェーンネットワーク
304a〜d ブロックチェーンノード
306a〜d サービスTEE
308a〜d 鍵管理(KM) TEE
310 鍵管理センター
320 リモートアテステーションプロセス
330 スマートコントラクトサービス論理
400 システム
402 開封秘密鍵
404 ルート鍵
406 署名秘密鍵
408 一時的対称鍵
412 契約鍵
414 封印公開鍵
416 検証公開鍵
450 スマートコントラクト動作、契約動作
454 デジタル封筒
460 イーサリアム仮想マシン(VM)
466 署名された結果
480 クライアント
600 装置
602 確立モジュール
604 開始モジュール
606 判定モジュール
608 送信モジュール
700 MA論理
800 MA論理
Claims (10)
- トラステッド実行環境(TEE)の信憑性を検証するためのコンピュータによって実施される方法であって、
鍵管理(KM)ノードのKM TEEによって、複数のKM TEEとの相互アテステーションを実行することに基づいて複数のKMノード内の前記複数のKM TEEとの信頼関係を確立するステップであって、前記KMノードおよび前記複数のKMノードが、コンソーシアムブロックチェーン内にある、ステップと、
前記KMノードのサービスTEEに1つまたは複数の暗号化鍵を提供することに関する合意に達するために前記複数のKM TEEとの合意プロセスを前記KM TEEによって開始するステップと、
前記複数のKM TEEと前記合意に達することに応じて、前記KMノードのサービスTEEによるローカルアテステーションプロセスを前記KM TEEによって開始するステップと、
前記ローカルアテステーションプロセスが成功であると前記KM TEEによって判定するステップと、
前記ローカルアテステーションプロセスが成功であるとの判定に応じて、前記KM TEEによって、コンピューティングデバイス上で実行される前記TEEに1つまたは複数の暗号化鍵を提供するステップと
を含む、コンピュータによって実施される方法。 - 前記KMノードによって前記コンソーシアムブロックチェーンに前記暗号化鍵を記憶するステップであって、前記コンソーシアムブロックチェーンに記憶される前記暗号化鍵が、前記コンソーシアムブロックチェーンのすべてのノードによってアクセスされ得る前記暗号化鍵の合意バージョンを表す、ステップをさらに含む請求項1に記載のコンピュータによって実施される方法。
- 前記KM TEEが、第1のKM TEEであり、前記信頼関係を確立するステップが、前記第1のKM TEEが前記複数のKM TEEの中の第2のKM TEEおよび第3のTEEとの相互アテステーションプロセスを実行することを含む請求項1または2に記載のコンピュータによって実施される方法。
- 前記KM TEEおよび前記複数のKM TEEが、前記コンソーシアムブロックチェーンのKM TEEの組を形成し、前記信頼関係を確立するステップが、前記複数のKM TEEの任意の各々が前記KM TEEの前記組のうちの2つとの相互アテステーションプロセスを実行することをさらに含む請求項1から3のいずれか一項に記載のコンピュータによって実施される方法。
- 前記信頼関係を確立するステップが、前記KM TEEが前記複数のKM TEEの各々との相互アテステーションを実行することをさらに含む請求項1、2、または3のいずれか一項に記載のコンピュータによって実施される方法。
- 前記KM TEEおよび前記複数のKM TEEが前記暗号化鍵に関する合意プロセスを成功裏に実行することに応じて前記暗号化鍵が前記コンソーシアムブロックチェーンに記憶される請求項1から5のいずれか一項に記載のコンピュータによって実施される方法。
- 前記合意プロセスが、実用的ビザンチン障害耐性(PBFT)プロセスである請求項1から6のいずれか一項に記載のコンピュータによって実施される方法。
- 前記KM TEEが、第1のKM TEEであり、前記暗号化鍵が、前記サービスTEEに関連するTEE公開鍵およびTEE秘密鍵を含み、前記第1のKM TEEまたは第2のKM TEEが、前記コンソーシアムブロックチェーンから前記TEE公開鍵を取り出し、要求に応じて前記TEE公開鍵をクライアントに提供する請求項1から7のいずれか一項に記載のコンピュータによって実施される方法。
- トラステッド実行環境(TEE)の信憑性を検証するためのシステムであって、
1つまたは複数のプロセッサと、
前記1つまたは複数のプロセッサに結合され、請求項1から8のいずれか一項に記載の方法を実行するために前記1つまたは複数のプロセッサによって実行可能な命令を記憶した1つまたは複数のコンピュータ可読メモリと
を含む、システム。 - トラステッド実行環境(TEE)の信憑性を検証するための装置であって、請求項1から8のいずれか一項に記載の方法を実行するための複数のモジュールを含む、装置。
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/CN2019/084530 WO2019137565A2 (en) | 2019-04-26 | 2019-04-26 | Distributed key management for trusted execution environments |
Publications (2)
Publication Number | Publication Date |
---|---|
JP2020524421A true JP2020524421A (ja) | 2020-08-13 |
JP6869374B2 JP6869374B2 (ja) | 2021-05-12 |
Family
ID=67219326
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
JP2019559274A Active JP6869374B2 (ja) | 2019-04-26 | 2019-04-26 | トラステッド実行環境のための分散型鍵管理 |
Country Status (11)
Country | Link |
---|---|
US (3) | US10715339B1 (ja) |
EP (1) | EP3643041B1 (ja) |
JP (1) | JP6869374B2 (ja) |
KR (1) | KR102194077B1 (ja) |
CN (1) | CN111095899B (ja) |
AU (1) | AU2019207312B2 (ja) |
CA (1) | CA3061268C (ja) |
ES (1) | ES2872101T3 (ja) |
PL (1) | PL3643041T3 (ja) |
SG (1) | SG11201909855YA (ja) |
WO (1) | WO2019137565A2 (ja) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20210117996A (ko) * | 2020-10-28 | 2021-09-29 | 바이두 온라인 네트웍 테크놀러지 (베이징) 캄파니 리미티드 | 신뢰 환경 원격 검증 방법, 장치, 설비, 시스템 및 매체 |
WO2023223606A1 (ja) * | 2022-05-16 | 2023-11-23 | 株式会社日立製作所 | データ管理システム及びデータ管理方法 |
Families Citing this family (29)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US11528258B2 (en) * | 2018-11-02 | 2022-12-13 | Intel Corporation | System and apparatus for data confidentiality in distributed ledger |
US11489672B2 (en) * | 2018-11-06 | 2022-11-01 | International Business Machines Corporation | Verification of conditions of a blockchain transaction |
WO2019137565A2 (en) | 2019-04-26 | 2019-07-18 | Alibaba Group Holding Limited | Distributed key management for trusted execution environments |
CN110971408A (zh) * | 2019-12-25 | 2020-04-07 | 上海沄界信息科技有限公司 | 基于区块链网络的tee节点认证方法及认证系统 |
WO2021186754A1 (ja) * | 2020-03-17 | 2021-09-23 | 株式会社モールサービス | 情報処理システム、情報処理方法、情報処理プログラム、秘密分散システム、秘密分散方法、秘密分散プログラム、秘密計算システム、秘密計算方法、及び、秘密計算プログラム |
CN111988141B (zh) * | 2020-03-18 | 2022-08-02 | 支付宝(杭州)信息技术有限公司 | 共享集群密钥的方法及装置 |
CN111614686B (zh) * | 2020-05-26 | 2023-01-17 | 牛津(海南)区块链研究院有限公司 | 一种密钥管理方法、控制器及系统 |
CN111885050B (zh) * | 2020-07-21 | 2022-01-11 | 腾讯科技(深圳)有限公司 | 基于区块链网络的数据存储方法、装置、相关设备及介质 |
CN111881474B (zh) * | 2020-07-24 | 2023-09-15 | 杭州弦冰科技有限公司 | 基于可信计算环境的私钥管理方法和装置 |
CN116340955A (zh) * | 2020-07-31 | 2023-06-27 | 支付宝(杭州)信息技术有限公司 | 一种基于区块链的数据处理方法、装置及设备 |
US11601262B2 (en) * | 2020-10-15 | 2023-03-07 | Dell Products L.P. | Distributed key management system |
CN112448819A (zh) * | 2020-11-06 | 2021-03-05 | 支付宝(杭州)信息技术有限公司 | 物联网设备的校验、签名文件的生成方法及装置 |
US20220198070A1 (en) * | 2020-12-22 | 2022-06-23 | International Business Machines Corporation | Provisioning secure/encrypted virtual machines in a cloud infrastructure |
US11849028B2 (en) * | 2021-01-13 | 2023-12-19 | Tata Consultancy Services Limited | Method and system for secure IoT device onboarding using a blockchain network |
CN113037499B (zh) * | 2021-03-15 | 2024-01-05 | 杭州链网科技有限公司 | 一种区块链加密通讯方法及系统 |
US11416450B1 (en) | 2021-03-16 | 2022-08-16 | EMC IP Holding Company LLC | Clustering data management entities distributed across a plurality of processing nodes |
CN113688394B (zh) * | 2021-06-07 | 2023-08-25 | 重庆大学 | 安全可信执行环境下的基于区块链的外包计算系统及方法 |
US11809607B2 (en) | 2021-08-05 | 2023-11-07 | International Business Machines Corporation | Customization of multi-part metadata of a secure guest |
US11829495B2 (en) | 2021-08-05 | 2023-11-28 | International Business Machines Corporation | Confidential data provided to a secure guest via metadata |
US20230070163A1 (en) * | 2021-09-09 | 2023-03-09 | International Business Machines Corporation | Prevention of race conditions in a dual-server storage system for generation of encryption key |
CN113869901B (zh) * | 2021-12-02 | 2022-05-10 | 腾讯科技(深圳)有限公司 | 密钥生成方法、装置、计算机可读存储介质及计算机设备 |
WO2023099895A1 (en) * | 2021-12-02 | 2023-06-08 | Royal Holloway University Of London | A method and system for securely sharing data |
CN114553590B (zh) * | 2022-03-17 | 2023-08-22 | 抖音视界有限公司 | 数据传输方法及相关设备 |
CN114615070B (zh) * | 2022-03-21 | 2024-04-19 | 中国人民解放军国防科技大学 | 基于可信执行环境的网络安全事件捕获方法和装置 |
US20230353358A1 (en) * | 2022-04-27 | 2023-11-02 | Dell Products L.P. | Disaggregated key management in a distributed system |
CN114584307B (zh) * | 2022-05-07 | 2022-09-02 | 腾讯科技(深圳)有限公司 | 一种可信密钥管理方法、装置、电子设备和存储介质 |
CN114978730B (zh) * | 2022-05-27 | 2023-09-15 | 深圳铸泰科技有限公司 | 一种感知态势处物联网安全检测方法及存储介质 |
CN115134145B (zh) * | 2022-06-28 | 2023-10-20 | 蚂蚁区块链科技(上海)有限公司 | 区块链系统中的共识方法、装置、计算设备和计算机可读存储介质 |
CN115484031B (zh) * | 2022-09-13 | 2024-03-08 | 山东大学 | 基于sgx的无可信第三方云存储密文去重方法及系统 |
Family Cites Families (65)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9690941B2 (en) * | 2011-05-17 | 2017-06-27 | Microsoft Technology Licensing, Llc | Policy bound key creation and re-wrap service |
US9215249B2 (en) * | 2012-09-29 | 2015-12-15 | Intel Corporation | Systems and methods for distributed trust computing and key management |
US8924727B2 (en) * | 2012-10-12 | 2014-12-30 | Intel Corporation | Technologies labeling diverse content |
US9141769B1 (en) * | 2013-02-08 | 2015-09-22 | Amazon Technologies, Inc. | Secure transfer and use of secret material in a shared environment |
WO2014142858A1 (en) * | 2013-03-14 | 2014-09-18 | Intel Corporation | Trusted data processing in the public cloud |
WO2015026336A1 (en) * | 2013-08-21 | 2015-02-26 | Intel Corporation | Processing data privately in the cloud |
US9509502B2 (en) * | 2014-03-13 | 2016-11-29 | Intel Corporation | Symmetric keying and chain of trust |
US20160036826A1 (en) * | 2014-07-29 | 2016-02-04 | Mcafee, Inc. | Secure content packaging using multiple trusted execution environments |
US9467296B2 (en) * | 2014-08-29 | 2016-10-11 | Intel Corporation | Virally distributable trusted messaging |
US10531370B2 (en) * | 2015-02-24 | 2020-01-07 | Lg Electronics Inc. | Method and apparatus for transmitting data in wireless communication system |
US10304143B2 (en) * | 2016-05-05 | 2019-05-28 | Lance Timothy Kasper | Consensus system for manipulation resistant digital record keeping |
US9830480B2 (en) * | 2015-05-27 | 2017-11-28 | Google Llc | Policies for secrets in trusted execution environments |
US9842065B2 (en) * | 2015-06-15 | 2017-12-12 | Intel Corporation | Virtualization-based platform protection technology |
CN106454528A (zh) * | 2015-08-07 | 2017-02-22 | 阿里巴巴集团控股有限公司 | 基于可信执行环境的业务处理方法和客户端 |
CA3002034A1 (en) * | 2015-10-14 | 2017-04-20 | Cambridge Blockchain, LLC | Systems and methods for managing digital identities |
EP3438902B1 (en) * | 2015-12-14 | 2021-04-28 | Coinplug, Inc | System for issuing public certificate on basis of block chain, and method for issuing public certificate on basis of block chain by using same |
US10063529B2 (en) * | 2016-03-28 | 2018-08-28 | Accenture Global Solutions Limited | Secure 3D model sharing using distributed ledger |
US10521775B2 (en) * | 2016-04-18 | 2019-12-31 | R3 Ltd. | Secure processing of electronic transactions by a decentralized, distributed ledger system |
US11829998B2 (en) * | 2016-06-07 | 2023-11-28 | Cornell University | Authenticated data feed for blockchains |
US10417217B2 (en) * | 2016-08-05 | 2019-09-17 | Chicago Mercantile Exchange Inc. | Systems and methods for blockchain rule synchronization |
EP3337119B1 (en) * | 2016-12-13 | 2019-09-11 | Nxp B.V. | Updating and distributing secret keys in a distributed network |
US10341116B2 (en) * | 2016-12-28 | 2019-07-02 | Intel Corporation | Remote attestation with hash-based signatures |
US20180183586A1 (en) * | 2016-12-28 | 2018-06-28 | Intel Corporation | Assigning user identity awareness to a cryptographic key |
US11438155B2 (en) * | 2017-01-24 | 2022-09-06 | Microsoft Technology Licensing, Llc | Key vault enclave |
US20180225661A1 (en) * | 2017-02-07 | 2018-08-09 | Microsoft Technology Licensing, Llc | Consortium blockchain network with verified blockchain and consensus protocols |
WO2018152519A1 (en) * | 2017-02-20 | 2018-08-23 | AlphaPoint | Performance of distributed system functions using a trusted execution environment |
CN106941487B (zh) * | 2017-02-24 | 2021-01-05 | 创新先进技术有限公司 | 一种数据发送方法及装置 |
US10397005B2 (en) * | 2017-03-31 | 2019-08-27 | Intel Corporation | Using a trusted execution environment as a trusted third party providing privacy for attestation |
US11348095B2 (en) * | 2017-04-11 | 2022-05-31 | Nchain Licensing Ag | Rapid distributed consensus on blockchain |
US10742393B2 (en) | 2017-04-25 | 2020-08-11 | Microsoft Technology Licensing, Llc | Confidentiality in a consortium blockchain network |
GB201707168D0 (en) * | 2017-05-05 | 2017-06-21 | Nchain Holdings Ltd | Computer-implemented system and method |
US10671733B2 (en) * | 2017-05-19 | 2020-06-02 | International Business Machines Corporation | Policy enforcement via peer devices using a blockchain |
CN117640099A (zh) * | 2017-06-14 | 2024-03-01 | 区块链控股有限公司 | 用于避免或减少区块链网络上的加密滞留资源的系统和方法 |
US10558812B2 (en) * | 2017-06-21 | 2020-02-11 | Microsoft Technology Licensing, Llc | Mutual authentication with integrity attestation |
CN107342858B (zh) * | 2017-07-05 | 2019-09-10 | 武汉凤链科技有限公司 | 一种基于可信环境的智能合约保护方法和系统 |
US10567359B2 (en) | 2017-07-18 | 2020-02-18 | International Business Machines Corporation | Cluster of secure execution platforms |
CN107395349A (zh) * | 2017-08-16 | 2017-11-24 | 深圳国微技术有限公司 | 一种基于自认证公钥体制的区块链网络密钥分发方法 |
US10554634B2 (en) * | 2017-08-18 | 2020-02-04 | Intel Corporation | Techniques for shared private data objects in a trusted execution environment |
US10541804B2 (en) * | 2017-08-18 | 2020-01-21 | Intel Corporation | Techniques for key provisioning in a trusted execution environment |
CN107590738A (zh) * | 2017-08-24 | 2018-01-16 | 阿里巴巴集团控股有限公司 | 选择共识节点的处理方法、装置及服务器 |
US10460283B2 (en) * | 2017-09-13 | 2019-10-29 | Vijay Madisetti | Smart contract optimization for multiparty service or product ordering system |
US20190095879A1 (en) * | 2017-09-26 | 2019-03-28 | Cornell University | Blockchain payment channels with trusted execution environments |
CN107623569A (zh) * | 2017-09-30 | 2018-01-23 | 矩阵元技术(深圳)有限公司 | 基于秘密共享技术的区块链密钥托管和恢复方法、装置 |
EP3729721A4 (en) * | 2017-10-11 | 2021-10-13 | Cambridge Blockchain, Inc. | SYSTEMS AND PROCESSES FOR MANAGING RELATIONSHIPS BETWEEN DIGITAL IDENTITIES |
CN107919954B (zh) * | 2017-10-20 | 2019-05-14 | 浙江大学 | 一种基于sgx软件防护扩展指令的区块链用户密钥保护方法和装置 |
US11943368B2 (en) * | 2017-11-03 | 2024-03-26 | Microsoft Technology Licensing, Llc | Provisioning trusted execution environment based on chain of trust including platform |
US20190140846A1 (en) * | 2017-11-03 | 2019-05-09 | Microsoft Technology Licensing, Llc | Provisioning trusted execution environment(s) based on chain of trust including platform |
US20190158275A1 (en) * | 2017-11-22 | 2019-05-23 | Michael Beck | Digital containers for smart contracts |
US11244309B2 (en) * | 2017-11-22 | 2022-02-08 | Cornell University | Real-time cryptocurrency exchange using trusted hardware |
US10735450B2 (en) * | 2017-11-30 | 2020-08-04 | Intel Corporation | Trust topology selection for distributed transaction processing in computing environments |
US11288740B2 (en) * | 2017-12-29 | 2022-03-29 | Intel Corporation | Securing distributed electronic wallet shares |
US11126699B2 (en) * | 2018-02-07 | 2021-09-21 | Nec Corporation | Replica trusted execution environment: enabling seamless replication of trusted execution environment (TEE)-based enclaves in the cloud |
US11218324B2 (en) * | 2018-04-05 | 2022-01-04 | Ares Technologies, Inc. | Systems and methods authenticating a digitally signed assertion using verified evaluators |
US11615060B2 (en) * | 2018-04-12 | 2023-03-28 | ISARA Corporation | Constructing a multiple entity root of trust |
US11169935B2 (en) * | 2018-06-20 | 2021-11-09 | Intel Corporation | Technologies for low-latency cryptography for processor-accelerator communication |
US11057366B2 (en) * | 2018-08-21 | 2021-07-06 | HYPR Corp. | Federated identity management with decentralized computing platforms |
US10270770B1 (en) * | 2018-08-23 | 2019-04-23 | Xage Security, Inc. | Generic computing device attestation and enrollment |
WO2020057757A1 (en) * | 2018-09-21 | 2020-03-26 | NEC Laboratories Europe GmbH | Method for signing a new block in a decentralized blockchain consensus network |
US10708247B2 (en) | 2018-09-27 | 2020-07-07 | Intel Corporation | Technologies for providing secure utilization of tenant keys |
GB201816837D0 (en) * | 2018-10-16 | 2018-11-28 | Microsoft Technology Licensing Llc | Database management |
MX2019004657A (es) | 2018-11-07 | 2019-08-12 | Alibaba Group Holding Ltd | Agilizacion de consenso de cadena de bloques de tolerancia a faltas bizantinas practica y sincronizacion de nodo. |
RU2733097C1 (ru) | 2018-11-27 | 2020-09-29 | Алибаба Груп Холдинг Лимитед | Управление асимметричными ключами в консорциальных блокчейн сетях |
AU2018347199B2 (en) * | 2018-12-13 | 2021-07-01 | Advanced New Technologies Co., Ltd. | Off-chain smart contract service based on trusted execution environment |
US10936723B2 (en) * | 2019-03-27 | 2021-03-02 | Intel Corporation | Fast and secure protocol to bootstrap a blockchain by restoring the blockchain state using trusted execution environment |
WO2019137565A2 (en) | 2019-04-26 | 2019-07-18 | Alibaba Group Holding Limited | Distributed key management for trusted execution environments |
-
2019
- 2019-04-26 WO PCT/CN2019/084530 patent/WO2019137565A2/en unknown
- 2019-04-26 KR KR1020197032096A patent/KR102194077B1/ko active IP Right Grant
- 2019-04-26 PL PL19739185T patent/PL3643041T3/pl unknown
- 2019-04-26 CA CA3061268A patent/CA3061268C/en active Active
- 2019-04-26 SG SG11201909855Y patent/SG11201909855YA/en unknown
- 2019-04-26 JP JP2019559274A patent/JP6869374B2/ja active Active
- 2019-04-26 AU AU2019207312A patent/AU2019207312B2/en active Active
- 2019-04-26 EP EP19739185.7A patent/EP3643041B1/en active Active
- 2019-04-26 CN CN201980004164.2A patent/CN111095899B/zh active Active
- 2019-04-26 ES ES19739185T patent/ES2872101T3/es active Active
- 2019-10-31 US US16/671,024 patent/US10715339B1/en active Active
-
2020
- 2020-06-04 US US16/893,122 patent/US11038700B2/en active Active
-
2021
- 2021-06-14 US US17/347,037 patent/US11356285B2/en active Active
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20210117996A (ko) * | 2020-10-28 | 2021-09-29 | 바이두 온라인 네트웍 테크놀러지 (베이징) 캄파니 리미티드 | 신뢰 환경 원격 검증 방법, 장치, 설비, 시스템 및 매체 |
KR102532057B1 (ko) * | 2020-10-28 | 2023-05-15 | 바이두 온라인 네트웍 테크놀러지 (베이징) 캄파니 리미티드 | 신뢰 환경 원격 검증 방법, 장치, 설비, 시스템 및 매체 |
WO2023223606A1 (ja) * | 2022-05-16 | 2023-11-23 | 株式会社日立製作所 | データ管理システム及びデータ管理方法 |
Also Published As
Publication number | Publication date |
---|---|
SG11201909855YA (en) | 2019-11-28 |
KR20200126320A (ko) | 2020-11-06 |
US11356285B2 (en) | 2022-06-07 |
CA3061268A1 (en) | 2019-07-18 |
CA3061268C (en) | 2020-09-22 |
US20200304319A1 (en) | 2020-09-24 |
CN111095899B (zh) | 2021-12-24 |
EP3643041A2 (en) | 2020-04-29 |
JP6869374B2 (ja) | 2021-05-12 |
PL3643041T3 (pl) | 2021-09-06 |
KR102194077B1 (ko) | 2020-12-23 |
US20210306164A1 (en) | 2021-09-30 |
EP3643041A4 (en) | 2020-04-29 |
AU2019207312B2 (en) | 2020-06-25 |
US10715339B1 (en) | 2020-07-14 |
US11038700B2 (en) | 2021-06-15 |
WO2019137565A3 (en) | 2020-03-12 |
WO2019137565A2 (en) | 2019-07-18 |
CN111095899A (zh) | 2020-05-01 |
EP3643041B1 (en) | 2021-03-10 |
ES2872101T3 (es) | 2021-11-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP6869374B2 (ja) | トラステッド実行環境のための分散型鍵管理 | |
KR102263325B1 (ko) | 신뢰 실행 환경에서 스마트 계약 동작을 안전하게 실행하는 방법 | |
US11095629B2 (en) | Retrieving access data for blockchain networks using highly available trusted execution environments | |
KR102392420B1 (ko) | 다중키 쌍 시그너처를 사용한 프로그램 실행 및 데이터 증명 체계 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A621 | Written request for application examination |
Free format text: JAPANESE INTERMEDIATE CODE: A621 Effective date: 20191220 |
|
A871 | Explanation of circumstances concerning accelerated examination |
Free format text: JAPANESE INTERMEDIATE CODE: A871 Effective date: 20200814 |
|
A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20201030 |
|
A977 | Report on retrieval |
Free format text: JAPANESE INTERMEDIATE CODE: A971007 Effective date: 20210114 |
|
A975 | Report on accelerated examination |
Free format text: JAPANESE INTERMEDIATE CODE: A971005 Effective date: 20210128 |
|
A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20210201 |
|
A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20210312 |
|
TRDD | Decision of grant or rejection written | ||
A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 Effective date: 20210405 |
|
A61 | First payment of annual fees (during grant procedure) |
Free format text: JAPANESE INTERMEDIATE CODE: A61 Effective date: 20210413 |
|
R150 | Certificate of patent or registration of utility model |
Ref document number: 6869374 Country of ref document: JP Free format text: JAPANESE INTERMEDIATE CODE: R150 |