JP7597822B2 - シークレット分割およびメタデータ記憶 - Google Patents

シークレット分割およびメタデータ記憶 Download PDF

Info

Publication number
JP7597822B2
JP7597822B2 JP2022551266A JP2022551266A JP7597822B2 JP 7597822 B2 JP7597822 B2 JP 7597822B2 JP 2022551266 A JP2022551266 A JP 2022551266A JP 2022551266 A JP2022551266 A JP 2022551266A JP 7597822 B2 JP7597822 B2 JP 7597822B2
Authority
JP
Japan
Prior art keywords
secret
shares
share
reconstruct
metadata
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
JP2022551266A
Other languages
English (en)
Japanese (ja)
Other versions
JP2023515956A5 (https=
JP2023515956A (ja
Inventor
オルネラス,マイケル・ディー
エンペイ,ジェシー
ウェルカー,ブラッド
Original Assignee
ティーゼロ・アイピー,エルエルシー
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ティーゼロ・アイピー,エルエルシー filed Critical ティーゼロ・アイピー,エルエルシー
Publication of JP2023515956A publication Critical patent/JP2023515956A/ja
Publication of JP2023515956A5 publication Critical patent/JP2023515956A5/ja
Priority to JP2024207012A priority Critical patent/JP2025027061A/ja
Application granted granted Critical
Publication of JP7597822B2 publication Critical patent/JP7597822B2/ja
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/085Secret sharing or secret splitting, e.g. threshold schemes
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0602Interfaces specially adapted for storage systems specifically adapted to achieve a particular effect
    • G06F3/0604Improving or facilitating administration, e.g. storage management
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0602Interfaces specially adapted for storage systems specifically adapted to achieve a particular effect
    • G06F3/062Securing storage systems
    • G06F3/0623Securing storage systems in relation to content
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0628Interfaces specially adapted for storage systems making use of a particular technique
    • G06F3/0655Vertical data movement, i.e. input-output transfer; data movement between one or more hosts and one or more storage devices
    • G06F3/0659Command handling arrangements, e.g. command buffers, queues, command scheduling
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0668Interfaces specially adapted for storage systems adopting a particular infrastructure
    • G06F3/067Distributed or networked storage systems, e.g. storage area networks [SAN], network attached storage [NAS]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0668Interfaces specially adapted for storage systems adopting a particular infrastructure
    • G06F3/0671In-line storage system
    • G06F3/0673Single storage device
    • G06F3/0679Non-volatile semiconductor memory device, e.g. flash memory, one time programmable memory [OTP]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/60Software deployment
    • G06F8/61Installation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0643Hash functions, e.g. MD5, SHA, HMAC or f9 MAC
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • H04L9/0897Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/30Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • H04L9/3239Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/50Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using hash chains, e.g. blockchains or hash trees

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Human Computer Interaction (AREA)
  • Software Systems (AREA)
  • Computing Systems (AREA)
  • Power Engineering (AREA)
  • Storage Device Security (AREA)
  • Medicinal Preparation (AREA)
JP2022551266A 2020-02-26 2021-02-08 シークレット分割およびメタデータ記憶 Active JP7597822B2 (ja)

Priority Applications (1)

Application Number Priority Date Filing Date Title
JP2024207012A JP2025027061A (ja) 2020-02-26 2024-11-28 シークレット分割およびメタデータ記憶

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US202062981663P 2020-02-26 2020-02-26
US62/981,663 2020-02-26
PCT/US2021/017019 WO2021173330A1 (en) 2020-02-26 2021-02-08 Secret splitting and metadata storage

Related Child Applications (1)

Application Number Title Priority Date Filing Date
JP2024207012A Division JP2025027061A (ja) 2020-02-26 2024-11-28 シークレット分割およびメタデータ記憶

Publications (3)

Publication Number Publication Date
JP2023515956A JP2023515956A (ja) 2023-04-17
JP2023515956A5 JP2023515956A5 (https=) 2024-02-15
JP7597822B2 true JP7597822B2 (ja) 2024-12-10

Family

ID=77366381

Family Applications (2)

Application Number Title Priority Date Filing Date
JP2022551266A Active JP7597822B2 (ja) 2020-02-26 2021-02-08 シークレット分割およびメタデータ記憶
JP2024207012A Withdrawn JP2025027061A (ja) 2020-02-26 2024-11-28 シークレット分割およびメタデータ記憶

Family Applications After (1)

Application Number Title Priority Date Filing Date
JP2024207012A Withdrawn JP2025027061A (ja) 2020-02-26 2024-11-28 シークレット分割およびメタデータ記憶

Country Status (7)

Country Link
US (2) US12052347B2 (https=)
EP (1) EP4111639A4 (https=)
JP (2) JP7597822B2 (https=)
KR (1) KR20220144810A (https=)
AU (1) AU2021227543A1 (https=)
CA (1) CA3169707A1 (https=)
WO (1) WO2021173330A1 (https=)

Families Citing this family (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CA3169707A1 (en) 2020-02-26 2021-09-02 Michael D ORNELAS Secret splitting and metadata storage
US11461754B2 (en) * 2020-08-26 2022-10-04 Ncr Corporation Isolated POS terminal connectivity
US20220271933A1 (en) * 2021-02-19 2022-08-25 Samsung Electronics Co., Ltd. System and method for device to device secret backup and recovery
US11831757B2 (en) * 2021-06-30 2023-11-28 SafeMoon US, LLC System and method for generating virtual private keys from user credential information
US11972000B2 (en) * 2021-08-06 2024-04-30 Arash Esmailzadeh Information dispersal for secure data storage
EP4311162A4 (en) * 2021-08-20 2024-10-09 Samsung Electronics Co., Ltd. Electronic device for generating mnemonic words of private key and operating method of electronic device
JP2024536256A (ja) * 2021-09-29 2024-10-04 インタートラスト テクノロジーズ コーポレイション 信頼された台帳を使用する暗号トークン権利管理システム及び方法
US20260100824A1 (en) * 2021-12-31 2026-04-09 LokBlok, Inc. Secure split knowledge multi-party secret generation
US20230385824A1 (en) 2022-05-30 2023-11-30 SafeMoon US, LLC Energy-to-Token Redistribution Systems and Methods for Wireless Network Access and Localized Blockchain Distributed Computing
US11777727B1 (en) * 2022-08-29 2023-10-03 Osom Products, Inc. Distributed digital wallet seed phrase
KR102822808B1 (ko) * 2022-12-08 2025-06-18 논스랩 주식회사 블록체인 개인키 복원 장치 및 개인키 복원 방법
EP4498635A1 (fr) * 2023-07-25 2025-01-29 Crypto Key Guardian Procédé cryptographique de gestion d'une phrase de mots

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070160198A1 (en) 2005-11-18 2007-07-12 Security First Corporation Secure data parser method and system
JP2007334417A (ja) 2006-06-12 2007-12-27 Nippon Telegr & Teleph Corp <Ntt> 分散情報共有方法および端末装置
US20170005797A1 (en) 2015-07-02 2017-01-05 Payfont Limited Resilient secret sharing cloud based architecture for data vault
WO2019021105A1 (en) 2017-07-24 2019-01-31 nChain Holdings Limited METHODS AND SYSTEMS FOR ENCRYPTION EVENT ENCRYPTION IMPLEMENTED BY BLOCK CHAINS
JP2019153842A (ja) 2018-02-28 2019-09-12 リアル・テクノロジー株式会社 正当性管理システム、正当性管理方法及びプログラム

Family Cites Families (33)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6311171B1 (en) 1997-07-11 2001-10-30 Ericsson Inc. Symmetrically-secured electronic communication system
CA2374968C (en) 1999-05-26 2010-11-16 Neopost Technologies Technique for split knowledge backup and recovery of a cryptographic key
US7003667B1 (en) 1999-10-04 2006-02-21 Canon Kabushiki Kaisha Targeted secure printing
US20020071566A1 (en) 2000-12-11 2002-06-13 Kurn David Michael Computer system employing a split-secret cryptographic key linked to a password-based cryptographic key security scheme
US20030037237A1 (en) 2001-04-09 2003-02-20 Jean-Paul Abgrall Systems and methods for computer device authentication
US6931133B2 (en) 2002-09-03 2005-08-16 Verisign, Inc. Method and system of securely escrowing private keys in a public key infrastructure
US7548621B1 (en) 2002-09-26 2009-06-16 Ncr Corporation System and method for securing a base derivation key for use in injection of derived unique key per transaction devices
US20050086471A1 (en) 2003-10-20 2005-04-21 Spencer Andrew M. Removable information storage device that includes a master encryption key and encryption keys
KR100617456B1 (ko) 2004-04-28 2006-08-31 주식회사 니츠 비밀키 관리 기능을 가지는 비밀키 단말장치 및 비밀키관리방법
JP4701381B2 (ja) 2005-01-24 2011-06-15 国立大学法人 奈良先端科学技術大学院大学 暗号鍵生成装置、暗号鍵生成方法、暗号化データ配信装置、個別暗号鍵再生成装置、暗号化データ受信装置、暗号化データ配信システム、暗号鍵生成プログラム、および記録媒体
US8989390B2 (en) 2005-12-12 2015-03-24 Qualcomm Incorporated Certify and split system and method for replacing cryptographic keys
US8634553B2 (en) 2007-11-05 2014-01-21 Sumitomo Electric Industries, Ltd. Encryption key generation device
JP2009135871A (ja) 2007-11-05 2009-06-18 Sumitomo Electric Ind Ltd 暗号鍵生成方法
GB2470306B (en) * 2008-03-07 2013-06-19 Ericsson Telefon Ab L M Method and apparatus for distributing media over a communications network
US8855318B1 (en) 2008-04-02 2014-10-07 Cisco Technology, Inc. Master key generation and distribution for storage area network devices
US8861727B2 (en) 2010-05-19 2014-10-14 Cleversafe, Inc. Storage of sensitive data in a dispersed storage network
JP4996757B1 (ja) 2011-03-29 2012-08-08 株式会社東芝 秘密分散システム、装置及びプログラム
JP2014535199A (ja) 2011-10-24 2014-12-25 コニンクリーケ・ケイピーエヌ・ナムローゼ・フェンノートシャップ コンテンツの安全な配給
US9286241B2 (en) 2012-02-21 2016-03-15 Microchip Technology Incorporated Cryptographic transmission system
US8745415B2 (en) 2012-09-26 2014-06-03 Pure Storage, Inc. Multi-drive cooperation to generate an encryption key
US20170142082A1 (en) 2014-03-10 2017-05-18 Sengi Corporation System and method for secure deposit and recovery of secret data
US9819656B2 (en) 2014-05-09 2017-11-14 Sony Interactive Entertainment Inc. Method for secure communication using asymmetric and symmetric encryption over insecure communications
US9667416B1 (en) 2014-12-18 2017-05-30 EMC IP Holding Company LLC Protecting master encryption keys in a distributed computing environment
KR101666374B1 (ko) 2015-02-13 2016-10-14 크루셜텍 (주) 사용자 인증서 발급과 사용자 인증을 위한 방법, 장치 및 컴퓨터 프로그램
US9673975B1 (en) 2015-06-26 2017-06-06 EMC IP Holding Company LLC Cryptographic key splitting for offline and online data protection
WO2017065209A1 (ja) * 2015-10-16 2017-04-20 国立大学法人東北大学 情報処理システム、情報処理装置、情報処理方法、及び、プログラム
US9954680B1 (en) 2015-12-18 2018-04-24 EMC IP Holding Company LLC Secure management of a master encryption key in a split-key based distributed computing environment
US10817873B2 (en) 2017-03-22 2020-10-27 Factom, Inc. Auditing of electronic documents
US10263775B2 (en) * 2017-06-23 2019-04-16 Microsoft Technology Licensing, Llc Policy-based key recovery
SG11202008222WA (en) 2018-03-15 2020-09-29 Medici Ventures Inc Splitting encrypted key and encryption key used to encrypt key into key components allowing assembly with subset of key components to decrypt encrypted key
US10917234B2 (en) * 2018-05-03 2021-02-09 International Business Machines Corporation Blockchain for on-chain management of off-chain storage
KR20210066867A (ko) 2018-10-12 2021-06-07 티제로 아이피, 엘엘씨 암호화된 자산 암호화 키 부분의 서브세트를 사용하여 자산 암호화 키의 어셈블리를 허용하는 암호화된 자산 암호화 키 부분
CA3169707A1 (en) 2020-02-26 2021-09-02 Michael D ORNELAS Secret splitting and metadata storage

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070160198A1 (en) 2005-11-18 2007-07-12 Security First Corporation Secure data parser method and system
JP2007334417A (ja) 2006-06-12 2007-12-27 Nippon Telegr & Teleph Corp <Ntt> 分散情報共有方法および端末装置
US20170005797A1 (en) 2015-07-02 2017-01-05 Payfont Limited Resilient secret sharing cloud based architecture for data vault
WO2019021105A1 (en) 2017-07-24 2019-01-31 nChain Holdings Limited METHODS AND SYSTEMS FOR ENCRYPTION EVENT ENCRYPTION IMPLEMENTED BY BLOCK CHAINS
JP2019153842A (ja) 2018-02-28 2019-09-12 リアル・テクノロジー株式会社 正当性管理システム、正当性管理方法及びプログラム

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
RAMAN, K. V. and VARSHNEY, L. R.,Dynamic Distributed Storage for Scaling Blockchains,arXiv,1711.07617v2,[online],2018年01月07日,<URL:https://arxiv.org/abs/1711.07617v2>,[2024年10月28日 検索]

Also Published As

Publication number Publication date
EP4111639A1 (en) 2023-01-04
US20210266150A1 (en) 2021-08-26
AU2021227543A1 (en) 2022-10-06
US12348621B2 (en) 2025-07-01
US20240348430A1 (en) 2024-10-17
JP2025027061A (ja) 2025-02-26
US12052347B2 (en) 2024-07-30
KR20220144810A (ko) 2022-10-27
EP4111639A4 (en) 2024-02-28
CA3169707A1 (en) 2021-09-02
WO2021173330A1 (en) 2021-09-02
JP2023515956A (ja) 2023-04-17

Similar Documents

Publication Publication Date Title
JP7597822B2 (ja) シークレット分割およびメタデータ記憶
US12219051B2 (en) Doubly-encrypted secret parts allowing for assembly of a secret using a subset of the doubly- encrypted secret parts
US11374750B2 (en) Key recovery using encrypted secret shares
US11392940B2 (en) Multi-approval system using M of N keys to perform an action at a customer device
KR20260047591A (ko) 블록체인 시스템들에서의 최종-사용자 제어 지갑들

Legal Events

Date Code Title Description
A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20220922

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20240206

A621 Written request for application examination

Free format text: JAPANESE INTERMEDIATE CODE: A621

Effective date: 20240206

A977 Report on retrieval

Free format text: JAPANESE INTERMEDIATE CODE: A971007

Effective date: 20241023

TRDD Decision of grant or rejection written
A01 Written decision to grant a patent or to grant a registration (utility model)

Free format text: JAPANESE INTERMEDIATE CODE: A01

Effective date: 20241031

A61 First payment of annual fees (during grant procedure)

Free format text: JAPANESE INTERMEDIATE CODE: A61

Effective date: 20241128

R150 Certificate of patent or registration of utility model

Ref document number: 7597822

Country of ref document: JP

Free format text: JAPANESE INTERMEDIATE CODE: R150

S531 Written request for registration of change of domicile

Free format text: JAPANESE INTERMEDIATE CODE: R313531

R350 Written notification of registration of transfer

Free format text: JAPANESE INTERMEDIATE CODE: R350