KR102071087B1 - 장치 데이터를 위한 보안 정책 - Google Patents

장치 데이터를 위한 보안 정책 Download PDF

Info

Publication number
KR102071087B1
KR102071087B1 KR1020147022186A KR20147022186A KR102071087B1 KR 102071087 B1 KR102071087 B1 KR 102071087B1 KR 1020147022186 A KR1020147022186 A KR 1020147022186A KR 20147022186 A KR20147022186 A KR 20147022186A KR 102071087 B1 KR102071087 B1 KR 102071087B1
Authority
KR
South Korea
Prior art keywords
key
security
data
recovery
decryption key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
KR1020147022186A
Other languages
English (en)
Korean (ko)
Other versions
KR20140123522A (ko
Inventor
더스틴 마이클 잉갤스
나단 제이 아이드
크리스토퍼 알 맥컬리
악테이비언 티 어레체
마이클 제이 그래스
사이 비나야크
프레스턴 데릭 아담
Original Assignee
마이크로소프트 테크놀로지 라이센싱, 엘엘씨
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 마이크로소프트 테크놀로지 라이센싱, 엘엘씨 filed Critical 마이크로소프트 테크놀로지 라이센싱, 엘엘씨
Publication of KR20140123522A publication Critical patent/KR20140123522A/ko
Application granted granted Critical
Publication of KR102071087B1 publication Critical patent/KR102071087B1/ko
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/88Detecting or preventing theft or loss
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Health & Medical Sciences (AREA)
  • Databases & Information Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
KR1020147022186A 2012-02-09 2013-01-28 장치 데이터를 위한 보안 정책 Active KR102071087B1 (ko)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US13/370,232 US9245143B2 (en) 2012-02-09 2012-02-09 Security policy for device data
US13/370,232 2012-02-09
PCT/US2013/023353 WO2013119401A1 (en) 2012-02-09 2013-01-28 Security policy for device data

Publications (2)

Publication Number Publication Date
KR20140123522A KR20140123522A (ko) 2014-10-22
KR102071087B1 true KR102071087B1 (ko) 2020-01-29

Family

ID=48946638

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020147022186A Active KR102071087B1 (ko) 2012-02-09 2013-01-28 장치 데이터를 위한 보안 정책

Country Status (6)

Country Link
US (2) US9245143B2 (https=)
EP (1) EP2812842B1 (https=)
JP (1) JP6198231B2 (https=)
KR (1) KR102071087B1 (https=)
CN (1) CN104094275B (https=)
WO (1) WO2013119401A1 (https=)

Families Citing this family (38)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9245143B2 (en) 2012-02-09 2016-01-26 Microsoft Technology Licensing, Llc Security policy for device data
US9460303B2 (en) * 2012-03-06 2016-10-04 Microsoft Technology Licensing, Llc Operating large scale systems and cloud services with zero-standing elevated permissions
EP2901350A1 (en) * 2012-08-13 2015-08-05 Siemens Corporation Securely generating and storing passwords in a computer system
CN107832615A (zh) * 2012-10-19 2018-03-23 迈克菲公司 场所感知安全
US9231930B1 (en) 2012-11-20 2016-01-05 Amazon Technologies, Inc. Virtual endpoints for request authentication
US9444800B1 (en) 2012-11-20 2016-09-13 Amazon Technologies, Inc. Virtual communication endpoint services
US9167048B2 (en) * 2013-03-14 2015-10-20 Motorola Solutions, Inc. Method and apparatus for filtering devices within a security social network
US9386050B2 (en) 2013-03-14 2016-07-05 Motorola Solutions, Inc. Method and apparatus for filtering devices within a security social network
US9071429B1 (en) * 2013-04-29 2015-06-30 Amazon Technologies, Inc. Revocable shredding of security credentials
IL228523A0 (en) * 2013-09-17 2014-03-31 Nds Ltd Processing private data in a cloud-based environment
US20150094023A1 (en) * 2013-10-01 2015-04-02 Google Inc. Retroactively Securing a Mobile Device From a Remote Source
US9171174B2 (en) 2013-11-27 2015-10-27 At&T Intellectual Property I, L.P. Methods, systems, and computer program products for verifying user data access policies when server and/or user are not trusted
US10140477B2 (en) * 2013-12-09 2018-11-27 Thales E-Security, Inc. Obfuscating in memory encryption keys
US9160544B2 (en) * 2014-01-30 2015-10-13 Verizon Patent And Licensing Inc. Providing secure access to computing resources in a cloud computing environment
CN114329374A (zh) 2014-06-27 2022-04-12 微软技术许可有限责任公司 基于设备上的用户输入模式的数据保护系统
WO2015196450A1 (en) 2014-06-27 2015-12-30 Microsoft Technology Licensing, Llc System for data protection in power off mode
WO2015196451A1 (en) 2014-06-27 2015-12-30 Microsoft Technology Licensing, Llc System for context-based data protection
US10372937B2 (en) 2014-06-27 2019-08-06 Microsoft Technology Licensing, Llc Data protection based on user input during device boot-up, user login, and device shut-down states
US9900295B2 (en) * 2014-11-05 2018-02-20 Microsoft Technology Licensing, Llc Roaming content wipe actions across devices
US10313217B2 (en) 2015-03-13 2019-06-04 Samsung Electronics Co., Ltd. System on chip (SoC) capable of sharing resources with network device and devices having the SoC
US9762548B2 (en) 2015-03-13 2017-09-12 Western Digital Technologies, Inc. Controlling encrypted data stored on a remote storage device
US9762585B2 (en) 2015-03-19 2017-09-12 Microsoft Technology Licensing, Llc Tenant lockbox
US9565169B2 (en) * 2015-03-30 2017-02-07 Microsoft Technology Licensing, Llc Device theft protection associating a device identifier and a user identifier
US10931682B2 (en) 2015-06-30 2021-02-23 Microsoft Technology Licensing, Llc Privileged identity management
US10078748B2 (en) * 2015-11-13 2018-09-18 Microsoft Technology Licensing, Llc Unlock and recovery for encrypted devices
US9565020B1 (en) * 2016-02-02 2017-02-07 International Business Machines Corporation System and method for generating a server-assisted strong password from a weak secret
US10079679B2 (en) 2016-04-28 2018-09-18 Bank Of America Corporation Cryptographic encryption key escrow and recovery
CN106776908B (zh) * 2016-11-30 2020-02-14 Oppo广东移动通信有限公司 数据清理方法、装置及终端
US10693639B2 (en) * 2017-02-28 2020-06-23 Blackberry Limited Recovering a key in a secure manner
US10263775B2 (en) 2017-06-23 2019-04-16 Microsoft Technology Licensing, Llc Policy-based key recovery
CN111357002A (zh) * 2017-11-01 2020-06-30 惠普发展公司,有限责任合伙企业 针对伴随设备的不符合事件通知
US10614254B2 (en) * 2017-12-12 2020-04-07 John Almeida Virus immune computer system and method
US10951406B2 (en) * 2018-01-24 2021-03-16 Salesforce.Com, Inc. Preventing encryption key recovery by a cloud provider
US11606206B2 (en) * 2020-01-09 2023-03-14 Western Digital Technologies, Inc. Recovery key for unlocking a data storage device
JP2021118370A (ja) * 2020-01-22 2021-08-10 キオクシア株式会社 メモリシステム、情報処理装置、および情報処理システム
US11809611B2 (en) * 2020-02-24 2023-11-07 Microsoft Technology Licensing, Llc Protecting device detachment with bus encryption
US12475264B2 (en) * 2021-05-10 2025-11-18 Omnissa, Llc Secure recovery key management for removable drive encryption enforcement
CN113609497B (zh) * 2021-06-30 2022-09-23 荣耀终端有限公司 一种数据保护方法及装置

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090150970A1 (en) 2007-12-05 2009-06-11 Sybase, Inc. Data Fading to Secure Data on Mobile Client Devices
JP2010191946A (ja) 2008-12-31 2010-09-02 Intel Corp 暗号化されたストレージデバイスについてのチップセット鍵管理サービスの利用の強制
US20100266132A1 (en) * 2009-04-15 2010-10-21 Microsoft Corporation Service-based key escrow and security for device data
US20110283351A1 (en) 2010-05-16 2011-11-17 Hudson Jr James Thomas How to stop external and most internal network "Hacking"attacks by utilizing a dual appliance/server arrangement that allows for the use of peering servers and/or client software running on said peering servers or on proxy servers, web servers, or other legacy equipment

Family Cites Families (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5675645A (en) 1995-04-18 1997-10-07 Ricoh Company, Ltd. Method and apparatus for securing executable programs against copying
US6516064B1 (en) * 1995-07-25 2003-02-04 Sony Corporation Signal recording apparatus, signal record medium and signal reproducing apparatus
US6292899B1 (en) 1998-09-23 2001-09-18 Mcbride Randall C. Volatile key apparatus for safeguarding confidential data stored in a computer system memory
US7278023B1 (en) * 2000-06-09 2007-10-02 Northrop Grumman Corporation System and method for distributed network acess and control enabling high availability, security and survivability
US20040107345A1 (en) 2002-10-21 2004-06-03 Brandt David D. System and methodology providing automation security protocols and intrusion detection in an industrial controller environment
EP2194476B1 (en) * 2005-03-22 2014-12-03 Hewlett-Packard Development Company, L.P. Method and apparatus for creating a record of a software-verification attestation
US8082443B2 (en) 2006-01-09 2011-12-20 Bbnt Solutions Llc. Pedigrees for quantum cryptography
US20070261099A1 (en) 2006-05-02 2007-11-08 Broussard Scott J Confidential content reporting system and method with electronic mail verification functionality
KR100766313B1 (ko) * 2006-05-30 2007-10-11 삼성전자주식회사 이동통신단말기에서 보안 키의 암호화 장치 및 방법
US7603435B2 (en) 2006-11-15 2009-10-13 Palm, Inc. Over-the-air device kill pill and lock
US20090328238A1 (en) 2007-06-29 2009-12-31 David Duncan Ridewood Glendinning Disabling encrypted data
US20090006867A1 (en) 2007-06-29 2009-01-01 Alcatel Lucent System, device and method for providing data availability for lost/stolen portable communication devices
US20090210456A1 (en) 2008-02-18 2009-08-20 Dell Products L.P. Methods, Systems and Media for TPM Recovery Key Backup and Restoration
AU2009279431B2 (en) 2008-08-08 2014-04-10 Absolute Software Corporation Secure computing environment using a client heartbeat to address theft and unauthorized access
JP2010220019A (ja) 2009-03-18 2010-09-30 Panasonic Corp 鍵管理方法および鍵管理装置
US8392699B2 (en) 2009-10-31 2013-03-05 Cummings Engineering Consultants, Inc. Secure communication system for mobile devices
US8433901B2 (en) 2010-04-07 2013-04-30 Apple Inc. System and method for wiping encrypted data on a device having file-level content protection
US9245143B2 (en) 2012-02-09 2016-01-26 Microsoft Technology Licensing, Llc Security policy for device data

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090150970A1 (en) 2007-12-05 2009-06-11 Sybase, Inc. Data Fading to Secure Data on Mobile Client Devices
JP2010191946A (ja) 2008-12-31 2010-09-02 Intel Corp 暗号化されたストレージデバイスについてのチップセット鍵管理サービスの利用の強制
US20100266132A1 (en) * 2009-04-15 2010-10-21 Microsoft Corporation Service-based key escrow and security for device data
US20110283351A1 (en) 2010-05-16 2011-11-17 Hudson Jr James Thomas How to stop external and most internal network "Hacking"attacks by utilizing a dual appliance/server arrangement that allows for the use of peering servers and/or client software running on said peering servers or on proxy servers, web servers, or other legacy equipment

Also Published As

Publication number Publication date
KR20140123522A (ko) 2014-10-22
US20130212367A1 (en) 2013-08-15
EP2812842B1 (en) 2020-04-29
US20160154973A1 (en) 2016-06-02
EP2812842A4 (en) 2015-10-28
US9811682B2 (en) 2017-11-07
EP2812842A1 (en) 2014-12-17
JP6198231B2 (ja) 2017-09-20
CN104094275B (zh) 2019-06-28
US9245143B2 (en) 2016-01-26
JP2015508257A (ja) 2015-03-16
CN104094275A (zh) 2014-10-08
WO2013119401A1 (en) 2013-08-15

Similar Documents

Publication Publication Date Title
KR102071087B1 (ko) 장치 데이터를 위한 보안 정책
US10846425B2 (en) Data protection based on user input during device boot-up, user login, and device shut-down states
US10505983B2 (en) Enforcing enterprise requirements for devices registered with a registration service
US9735968B2 (en) Trust service for a client device
CA2939599C (en) Approaches for a location aware client
US10949540B2 (en) Security policy enforcement based on dynamic security context updates
US9544306B2 (en) Attempted security breach remediation
US8317878B2 (en) Enabling a service to return lost laptops
US9565169B2 (en) Device theft protection associating a device identifier and a user identifier
US20190149341A1 (en) Tamper-proof secure storage with recovery
US11416601B2 (en) Method and system for improved data control and access
US8977866B2 (en) Security mechanism for increased personal data protection
US9807615B2 (en) Disabling a mobile device that has stolen hardware components
US10192056B1 (en) Systems and methods for authenticating whole disk encryption systems
US10673888B1 (en) Systems and methods for managing illegitimate authentication attempts
KR20190033930A (ko) 보안 정보를 암호화하는 전자 장치 및 그 작동 방법

Legal Events

Date Code Title Description
PA0105 International application

Patent event date: 20140807

Patent event code: PA01051R01D

Comment text: International Patent Application

PG1501 Laying open of application
N231 Notification of change of applicant
PN2301 Change of applicant

Patent event date: 20150715

Comment text: Notification of Change of Applicant

Patent event code: PN23011R01D

A201 Request for examination
PA0201 Request for examination

Patent event code: PA02012R01D

Patent event date: 20171227

Comment text: Request for Examination of Application

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

Comment text: Notification of reason for refusal

Patent event date: 20190712

Patent event code: PE09021S01D

E701 Decision to grant or registration of patent right
PE0701 Decision of registration

Patent event code: PE07011S01D

Comment text: Decision to Grant Registration

Patent event date: 20200112

GRNT Written decision to grant
PR0701 Registration of establishment

Comment text: Registration of Establishment

Patent event date: 20200121

Patent event code: PR07011E01D

PR1002 Payment of registration fee

Payment date: 20200121

End annual number: 3

Start annual number: 1

PG1601 Publication of registration
PR1001 Payment of annual fee

Payment date: 20231227

Start annual number: 5

End annual number: 5

PR1001 Payment of annual fee

Payment date: 20241224

Start annual number: 6

End annual number: 6