KR20220144810A - 비밀 분할 및 메타데이터 저장 - Google Patents

비밀 분할 및 메타데이터 저장 Download PDF

Info

Publication number
KR20220144810A
KR20220144810A KR1020227029259A KR20227029259A KR20220144810A KR 20220144810 A KR20220144810 A KR 20220144810A KR 1020227029259 A KR1020227029259 A KR 1020227029259A KR 20227029259 A KR20227029259 A KR 20227029259A KR 20220144810 A KR20220144810 A KR 20220144810A
Authority
KR
South Korea
Prior art keywords
secret
share
retrieved
metadata
processor
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
KR1020227029259A
Other languages
English (en)
Korean (ko)
Inventor
마이클 디 오넬라스
제시 엠피
브래드 웰커
Original Assignee
티제로 아이피, 엘엘씨
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 티제로 아이피, 엘엘씨 filed Critical 티제로 아이피, 엘엘씨
Publication of KR20220144810A publication Critical patent/KR20220144810A/ko
Withdrawn legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/085Secret sharing or secret splitting, e.g. threshold schemes
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0602Interfaces specially adapted for storage systems specifically adapted to achieve a particular effect
    • G06F3/0604Improving or facilitating administration, e.g. storage management
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0602Interfaces specially adapted for storage systems specifically adapted to achieve a particular effect
    • G06F3/062Securing storage systems
    • G06F3/0623Securing storage systems in relation to content
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0628Interfaces specially adapted for storage systems making use of a particular technique
    • G06F3/0655Vertical data movement, i.e. input-output transfer; data movement between one or more hosts and one or more storage devices
    • G06F3/0659Command handling arrangements, e.g. command buffers, queues, command scheduling
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0668Interfaces specially adapted for storage systems adopting a particular infrastructure
    • G06F3/067Distributed or networked storage systems, e.g. storage area networks [SAN], network attached storage [NAS]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0668Interfaces specially adapted for storage systems adopting a particular infrastructure
    • G06F3/0671In-line storage system
    • G06F3/0673Single storage device
    • G06F3/0679Non-volatile semiconductor memory device, e.g. flash memory, one time programmable memory [OTP]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/60Software deployment
    • G06F8/61Installation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0643Hash functions, e.g. MD5, SHA, HMAC or f9 MAC
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • H04L9/0897Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/30Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • H04L9/3239Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/50Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using hash chains, e.g. blockchains or hash trees

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Human Computer Interaction (AREA)
  • Software Systems (AREA)
  • Computing Systems (AREA)
  • Power Engineering (AREA)
  • Storage Device Security (AREA)
  • Medicinal Preparation (AREA)
KR1020227029259A 2020-02-26 2021-02-08 비밀 분할 및 메타데이터 저장 Withdrawn KR20220144810A (ko)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US202062981663P 2020-02-26 2020-02-26
US62/981,663 2020-02-26
PCT/US2021/017019 WO2021173330A1 (en) 2020-02-26 2021-02-08 Secret splitting and metadata storage

Publications (1)

Publication Number Publication Date
KR20220144810A true KR20220144810A (ko) 2022-10-27

Family

ID=77366381

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020227029259A Withdrawn KR20220144810A (ko) 2020-02-26 2021-02-08 비밀 분할 및 메타데이터 저장

Country Status (7)

Country Link
US (2) US12052347B2 (https=)
EP (1) EP4111639A4 (https=)
JP (2) JP7597822B2 (https=)
KR (1) KR20220144810A (https=)
AU (1) AU2021227543A1 (https=)
CA (1) CA3169707A1 (https=)
WO (1) WO2021173330A1 (https=)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20220271933A1 (en) * 2021-02-19 2022-08-25 Samsung Electronics Co., Ltd. System and method for device to device secret backup and recovery
KR20240085445A (ko) * 2022-12-08 2024-06-17 논스랩 주식회사 블록체인 개인키 복원 장치 및 개인키 복원 방법

Families Citing this family (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CA3169707A1 (en) 2020-02-26 2021-09-02 Michael D ORNELAS Secret splitting and metadata storage
US11461754B2 (en) * 2020-08-26 2022-10-04 Ncr Corporation Isolated POS terminal connectivity
US11831757B2 (en) * 2021-06-30 2023-11-28 SafeMoon US, LLC System and method for generating virtual private keys from user credential information
US11972000B2 (en) * 2021-08-06 2024-04-30 Arash Esmailzadeh Information dispersal for secure data storage
EP4311162A4 (en) * 2021-08-20 2024-10-09 Samsung Electronics Co., Ltd. Electronic device for generating mnemonic words of private key and operating method of electronic device
JP2024536256A (ja) * 2021-09-29 2024-10-04 インタートラスト テクノロジーズ コーポレイション 信頼された台帳を使用する暗号トークン権利管理システム及び方法
US20260100824A1 (en) * 2021-12-31 2026-04-09 LokBlok, Inc. Secure split knowledge multi-party secret generation
US20230385824A1 (en) 2022-05-30 2023-11-30 SafeMoon US, LLC Energy-to-Token Redistribution Systems and Methods for Wireless Network Access and Localized Blockchain Distributed Computing
US11777727B1 (en) * 2022-08-29 2023-10-03 Osom Products, Inc. Distributed digital wallet seed phrase
EP4498635A1 (fr) * 2023-07-25 2025-01-29 Crypto Key Guardian Procédé cryptographique de gestion d'une phrase de mots

Family Cites Families (38)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6311171B1 (en) 1997-07-11 2001-10-30 Ericsson Inc. Symmetrically-secured electronic communication system
CA2374968C (en) 1999-05-26 2010-11-16 Neopost Technologies Technique for split knowledge backup and recovery of a cryptographic key
US7003667B1 (en) 1999-10-04 2006-02-21 Canon Kabushiki Kaisha Targeted secure printing
US20020071566A1 (en) 2000-12-11 2002-06-13 Kurn David Michael Computer system employing a split-secret cryptographic key linked to a password-based cryptographic key security scheme
US20030037237A1 (en) 2001-04-09 2003-02-20 Jean-Paul Abgrall Systems and methods for computer device authentication
US6931133B2 (en) 2002-09-03 2005-08-16 Verisign, Inc. Method and system of securely escrowing private keys in a public key infrastructure
US7548621B1 (en) 2002-09-26 2009-06-16 Ncr Corporation System and method for securing a base derivation key for use in injection of derived unique key per transaction devices
US20050086471A1 (en) 2003-10-20 2005-04-21 Spencer Andrew M. Removable information storage device that includes a master encryption key and encryption keys
KR100617456B1 (ko) 2004-04-28 2006-08-31 주식회사 니츠 비밀키 관리 기능을 가지는 비밀키 단말장치 및 비밀키관리방법
JP4701381B2 (ja) 2005-01-24 2011-06-15 国立大学法人 奈良先端科学技術大学院大学 暗号鍵生成装置、暗号鍵生成方法、暗号化データ配信装置、個別暗号鍵再生成装置、暗号化データ受信装置、暗号化データ配信システム、暗号鍵生成プログラム、および記録媒体
CN103384196A (zh) * 2005-11-18 2013-11-06 安全第一公司 安全数据解析方法和系统
US8989390B2 (en) 2005-12-12 2015-03-24 Qualcomm Incorporated Certify and split system and method for replacing cryptographic keys
JP4787080B2 (ja) 2006-06-12 2011-10-05 日本電信電話株式会社 分散情報共有方法および端末装置
US8634553B2 (en) 2007-11-05 2014-01-21 Sumitomo Electric Industries, Ltd. Encryption key generation device
JP2009135871A (ja) 2007-11-05 2009-06-18 Sumitomo Electric Ind Ltd 暗号鍵生成方法
GB2470306B (en) * 2008-03-07 2013-06-19 Ericsson Telefon Ab L M Method and apparatus for distributing media over a communications network
US8855318B1 (en) 2008-04-02 2014-10-07 Cisco Technology, Inc. Master key generation and distribution for storage area network devices
US8861727B2 (en) 2010-05-19 2014-10-14 Cleversafe, Inc. Storage of sensitive data in a dispersed storage network
JP4996757B1 (ja) 2011-03-29 2012-08-08 株式会社東芝 秘密分散システム、装置及びプログラム
JP2014535199A (ja) 2011-10-24 2014-12-25 コニンクリーケ・ケイピーエヌ・ナムローゼ・フェンノートシャップ コンテンツの安全な配給
US9286241B2 (en) 2012-02-21 2016-03-15 Microchip Technology Incorporated Cryptographic transmission system
US8745415B2 (en) 2012-09-26 2014-06-03 Pure Storage, Inc. Multi-drive cooperation to generate an encryption key
US20170142082A1 (en) 2014-03-10 2017-05-18 Sengi Corporation System and method for secure deposit and recovery of secret data
US9819656B2 (en) 2014-05-09 2017-11-14 Sony Interactive Entertainment Inc. Method for secure communication using asymmetric and symmetric encryption over insecure communications
US9667416B1 (en) 2014-12-18 2017-05-30 EMC IP Holding Company LLC Protecting master encryption keys in a distributed computing environment
KR101666374B1 (ko) 2015-02-13 2016-10-14 크루셜텍 (주) 사용자 인증서 발급과 사용자 인증을 위한 방법, 장치 및 컴퓨터 프로그램
US9673975B1 (en) 2015-06-26 2017-06-06 EMC IP Holding Company LLC Cryptographic key splitting for offline and online data protection
EP3866387A1 (en) * 2015-07-02 2021-08-18 Leading Software Limited Resilient secret sharing cloud based architecture for data vault
WO2017065209A1 (ja) * 2015-10-16 2017-04-20 国立大学法人東北大学 情報処理システム、情報処理装置、情報処理方法、及び、プログラム
US9954680B1 (en) 2015-12-18 2018-04-24 EMC IP Holding Company LLC Secure management of a master encryption key in a split-key based distributed computing environment
US10817873B2 (en) 2017-03-22 2020-10-27 Factom, Inc. Auditing of electronic documents
US10263775B2 (en) * 2017-06-23 2019-04-16 Microsoft Technology Licensing, Llc Policy-based key recovery
GB201711878D0 (en) 2017-07-24 2017-09-06 Nchain Holdings Ltd Computer - implemented system and method
JP7074319B2 (ja) 2018-02-28 2022-05-24 リアル・テクノロジー株式会社 正当性管理システム、正当性管理方法及びプログラム
SG11202008222WA (en) 2018-03-15 2020-09-29 Medici Ventures Inc Splitting encrypted key and encryption key used to encrypt key into key components allowing assembly with subset of key components to decrypt encrypted key
US10917234B2 (en) * 2018-05-03 2021-02-09 International Business Machines Corporation Blockchain for on-chain management of off-chain storage
KR20210066867A (ko) 2018-10-12 2021-06-07 티제로 아이피, 엘엘씨 암호화된 자산 암호화 키 부분의 서브세트를 사용하여 자산 암호화 키의 어셈블리를 허용하는 암호화된 자산 암호화 키 부분
CA3169707A1 (en) 2020-02-26 2021-09-02 Michael D ORNELAS Secret splitting and metadata storage

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20220271933A1 (en) * 2021-02-19 2022-08-25 Samsung Electronics Co., Ltd. System and method for device to device secret backup and recovery
KR20240085445A (ko) * 2022-12-08 2024-06-17 논스랩 주식회사 블록체인 개인키 복원 장치 및 개인키 복원 방법

Also Published As

Publication number Publication date
EP4111639A1 (en) 2023-01-04
US20210266150A1 (en) 2021-08-26
AU2021227543A1 (en) 2022-10-06
US12348621B2 (en) 2025-07-01
US20240348430A1 (en) 2024-10-17
JP2025027061A (ja) 2025-02-26
US12052347B2 (en) 2024-07-30
EP4111639A4 (en) 2024-02-28
CA3169707A1 (en) 2021-09-02
WO2021173330A1 (en) 2021-09-02
JP7597822B2 (ja) 2024-12-10
JP2023515956A (ja) 2023-04-17

Similar Documents

Publication Publication Date Title
US12348621B2 (en) Secret splitting and metadata storage
US12219051B2 (en) Doubly-encrypted secret parts allowing for assembly of a secret using a subset of the doubly- encrypted secret parts
US11374750B2 (en) Key recovery using encrypted secret shares
US12041166B2 (en) Protecting data using controlled corruption in computer networks
US11392940B2 (en) Multi-approval system using M of N keys to perform an action at a customer device
US11550931B1 (en) Data certification system and process for centralized user file encapsulation, encryption, notarization, and verification using a blockchain
CN115150158A (zh) 远程身份认证方法、装置、设备及存储介质
CN114143098B (zh) 数据存储方法和数据存储装置
WO2019161453A1 (en) A computer system and a computer implemented method for determining fulfilment of an obligation to a user

Legal Events

Date Code Title Description
PA0105 International application

Patent event date: 20220824

Patent event code: PA01051R01D

Comment text: International Patent Application

PG1501 Laying open of application
A201 Request for examination
PA0201 Request for examination

Patent event code: PA02012R01D

Patent event date: 20240205

Comment text: Request for Examination of Application

PC1202 Submission of document of withdrawal before decision of registration

Comment text: [Withdrawal of Procedure relating to Patent, etc.] Withdrawal (Abandonment)

Patent event code: PC12021R01D

Patent event date: 20250324

WITB Written withdrawal of application