WO2017139652A1 - Securely storing and distributing sensitive data in a cloud-based application - Google Patents

Securely storing and distributing sensitive data in a cloud-based application Download PDF

Info

Publication number
WO2017139652A1
WO2017139652A1 PCT/US2017/017481 US2017017481W WO2017139652A1 WO 2017139652 A1 WO2017139652 A1 WO 2017139652A1 US 2017017481 W US2017017481 W US 2017017481W WO 2017139652 A1 WO2017139652 A1 WO 2017139652A1
Authority
WO
WIPO (PCT)
Prior art keywords
data
profile
secret
security proxy
password
Prior art date
Application number
PCT/US2017/017481
Other languages
French (fr)
Inventor
Jackson TIMOTHY
Original Assignee
MobileIron, Inc.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by MobileIron, Inc. filed Critical MobileIron, Inc.
Priority to CN201780009511.1A priority Critical patent/CN108701094B/en
Priority to EP17750878.5A priority patent/EP3398073B1/en
Publication of WO2017139652A1 publication Critical patent/WO2017139652A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6209Protecting access to data via a platform, e.g. using keys or access control rules to a single file or object, e.g. in a secure envelope, encrypted and accessed using a key, or with access control rules appended to the object itself
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0281Proxies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0464Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload using hop-by-hop encryption, i.e. wherein an intermediate entity decrypts the information and re-encrypts it before forwarding it
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/14Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/30Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/76Proxy, i.e. using intermediary entity to perform cryptographic operations

Definitions

  • SaaS software as a service
  • FIG. 1 is a block diagram illustrating an embodiment of a system to securely store and distribute data.
  • FIG. 2 is a block diagram illustrating an embodiment of a system to securely store and distribute data via one or more security proxies.
  • FIG. 3 is a block diagram illustrating an embodiment of a system to provide secure data storage to a cloud-based service.
  • FIG. 4A is a block diagram illustrating an embodiment of a system to provide secure data retrieval from a cloud-based service.
  • FIG. 4B is a block diagram illustrating an embodiment of a system to provide secure data retrieval from a cloud-based service.
  • FIG. 5 is a flowchart illustrating an embodiment of a process to securely store data on a cloud management service.
  • FIG. 6 is a flowchart illustrating an embodiment of a process to securely retrieve data from a cloud management service.
  • FIG. 7A is a block diagram of a system to provide secure access to a cloud- based service using one or more encryption keys.
  • FIG. 7B is a block diagram of a system to provide secure access to a cloud- based service using one or more encryption keys.
  • FIG. 8 is a flowchart illustrating an embodiment of a process to enroll a device in a secure storage and distribution system.
  • FIG. 9 is a flowchart illustrating an embodiment of a process to register a security proxy in a secure storage and distribution system.
  • FIG. 10 is a flowchart illustrating an embodiment of a process to create a new profile for accessing a secure storage and distribution system.
  • FIG. 11 is a flowchart illustrating an embodiment of a process to assign a security proxy to a profile for accessing a secure storage and distribution system.
  • FIG. 12 is a flowchart illustrating an embodiment of a process to remove a security proxy from a profile for a secure storage and distribution system.
  • FIG. 13 is a block diagram illustrating an embodiment of a system provide secure access to a cloud-based service via a plurality of security proxies.
  • FIG. 14 is a block diagram illustrating an embodiment of a system to provide secure access by a plurality of administrators to a cloud-based service.
  • FIG. 15 block diagram illustrating an embodiment of a system to provide secure access to a cloud-based service via a delegated identity provider architecture and model.
  • the invention can be implemented in numerous ways, including as a process; an apparatus; a system; a composition of matter; a computer program product embodied on a computer readable storage medium; and/or a processor, such as a processor configured to execute instructions stored on and/or provided by a memory coupled to the processor.
  • these implementations, or any other form that the invention may take, may be referred to as techniques.
  • the order of the steps of disclosed processes may be altered within the scope of the invention.
  • a component such as a processor or a memory described as being configured to perform a task may be implemented as a general component that is temporarily configured to perform the task at a given time or a specific component that is manufactured to perform the task.
  • the term 'processor' refers to one or more devices, circuits, and/or processing cores configured to process data, such as computer program instructions.
  • CMS cloud management service
  • An attacker who breaks into a CMS or data repository may be able to obtain the data.
  • the attacker may be a malicious entity in the data owner's system/enterprise, in the CMS, or a third party (someone other than the cloud-based management service or the enterprise).
  • customers of a cloud-based enterprise mobility management service may need to provide the CMS with certificates and associated private keys that can be used to sign SAML assertions. These assertions are accepted by other entities as proof of a user's identity and authorized actions. An attacker in possession of these private keys could masquerade as any user within an organization when authenticating to other cloud-based services such as an enterprise homepage or other business-critical applications. This could be potentially catastrophic for a customer as they could lose critical business data.
  • Cloud-providers such as Amazon ®
  • Amazon ® offer full-disk encryption of data repositories. This helps protect against attackers who gain access to a copy of the disk, usually a backup of the disk.
  • Some databases such as Microsoft ® SQLServer and Oracle ® offer "transparent data encryption" of data stored within the database. However, with either of these solutions, the system has access to the encryption keys. Thus, an attacker who gains access to the system via some exploit, such as SQL injection, can request the secrets directly from the database, which will return the unencrypted data.
  • full-disk encryptions offers a relatively low level of access control.
  • sensitive data such as encryption keys
  • only administrators and/or authorized entities such as security proxy servers or other entities associated with an enterprise, customer, tenant, domain, or other trusted entity
  • security proxy servers may be added or removed without re-provisioning each of the other security proxy servers.
  • the CMS provides access control and key management and distribution. Examples of techniques to register a new security proxy server (e.g., Mobilelron ® Sentry), create a new profile, and assign a security proxy server to a profile in various embodiments are described here.
  • one or more of the following advantages over existing solutions may be realized.
  • Protected resources are available only to systems/entities designated by the customer administrators and this is enforced by strong cryptographic means.
  • Existing solutions typically allow a Cloud Service Provider (CSP) to decrypt the data, but in this solution, in various embodiments, the CSP cannot (except, in some embodiments, for limited times under specific circumstances, as described herein) decrypt the data without taking extraordinary action, such as modifying the system to capture the administrator's plaintext password.
  • CSP Cloud Service Provider
  • a transparent (to the user) system and method of securely storing and distributing data within a cloud-based system that offers comparable levels of security to users self-encrypting the data and managing the keys themselves is provided.
  • a process of retrieving secure data includes receiving a request, where the request includes a first secret data and a second secret data. The process further includes identifying a first encrypted data to retrieve based on the request, using the first secret data to decrypt the first encrypted data to generate a decrypted data, generating a second encrypted data, where the second encrypted data is encrypted using the second secret data. In response to the request, the second encrypted data is provided.
  • FIG. 1 is a block diagram illustrating an embodiment of a system 100 to securely store and distribute data.
  • the system includes a device management server 110, a managed device 120, a security state storage 130, a protected resource 140, and a security proxy 150.
  • the device management server 110 provides management functionality with respect to one or more devices, such as the managed device 120.
  • the device management server provides to device 120 secure access to protected resource 140.
  • the device management server may be configured to configure the device 120 to be managed by the device management server and associated elements, such as security proxy 150.
  • the device management server may be implemented by a mobile device management (MDM) server, an enterprise mobile management server (EMM), or the like.
  • the managed device 120 is a device that is usable by a user to access protected resource 140 via device management server 110.
  • the managed device may be implemented by a physical device such as a smart phone, tablet, laptop, and/or smart wearable.
  • the managed device may be registered with an enterprise system in order to access the protected resource 140. An example of a process to enroll a device is described in FIG. 8.
  • the security state storage 130 stores information about the security state of the system 100. For example, permission and profiles defining access permission of devices and/or administrators are stored in the security state storage.
  • the device management server may determine whether the device has permission to access the requested protected resource and provide access via the security proxy accordingly.
  • the protected resource 140 includes enterprise backend content such as data stored by a cloud service provider.
  • the protected resource 140 may include applications and services such as files, documents, email, calendar, contacts, and the like. Access to the protected resource may be managed by the device management server 110 and the security proxy 150. For example, some devices may have access to certain portions of the protected resource but not other portions as defined by the device's permission levels and/or profiles.
  • the security proxy 150 is configured to perform security and authentication procedures to secure communications between the managed device 120 and the protected resource 140.
  • the security proxy can be implemented by a gateway that manages, encrypts, and secures traffic between the device and protected resources.
  • the device management server 110 may provide a trusted certificate (e.g., SSL) via the security proxy to authenticate the managed device 120 with the device management server.
  • a trusted certificate e.g., SSL
  • the security proxy cooperates with a CMS (not shown) to store data, e.g., making the data a protected resource and/or to provide access to data in the protected resource.
  • an administrator can control the device management server 110 via a user interface.
  • an administrator may specify desired management functionalities and receive access analytics via the user interface.
  • Techniques described here allow the administrator to use the user interface to securely store and distribute sensitive data.
  • an action specified by the administrator via the user interface may be automatically carried out to register a new security proxy server, create a new profile, and assign a security proxy server to a profile, as further described here.
  • a user of the managed device 120 can obtain secure access to enterprise backend applications and services 140 as follows.
  • a user of the device 120 may enroll a device by logging in at device 120.
  • a key pair may be generated for the device and the public key provided (via the security proxy) to the device.
  • Device management server 110 uses configuration, device profile, user profile, and policy information in security state storage 130 to manage device 120 and provide secure access to protected resources 140.
  • the device management server 110 cooperates with a CMS to provide secure access to protected resources as further described with respect to FIG. 2.
  • FIG. 2 is a block diagram illustrating an embodiment of a system 200 to securely store and distribute data via one or more security proxies.
  • the system includes a cloud management service 210 and one or more security proxies 220.1 and 220.2.
  • the cloud management service 210 is configured to manage storage of data in the cloud.
  • the cloud management service is configured to store data provided by customers.
  • no passwords or private keys are stored in clear text within the CMS, regardless of whether full disk encryption or transparent database encryption is enabled.
  • CMS accommodates multiple tenants.
  • legitimate credentials of one tenant do not allow access to another tenant's private keys.
  • this is achieved by preventing anyone who does not possesses the keys needed to decrypt the certificate private keys from accessing the protected resources. For example, if the tenant administrator and a security proxy server associated with the tenant are entities having the certificate private keys, then they are the only entities able to access the protected resource.
  • Each of the one or more security proxies 220.1 and 220.2 is configured to perform security and authentication procedures to secure communications between a managed device and protected resources, e.g., in cloud management service 210.
  • the security proxy is an instance owned and managed by a customer and may be provided on-premise or in the cloud.
  • a plurality of security proxy servers 220.1 and 220.2 may be deployed, and each may be configured (e.g., via one or more profiles) to support one or more of a plurality of separate data security domains (e.g. separate companies or other enterprises, tenants of a multi-tenant system, etc.)
  • a security proxy may be added or removed without re-provisioning each of the other security proxy servers as further described here, e.g., with respect to FIG. 12.
  • root-level access to a security proxy server (and thus recovery of the security proxy server's private key) does not compromise any certificates/private keys not included in the profile assigned to that security proxy server.
  • a "profile" may comprise a set of settings and/or other configuration data for one or more security proxy servers.
  • an administrator can make changes to CMS settings and content via an UI. In some embodiments, the administrator can authorize one or more security proxies to access data.
  • the administrator provides a password that is used to encrypt data as further described with respect to FIG. 3.
  • Administrators are able to move a security proxy server from one profile to another (delete, add).
  • An example process of adding a security proxy server to a profile is described with respect to FIG. 11.
  • An example process of removing a security proxy server from a profile is described with respect to FIG. 12.
  • CMS 210 provides access to protected resources via security proxy 220.1 or 220.2.
  • CMS 210 uploads data to the cloud without storing the keys needed to decrypt the data.
  • An example of data storage is described in FIG. 5.
  • the CMS decrypts the requested data with an administrator-provided key, encrypts the decrypted data with the user's security proxy public key and provides the encrypted data.
  • An example of data retrieval is described in FIG. 6.
  • the techniques described here can achieve various security goals. For example, root-level access to the CMS would not by itself give access to the customer private keys stored by the CMS. In one aspect, the techniques described here mitigate both threats from an adversary who hacks CMS and rogue employees.
  • the integrity of the customer environment is protected.
  • root-level access to a security proxy server does not impact the security of other security proxy servers.
  • knowledge of the security proxy server's private key does not allow an attacker to decrypt that profile's updated data in the database.
  • the security proxy server may have a copy of the data (e.g. profile and certificates/private keys), however if the database has been updated with new certificates then an attacker with access to the database cannot use the "revoked" public key of the security proxy server to decrypt that data.
  • FIG. 3 is a block diagram illustrating an embodiment of a system 300 to provide secure data storage to a cloud-based service.
  • An administrator may securely store data 302 on cloud management service 310 as follows.
  • a public/private key pair is generated and protected with the administrator password 304.
  • the admin public key 306 allows new profiles to be created without requiring the admin password.
  • a password that is different from the administrator's login password may be used, thus providing another layer of security.
  • the administrator To upload data to the CMS, the administrator provides the data to be uploaded and a password 304 such as a login password or another password.
  • An administrator key 306 (“admin key") is recovered from the password provided by the administrator.
  • the administrator key is used to encrypt the data 302 and the encrypted data 308 is stored in the CMS 310.
  • the administrator password is not retained by the CMS such that the encrypted data is not decryptable by the CMS or any entity other than the administrator.
  • the data uploaded by the administrator and held in the CMS 310 may be any type of data.
  • the data includes encryption keys to sign authentication requests.
  • the encryption keys may be used to sign authentication requests described in FIG. 15.
  • Some of the messages shown in FIG. 15 are signed to cryptographically provide an identity of an origin, sender, or device to satisfy a requesting device.
  • FIG. 4A is a block diagram illustrating an embodiment of a system 400 to provide secure data retrieval from a cloud-based service.
  • a user may retrieve data from cloud management service 410 via security proxy 420 as follows.
  • An administrator password 404 is provided via security proxy 420 to the CMS
  • FIG. 4B is a block diagram illustrating an embodiment of a system 450 to provide secure data retrieval from a cloud-based service.
  • a user may retrieve data 418 from cloud management service 410 via security proxy 420 as follows.
  • the security proxy 420 provides its public key 424, which is used to encrypt the data 412.
  • the data was previously decrypted with the admin key (shown in FIG. 4A).
  • the data, which is now encrypted with the security proxy public key is provided by the CMS 410 to the security proxy 420.
  • the security proxy server public key allows an administrator to add the security proxy server to the profile without knowing the security proxy server's private key.
  • the security proxy 420 is able to decrypt the encrypted data 414 using its private key 422.
  • FIGS. 3, 4A, 4B e.g., admin, security proxy server, profile
  • Various public keys discussed in FIGS. 3, 4A, 4B provide trap-door functionality that allows new elements to be added without access to the private keys. This limits the number of times the administrator password is needed as well as helping to mitigate the impact of a potential breach of the CMS.
  • the techniques described here find application in a variety of systems. For example, these techniques may be used in any cloud structure having the ability to associate a service with a user account.
  • the cloud structure may register systems (e.g., a mobile device, an application delivery system such as Citrix NetScaler ® , etc.) and protect user data or authorized devices.
  • an attacker with root-privi privileges for an extended period of time may still obtain sufficient customer credentials to access private keys. This may be a tradeoff made for usability. For example, the attacker is required to gain access to each customer's private keys one-by-one.
  • the design described here in various embodiments, mitigates the risk of a "mass-breach" of customer accounts.
  • FIG. 5 is a flowchart illustrating an embodiment of a process 500 to securely store data on a cloud management service.
  • the process 500 may be implemented by a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B.
  • a request to store data is received (502).
  • the request includes the data to be stored and a first secret.
  • the first secret may be an admin password that protects an admin key.
  • the data is encrypted using the first secret (504).
  • the first secret is used to recover an admin key.
  • the admin key is used to encrypt the received data.
  • the encrypted data is stored (506) and the first secret is discarded (508). Because the first secret and the admin key recovered from the first secret are not retained, the encrypted data is securely stored and cannot be decrypted by the storage system. Only administrators and/or authorized entities (such as security proxy servers or other entities associated with an enterprise, customer, tenant, domain, or other trusted entity) can decrypt and recover the secrets.
  • FIG. 6 is a flowchart illustrating an embodiment of a process 600 to securely retrieve data from a cloud management service.
  • the process 600 may be implemented by a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B.
  • a request is received (602).
  • the request includes a first secret and a second secret.
  • the first secret may be an admin password that protects an admin key.
  • the second secret may be a security proxy public key.
  • the security proxy public key may be part of a key pair assigned to the security proxy at enrollment, e.g., as described with respect to FIG. 10.
  • the security proxy public key may be used to encrypt data sent to the security proxy such as the requested data from the CMS.
  • the request may be for access to data stored in a CMS.
  • the data was stored in the CMS according to process 500 of FIG. 5.
  • encrypted data to retrieve is identified (604).
  • the CMS determines whether the requestor has the appropriate permissions or privileges to access the requested data.
  • the encrypted data is decrypted using the first secret (606).
  • the first secret is used to recover an admin key.
  • the admin key is used to decrypt the encrypted data.
  • FIG. 7A is a block diagram of a system 700 to provide secure access to a cloud-based service using one or more encryption keys.
  • the system 700 shows a key hierarchy and secure key storage mechanism.
  • security proxies "security proxy 1" and "security proxy 2" are joined to a profile.
  • the security proxies that are joined to the profiled have a key to access the common key.
  • security proxy 1 and security proxy 2 have been joined to a profile and each has a key.
  • the common data may include a variety of data.
  • the common data includes a key to sign requests such as the request shown in FIG. 15 and a key to prove a sentry's identity to devices connecting to the sentry.
  • system 700 has enhanced security features. For example, the same common data is encrypted by a common key, the encrypted with a respective one of the admin key, first security proxy key, and second security proxy key.
  • the common public key allows the CMS to access common data without knowledge of the common private key.
  • a profile public key (a type of common public key) allows the CMS to add new certificates to the profile without knowledge of the profile's private key. Thus, the CMS will not need the administrator's password to perform this action.
  • the common key is encrypted by an admin public key and security proxy public keys.
  • the common key is encrypted by the admin key and security proxy 1 key and security proxy 2 key.
  • the common key encrypts common data.
  • the security proxy requests access to the common data, the security proxy is able to obtain access to the common data using its public key, which has been used to encrypt the common key. In this manner, the security proxy can use its private key to decrypt the common key.
  • FIG. 7B is a block diagram of a system 750 to provide secure access to a cloud-based service using one or more encryption keys.
  • security proxy 2 no longer has access to the system.
  • the common key is distributed to entities with permission to access the common key and encrypted with the public key for the allowed entities.
  • common key A is replaced with common key B. Because security proxy 2 does not have common key B, security proxy 2 is unable to access common data.
  • the "passwords,” in various embodiments, aside from the admin password, may be BASE64 encoded encryption keys. As such, they may need to be sufficiently large (128 or 256 bits) to serve the purpose. This will make them as strong as the underlying RSA keys.
  • FIG. 8 is a flowchart illustrating an embodiment of a process 800 to enroll a device in a secure storage and distribution system.
  • the process 800 may be implemented by a security proxy such as security proxy 220.1 and 220.2 of FIG. 2 or security proxy 420 of FIGS. 4 A and 4B.
  • the process 800 of enrolling a device into an enterprise system designates that a security proxy belongs to a particular tenant.
  • a request to enroll is received from a device (802).
  • a secret key pair is generated for the device (804).
  • the secret key pair may be an RSA key pair, e.g., 3072 bit.
  • a public key is stored (806).
  • the public key is uploaded to CMS for future use.
  • An admin public key and/or admin login password is received (808).
  • the admin public key and/or login password may be that of an admin managing the device.
  • a common public key is received (810).
  • the common public key is a profile public key for encrypting common or profile data.
  • access to requested data is provided based on the admin public key, the security proxy key, and/or the profile (812).
  • the profile may include identifying information about the device such as an associated admin, tenant, etc.
  • Processes 500 and 600 of FIGS. 5 and 6 are examples of providing access to the requested data based on the admin public key, the security proxy key, and/or the profile.
  • FIG. 9 is a flowchart illustrating an embodiment of a process 900 to register a security proxy in a secure storage and distribution system.
  • the process 900 may be implemented by a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B with respect to a security proxy such as security proxy 220.1 and 220.2 of FIG. 2 or security proxy 420 of FIGS. 4A and 4B.
  • a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B with respect to a security proxy such as security proxy 220.1 and 220.2 of FIG. 2 or security proxy 420 of FIGS. 4A and 4B.
  • a security proxy login is received (902).
  • the login may include an administrator password, sentry password, and profile/tenant.
  • login information provided by the security proxy is used to verify that the security proxy is authorized and not rogue.
  • the security proxy is authenticated based on the login (904). For example, the privileges of the security may be looked up in a security state database such as security state database 130 of FIG. 1.
  • Registration information is received (906).
  • the registration information includes a security proxy public key.
  • the public key is stored (908).
  • the public key is used later when a user requests data stored in a CMS via the security proxy, e.g., process 600 of FIG. 6.
  • Process 900 improves usability compared with typical processes because administrators do not need to access each security proxy server individually after initial registration with the CMS.
  • FIG. 10 is a flowchart illustrating an embodiment of a process 1000 to create a new profile for accessing a secure storage and distribution system.
  • the process 1000 may be implemented by a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B.
  • a profile defines access permission of devices and/or administrators.
  • security proxies may be joined to the profile.
  • the profile is common data and security proxy 1 and security proxy 2 have been joined to the profile such that they can access the common data.
  • a profile creation request is received (1002).
  • An admin public key is retrieved (1004) and a profile password is generated (1006).
  • the admin public key is associated with a profile password (1008).
  • the admin public key encrypts a profile password.
  • a profile key pair is generated (1010).
  • CMS will generate a new public/private key pair for that profile.
  • the profile key pair is a common data key pair for accessing common data of FIG. 7A.
  • a profile is generated (1012).
  • a file with the profile key pair is created and protected with the generated profile password (1014).
  • FIG. 11 is a flowchart illustrating an embodiment of a process 1100 to assign a security proxy to a profile for accessing a secure storage and distribution system.
  • the process 900 may be implemented by a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B with respect to a security proxy such as security proxy 220.1 and 220.2 of FIG. 2 or security proxy 420 of FIGS. 4A and 4B.
  • a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B with respect to a security proxy such as security proxy 220.1 and 220.2 of FIG. 2 or security proxy 420 of FIGS. 4A and 4B.
  • a request from an admin to add a security proxy to a profile is received
  • An admin key is recovered with an admin password (1104).
  • a profile password is decrypted (1106).
  • the profile password is encrypted with a security proxy public key (1108).
  • the encrypted profile password is stored (1110).
  • the security proxy obtains the profile key by decrypting the profile password and using the profile password to decrypt the profile key. For example, the profile password unlocks the profile public and private keys, and the profile public and private keys encrypt common data.
  • FIG. 12 is a flowchart illustrating an embodiment of a process 1200 to remove a security proxy from a profile for a secure storage and distribution system.
  • the process 900 may be implemented by a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B with respect to a security proxy such as security proxy 220.1 and 220.2 of FIG. 2 or security proxy 420 of FIGS. 4A and 4B.
  • a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B with respect to a security proxy such as security proxy 220.1 and 220.2 of FIG. 2 or security proxy 420 of FIGS. 4A and 4B.
  • a request from an admin to remove a security proxy from a profile is received
  • a profile password is recovered with an admin password (1204).
  • the profile password is changed (1206).
  • the changed profile password is disseminated to other admins and security proxies (1208).
  • the profile password is being encrypted for the other admins and security proxies but not the security proxy that was removed.
  • the security proxy that was removed does not have the changed profile password and is thus unable to obtain profile data with its old password.
  • FIG. 13 is a block diagram illustrating an embodiment of a system 1300 provide secure access to a cloud-based service via a plurality of security proxies.
  • the system 1300 includes a plurality of security proxies 1340.1 and 1340.2.
  • a single administrator manages multiple security proxies. For example, different devices within an enterprise network may have different access permissions. Each device has a respective security proxy for accessing enterprise resources. A single administrator may manage a number of different security proxies.
  • first data (“Data 1") for security proxy 1340.1
  • the administrator provides a password.
  • An administrator key is recovered from the password and used to encrypt the first data.
  • the first data may be uploaded/downloaded by the security proxy 1340.1 according to the techniques described here, e.g., FIGS. 5 and 6.
  • second data (“Data 2") for security proxy 1340.2
  • the administrator provides its password (the same password that was provided for Data 1).
  • An administrator key is recovered from the password and used to encrypt the second data.
  • the second data may be uploaded/downloaded by the security proxy 1340.2 according to the techniques described here, e.g., FIGS. 5 and 6.
  • FIG. 14 is a block diagram illustrating an embodiment of a system 1400 to provide secure access by a plurality of administrators to a cloud-based service.
  • the system 1400 includes a plurality of administrators ("Admin 1" and "Admin 2") and a plurality of security proxies 1440.1 and 1440.2.
  • data for several administrators/tenants are maintained in the same cloud. Data belonging to a tenant is only accessible by that tenant and not other tenants.
  • a first administrator key is recovered from the first password and used to encrypt the first data.
  • the first data may be uploaded/downloaded by the security proxy 1440.1 according to the techniques described here, e.g., FIGS. 5 and 6.
  • second data (“Data 2") for security proxy 1440.2
  • the administrator provides a second password, "Password 2.”
  • a second administrator key is recovered from the second password and used to encrypt the second data.
  • the second data may be uploaded/downloaded by the security proxy 1440.2 according to the techniques described here, e.g., FIGS. 5 and 6.
  • FIG. 15 block diagram illustrating an embodiment of a system 1500 to provide secure access to a cloud-based service via a delegated identity provider architecture and model.
  • the techniques described herein may be applied to the system 1500.
  • various encryption keys described below may be obtained from a CMS using processes 500 and 600 of FIGS. 5 and 6.
  • the system and environment 1500 includes one or more user agents, represented in FIG. 15 by user agent 1502, e.g., without limitation, a browser, managed app, unmanaged app, or other software running on a mobile or other device, configured to be used to access a cloud-based service provided by a service provider 1504, e.g., Box.comTM, Dropbox ® , or salesforce.com ® .
  • User agent 102 is associated with an identity provider 106, e.g., an on-premises, cloud-based, or other identity provider, such as the PingOne ® service offered by Ping Identity Corporation.
  • a trust relationship has been established between service provider 1504 and identity provider proxy 1508 running on security proxy server 1510.
  • service provider 1504 and identity provider proxy 1508 may have exchanged certificates.
  • a trust relationship has been established between identity provider 1506 and service provider proxy 1512, e.g., via exchange of certificates.
  • Identity provider proxy 1508 and service provider proxy 1512 have a trust relationship established between them and each has been configured to re-sign assertions on behalf of the other.
  • identity provider proxy 1508 is configured to provide to service provider 1504 and/or user agent 1502 (e.g., for further presentation to and consumption by identity provider 1506) assertions signed by identity provider proxy 1508 on behalf of (i.e., acting and appearing as) service provider proxy 1512.
  • service provider proxy 1512 is configured to provide to identity provider 1506 and/or user agent 1502 (e.g., for further presentation to and consumption by service provider 1504) assertions signed by service provider proxy 1512 on behalf of (i.e., acting and appearing as) identity provider proxy 1508.
  • user agent 1502 may initiate access to a service provided by service provider 1504 either by first contacting the service provider 1504 or by first authenticating with identity provider 1506 and then accessing the service provided by service provider 1504. For example, user agent 1502 may send to service provider 1504 a request to access the service (arrow 1). If service provider 1504 determines there is no existing (i.e., previously authenticated) session with user agent 1502, service provider 1504 may be configured to redirect (arrow 2) the user agent 1502 to identity provider proxy 1508 (arrow 3), which in turn may redirect the user agent 1502 to identity provider 1506 (arrow 4) via a communication signed by identity provider proxy 1508 using a certificate associated with service provider proxy 1512.
  • Identity provider 1506 may challenge the user agent 1502 for credentials, and upon successful login may provide to user agent 1502 for presentation to service provider proxy 1512 (arrow 5) a first (SAML or other) assertion, which service provider proxy 1512 may be configured to use to provide to user agent 1502 a second (SAML or other) assertion (arrow 6), signed by service provider proxy 1512 using a certificate associated with identity provider proxy 1508, to be presented to service provider 1504 (arrow 7) to gain access to the service (or other resource).
  • SAML or other assertion SAML or other assertion
  • SAML or other assertion signed by service provider proxy 1512 using a certificate associated with identity provider proxy 1508, to be presented to service provider 1504 (arrow 7) to gain access to the service (or other resource).
  • identity provider-initiated authentication may be implemented by user agent 1502 being used to access and log in via identity provider 1506, prior to attempting to access the service associated with service provider 1504.
  • identity provider 1506 may provide via a graphical or other user interface presented at user agent 1502, e.g., a webpage, a list or other representation of one or more services the authenticated user may access.
  • Selection of a service associated with service provider 1504 may result in the identity provider 1506 providing to user agent 1502 for presentation to service provider proxy 1512 a first (SAML or other) assertion, which service provider proxy 1512 may be configured to use to provide to user agent 1502 a second (SAML or other) assertion, signed by service provider proxy 1512 using a certificate associated with identity provider proxy 1508, to be presented to service provider 1504 to gain access to the service (or other resource).
  • SAML SAML or other
  • SAML or other assertion signed by service provider proxy 1512 using a certificate associated with identity provider proxy 1508, to be presented to service provider 1504 to gain access to the service (or other resource).
  • one or more certificates described above with reference to FIG. 15 may be distributed and/or stored using techniques disclosed herein.
  • a Cloud Management Service (CMS) 1550 is provided to manage storage of data in the cloud.
  • the CMS may store both public and private keys for one or both of an identity provider (IdP) proxy and a service provider (SP) proxy.
  • IdP identity provider
  • SP service provider
  • the proxies may reside in one or more security proxy servers.
  • the identity provider proxy and/or service provider proxy key may be distributed to one or more deployed security proxy servers.
  • the SP-proxy private key in various embodiments may be used to sign SAML authentication tokens.
  • the service provider may be configured to allow access based on a determination that a received SAML token is signed by the SP-proxy certificate, an adversary who steals this certificate may be able to log into any configured SP as any user from that organization (e.g. SalesForce ® as a tenant admin).
  • Applying the techniques described herein to system 1500 advantageously limits damage done by a completely compromised security proxy server because after the security proxy server has been removed, the security proxy server is limited to access permitted by the most recent profile it is able to decrypt.
  • CMS is not able to add a new security proxy server to a profile without customer admin interaction.
  • CMS is not able to introduce new LDP-proxy or SP-proxy certificates without customer admin approval.
  • CMS is prevented from introducing new IDP-proxy or SP-proxy certificates because the system is configured to prompt an administrator to configure the IDP/SP to use specific certificates separately from CMS. Thus, replacing these certificates on CMS will not grant an attacker access to the SP/IDP but merely break the overall configuration.
  • integrity protection is included within the system to prevent unauthorized modification of customer configurations.
  • the techniques described here improve a user experience and improve security.
  • administrators are prompted for their password as infrequently as possible.
  • admins are prompted to enter their password only when logging in or when adding/removing a security proxy server to a profile.
  • the latter may be necessary because it may be necessary to recover the plaintext profile password using the administrator's password before encrypting it with the security proxy server's public key.
  • the techniques described here provide management and storage of data on a cloud and distribution of data from the cloud to another system that reads and makes use of the data.
  • the techniques described here prevent a security breach of a cloud-based service.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computing Systems (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Software Systems (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Databases & Information Systems (AREA)
  • Medical Informatics (AREA)
  • Storage Device Security (AREA)

Abstract

Techniques to securely store and retrieve data are disclosed. In various embodiments, a process of retrieving secure data includes receiving a request, where the request includes a first secret data and a second secret data. The process further includes identifying a first encrypted data to retrieve based on the request, using the first secret data to decrypt the first encrypted data to generate a decrypted data, generating a second encrypted data, where the second encrypted data is encrypted using the second secret data. In response to the request, the second encrypted data is provided.

Description

SECURELY STORING AND DISTRIBUTING SENSITIVE DATA IN A
CLOUD-BASED APPLICATION CROSS REFERENCE TO OTHER APPLICATIONS
[0001] This application claims priority to U.S. Provisional Patent Application No.
62/293,437 entitled SECURELY STORING AND DISTRIBUTING SENSITIVE DATA IN A CLOUD-BASED APPLICATION filed February 10, 2016 which is incorporated herein by reference for all purposes.
BACKGROUND OF THE INVENTION
[0002] In a "software as a service" (SaaS) or other cloud-based application or service, it is often necessary to securely distribute secrets to some entities/services within the SaaS system's cloud. It is also desirable to have a central management console/service and data repository where administrators can upload/configure and manage these secrets. It is sometimes challenging to securely store and distribute secrets stored on the system cloud because of vulnerabilities in the central management console, attempts to access secrets by entities for which the secret is not intended, and infiltration by third parties, among other things. Thus, there is a need to securely store and distribute sensitive data in a cloud-based application.
BRIEF DESCRIPTION OF THE DRAWINGS
[0003] Various embodiments of the invention are disclosed in the following detailed description and the accompanying drawings.
[0004] FIG. 1 is a block diagram illustrating an embodiment of a system to securely store and distribute data.
[0005] FIG. 2 is a block diagram illustrating an embodiment of a system to securely store and distribute data via one or more security proxies.
[0006] FIG. 3 is a block diagram illustrating an embodiment of a system to provide secure data storage to a cloud-based service. [0007] FIG. 4A is a block diagram illustrating an embodiment of a system to provide secure data retrieval from a cloud-based service.
[0008] FIG. 4B is a block diagram illustrating an embodiment of a system to provide secure data retrieval from a cloud-based service.
[0009] FIG. 5 is a flowchart illustrating an embodiment of a process to securely store data on a cloud management service.
[0010] FIG. 6 is a flowchart illustrating an embodiment of a process to securely retrieve data from a cloud management service.
[0011] FIG. 7A is a block diagram of a system to provide secure access to a cloud- based service using one or more encryption keys.
[0012] FIG. 7B is a block diagram of a system to provide secure access to a cloud- based service using one or more encryption keys.
[0013] FIG. 8 is a flowchart illustrating an embodiment of a process to enroll a device in a secure storage and distribution system.
[0014] FIG. 9 is a flowchart illustrating an embodiment of a process to register a security proxy in a secure storage and distribution system.
[0015] FIG. 10 is a flowchart illustrating an embodiment of a process to create a new profile for accessing a secure storage and distribution system.
[0016] FIG. 11 is a flowchart illustrating an embodiment of a process to assign a security proxy to a profile for accessing a secure storage and distribution system.
[0017] FIG. 12 is a flowchart illustrating an embodiment of a process to remove a security proxy from a profile for a secure storage and distribution system.
[0018] FIG. 13 is a block diagram illustrating an embodiment of a system provide secure access to a cloud-based service via a plurality of security proxies.
[0019] FIG. 14 is a block diagram illustrating an embodiment of a system to provide secure access by a plurality of administrators to a cloud-based service. [0020] FIG. 15 block diagram illustrating an embodiment of a system to provide secure access to a cloud-based service via a delegated identity provider architecture and model.
DETAILED DESCRIPTION
[0021] The invention can be implemented in numerous ways, including as a process; an apparatus; a system; a composition of matter; a computer program product embodied on a computer readable storage medium; and/or a processor, such as a processor configured to execute instructions stored on and/or provided by a memory coupled to the processor. In this specification, these implementations, or any other form that the invention may take, may be referred to as techniques. In general, the order of the steps of disclosed processes may be altered within the scope of the invention. Unless stated otherwise, a component such as a processor or a memory described as being configured to perform a task may be implemented as a general component that is temporarily configured to perform the task at a given time or a specific component that is manufactured to perform the task. As used herein, the term 'processor' refers to one or more devices, circuits, and/or processing cores configured to process data, such as computer program instructions.
[0022] A detailed description of one or more embodiments of the invention is provided below along with accompanying figures that illustrate the principles of the invention. The invention is described in connection with such embodiments, but the invention is not limited to any embodiment. The scope of the invention is limited only by the claims and the invention encompasses numerous alternatives, modifications and equivalents. Numerous specific details are set forth in the following description in order to provide a thorough understanding of the invention. These details are provided for the purpose of example and the invention may be practiced according to the claims without some or all of these specific details. For the purpose of clarity, technical material that is known in the technical fields related to the invention has not been described in detail so that the invention is not unnecessarily obscured.
[0023] Security of data stored in a cloud-based service (also called a "cloud management service" or "CMS") may be considered to be of high importance to the data owner. Unfortunately, the data can be subject to various vulnerabilities. An attacker who breaks into a CMS or data repository may be able to obtain the data. The attacker may be a malicious entity in the data owner's system/enterprise, in the CMS, or a third party (someone other than the cloud-based management service or the enterprise).
[0024] For example, customers of a cloud-based enterprise mobility management service may need to provide the CMS with certificates and associated private keys that can be used to sign SAML assertions. These assertions are accepted by other entities as proof of a user's identity and authorized actions. An attacker in possession of these private keys could masquerade as any user within an organization when authenticating to other cloud-based services such as an enterprise homepage or other business-critical applications. This could be potentially catastrophic for a customer as they could lose critical business data.
[0025] Cloud-providers, such as Amazon®, offer full-disk encryption of data repositories. This helps protect against attackers who gain access to a copy of the disk, usually a backup of the disk. Some databases, such as Microsoft® SQLServer and Oracle® offer "transparent data encryption" of data stored within the database. However, with either of these solutions, the system has access to the encryption keys. Thus, an attacker who gains access to the system via some exploit, such as SQL injection, can request the secrets directly from the database, which will return the unencrypted data. Furthermore, full-disk encryptions offers a relatively low level of access control.
[0026] In various embodiments, sensitive data, such as encryption keys, is stored in an encrypted form in the cloud, while ensuring that the cloud service does not store the keys needed to decrypt the sensitive data. In some embodiments, only administrators and/or authorized entities (such as security proxy servers or other entities associated with an enterprise, customer, tenant, domain, or other trusted entity) within the SaaS system can decrypt and recover the secrets. In some embodiments, security proxy servers may be added or removed without re-provisioning each of the other security proxy servers. In some embodiments, the CMS provides access control and key management and distribution. Examples of techniques to register a new security proxy server (e.g., Mobilelron® Sentry), create a new profile, and assign a security proxy server to a profile in various embodiments are described here.
[0027] In various embodiments, one or more of the following advantages over existing solutions may be realized. Protected resources are available only to systems/entities designated by the customer administrators and this is enforced by strong cryptographic means. Existing solutions typically allow a Cloud Service Provider (CSP) to decrypt the data, but in this solution, in various embodiments, the CSP cannot (except, in some embodiments, for limited times under specific circumstances, as described herein) decrypt the data without taking extraordinary action, such as modifying the system to capture the administrator's plaintext password.
[0028] Security conscious users who entrust sensitive data to CSPs today can encrypt the data themselves before uploading. However, this is not a standardized process and therefore does not scale or interoperate. Thus, it is not suitable to a SaaS application or any other distributed system, as these environments require both scalability (e.g. more than one administrator, easy management of large numbers of keys, multiple systems within the environment, etc.) and interoperability. For instance, authorized entities within the distributed system must be able to decrypt data intended for them. Without an interoperable encryption process, this is not possible.
[0029] Unlike a manual system, the techniques described here can be seamlessly integrated into a SaaS application. Thus, all the key management and distribution is handled transparently to the administrator beyond the need for the administrator to provide credentials in order to complete a few operations.
[0030] Even existing solutions that encrypt data may use the same key for all entities accessing the data. They then need to rely on logical access controls (software limits access based on login information) to prevent one entity from accessing another's data.
Unfortunately, there is a long history of logical access controls failing. The system described here uses cryptographically enforced separations as an additional (and stronger) form of access control.
[0031] In various embodiments, a transparent (to the user) system and method of securely storing and distributing data within a cloud-based system that offers comparable levels of security to users self-encrypting the data and managing the keys themselves is provided. In various embodiments, a process of retrieving secure data includes receiving a request, where the request includes a first secret data and a second secret data. The process further includes identifying a first encrypted data to retrieve based on the request, using the first secret data to decrypt the first encrypted data to generate a decrypted data, generating a second encrypted data, where the second encrypted data is encrypted using the second secret data. In response to the request, the second encrypted data is provided.
[0032] FIG. 1 is a block diagram illustrating an embodiment of a system 100 to securely store and distribute data. The system includes a device management server 110, a managed device 120, a security state storage 130, a protected resource 140, and a security proxy 150.
[0033] The device management server 110 provides management functionality with respect to one or more devices, such as the managed device 120. In the example shown, the device management server provides to device 120 secure access to protected resource 140. The device management server may be configured to configure the device 120 to be managed by the device management server and associated elements, such as security proxy 150. The device management server may be implemented by a mobile device management (MDM) server, an enterprise mobile management server (EMM), or the like.
[0034] The managed device 120 is a device that is usable by a user to access protected resource 140 via device management server 110. By way of non-limiting example, the managed device may be implemented by a physical device such as a smart phone, tablet, laptop, and/or smart wearable. The managed device may be registered with an enterprise system in order to access the protected resource 140. An example of a process to enroll a device is described in FIG. 8.
[0035] The security state storage 130 stores information about the security state of the system 100. For example, permission and profiles defining access permission of devices and/or administrators are stored in the security state storage. In response to a request for protected resources by the managed device, the device management server may determine whether the device has permission to access the requested protected resource and provide access via the security proxy accordingly.
[0036] The protected resource 140 includes enterprise backend content such as data stored by a cloud service provider. The protected resource 140 may include applications and services such as files, documents, email, calendar, contacts, and the like. Access to the protected resource may be managed by the device management server 110 and the security proxy 150. For example, some devices may have access to certain portions of the protected resource but not other portions as defined by the device's permission levels and/or profiles. [0037] The security proxy 150 is configured to perform security and authentication procedures to secure communications between the managed device 120 and the protected resource 140. The security proxy can be implemented by a gateway that manages, encrypts, and secures traffic between the device and protected resources. For example, the device management server 110 may provide a trusted certificate (e.g., SSL) via the security proxy to authenticate the managed device 120 with the device management server. In various embodiments, the security proxy cooperates with a CMS (not shown) to store data, e.g., making the data a protected resource and/or to provide access to data in the protected resource.
[0038] In operation, an administrator can control the device management server 110 via a user interface. For example, an administrator may specify desired management functionalities and receive access analytics via the user interface. Techniques described here allow the administrator to use the user interface to securely store and distribute sensitive data. For example, an action specified by the administrator via the user interface may be automatically carried out to register a new security proxy server, create a new profile, and assign a security proxy server to a profile, as further described here.
[0039] A user of the managed device 120 can obtain secure access to enterprise backend applications and services 140 as follows. A user of the device 120 may enroll a device by logging in at device 120. As part of the enrollment process, a key pair may be generated for the device and the public key provided (via the security proxy) to the device. Device management server 110 uses configuration, device profile, user profile, and policy information in security state storage 130 to manage device 120 and provide secure access to protected resources 140. In various embodiments, the device management server 110 cooperates with a CMS to provide secure access to protected resources as further described with respect to FIG. 2.
[0040] In some embodiments, authentication keys (e.g., for an identity provider and/or a service provider) are securely stored as part of protected resource 140. The CMS provides key management and distribution. When a user requests an authentication key, the CMS provides the user with the key if the user has the appropriate permissions. An example of key distribution is described in FIG. 15. [0041] FIG. 2 is a block diagram illustrating an embodiment of a system 200 to securely store and distribute data via one or more security proxies. The system includes a cloud management service 210 and one or more security proxies 220.1 and 220.2.
[0042] The cloud management service 210 is configured to manage storage of data in the cloud. For example, the cloud management service is configured to store data provided by customers. In various embodiments, no passwords or private keys are stored in clear text within the CMS, regardless of whether full disk encryption or transparent database encryption is enabled.
[0043] In various embodiments, CMS accommodates multiple tenants. In various embodiments, legitimate credentials of one tenant do not allow access to another tenant's private keys. In some embodiments, this is achieved by preventing anyone who does not possesses the keys needed to decrypt the certificate private keys from accessing the protected resources. For example, if the tenant administrator and a security proxy server associated with the tenant are entities having the certificate private keys, then they are the only entities able to access the protected resource.
[0044] Each of the one or more security proxies 220.1 and 220.2 is configured to perform security and authentication procedures to secure communications between a managed device and protected resources, e.g., in cloud management service 210. In various embodiments, the security proxy is an instance owned and managed by a customer and may be provided on-premise or in the cloud. In some embodiments, a plurality of security proxy servers 220.1 and 220.2 may be deployed, and each may be configured (e.g., via one or more profiles) to support one or more of a plurality of separate data security domains (e.g. separate companies or other enterprises, tenants of a multi-tenant system, etc.)
[0045] In various embodiments, a security proxy may be added or removed without re-provisioning each of the other security proxy servers as further described here, e.g., with respect to FIG. 12. In various embodiments, root-level access to a security proxy server (and thus recovery of the security proxy server's private key) does not compromise any certificates/private keys not included in the profile assigned to that security proxy server. An example is described with respect to FIGS. 7A and 7B. In various embodiments, a "profile" may comprise a set of settings and/or other configuration data for one or more security proxy servers. [0046] In various embodiments, an administrator can make changes to CMS settings and content via an UI. In some embodiments, the administrator can authorize one or more security proxies to access data. For example, the administrator provides a password that is used to encrypt data as further described with respect to FIG. 3. Administrators are able to move a security proxy server from one profile to another (delete, add). An example process of adding a security proxy server to a profile is described with respect to FIG. 11. An example process of removing a security proxy server from a profile is described with respect to FIG. 12.
[0047] In operation, CMS 210 provides access to protected resources via security proxy 220.1 or 220.2. For example, CMS 210 uploads data to the cloud without storing the keys needed to decrypt the data. An example of data storage is described in FIG. 5. When a user with appropriate access permissions later requests the uploaded data, the CMS decrypts the requested data with an administrator-provided key, encrypts the decrypted data with the user's security proxy public key and provides the encrypted data. An example of data retrieval is described in FIG. 6.
[0048] The techniques described here can achieve various security goals. For example, root-level access to the CMS would not by itself give access to the customer private keys stored by the CMS. In one aspect, the techniques described here mitigate both threats from an adversary who hacks CMS and rogue employees.
[0049] In various embodiments, the integrity of the customer environment (e.g., protected resource 140 of FIG. 1) is protected. In one aspect, root-level access to a security proxy server (or knowledge of its private key) does not impact the security of other security proxy servers. Once a security proxy server has been removed by the CMS, knowledge of the security proxy server's private key does not allow an attacker to decrypt that profile's updated data in the database. In some embodiments, the security proxy server may have a copy of the data (e.g. profile and certificates/private keys), however if the database has been updated with new certificates then an attacker with access to the database cannot use the "revoked" public key of the security proxy server to decrypt that data. This advantageously limits damage done by a completely compromised security proxy server because after the security proxy server has been removed, the security proxy server is limited to access permitted by the most recent profile that it was able to decrypt. [0050] FIG. 3 is a block diagram illustrating an embodiment of a system 300 to provide secure data storage to a cloud-based service. An administrator may securely store data 302 on cloud management service 310 as follows.
[0051] In some embodiments, when an administrator account is created, a public/private key pair is generated and protected with the administrator password 304. The admin public key 306 allows new profiles to be created without requiring the admin password. In some embodiments, a password that is different from the administrator's login password may be used, thus providing another layer of security.
[0052] To upload data to the CMS, the administrator provides the data to be uploaded and a password 304 such as a login password or another password. An administrator key 306 ("admin key") is recovered from the password provided by the administrator. The administrator key is used to encrypt the data 302 and the encrypted data 308 is stored in the CMS 310. In various embodiments, the administrator password is not retained by the CMS such that the encrypted data is not decryptable by the CMS or any entity other than the administrator.
[0053] The data uploaded by the administrator and held in the CMS 310 may be any type of data. In some embodiments, the data includes encryption keys to sign authentication requests. For example, the encryption keys may be used to sign authentication requests described in FIG. 15. Some of the messages shown in FIG. 15 are signed to cryptographically provide an identity of an origin, sender, or device to satisfy a requesting device.
[0054] FIG. 4A is a block diagram illustrating an embodiment of a system 400 to provide secure data retrieval from a cloud-based service. A user may retrieve data from cloud management service 410 via security proxy 420 as follows.
[0055] An administrator password 404 is provided via security proxy 420 to the CMS
410. In some embodiments, the administrator password is provided by a user requesting data or a lookup of the administrator password is triggered by the user's request. In some embodiments, the administrator password is provided by an administrator. An admin key 406 is recovered from the password provided by the administrator. The admin key can be used to decrypt the encrypted data 408. The encrypted data is momentarily decrypted in the CMS 410 in this state. In this state, the data 412 is not yet accessible by the user. The user accesses the data 412 according to FIG. 4B. [0056] FIG. 4B is a block diagram illustrating an embodiment of a system 450 to provide secure data retrieval from a cloud-based service. A user may retrieve data 418 from cloud management service 410 via security proxy 420 as follows.
[0057] The security proxy 420 provides its public key 424, which is used to encrypt the data 412. The data was previously decrypted with the admin key (shown in FIG. 4A). The data, which is now encrypted with the security proxy public key is provided by the CMS 410 to the security proxy 420. The security proxy server public key allows an administrator to add the security proxy server to the profile without knowing the security proxy server's private key. The security proxy 420 is able to decrypt the encrypted data 414 using its private key 422.
[0058] Various public keys discussed in FIGS. 3, 4A, 4B (e.g., admin, security proxy server, profile) provide trap-door functionality that allows new elements to be added without access to the private keys. This limits the number of times the administrator password is needed as well as helping to mitigate the impact of a potential breach of the CMS.
[0059] The techniques described here find application in a variety of systems. For example, these techniques may be used in any cloud structure having the ability to associate a service with a user account. The cloud structure may register systems (e.g., a mobile device, an application delivery system such as Citrix NetScaler®, etc.) and protect user data or authorized devices.
[0060] In some embodiments, an attacker with root-privileges for an extended period of time may still obtain sufficient customer credentials to access private keys. This may be a tradeoff made for usability. For example, the attacker is required to gain access to each customer's private keys one-by-one. The design described here, in various embodiments, mitigates the risk of a "mass-breach" of customer accounts.
[0061] FIG. 5 is a flowchart illustrating an embodiment of a process 500 to securely store data on a cloud management service. In various embodiments, the process 500 may be implemented by a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B.
[0062] A request to store data is received (502). In various embodiments, the request includes the data to be stored and a first secret. The first secret may be an admin password that protects an admin key. The data is encrypted using the first secret (504). For example, the first secret is used to recover an admin key. The admin key is used to encrypt the received data. The encrypted data is stored (506) and the first secret is discarded (508). Because the first secret and the admin key recovered from the first secret are not retained, the encrypted data is securely stored and cannot be decrypted by the storage system. Only administrators and/or authorized entities (such as security proxy servers or other entities associated with an enterprise, customer, tenant, domain, or other trusted entity) can decrypt and recover the secrets.
[0063] FIG. 6 is a flowchart illustrating an embodiment of a process 600 to securely retrieve data from a cloud management service. In various embodiments, the process 600 may be implemented by a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B.
[0064] A request is received (602). In various embodiments, the request includes a first secret and a second secret. The first secret may be an admin password that protects an admin key. The second secret may be a security proxy public key. The security proxy public key may be part of a key pair assigned to the security proxy at enrollment, e.g., as described with respect to FIG. 10. The security proxy public key may be used to encrypt data sent to the security proxy such as the requested data from the CMS. The request may be for access to data stored in a CMS. In various embodiments, the data was stored in the CMS according to process 500 of FIG. 5. Based on the request, encrypted data to retrieve is identified (604). For example, the CMS determines whether the requestor has the appropriate permissions or privileges to access the requested data. The encrypted data is decrypted using the first secret (606). For example, the first secret is used to recover an admin key. The admin key is used to decrypt the encrypted data.
[0065] To send the data, which has been decrypted by the admin key, to the requestor in encrypted form, the decrypted data is encrypted using the second secret (608). For example, a security proxy public key is used to encrypt the data. The encrypted data is provided (610). Upon receipt, the security proxy may use its private key to decrypt the encrypted data. [0066] FIG. 7A is a block diagram of a system 700 to provide secure access to a cloud-based service using one or more encryption keys. The system 700 shows a key hierarchy and secure key storage mechanism.
[0067] In system 700, security proxies "security proxy 1" and "security proxy 2" are joined to a profile. The security proxies that are joined to the profiled have a key to access the common key. In this example, security proxy 1 and security proxy 2 have been joined to a profile and each has a key. The common data may include a variety of data. In some embodiments, the common data includes a key to sign requests such as the request shown in FIG. 15 and a key to prove a sentry's identity to devices connecting to the sentry. Compared with conventional data storage systems, system 700 has enhanced security features. For example, the same common data is encrypted by a common key, the encrypted with a respective one of the admin key, first security proxy key, and second security proxy key. The common public key allows the CMS to access common data without knowledge of the common private key. For example, a profile public key (a type of common public key) allows the CMS to add new certificates to the profile without knowledge of the profile's private key. Thus, the CMS will not need the administrator's password to perform this action.
[0068] In some embodiments, the common key is encrypted by an admin public key and security proxy public keys. In the example shown here, the common key is encrypted by the admin key and security proxy 1 key and security proxy 2 key. The common key encrypts common data. When a security proxy requests access to the common data, the security proxy is able to obtain access to the common data using its public key, which has been used to encrypt the common key. In this manner, the security proxy can use its private key to decrypt the common key.
[0069] Using the key hierarchy of FIG. 7A, it is also possible to add/remove administrators and support multiple administrators. If an administrator forgets their password, reset by another administrator is possible. In some embodiments, if all administrators for a tenant forget their passwords simultaneously, the tenant will basically no longer be able to add security proxy servers to/remove from profiles. In some embodiments, there is a recovery path via registered security proxy servers, since they possess the requisite encryption keys.
[0070] FIG. 7B is a block diagram of a system 750 to provide secure access to a cloud-based service using one or more encryption keys. In this example, security proxy 2 no longer has access to the system. When a common key is replaced, the common key is distributed to entities with permission to access the common key and encrypted with the public key for the allowed entities. Thus, once a common key is replaced, an entity that does not have the common key is unable to access the common data. Here, common key A is replaced with common key B. Because security proxy 2 does not have common key B, security proxy 2 is unable to access common data.
[0071] The "passwords," in various embodiments, aside from the admin password, may be BASE64 encoded encryption keys. As such, they may need to be sufficiently large (128 or 256 bits) to serve the purpose. This will make them as strong as the underlying RSA keys.
[0072] FIG. 8 is a flowchart illustrating an embodiment of a process 800 to enroll a device in a secure storage and distribution system. In various embodiments, the process 800 may be implemented by a security proxy such as security proxy 220.1 and 220.2 of FIG. 2 or security proxy 420 of FIGS. 4 A and 4B.
[0073] In some embodiments, the process 800 of enrolling a device into an enterprise system designates that a security proxy belongs to a particular tenant. A request to enroll is received from a device (802). A secret key pair is generated for the device (804). The secret key pair may be an RSA key pair, e.g., 3072 bit. A public key is stored (806). For example, the public key is uploaded to CMS for future use. An admin public key and/or admin login password is received (808). The admin public key and/or login password may be that of an admin managing the device. A common public key is received (810). For example, the common public key is a profile public key for encrypting common or profile data. Upon successful enrollment, access to requested data is provided based on the admin public key, the security proxy key, and/or the profile (812). The profile may include identifying information about the device such as an associated admin, tenant, etc. Processes 500 and 600 of FIGS. 5 and 6 are examples of providing access to the requested data based on the admin public key, the security proxy key, and/or the profile.
[0074] FIG. 9 is a flowchart illustrating an embodiment of a process 900 to register a security proxy in a secure storage and distribution system. In various embodiments, the process 900 may be implemented by a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B with respect to a security proxy such as security proxy 220.1 and 220.2 of FIG. 2 or security proxy 420 of FIGS. 4A and 4B.
[0075] A security proxy login is received (902). The login may include an administrator password, sentry password, and profile/tenant. In various embodiments, login information provided by the security proxy is used to verify that the security proxy is authorized and not rogue. The security proxy is authenticated based on the login (904). For example, the privileges of the security may be looked up in a security state database such as security state database 130 of FIG. 1. Registration information is received (906). In some embodiments, the registration information includes a security proxy public key. The public key is stored (908). Upon the completion of registration, the security proxy belongs to a tenant. In various embodiments, the public key is used later when a user requests data stored in a CMS via the security proxy, e.g., process 600 of FIG. 6.
[0076] Process 900 improves usability compared with typical processes because administrators do not need to access each security proxy server individually after initial registration with the CMS.
[0077] FIG. 10 is a flowchart illustrating an embodiment of a process 1000 to create a new profile for accessing a secure storage and distribution system. In various embodiments, the process 1000 may be implemented by a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B.
[0078] In various embodiments, a profile defines access permission of devices and/or administrators. After creating a profile, security proxies may be joined to the profile. In the example of FIG. 7A, the profile is common data and security proxy 1 and security proxy 2 have been joined to the profile such that they can access the common data.
[0079] Returning to FIG. 10, a profile creation request is received (1002). An admin public key is retrieved (1004) and a profile password is generated (1006). The admin public key is associated with a profile password (1008). For example, the admin public key encrypts a profile password. A profile key pair is generated (1010). When a new profile is created, CMS will generate a new public/private key pair for that profile. For example, the profile key pair is a common data key pair for accessing common data of FIG. 7A. A profile is generated (1012). A file with the profile key pair is created and protected with the generated profile password (1014). [0080] FIG. 11 is a flowchart illustrating an embodiment of a process 1100 to assign a security proxy to a profile for accessing a secure storage and distribution system. In various embodiments, the process 900 may be implemented by a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B with respect to a security proxy such as security proxy 220.1 and 220.2 of FIG. 2 or security proxy 420 of FIGS. 4A and 4B.
[0081] A request from an admin to add a security proxy to a profile is received
(1102). An admin key is recovered with an admin password (1104). A profile password is decrypted (1106). The profile password is encrypted with a security proxy public key (1108). The encrypted profile password is stored (1110). Once a security proxy is assigned to a profile, the security proxy obtains the profile key by decrypting the profile password and using the profile password to decrypt the profile key. For example, the profile password unlocks the profile public and private keys, and the profile public and private keys encrypt common data.
[0082] FIG. 12 is a flowchart illustrating an embodiment of a process 1200 to remove a security proxy from a profile for a secure storage and distribution system. In various embodiments, the process 900 may be implemented by a cloud management service such as CMS 210 of FIG. 2, CMS 310 of FIG. 3, or CMS 410 of FIGS. 4A and 4B with respect to a security proxy such as security proxy 220.1 and 220.2 of FIG. 2 or security proxy 420 of FIGS. 4A and 4B.
[0083] A request from an admin to remove a security proxy from a profile is received
(1202). A profile password is recovered with an admin password (1204). The profile password is changed (1206). The changed profile password is disseminated to other admins and security proxies (1208). In one aspect, the profile password is being encrypted for the other admins and security proxies but not the security proxy that was removed. The security proxy that was removed does not have the changed profile password and is thus unable to obtain profile data with its old password.
[0084] Referring to FIGS. 7A and 7B, the system 750 may result from applying process 1200 to system 700. In FIG. 7B, security proxy 2 has been removed and common key A (e.g., profile password) has been changed to common key B. [0085] FIG. 13 is a block diagram illustrating an embodiment of a system 1300 provide secure access to a cloud-based service via a plurality of security proxies. The system 1300 includes a plurality of security proxies 1340.1 and 1340.2. In this example, a single administrator manages multiple security proxies. For example, different devices within an enterprise network may have different access permissions. Each device has a respective security proxy for accessing enterprise resources. A single administrator may manage a number of different security proxies.
[0086] In operation, to upload first data ("Data 1") for security proxy 1340.1, the administrator provides a password. An administrator key is recovered from the password and used to encrypt the first data. The first data may be uploaded/downloaded by the security proxy 1340.1 according to the techniques described here, e.g., FIGS. 5 and 6. To upload second data ("Data 2") for security proxy 1340.2, the administrator provides its password (the same password that was provided for Data 1). An administrator key is recovered from the password and used to encrypt the second data. The second data may be uploaded/downloaded by the security proxy 1340.2 according to the techniques described here, e.g., FIGS. 5 and 6.
[0087] Distributing and storing certificates and other sensitive data in the cloud, but with each certificate, key or sensitive data being encrypted using a key only available (except for limited times and circumstances, as described here) to an owner and/or administrator of that data and/or another entity trusted by the data owner, enables the convenience of cloud- based storage of such sensitive data to be achieved without exposing the sensitive data of one data owner to that of another, and without exposing the sensitive data of all to exposure in the event of security breach with respect to just one.
[0088] FIG. 14 is a block diagram illustrating an embodiment of a system 1400 to provide secure access by a plurality of administrators to a cloud-based service. The system 1400 includes a plurality of administrators ("Admin 1" and "Admin 2") and a plurality of security proxies 1440.1 and 1440.2. In this example, data for several administrators/tenants are maintained in the same cloud. Data belonging to a tenant is only accessible by that tenant and not other tenants.
[0089] In operation, to upload first data ("Data 1") for security proxy 1440.1, Admin
1 provides a first password, "Password 1". A first administrator key is recovered from the first password and used to encrypt the first data. The first data may be uploaded/downloaded by the security proxy 1440.1 according to the techniques described here, e.g., FIGS. 5 and 6. To upload second data ("Data 2") for security proxy 1440.2, the administrator provides a second password, "Password 2." A second administrator key is recovered from the second password and used to encrypt the second data. The second data may be uploaded/downloaded by the security proxy 1440.2 according to the techniques described here, e.g., FIGS. 5 and 6.
[0090] FIG. 15 block diagram illustrating an embodiment of a system 1500 to provide secure access to a cloud-based service via a delegated identity provider architecture and model. The techniques described herein may be applied to the system 1500. For example, various encryption keys described below may be obtained from a CMS using processes 500 and 600 of FIGS. 5 and 6.
[0091] In the example shown, the system and environment 1500 includes one or more user agents, represented in FIG. 15 by user agent 1502, e.g., without limitation, a browser, managed app, unmanaged app, or other software running on a mobile or other device, configured to be used to access a cloud-based service provided by a service provider 1504, e.g., Box.com™, Dropbox®, or salesforce.com®. User agent 102 is associated with an identity provider 106, e.g., an on-premises, cloud-based, or other identity provider, such as the PingOne® service offered by Ping Identity Corporation. In the example shown, a trust relationship has been established between service provider 1504 and identity provider proxy 1508 running on security proxy server 1510. For example, service provider 1504 and identity provider proxy 1508 may have exchanged certificates. Similarly, a trust relationship has been established between identity provider 1506 and service provider proxy 1512, e.g., via exchange of certificates.
[0092] Identity provider proxy 1508 and service provider proxy 1512 have a trust relationship established between them and each has been configured to re-sign assertions on behalf of the other. For example, in various embodiments, identity provider proxy 1508 is configured to provide to service provider 1504 and/or user agent 1502 (e.g., for further presentation to and consumption by identity provider 1506) assertions signed by identity provider proxy 1508 on behalf of (i.e., acting and appearing as) service provider proxy 1512. Similarly, in various embodiments, service provider proxy 1512 is configured to provide to identity provider 1506 and/or user agent 1502 (e.g., for further presentation to and consumption by service provider 1504) assertions signed by service provider proxy 1512 on behalf of (i.e., acting and appearing as) identity provider proxy 1508. [0093] In various embodiments, user agent 1502 may initiate access to a service provided by service provider 1504 either by first contacting the service provider 1504 or by first authenticating with identity provider 1506 and then accessing the service provided by service provider 1504. For example, user agent 1502 may send to service provider 1504 a request to access the service (arrow 1). If service provider 1504 determines there is no existing (i.e., previously authenticated) session with user agent 1502, service provider 1504 may be configured to redirect (arrow 2) the user agent 1502 to identity provider proxy 1508 (arrow 3), which in turn may redirect the user agent 1502 to identity provider 1506 (arrow 4) via a communication signed by identity provider proxy 1508 using a certificate associated with service provider proxy 1512. Identity provider 1506 may challenge the user agent 1502 for credentials, and upon successful login may provide to user agent 1502 for presentation to service provider proxy 1512 (arrow 5) a first (SAML or other) assertion, which service provider proxy 1512 may be configured to use to provide to user agent 1502 a second (SAML or other) assertion (arrow 6), signed by service provider proxy 1512 using a certificate associated with identity provider proxy 1508, to be presented to service provider 1504 (arrow 7) to gain access to the service (or other resource).
[0094] In various embodiments, identity provider-initiated authentication may be implemented by user agent 1502 being used to access and log in via identity provider 1506, prior to attempting to access the service associated with service provider 1504. Upon successful login, identity provider 1506 may provide via a graphical or other user interface presented at user agent 1502, e.g., a webpage, a list or other representation of one or more services the authenticated user may access. Selection of a service associated with service provider 1504 may result in the identity provider 1506 providing to user agent 1502 for presentation to service provider proxy 1512 a first (SAML or other) assertion, which service provider proxy 1512 may be configured to use to provide to user agent 1502 a second (SAML or other) assertion, signed by service provider proxy 1512 using a certificate associated with identity provider proxy 1508, to be presented to service provider 1504 to gain access to the service (or other resource).
[0095] In various embodiments, one or more certificates described above with reference to FIG. 15 may be distributed and/or stored using techniques disclosed herein.
[0096] In various embodiments, a Cloud Management Service (CMS) 1550 is provided to manage storage of data in the cloud. In various embodiments, the CMS may store both public and private keys for one or both of an identity provider (IdP) proxy and a service provider (SP) proxy. The proxies may reside in one or more security proxy servers. The identity provider proxy and/or service provider proxy key may be distributed to one or more deployed security proxy servers. The SP-proxy private key in various embodiments may be used to sign SAML authentication tokens.
[0097] In typical cloud management service systems, since the service provider (SP) may be configured to allow access based on a determination that a received SAML token is signed by the SP-proxy certificate, an adversary who steals this certificate may be able to log into any configured SP as any user from that organization (e.g. SalesForce® as a tenant admin).
[0098] Applying the techniques described herein to system 1500 advantageously limits damage done by a completely compromised security proxy server because after the security proxy server has been removed, the security proxy server is limited to access permitted by the most recent profile it is able to decrypt. For example, CMS is not able to add a new security proxy server to a profile without customer admin interaction. As another example, CMS is not able to introduce new LDP-proxy or SP-proxy certificates without customer admin approval. In some embodiments, CMS is prevented from introducing new IDP-proxy or SP-proxy certificates because the system is configured to prompt an administrator to configure the IDP/SP to use specific certificates separately from CMS. Thus, replacing these certificates on CMS will not grant an attacker access to the SP/IDP but merely break the overall configuration. In some embodiments, integrity protection is included within the system to prevent unauthorized modification of customer configurations.
[0099] The techniques described here improve a user experience and improve security. In one aspect, administrators are prompted for their password as infrequently as possible. For example, admins are prompted to enter their password only when logging in or when adding/removing a security proxy server to a profile. In some embodiments, the latter may be necessary because it may be necessary to recover the plaintext profile password using the administrator's password before encrypting it with the security proxy server's public key.
[0100] The techniques described here provide management and storage of data on a cloud and distribution of data from the cloud to another system that reads and makes use of the data. The techniques described here prevent a security breach of a cloud-based service. [0101] Although the foregoing embodiments have been described in some detail for purposes of clarity of understanding, the invention is not limited to the details provided. There are many alternative ways of implementing the invention. The disclosed embodiments are illustrative and not restrictive.

Claims

1. A method, comprising:
receiving a first secret data and a second secret data;
using the first secret data to decrypt a first encrypted data to generate a decrypted data;
generating a second encrypted data by using the second secret data to encrypt the decrypted data; and
providing the second encrypted data to a destination associated with the second secret data.
2. The method of claim 1 , further comprising:
receiving a request; and
mapping the request to the first secret data.
3. The method of claim 2, further comprising identifying, by a processor, the first encrypted data to retrieve based on the request.
4. The method of claim 1 , wherein the first secret data includes a password and the using the first secret data to decrypt includes recovering a public key from the first secret data.
5. The method of claim 1, wherein the second secret data includes a public key of a security proxy server and the provided second encrypted data is decryptable by a private key of the security proxy server.
6. The method of claim 1 , further comprising prior to the receipt of the first secret data and the second secret data:
receiving a storage request, wherein the storage request includes data to be stored and a third secret;
encrypting the data using the third secret;
writing the data to memory; and
discarding the third secret.
7. The method of claim 6, wherein the writing the data to memory includes storing the data to a cloud service such that the cloud service is unable to decrypt the data.
8. The method of claim 1, further comprising registering a security proxy server including: receiving login data including an administrator password, a security proxy password, and tenant information;
authenticating the security proxy based on the received login data;
receiving registration information including a security proxy public key; and storing the security proxy public key.
9. The method of claim 1 , further comprising creating a profile including:
receiving a request to create a profile;
retrieving an administrator public key;
generating a profile password;
associating the administrator public key and the profile password;
generating a profile key pair;
generating the profile; and
creating a file with the profile key pair protected with the generated profile password.
10. The method of claim 9, further comprising assigning a security proxy server to the profile including:
receiving a request to add a security proxy server to a profile;
recovering an administrator key with an administrator password;
decrypting a profile password using the administrator key;
encrypting the profile password with a security proxy public key; and
storing the encrypted profile password.
11. The method of claim 1 , further comprising removing a security proxy server, wherein the security proxy is removed without re-provisioning other security proxy servers.
12. The method of claim 1, further comprising removing a security proxy server including:
receiving a request to remove a security proxy from a profile;
recovering a profile password with an administrator password;
changing the profile password; and
disseminating the changed profile password to other administrators and security proxies.
13. A cloud management system, comprising:
a communications interface configured to:
receive a first secret data and a second secret data; and a processor configured to:
use the first secret data to decrypt a first encrypted data to generate a decrypted data;
generate a second encrypted data by using the second secret data to encrypt the decrypted data; and
provide the second encrypted data to a destination associated with the second secret data; and
a memory coupled to the processor and configured to provide the processor with instructions.
14. The cloud management system of claim 13, wherein the communications interface is further configured to:
receive a storage request, the storage request including data to be stored and a third secret; and
the processor is further configured to:
encrypt the data using the third secret;
write the data to memory; and
discard the third secret.
15. The cloud management system of claim 13, wherein the cloud management system provides access control and key management and distribution.
16. The cloud management system of claim 13, wherein the cloud management system services a plurality of security proxies and a security proxy server is addable or removable without re-provisioning each of the other security proxy servers.
17. The cloud management system of claim 13, wherein no private keys from the security proxy are stored in the cloud management system.
18. The cloud management system of claim 13, wherein the cloud management system: accommodates a plurality of tenants and respective data security domains; and provide only an entity with a key to decrypt certificate private keys access to a protected resource belonging to a tenant.
19. The cloud management system of claim 13, wherein the first secret data includes a password using which a public key is recoverable.
20. A computer program product, the computer program product being embodied in a tangible computer readable storage medium and comprising computer instructions for: receiving a first secret data and a second secret data;
using the first secret data to decrypt a first encrypted data to generate a decrypted data;
generating a second encrypted data by using the second secret data to encrypt the decrypted data; and
providing the second encrypted data to a destination associated with the second secret data.
PCT/US2017/017481 2016-02-10 2017-02-10 Securely storing and distributing sensitive data in a cloud-based application WO2017139652A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201780009511.1A CN108701094B (en) 2016-02-10 2017-02-10 Securely storing and distributing sensitive data in cloud-based applications
EP17750878.5A EP3398073B1 (en) 2016-02-10 2017-02-10 Securely storing and distributing sensitive data in a cloud-based application

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201662293437P 2016-02-10 2016-02-10
US62/293,437 2016-02-10

Publications (1)

Publication Number Publication Date
WO2017139652A1 true WO2017139652A1 (en) 2017-08-17

Family

ID=59498268

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2017/017481 WO2017139652A1 (en) 2016-02-10 2017-02-10 Securely storing and distributing sensitive data in a cloud-based application

Country Status (4)

Country Link
US (1) US10339339B2 (en)
EP (1) EP3398073B1 (en)
CN (1) CN108701094B (en)
WO (1) WO2017139652A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2021242379A1 (en) * 2020-05-28 2021-12-02 Microsoft Technology Licensing, Llc Cloud-based management service device registration using intermediate cloud storage

Families Citing this family (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10601782B2 (en) * 2016-04-01 2020-03-24 Egnyte, Inc. Systems and methods for proxying encryption key communications between a cloud storage system and a customer security module
US10356079B2 (en) * 2016-12-05 2019-07-16 Keeper Security, Inc. System and method for a single sign on connection in a zero-knowledge vault architecture
US10382293B2 (en) * 2017-05-22 2019-08-13 Citrix Systems, Inc. Scoped view of cloud control plane for development of new services
US10699023B1 (en) * 2017-11-20 2020-06-30 Amazon Technologies, Inc. Encryption profiles for encrypting user-submitted data
US11139985B2 (en) * 2018-12-04 2021-10-05 Journey.ai Receiving information through a zero-knowledge data management network
US12099997B1 (en) 2020-01-31 2024-09-24 Steven Mark Hoffberg Tokenized fungible liabilities
US11343148B2 (en) * 2020-03-09 2022-05-24 Microsoft Technology Licensing, Llc Secure management of devices
US20210377054A1 (en) * 2020-05-26 2021-12-02 Verizon Patent And Licensing Inc. Systems and methods for managing public key infrastructure certificates for components of a network
JP2023532297A (en) * 2020-06-29 2023-07-27 イルミナ インコーポレイテッド Temporary cloud provider credentials via secure discovery framework
CA3177385A1 (en) 2020-06-29 2022-01-06 Prabhu PALANISAMY Policy-based genomic data sharing for software-as-a-service tenants
US11223489B1 (en) 2021-02-23 2022-01-11 Garantir LLC Advanced security control implementation of proxied cryptographic keys
US11418329B1 (en) * 2021-05-28 2022-08-16 Garantir LLC Shared secret implementation of proxied cryptographic keys
US11218317B1 (en) 2021-05-28 2022-01-04 Garantir LLC Secure enclave implementation of proxied cryptographic keys
US12063166B1 (en) * 2022-03-30 2024-08-13 Amazon Technologies, Inc. Resource management for services
CN115242486B (en) * 2022-07-19 2024-04-19 阿里巴巴(中国)有限公司 Data processing method, device and computer readable storage medium
CN116366243A (en) * 2023-03-28 2023-06-30 加客云科技(河北)有限公司 Data transmission and encryption method and system for digital collaborative office

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20110296171A1 (en) * 2010-05-28 2011-12-01 Christina Fu Key recovery mechanism
US20120239942A1 (en) * 2009-12-07 2012-09-20 Nokia Corporation Preservation of User Data Privacy in a Network
US20130019103A1 (en) * 2008-01-24 2013-01-17 Read Matthew J System and method for generating and managing administrator passwords
US20130191905A1 (en) * 1999-06-01 2013-07-25 Facebook, Inc. Secure data exchange between data processing systems
US20130305392A1 (en) * 2012-05-08 2013-11-14 Hagai Bar-El System, device, and method of secure entry and handling of passwords
US20150222637A1 (en) * 2012-08-24 2015-08-06 Vmware, Inc. Secure inter-process communication and virtual workspaces on a mobile device

Family Cites Families (32)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5604801A (en) * 1995-02-03 1997-02-18 International Business Machines Corporation Public key data communications system under control of a portable security device
US20060005237A1 (en) * 2003-01-30 2006-01-05 Hiroshi Kobata Securing computer network communication using a proxy server
US8230455B2 (en) * 2007-07-11 2012-07-24 International Business Machines Corporation Method and system for enforcing password policy for an external bind operation in a distributed directory
US20100199095A1 (en) * 2009-01-30 2010-08-05 Texas Instruments Inc. Password-Authenticated Association Based on Public Key Scrambling
US20100250442A1 (en) * 2009-03-30 2010-09-30 Appsware Wireless, Llc Method and system for securing a payment transaction with a trusted code base
US20110113240A1 (en) * 2009-11-10 2011-05-12 Christina Fu Certificate renewal using enrollment profile framework
US9342661B2 (en) * 2010-03-02 2016-05-17 Time Warner Cable Enterprises Llc Apparatus and methods for rights-managed content and data delivery
US8862895B2 (en) * 2010-04-27 2014-10-14 Fuji Xerox Co., Ltd. Systems and methods for communication, storage, retrieval, and computation of simple statistics and logical operations on encrypted data
US8788811B2 (en) * 2010-05-28 2014-07-22 Red Hat, Inc. Server-side key generation for non-token clients
US9137017B2 (en) * 2010-05-28 2015-09-15 Red Hat, Inc. Key recovery mechanism
US20130114597A1 (en) * 2010-07-20 2013-05-09 Sharp Kabushiki Kaisha Proxy server, relay method, communication system, relay control program, and recording medium
US9306737B2 (en) * 2011-05-18 2016-04-05 Citrix Systems, Inc. Systems and methods for secure handling of data
US8732462B2 (en) * 2011-07-07 2014-05-20 Ziptr, Inc. Methods and apparatus for secure data sharing
US8788843B2 (en) * 2011-10-28 2014-07-22 LogMeln, Inc. Storing user data in a service provider cloud without exposing user-specific secrets to the service provider
US20130191629A1 (en) * 2012-01-19 2013-07-25 Laconic Security, Llc Secure group-based data storage in the cloud
US20160117673A1 (en) * 2012-02-24 2016-04-28 Cryptomathic Limited System and method for secured transactions using mobile devices
US9252942B2 (en) * 2012-04-17 2016-02-02 Futurewei Technologies, Inc. Method and system for secure multiparty cloud computation
CN102655508B (en) * 2012-04-19 2015-03-04 华中科技大学 Method for protecting privacy data of users in cloud environment
US8837739B1 (en) * 2012-05-13 2014-09-16 Identillect Technologies, Inc. Encryption messaging system
WO2013174437A1 (en) * 2012-05-24 2013-11-28 Telefonaktiebolaget L M Ericsson (Publ) Enhanced secure virtual machine provisioning
US20140052985A1 (en) * 2012-08-15 2014-02-20 Agency For Science, Technology And Research Methods for providing requested data from a storage device to a data consumer and storage devices
US8769274B2 (en) * 2012-09-05 2014-07-01 International Business Machines Corporation Backup and restore in a secure appliance with integrity and confidentiality
WO2014130038A1 (en) * 2013-02-21 2014-08-28 Personal, Inc. Security systems and methods
US9832205B2 (en) * 2013-03-15 2017-11-28 International Business Machines Corporation Cross provider security management functionality within a cloud service brokerage platform
US9736027B2 (en) * 2013-11-04 2017-08-15 Cisco Technology, Inc. Centralized enterprise image upgrades for distributed campus networks
US9390281B2 (en) * 2013-12-30 2016-07-12 Open Invention Network, Llc Protecting data in insecure cloud storage
CA2949847A1 (en) * 2014-03-10 2015-09-17 Sengi Corporation System and method for secure deposit and recovery of secret data
CN104038341B (en) * 2014-06-20 2017-04-05 北京航空航天大学 A kind of cross-system of identity-based acts on behalf of re-encryption method
JP2016062139A (en) * 2014-09-16 2016-04-25 株式会社リコー Output system, output method, output data storage device, output data transfer device and program
US20160285832A1 (en) * 2015-03-23 2016-09-29 Petar D. Petrov Secure consumption of platform services by applications
US9842062B2 (en) * 2015-05-31 2017-12-12 Apple Inc. Backup accessible by subset of related devices
US20170178127A1 (en) * 2015-12-18 2017-06-22 International Business Machines Corporation Proxy system mediated legacy transactions using multi-tenant transaction database

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20130191905A1 (en) * 1999-06-01 2013-07-25 Facebook, Inc. Secure data exchange between data processing systems
US20130019103A1 (en) * 2008-01-24 2013-01-17 Read Matthew J System and method for generating and managing administrator passwords
US20120239942A1 (en) * 2009-12-07 2012-09-20 Nokia Corporation Preservation of User Data Privacy in a Network
US20110296171A1 (en) * 2010-05-28 2011-12-01 Christina Fu Key recovery mechanism
US20130305392A1 (en) * 2012-05-08 2013-11-14 Hagai Bar-El System, device, and method of secure entry and handling of passwords
US20150222637A1 (en) * 2012-08-24 2015-08-06 Vmware, Inc. Secure inter-process communication and virtual workspaces on a mobile device

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of EP3398073A4 *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2021242379A1 (en) * 2020-05-28 2021-12-02 Microsoft Technology Licensing, Llc Cloud-based management service device registration using intermediate cloud storage
US11438163B2 (en) 2020-05-28 2022-09-06 Microsoft Technology Licensing, Llc Cloud-based management service device registration using intermediate cloud storage

Also Published As

Publication number Publication date
EP3398073A4 (en) 2019-08-07
EP3398073B1 (en) 2023-03-29
CN108701094A (en) 2018-10-23
CN108701094B (en) 2023-03-21
EP3398073A1 (en) 2018-11-07
US20170228559A1 (en) 2017-08-10
US10339339B2 (en) 2019-07-02

Similar Documents

Publication Publication Date Title
US10339339B2 (en) Securely storing and distributing sensitive data in a cloud-based application
US9686080B2 (en) System and method to provide secure credential
US8856530B2 (en) Data storage incorporating cryptographically enhanced data protection
US10193697B1 (en) Systems and methods for providing authentication to a plurality of devices
US8059818B2 (en) Accessing protected data on network storage from multiple devices
US20190356661A1 (en) Proxy manager using replica authentication information
KR102318637B1 (en) Methods of data transmission, methods of controlling the use of data, and cryptographic devices
EP2890084B1 (en) A data securing system and method
US9332002B1 (en) Authenticating and authorizing a user by way of a digital certificate
US20100082989A1 (en) Storing Composite Services on Untrusted Hosts
Kumar et al. A survey on secure cloud: security and privacy in cloud computing
US20140112470A1 (en) Method and system for key generation, backup, and migration based on trusted computing
US20100095118A1 (en) Cryptographic key management system facilitating secure access of data portions to corresponding groups of users
US20220286446A1 (en) Authentication credential with embedded authentication information
US20230231850A1 (en) Integration of Third-Party Encryption Key Managers with Cloud Services
US10740478B2 (en) Performing an operation on a data storage
US20220086142A1 (en) Detecting and preventing unauthorized credential change
EP3886355B1 (en) Decentralized management of data access and verification using data management hub
Basu et al. Strengthening Authentication within OpenStack Cloud Computing System through Federation with ADDS System
US20240012933A1 (en) Integration of identity access management infrastructure with zero-knowledge services
US11012245B1 (en) Decentralized management of data access and verification using data management hub
US10931454B1 (en) Decentralized management of data access and verification using data management hub
US12052232B2 (en) Multiple relying parties in a single-sign-on environment
US20240346156A1 (en) Methods and systems of encoding an arbitrary access policy into data encryption
US20240121083A1 (en) Secure restoration of private key

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 17750878

Country of ref document: EP

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: 2017750878

Country of ref document: EP

ENP Entry into the national phase

Ref document number: 2017750878

Country of ref document: EP

Effective date: 20180803

NENP Non-entry into the national phase

Ref country code: DE