-
公开(公告)号:US09813389B2
公开(公告)日:2017-11-07
申请号:US15217674
申请日:2016-07-22
Applicant: Apple Inc.
Inventor: Conrad Sauerwald , Vrajesh Rajesh Bhavsar , Kenneth Buffalo McNeil , Thomas Brogan Duffy, Jr. , Michael Lambertus Hubertus Brouwer , Matthew John Byom , Mitchell David Adler , Eric Brandon Tamura
CPC classification number: H04L63/0428 , G06F11/1458 , G06F11/1464 , H04L9/0637 , H04L9/0822 , H04L9/0825 , H04L9/0863 , H04L9/0894 , H04L63/0435 , H04L63/061 , H04L2463/062 , H04W12/04 , H04W12/08
Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted file key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.
-
公开(公告)号:US10348497B2
公开(公告)日:2019-07-09
申请号:US15884200
申请日:2018-01-30
Applicant: Apple Inc.
Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for encryption and key management. The method includes encrypting each file on a computing device with a unique file encryption key, encrypting each unique file encryption key with a corresponding class encryption key, and encrypting each class encryption key with an additional encryption key. Further disclosed are systems, methods, and non-transitory computer-readable storage media for encrypting a credential key chain. The method includes encrypting each credential on a computing device with a unique credential encryption key, encrypting each unique credential encryption key with a corresponding credential class encryption key, and encrypting each class encryption key with an additional encryption key. Additionally, a method of generating a cryptographic key based on a user-entered password and a device-specific identifier secret utilizing an encryption algorithm is disclosed.
-
Patent Agency Ranking
公开(公告)号:US09912476B2
公开(公告)日:2018-03-06
申请号:US15010858
申请日:2016-01-29
Applicant: Apple Inc.
CPC classification number: H04L9/0863 , G06F21/62 , H04L9/0643 , H04L9/0838 , H04L9/0861 , H04L9/0866 , H04L9/0869 , H04L9/0894 , H04L9/14 , H04L9/30 , H04L9/3231 , H04L2209/80
Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for encryption and key management. The method includes encrypting each file on a computing device with a unique file encryption key, encrypting each unique file encryption key with a corresponding class encryption key, and encrypting each class encryption key with an additional encryption key. Further disclosed are systems, methods, and non-transitory computer-readable storage media for encrypting a credential key chain. The method includes encrypting each credential on a computing device with a unique credential encryption key, encrypting each unique credential encryption key with a corresponding credential class encryption key, and encrypting each class encryption key with an additional encryption key. Additionally, a method of generating a cryptographic key based on a user-entered password and a device-specific identifier secret utilizing an encryption algorithm is disclosed.
-
公开(公告)号:US20170019383A1
公开(公告)日:2017-01-19
申请号:US15217674
申请日:2016-07-22
Applicant: Apple Inc.
Inventor: Conrad Sauderwald , Vrajesh Rajesh Bhavsar , Kenneth Buffalo McNeil , Thomas Brogan Duffy , Michael Lambertus Hubertus Brouwer , Michael John Byom , Mitchell David Adler , Eric Brandon Tamura
CPC classification number: H04L63/0428 , G06F11/1458 , G06F11/1464 , H04L9/0637 , H04L9/0822 , H04L9/0825 , H04L9/0863 , H04L9/0894 , H04L63/0435 , H04L63/061 , H04L2463/062 , H04W12/04 , H04W12/08
Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted tile key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.
Abstract translation: 这里公开的是用于在主设备和备用设备上利用密码密钥管理的无线数据保护的系统,方法和非暂时的计算机可读存储介质。 系统使用文件密钥加密文件,并对文件密钥进行两次加密,从而产生两个加密的文件密钥。 该系统对每个文件密钥进行不同的加密,并将第一个文件密钥存储在主设备上,并将加密的文件密钥之一加到备份设备上以进行存储。 在备份设备上,系统将加密的瓦片密钥与用户密码保护的一组备份密钥相关联。 在一个实施例中,系统基于文件密钥生成用于加密操作的初始化向量。 在另一个实施例中,系统在用户密码改变期间管理备份设备上的加密密钥。
-
公开(公告)号:US09401898B2
公开(公告)日:2016-07-26
申请号:US14874360
申请日:2015-10-02
Applicant: Apple Inc.
Inventor: Conrad Sauerwald , Vrajesh Rajesh Bhavsar , Kenneth Buffalo McNeil , Thomas Brogan Duffy , Michael Lambertus Hubertus Brouwer , Matthew John Byom , Mitchell David Adler , Eric Brandon Tamura
CPC classification number: H04L63/0428 , G06F11/1458 , G06F11/1464 , H04L9/0637 , H04L9/0822 , H04L9/0825 , H04L9/0863 , H04L9/0894 , H04L63/0435 , H04L63/061 , H04L2463/062 , H04W12/04 , H04W12/08
Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted file key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.
Abstract translation: 这里公开的是用于在主设备和备用设备上利用密码密钥管理的无线数据保护的系统,方法和非暂时的计算机可读存储介质。 系统使用文件密钥加密文件,并对文件密钥进行两次加密,从而产生两个加密的文件密钥。 该系统对每个文件密钥进行不同的加密,并将第一个文件密钥存储在主设备上,并将加密的文件密钥之一加密到备份设备进行存储。 在备份设备上,系统将加密的文件密钥与受用户密码保护的一组备份密钥相关联。 在一个实施例中,系统基于文件密钥生成用于加密操作的初始化向量。 在另一个实施例中,系统在用户密码改变期间管理备份设备上的加密密钥。
-
6.发明授权System and method for content protection based on a combination of a user pin and a device specific identifier 有权基于用户引脚和设备特定标识符的组合的用于内容保护的系统和方法公开(公告)号:US09288047B2
公开(公告)日:2016-03-15
申请号:US14299375
申请日:2014-06-09
Applicant: Apple Inc.
CPC classification number: H04L9/0863 , G06F21/62 , H04L9/0643 , H04L9/0838 , H04L9/0861 , H04L9/0866 , H04L9/0869 , H04L9/0894 , H04L9/14 , H04L9/30 , H04L9/3231 , H04L2209/80
Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for encryption and key management. The method includes encrypting each file on a computing device with a unique file encryption key, encrypting each unique file encryption key with a corresponding class encryption key, and encrypting each class encryption key with an additional encryption key. Further disclosed are systems, methods, and non-transitory computer-readable storage media for encrypting a credential key chain. The method includes encrypting each credential on a computing device with a unique credential encryption key, encrypting each unique credential encryption key with a corresponding credential class encryption key, and encrypting each class encryption key with an additional encryption key. Additionally, a method of generating a cryptographic key based on a user-entered password and a device-specific identifier secret utilizing an encryption algorithm is disclosed.
Abstract translation: 本文公开了用于加密和密钥管理的系统,方法和非暂时的计算机可读存储介质。 该方法包括使用唯一文件加密密钥加密计算设备上的每个文件,用相应的类加密密钥加密每个唯一文件加密密钥,并用附加的加密密钥加密每个类加密密钥。 还公开了用于加密证书密钥链的系统,方法和非暂时的计算机可读存储介质。 该方法包括使用唯一凭证加密密钥对计算设备上的每个凭证进行加密,使用相应的凭证类加密密钥对每个唯一凭证加密密钥进行加密,以及用附加加密密钥加密每个类加密密钥。 此外,公开了一种基于用户输入密码生成密码密钥的方法和利用加密算法的设备特定标识符秘密。
-
公开(公告)号:US20160036791A1
公开(公告)日:2016-02-04
申请号:US14874360
申请日:2015-10-02
Applicant: Apple Inc.
Inventor: Conrad Sauerwald , Vrajesh Rajesh Bhavsar , Kenneth Buffalo McNeil , Thomas Brogan Duffy , Michael Lambertus Hubertus Brouwer , Matthew John Byom , Mitchell David Adler , Eric Brandon Tamura
CPC classification number: H04L63/0428 , G06F11/1458 , G06F11/1464 , H04L9/0637 , H04L9/0822 , H04L9/0825 , H04L9/0863 , H04L9/0894 , H04L63/0435 , H04L63/061 , H04L2463/062 , H04W12/04 , H04W12/08
Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted file key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.
-
-
-
-
-
-
Search Results
7
records
(took 0.014 seconds)
