-
公开(公告)号:US10152604B1
公开(公告)日:2018-12-11
申请号:US15813282
申请日:2017-11-15
摘要: An Attestation Identity Key pair (AIK pair) is created from a hardware identifier of a hardware machine and a geographical location. the AIK pair includes a private AIK and a public AIK. The public AIK and the geographical location are stored in a repository. the public AIK is matched with a key used to sign a data request. A geographical restriction policy corresponding to the geographical location associated with the public AIK is executed. When the geographical restriction policy determines that a type of the data request corresponds to an authorized request type from the geographical location, a service is instructed to process the data request.
-
公开(公告)号:US10931453B2
公开(公告)日:2021-02-23
申请号:US15911332
申请日:2018-03-05
发明人: Fernando J. Diaz , Shawn P. Mullen , Michael Perng , Karen Mariela Siles , Elvin Dalipe Tubillara
摘要: Authentication of tokens and associated are used to provide a just-in-time key synchronization for user access to a service in a cloud computing environment which includes a plurality of availability zones with an identity service, a storage system, and a keystore. The encryption keys are distributed by the storage system based on a user access request containing a token with a payload and a current user cryptographic key. The token is then sent to the keystore to authenticate the user. The keystore authenticates the user and sends the token with the current cryptographic key to the storage system. The storage system receives the token with the current cryptographic key and grants access to the user for the service.
-
公开(公告)号:US20190273613A1
公开(公告)日:2019-09-05
申请号:US15911332
申请日:2018-03-05
发明人: Fernando J. Diaz , Shawn P. Mullen , Michael Perng , Karen Mariela Siles , Elvin Dalipe Tubillara
摘要: Authentication of tokens and associated are used to provide a just-in-time key synchronization for user access to a service in a cloud computing environment.
-
-
搜索结果
3 条记录 (耗时 0.013 秒)
