发明名称 |
SERVER SYSTEMS FOR DISTRIBUTED CRYPTOGRAPHIC PROTOCOLS |
摘要 |
A server system for implementing a distributed cryptographic protocol includes a machine management server which comprises a current virtual machine configured to implement the protocol using a set of communication keys and state information for the protocol. The system further includes a memory and a refresh server. The system is configured, for each of successive new time periods in operation of the protocol, to perform a refresh operation wherein: the refresh server retrieves the state information from the memory, generates a new set of communication keys, and sends the state information and new set of keys to the machine management server; the machine management server configures a new virtual machine for implementing the protocol, whereby the new virtual machine receives the new set of keys and state information sent by the refresh server; and the new virtual machine assumes operation as the current virtual machine for the new time period and stores state information for that time period in the memory. |
申请公布号 |
US2017126412(A1) |
申请公布日期 |
2017.05.04 |
申请号 |
US201514928813 |
申请日期 |
2015.10.30 |
申请人 |
International Business Machines Corporation |
发明人 |
Camenisch Jan L.;Korondi Mark;Kovacs Daniel;Osborne Michael C. |
分类号 |
H04L9/32;G06F9/455;H04L9/30;H04L9/08;H04L9/14 |
主分类号 |
H04L9/32 |
代理机构 |
|
代理人 |
|
主权项 |
1. A server system for operation as one of multiple such server systems connectable via a network to implement a distributed cryptographic protocol, the server system comprising:
a machine management server, configured to provide a plurality of virtual machines, including a current virtual machine which is adapted to implement said protocol using a set of communication keys, for communications with other said server systems via the network, and state information for the protocol; a memory, operatively associated with the machine management server, for storing said state information; and a refresh server configured for secure communications with the machine management server; wherein the server system is configured, for each of successive new time periods in operation of the protocol, to perform a refresh operation in which: the refresh server retrieves said state information from the memory, generates a new set of communication keys, and sends the state information and new set of keys to the machine management server; the machine management server configures a new virtual machine for implementing the protocol, whereby the new virtual machine receives the new set of keys and state information sent by the refresh server; and the new virtual machine assumes operation as said current virtual machine for the new time period and stores state information for that time period in the memory. |
地址 |
Armonk NY US |