摘要 |
A key management method according to embodiments of the present invention may comprise the steps of: encrypting a service key used by an instance of a first user of a cloud service, using a master key; generating two or more key pieces for re-generating the master key; distributing and storing the key pieces in two or more host servers included in a host group for providing the cloud service; receiving a request for provision of the service key from the instance of the first user; receiving the key pieces from the two or more host servers and re-generating the master key on the basis of the received key pieces; and decrypting the encrypted service key using the re-generated master key. |