| 摘要 |
Systems and methods are provided in which external key devices are used for sealing and unsealing data-gathering devices without Internet, wherein the data-gathering devices invalidate the external key devices upon completing data collection in order to seal removable storage. Further, a sealed removable storage is transported to same location of a key server, where the key server uses a multi-factor sealing routine to unlock the sealed removable storage. The routine seals and unseals uses multiple factors including a location of the key server, hardware attributes of the removable storage, hardware attributes of the external key devices, and a private key of the key server. The data-gathering device may be used to support workers collecting data in disconnected parts in the world that are without Internet. The workers may collect data by using mobile devices to transfer data to a shared data-gathering device. |
| 主权项 |
1. A mobile data protection method for extracting data at a designated location, wherein the location is a pseudorandom secret that is not stored in mobile devices containing the data, the pseudorandom secret has at least 112 bits of security, and the data cannot be extracted at other locations, the method comprising:
generating an encryption key by using a routine, wherein the routine takes a geographic location and a hardware attribute as input parameters; further, providing the same input parameters to the routine always generates the same encryption key; generating a survey key by providing a geographic location and a hardware attribute to a key server, wherein the hardware attribute uniquely identifies a mobile device; deleting the geographic location from the mobile device to prevent obtaining the geographic location by obtaining access to the mobile device; connecting the mobile device to the key server, wherein the key server transfers the survey key to the mobile device; deleting the survey key from the key server to prevent obtaining the survey key by obtaining access to the key server; encrypting data on the mobile device by using a survey key, wherein the encrypting comprises:
i. generating a first key by using the geographic location input together with a first key server password as inputs to a cryptographic hash algorithm including SHA-1;ii. providing a second key server password to obtain a key server private key of at least 112 bits of security;iii. obtaining a survey key by using the private key to digitally sign the first key, wherein the digital signing uses a digital signature algorithm including DSA;iv. encrypting data to obtain a cipher by using a symmetric algorithm including AES-256 in CBC mode, wherein the hardware attribute is used as an IV together with the first key for the encryption; deleting the survey key from the mobile device at the end of the data collection; relocating the key server to an extraction point to obtain a real-time reading of geographic location of the extraction point; relocating the mobile device to the extraction point to provide the hardware attribute to the key server, wherein the key server provides the real-time reading and the hardware attribute to the routine to generate an extraction key; and decrypting data on the mobile device by using an extraction key, wherein the decrypting comprises:
i. generating the extraction key by using the geographic location input together with the first key server password as inputs to a cryptographic hash algorithm including SHA-1; andii. decrypting the cipher by using a symmetric algorithm including AES-256 in CBC mode, wherein the hardware attribute is used as an IV together with the extraction key for the decryption. |
