摘要 |
A secure distributed cryptographic service system 101 comprises a cryptographic service server 3 coupled to a plurality of cryptographic processing nodes 5-1 to 5-N over a network 7. The server receives request data from a client 11a, 11b including payload data to be encrypted or decrypted. The server determines a sequence of at least some of the nodes for performing the encryption/decryption and generates sequence data identifying the nodes in the sequence. The first node receives the payload data and the sequence data, performs a cryptographic function on the payload data (e.g. hash) to generate output data, modifies the sequence data to remove itself from the sequence, and transmits the output data and modified sequence data as request data to a subsequent node in the sequence. This process is repeated until the last node in the sequence is reached and the encryption/decryption request completed. |