| 发明名称 | Cryptographic key management | ||
| 摘要 | Cryptographic key management techniques are described. In one or more implementations, an access control rule is read that includes a Boolean expression having a plurality of atoms. The cryptographic keys that corresponds each of the plurality of atoms in the access control rule are requested. One or more cryptographic operations are then performed on data using one or more of the cryptographic keys. | ||
| 申请公布号 | US9058497(B2) | 申请公布日期 | 2015.06.16 |
| 申请号 | US201012978266 | 申请日期 | 2010.12.23 |
| 申请人 | Microsoft Technology Licensing, LLC | 发明人 | Bharadwaj Vijay G.;Ferguson Niels T;Ellison Carl M.;Nyström Magnus Bo Gustaf;Zhou Dayi;Issoupov Denis;Ureche Octavian T.;Novotney Peter J.;Ilac Cristian M. |
| 分类号 | G06F21/00;G06F21/60;H04L9/08 | 主分类号 | G06F21/00 |
| 代理机构 | Merchant & Gould P.C. | 代理人 | Merchant & Gould P.C. |
| 主权项 | 1. A method implemented by one or more computing devices of a principal, the method comprising: reading key identifiers of an access control rule embedded with encrypted data; forming a request that includes the key identifiers and describes one or more attributes of the principal that requests access to the data; receiving a response to the request that includes a set of decryption keys that are authorized for use by the principal based on the described one or more attributes; and comparing the set of decryption keys, received in the response, to the access control rule to determine whether a collection of the decryption keys has been obtained to decrypt the encrypted data. | ||
| 地址 | Redmond WA US | ||