| 发明名称 |
HANDLING KEY ROTATION PROBLEMS |
| 摘要 |
Example embodiments include centralized systems for managing cryptographic keys and trust relationships among systems. Embodiments may include a centralized key store and a centralized policy store. Key sets comprising public/private keys may be stored in or identified by key objects. Key objects within the key store may be organized into trust sets and policies may apply at any level within the key store. Policies may identify when to rotate key sets. When rotating key sets, a new public key and a new private key may be generated. The new public/private keys may be installed at locations where the old public/private keys reside. As the new public/private keys are installed, they may be tested. If problems with the new public/private keys occur, the new public/private keys may be rolled back to the old public/private keys for locations experiencing problems. Remedial action may then be taken to resolve the problems. |
| 申请公布号 |
US2015086009(A1) |
申请公布日期 |
2015.03.26 |
| 申请号 |
US201314034091 |
申请日期 |
2013.09.23 |
| 申请人 |
Venafi, Inc. |
发明人 |
Harjula Tero Petteri;McCartney Breon Malachy;Saura Asko Juha |
| 分类号 |
H04L9/08 |
主分类号 |
H04L9/08 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method comprising:
generating a new key pair having a new public key and a new private key; installing the new public key at all locations where an old public key resides; installing the new private key at all locations where an old private key resides; testing the new key pair to identify whether the keys function properly; and upon detecting the keys are not functioning properly, performing key rollback by reinstalling the old private key. |
| 地址 |
Salt Lake City UT US |
