| 发明名称 | Encrypting globally unique identifiers at communication boundaries | ||
| 摘要 | Systems, methods, and computer-readable storage media for encrypting communications containing or referencing globally unique identifiers to prevent unauthorized access to content item data, such as through spoofing or ancillary information leakage. An example system configured to practice the method identifies a communication, between a storage environment and a client device, associated with a globally unique identifier for a content item stored in at least one of the storage environment and the client device. The content item can be addressable via a globally unique identifier. Prior to transmitting the communication, the system can encrypt a portion of the communication containing the globally unique identifier using an encryption key based on a client-specific key and a secret version-specific key to yield an encrypted communication, and transmit the encrypted communication to the client device. | ||
| 申请公布号 | US8930698(B2) | 申请公布日期 | 2015.01.06 |
| 申请号 | US201313797224 | 申请日期 | 2013.03.12 |
| 申请人 | Dropbox, Inc. | 发明人 | Hunter Rian |
| 分类号 | H04L29/06;H04L9/32;H04L29/08 | 主分类号 | H04L29/06 |
| 代理机构 | Novak Druce Connolly Bove + Quigg LLP | 代理人 | Novak Druce Connolly Bove + Quigg LLP |
| 主权项 | 1. A system comprising: a multi-user network-based content item management environment storing content items addressable by globally unique identifiers unique within the content item management environment, wherein the globally unique identifiers are associated, in an identifier database, with the content item, a storage location, and an authorized user having access to the content item, wherein copies of content items are maintained in at least one client device; a processor; and a computer-readable storage medium having stored therein processor-executable instructions for causing the processor to: identify a communication between the content item management environment and a client device, associated with a globally unique identifier for a content item stored in at least one of the content item management environment and the client device;prior to transmitting the communication, encrypting a portion of the communication containing the globally unique identifier using an encryption key based on a client-specific key and a secret version-specific key to yield an encrypted communication; andtransmitting the encrypted communication to the client device. | ||
| 地址 | San Francisco CA US | ||