| 摘要 |
<p>One embodiment of the present invention is a method for file encryption in a server, the method (200) comprising the steps of accessing a server by logging in to a server via a predetermined programming language (202), selecting at least one file for encryption upon successful login to a server (204), initializing encryption process to generate an encryption key, SK (206), encrypting at least one file using the encryption key, SK to obtain X (208), storing X in a database of the server (210), encrypting the encryption key, SK using a user public key to obtain Y (212) and storing Y in the database of the server (214). Another embodiment of the present invention is a method for file decryption in a server, the method (300) comprising the steps of accessing a server by logging in to a server via a predetermined programming language (302), selecting the encrypted file, X from a database of the server for decryption (304), accessing the encrypted file, Y from the database of the server (306), forwarding the encrypted file, Y from the database of the server for decryption (308), decrypting the encrypted file, Y using user private key to obtain an encryption key, SK (310), encrypting the encryption key, SK using server public key extracted from a server certification to obtain an encrypted file, Z (312), forwarding the encrypted file, Z to the server (314), decrypting the encrypted file, Z using server private key to obtain encryption key, SK (316) and decrypting encrypted file, X using encryption key, SK to obtain an original document (318). Another embodiment of the present invention is a system for file encryption and decryption in a server, the system (400) comprising a plurality of tokens (402), a client system (404), a server system (406) and a database (408).</p> |
