| 发明名称 |
METHOD, APPARATUS, AND PROGRAM PRODUCT FOR ENABLING ACCESS TO FLEXIBLY REDACTED CONTENT |
| 摘要 |
A capability key is generated that provides access to sensitive information within a selectively encrypted data unit created from an unencrypted data unit. A user specifies access rights as a monotone boolean relationship between a selection of a list of attributes related to the unencrypted data unit. This relationship is used to compute a key descriptor. Next one or more shares of a master secret is generated responsive to the monotone boolean relationship and a random number. Next a unique capability key is computed from one or more cryptosystem parameters, the one or more shares and the random number. The unique capability key and the key descriptor together enable decryption of sensitive information within a selectively encrypted data unit created from an unencrypted data unit. Finally, the unique capability key and the key descriptor are provided to allow decryption of sensitive information within the selectively encrypted data unit.
|
| 申请公布号 |
US2008016341(A1) |
申请公布日期 |
2008.01.17 |
| 申请号 |
US20060611845 |
申请日期 |
2006.12.15 |
| 申请人 |
PALO ALTO RESEARCH CENTER INCORPORATED. |
发明人 |
STADDON JESSICA N.;GOLLE PHILIPPE JEAN-PAUL |
| 分类号 |
H04L9/32;G06F7/04;G06F11/30;G06F12/14;G06F17/30;G06K9/00;H03M1/68;H04K1/00;H04L9/00;H04N7/16 |
主分类号 |
H04L9/32 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
