摘要 |
A method is provided by which private data are stored in a repository so that the information is inaccessible even to the owner of the repository. The repository facilitates providing access to the information to arbitrary users. The data are protected by being stored in encrypted form, the encryption taking place on the user's system using public key encryption. The data is shared in one of two ways: 1) on each request, by the owner's system decrypting the document and re-encrypting it using the requester's public key; or 2) over a period of time, by sharing a group private key with the requester by encrypting the group private key using the requester's public key. The repository facilitates both methods so that no direct communication between the owner's system and the users' systems is required.
|