| 发明名称 |
Secure management of keys using control vectors with multi-path checking. |
| 摘要 |
<p>An apparatus and method are disclosed for validating that a cryptographic function requested to be performed with a cryptographic key has been authorized by the originator of the key. The invention is used in a data processing system which processes cryptographic service requests for the performance of cryptographic functions with cryptographic keys which are associated with control vectors defining the functions which each key is allowed by its originator to perform. The invention includes a cryptographic facility (4) characterized by a secure boundary through which passes an I/O path (8) for receiving a cryptographic key and its associated control vector (CVa, CVb,...CVm), and for providing a response thereto, there being included within the boundary a cryptographic processing means coupled to the I/O path (8) and a master key storage coupled to the processing means, for providing a secure location to execute a cryptographic function with the cryptographic key.</p> |
| 申请公布号 |
EP0396894(A2) |
申请公布日期 |
1990.11.14 |
| 申请号 |
EP19900105905 |
申请日期 |
1990.03.28 |
| 申请人 |
INTERNATIONAL BUSINESS MACHINES CORPORATION |
发明人 |
MATYAS, STEPHEN M.;ABRAHAM, DENNIS G.;JOHNSON, DONALD B.;KARNE, RAMESH K.;LE, AN V.;MCCORMACK, PATRICK J.;PRYMAK, ROSTISLAW;WILKINS, JOHN D. |
| 分类号 |
G09C1/00;G06F9/30;G07B17/00;H04L9/08 |
主分类号 |
G09C1/00 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
