Patent
Key management using trusted platform modules
Tolga Acar,Brian A. Lamacchia,Henry Nelson Jerez Morales,Lan Duy Nguyen,David Robinson,Talha Bin Tariq +5 more
- 30 Dec 2010
43
TL;DR: In this article, the authors describe techniques for distributed key management (DKM) in cooperation with Trusted Platform Modules (TPMs) and show that TPMs can be used to determine the set of trusted nodes to which TPM-encrypted secret keys can be distributed.
read more
Abstract: Described herein are techniques for distributed key management (DKM) in cooperation with Trusted Platform Modules (TPMs). The use of TPMs strengthens the storage and processing security surrounding management of distributed keys. DKM-managed secret keys are not persistently stored in clear form. In effect, the TPMs of participating DKM nodes provide security for DKM keys, and a DKM key, once decrypted with a TPM, is available to be used from memory for ordinary cryptographic operations to encrypt and decrypt user data. TPM public keys can be used to determine the set of trusted nodes to which TPM-encrypted secret keys can be distributed.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Patent
Automated access, key, certificate, and credential management
Tatu Ylonen
- 21 Dec 2012
TL;DR: In this article, the authors provide means for managing automated access to computers, e.g., using SSH user keys and other kinds of trust relationships, such as certificates, Kerberos credentials, and cryptographic keys.
219
Patent
Trusted data processing in the public cloud
Vinay Phegade,Nilesh Jain,Jesse Walker +2 more
- 14 Mar 2013
TL;DR: In this article, the authors describe a system and method for trusted data processing in the public cloud, which includes a cloud server including a trusted execution environment, the cloud server one of a plurality of cloud servers, a cloud storage device coupled to the Cloud server, and a gateway server configured to provide a cryptographic key to the key server module via the secure communication channel.
44
Patent
User key management for the Secure Shell (SSH)
Tatu Ylonen
- 21 Dec 2012
TL;DR: In this paper, a management system for public key authentication using the SSH in large SSH deployments is presented, which automatically discovers SSH identity keys and authorized keys, analyzes authorized connections between user accounts and automatically manages the authorized connections and the key pairs used for authentication.
40
Patent
Role-based distributed key management
Tolga Acar,Henry Jerez,Lan Duy Nguyen,Thomas Roeder +3 more
- 03 Apr 2015
TL;DR: Role-based distributed key management (DKM) replication is described in this article, where a server node receives a request from a requester node to perform a DKM create or update function.
36
Patent
Software delivery models
Vikas Aditya
- 24 Jul 2012
TL;DR: In this article, the authors describe software delivery systems (and methods) where a server is provided that operates to provision software on a customer's local machine, in response to a software purchase from an end user (customer), is configured to install the software on the customer's machine, encrypt the software and provision encryption keys to grant the customer access to the software.
12
References
TrustVisor: Efficient TCB Reduction and Attestation
Jonathan M. McCune,Yanlin Li,Ning Qu,Zongwei Zhou,Anupam Datta,Virgil D. Gligor,Adrian Perrig +6 more
- 16 May 2010
TL;DR: TrustVisor is presented, a special-purpose hypervisor that provides code integrity as well as data integrity and secrecy for selected portions of an application that has a very small code base that makes verification feasible.
677
Patent
Trusted cloud computing and services framework
Rahul V. Auradkar,Roy Peter D'Souza +1 more
- 04 Feb 2010
TL;DR: In this article, a digital escrow pattern is provided for network data services including searchable encryption techniques for data stored in a cloud, distributing trust across multiple entities to avoid a single point of data compromise.
238
Patent
Server, computer memory, and method to support security policy maintenance and distribution
Dwayne R. Mann,Robert W. Heard,Christopher D. Burchett,Ian R. Gordon +3 more
- 23 Sep 2002
TL;DR: In this article, a server module deployed on a server (102) is disclosed and a method of enforcing security policies at a mobile computing device (106) is provided, where the policy includes at least one device use limitation.
238
Patent
Transaction replication system and method for supporting replicated transaction-based services
Ramon Juan San Andres,Philippe Choquier,Richard G. Greenberg,Jean-Francois Peyroux +3 more
- 16 Jan 1996
TL;DR: In this paper, a generic transaction replication service receives update transactions from individual application servers, and forwards the update transactions for processing to all application servers that run the same service application, thereby enabling each application server to maintain a replicated copy of service content data.
220
Patent
Method and system for determining and enforcing security policy in a communication session
Patrick McDaniel,Atul Prakash +1 more
- 04 Dec 2001
TL;DR: In this paper, a method and system for determining and enforcing security policy in a communication session are provided in distributed systems, where all communication security requirements are explicitly stated through policy and a policy instantiation is constructed at run-time through policy determination.
210