公开(公告)号：AU2018202051A1

公开(公告)日：2018-04-12

申请号：AU2018202051

申请日：2018-03-22

Applicant: APPLE INC

Inventor： SAUERWALD CONRAD ,  BHAVSAR VRAJESH RAJESH ,  MCNEIL KENNETH BUFFALO ,  DUFFY THOMAS BROGAN ,  BROUWER MICHAEL LAMBERTUS HUBERTUS ,  BYOM MATTHEW JOHN ,  ADLER MITCHELL DAVID ,  TAMURA ERIC BRANDON

IPC: G06F11/14 ,  H04L9/08

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted file key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.

公开(公告)号：AU2016200941A1

公开(公告)日：2016-03-03

申请号：AU2016200941

申请日：2016-02-12

Applicant: APPLE INC

Inventor： SAUERWALD CONRAD ,  BHAVSAR VRAJESH RAJESH ,  MCNEIL KENNETH BUFFALO ,  DUFFY THOMAS BROGAN ,  BROUWER MICHAEL LAMBERTUS HUBERTUS ,  BYOM MATTHEW JOHN ,  ADLER MITCHELL DAVID ,  TAMURA ERIC BRANDON

IPC: G06F11/14 ,  H04L9/08

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted file key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.

公开(公告)号：AU2012294770A1

公开(公告)日：2014-02-20

申请号：AU2012294770

申请日：2012-07-31

Applicant: APPLE INC

Inventor： SAUERWALD CONRAD ,  BHAVSAR VRAJESH RAJESH ,  MCNEIL KENNETH BUFFALO ,  DUFFY THOMAS BROGAN ,  BROUWER MICHAEL LAMBERTUS HUBERTUS ,  BYOM MATTHEW JOHN ,  ADLER MITCHELL DAVID ,  TAMURA ERIC BRANDON

IPC: G06F11/14 ,  H04L9/08

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted file key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.

公开(公告)号：GB2474200A

公开(公告)日：2011-04-06

申请号：GB201102069

申请日：2009-07-24

Applicant: APPLE INC

Inventor： HAUCK JERRY ,  BROUWER MICHAEL LAMBERTUS HUBERTUS

IPC: G06F21/00

Abstract: A method and apparatus for secure software installation to boot a device authorized by a ticket are described herein. A ticket request including a device identifier of the device is sent for the ticket which includes attributes for one or more components to boot the device into an operating state. The ticket is cryptographically validated to match the one or more components with corresponding attributes included in the ticket. If successfully matched, the one or more components are executed to boot the device.

公开(公告)号：AU2016200941B2

公开(公告)日：2018-01-04

申请号：AU2016200941

申请日：2016-02-12

Applicant: APPLE INC

Inventor： SAUERWALD CONRAD ,  BHAVSAR VRAJESH RAJESH ,  MCNEIL KENNETH BUFFALO ,  DUFFY THOMAS BROGAN ,  BROUWER MICHAEL LAMBERTUS HUBERTUS ,  BYOM MATTHEW JOHN ,  ADLER MITCHELL DAVID ,  TAMURA ERIC BRANDON

IPC: G06F11/14 ,  H04L9/08

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted file key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.

公开(公告)号：AU2012294770B2

公开(公告)日：2015-11-26

申请号：AU2012294770

申请日：2012-07-31

Applicant: APPLE INC

Inventor： SAUERWALD CONRAD ,  BHAVSAR VRAJESH RAJESH ,  MCNEIL KENNETH BUFFALO ,  DUFFY THOMAS BROGAN ,  BROUWER MICHAEL LAMBERTUS HUBERTUS ,  BYOM MATTHEW JOHN ,  ADLER MITCHELL DAVID ,  TAMURA ERIC BRANDON

IPC: G06F11/14 ,  H04L9/08

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted file key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.

公开(公告)号：GB2474200B

公开(公告)日：2013-04-03

申请号：GB201102069

申请日：2009-07-24

Applicant: APPLE INC

Inventor： HAUCK JERRY ,  BROUWER MICHAEL LAMBERTUS HUBERTUS

IPC: G06F21/57 ,  G06F21/00

Abstract: A method and apparatus for secure software installation to boot a device authorized by a ticket are described herein. A ticket request including a device identifier of the device is sent for the ticket which includes attributes for one or more components to boot the device into an operating state. The ticket is cryptographically validated to match the one or more components with corresponding attributes included in the ticket. If successfully matched, the one or more components are executed to boot the device.

公开(公告)号：WO2013022647A2

公开(公告)日：2013-02-14

申请号：PCT/US2012048944

申请日：2012-07-31

Applicant: APPLE INC ,  SAUERWALD CONRAD ,  BHAVSAR VRAJESH RAJESH ,  MCNEIL KENNETH BUFFALO ,  DUFFY THOMAS BROGAN ,  BROUWER MICHAEL LAMBERTUS HUBERTUS ,  BYOM MATTHEW JOHN ,  ADLER MITCHELL DAVID ,  TAMURA ERIC BRANDON

Inventor： SAUERWALD CONRAD ,  BHAVSAR VRAJESH RAJESH ,  MCNEIL KENNETH BUFFALO ,  DUFFY THOMAS BROGAN ,  BROUWER MICHAEL LAMBERTUS HUBERTUS ,  BYOM MATTHEW JOHN ,  ADLER MITCHELL DAVID ,  TAMURA ERIC BRANDON

IPC: H04L9/08 ,  G06F11/14

CPC classification number: H04L63/0428 ,  G06F11/1458 ,  G06F11/1464 ,  H04L9/0637 ,  H04L9/0822 ,  H04L9/0825 ,  H04L9/0863 ,  H04L9/0894 ,  H04L63/0435 ,  H04L63/061 ,  H04L2463/062 ,  H04W12/04 ,  H04W12/08

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted file key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.

Abstract translation: 本文公开了利用主设备和备份设备上的密码密钥管理的用于无线数据保护的系统，方法和非暂时性计算机可读存储介质。 系统使用文件密钥加密文件并对文件密钥进行两次加密，从而生成两个加密的文件密钥。 系统以不同的方式加密每个文件密钥，并将第一文件密钥存储在主设备上，并将加密文件密钥之一和加密文件一起发送到备份设备进行存储。 在备份设备上，系统将加密文件密钥与一组由用户密码保护的备份密钥相关联。 在一个实施例中，系统基于文件密钥生成用于密码操作的初始化向量。 在另一个实施例中，系统在用户密码更改期间管理备份设备上的密码密钥。