公开(公告)号：WO2013022647A3

公开(公告)日：2013-02-14

申请号：PCT/US2012/048944

申请日：2012-07-31

Applicant: APPLE INC. ,  SAUERWALD, Conrad ,  BHAVSAR, Vrajesh Rajesh ,  MCNEIL, Kenneth Buffalo ,  DUFFY, Thomas Brogan ,  BROUWER, Michael Lambertus Hubertus ,  BYOM, Matthew John ,  ADLER, Mitchell David ,  TAMURA, Eric Brandon

Inventor： SAUERWALD, Conrad ,  BHAVSAR, Vrajesh Rajesh ,  MCNEIL, Kenneth Buffalo ,  DUFFY, Thomas Brogan ,  BROUWER, Michael Lambertus Hubertus ,  BYOM, Matthew John ,  ADLER, Mitchell David ,  TAMURA, Eric Brandon

IPC: H04L9/08 ,  G06F11/14

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted file key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.

公开(公告)号：EP2730049B1

公开(公告)日：2020-04-22

申请号：EP12775334.1

申请日：2012-07-31

Applicant: Apple Inc.

Inventor： SAUERWALD, Conrad ,  BHAVSAR, Vrajesh Rajesh ,  MCNEIL, Kenneth Buffalo ,  DUFFY, Thomas Brogan ,  BROUWER, Michael Lambertus Hubertus ,  BYOM, Matthew John ,  ADLER, Mitchell David ,  TAMURA, Eric Brandon

IPC: H04L9/08 ,  H04L29/06 ,  H04W12/04 ,  H04W12/08 ,  G06F11/14

公开(公告)号：EP2730049A2

公开(公告)日：2014-05-14

申请号：EP12775334.1

申请日：2012-07-31

Applicant: Apple Inc.

Inventor： SAUERWALD, Conrad ,  BHAVSAR, Vrajesh Rajesh ,  MCNEIL, Kenneth Buffalo ,  DUFFY, Thomas Brogan ,  BROUWER, Michael Lambertus Hubertus ,  BYOM, Matthew John ,  ADLER, Mitchell David ,  TAMURA, Eric Brandon

IPC: H04L9/08 ,  G06F11/14

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for wireless data protection utilizing cryptographic key management on a primary device and a backup device. A system encrypts a file with a file key and encrypts the file key twice, resulting in two encrypted file keys. The system encrypts each file key differently and stores a first file key on the primary device and transmits one of the encrypted file keys in addition to the encrypted file to a backup device for storage. On the backup device, the system associates the encrypted file key with a set of backup keys protected by a user password. In one embodiment, the system generates an initialization vector for use in cryptographic operations based on a file key. In another embodiment, the system manages cryptographic keys on a backup device during a user password change.

Abstract translation: 本文公开了用于利用主设备和备用设备上的加密密钥管理的无线数据保护的系统，方法和非暂时的计算机可读存储介质。 系统使用文件密钥对文件进行加密，并对文件密钥进行两次加密，从而产生两个加密的文件密钥。 系统对每个文件密钥进行不同的加密，并将第一个文件密钥存储在主设备上，并将加密的文件密钥之一加密到备份设备进行存储。 在备份设备上，系统将加密的文件密钥与用户密码保护的一组备份密钥相关联。 在一个实施例中，系统基于文件密钥生成用于加密操作的初始化向量。 在另一个实施例中，系统在用户密码改变期间管理备份设备上的加密密钥。