公开(公告)号：WO2012058075A1

公开(公告)日：2012-05-03

申请号：PCT/US2011/056960

申请日：2011-10-19

Applicant: APPLE INC. ,  COLCLASURE, Kaelin L. ,  HÖRNKVIST, John M. ,  THOMAS, Braden, J.

Inventor： COLCLASURE, Kaelin L. ,  HÖRNKVIST, John M. ,  THOMAS, Braden, J.

IPC: G06F21/24 ,  H04L29/08 ,  H04L29/06 ,  G06F21/20 ,  G06F17/30

CPC classification number: G06F21/6227 ,  G06F17/30091 ,  G06F17/30106 ,  G06F17/30722 ,  G06F17/30997 ,  G06F21/41 ,  G06F21/6209 ,  G06F21/6218 ,  G06F21/6245 ,  G06F2221/2107

Abstract: According to one aspect of the invention, a file received from a first user is stored in a storage device, where the file includes private metadata encrypted by a secret key associated with a second user. A private metadata identifier is stored in a predetermined storage location, indicating that private metadata of the file has not been decrypted and indexed. In response to an inquiry subsequently received from the second user, the predetermined storage location is scanned to identify the private metadata identifier based on the inquiry. The encrypted metadata identified by the private metadata identifier is transmitted to the second user for decryption. In response to the metadata that has been decrypted by the second user, the decrypted metadata is indexed for the purpose of subsequent searches of at least one of the metadata and the file.

Abstract translation: 根据本发明的一个方面，从第一用户接收的文件被存储在存储设备中，其中文件包括由与第二用户相关联的秘密密钥加密的专用元数据。 私有元数据标识符存储在预定的存储位置，指示文件的私有元数据尚未被解密和索引。 响应于随后从第二用户接收到的查询，扫描预定的存储位置以基于查询来标识私有元数据标识符。 由私有元数据标识符识别的加密的元数据被发送给第二用户进行解密。 响应于已被第二用户解密的元数据，为了随后搜索元数据和文件中的至少一个而对解密的元数据进行索引。

公开(公告)号：EP2633469A1

公开(公告)日：2013-09-04

申请号：EP11776055.3

申请日：2011-10-19

Applicant: Apple Inc.

Inventor： COLCLASURE, Kaelin L. ,  HÖRNKVIST, John M. ,  THOMAS, Braden, J.

IPC: G06F21/24 ,  H04L29/08 ,  H04L29/06 ,  G06F21/20 ,  G06F17/30

CPC classification number: G06F21/6227 ,  G06F17/30091 ,  G06F17/30106 ,  G06F17/30722 ,  G06F17/30997 ,  G06F21/41 ,  G06F21/6209 ,  G06F21/6218 ,  G06F21/6245 ,  G06F2221/2107

Abstract: According to one aspect of the invention, a file received from a first user is stored in a storage device, where the file includes private metadata encrypted by a secret key associated with a second user. A private metadata identifier is stored in a predetermined storage location, indicating that private metadata of the file has not been decrypted and indexed. In response to an inquiry subsequently received from the second user, the predetermined storage location is scanned to identify the private metadata identifier based on the inquiry. The encrypted metadata identified by the private metadata identifier is transmitted to the second user for decryption. In response to the metadata that has been decrypted by the second user, the decrypted metadata is indexed for the purpose of subsequent searches of at least one of the metadata and the file.