公开(公告)号：JP2010004516A

公开(公告)日：2010-01-07

申请号：JP2008267996

申请日：2008-10-16

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： XIAOYU HU ,  HAAS ROBERT ,  ILIAS ILIADIS ,  CHRISTIAN CACHIN ,  PAWLITZEK RENE A ,  HAHN TIMOTHY JAMES ,  PECK JOHN T

IPC: H04L9/08

CPC classification number: H04L9/083 ,  H04L9/0891

Abstract: PROBLEM TO BE SOLVED: To provide a system and a method to perform automated validation and execution of deployment and distribution of an encryption key and a certificate. SOLUTION: The method for performing the automated validation and the execution of the deployment and the distribution of the encryption key and the certificate includes a step to provide one or a plurality of keys, a step to provide one or a plurality of key deployment points, and a step to automatically distribute the one or plural keys to the one or plural key deployment points based on a matrix or pattern mapping of each of the one or plural keys to be distributed to each of the one or plural key deployment points. COPYRIGHT: (C)2010,JPO&INPIT

Abstract translation: 要解决的问题：提供一种执行加密密钥和证书的部署和分发的自动验证和执行的系统和方法。 解决方案：用于执行自动验证和执行加密密钥和证书的部署和分发的方法包括提供一个或多个密钥的步骤，提供一个或多个密钥的步骤 基于要分配给一个或多个密钥部署点中的每一个的一个或多个密钥中的每一个的矩阵或模式映射来自动地将一个或多个密钥分发到一个或多个密钥部署点的步骤 。 版权所有（C）2010，JPO＆INPIT

公开(公告)号：GB2574141A

公开(公告)日：2019-11-27

申请号：GB201911905

申请日：2018-01-02

Applicant: IBM

Inventor： ANJA LEHMANN ,  CHRISTIAN CACHIN ,  JAN CAMENISCH ,  EDUARDA FREIRE STOGBUCHNER

IPC: G06F21/60 ,  G06F21/62 ,  H04L9/06 ,  H04L9/08

Abstract: Data masking is provided by, for at least one predetermined data item in data to be sent, applying a one-way function to that data item to produce a first value, producing a masked data item by encrypting the first value via a deterministic encryption scheme using a current encryption key for a current epoch, and replacing that data item by the masked data item. A data-provider computer sends the masked data to the data-user computer. On expiry of the current epoch, the data-provider computer generates a new encryption key for the encryption scheme in a new epoch, produces mask-update data, dependent on the current and new encryption keys, and sends the mask-update data to the data-user computer. The mask-update data permits updating, at the data-user computer, of masked data items produced with the current encryption key into masked data items produced with the new encryption key.

公开(公告)号：GB2574141B

公开(公告)日：2020-05-20

申请号：GB201911905

申请日：2018-01-02

Applicant: IBM

Inventor： ANJA LEHMANN ,  CHRISTIAN CACHIN ,  JAN CAMENISCH ,  EDUARDA FREIRE STOGBUCHNER

IPC: G06F21/60 ,  G06F21/62 ,  H04L9/06 ,  H04L9/08

Abstract: Data masking is provided by, for at least one predetermined data item in data to be sent, applying a one-way function to that data item to produce a first value, producing a masked data item by encrypting the first value via a deterministic encryption scheme using a current encryption key for a current epoch, and replacing that data item by the masked data item. A data-provider computer sends the masked data to the data-user computer. On expiry of the current epoch, the data-provider computer generates a new encryption key for the encryption scheme in a new epoch, produces mask-update data, dependent on the current and new encryption keys, and sends the mask-update data to the data-user computer. The mask-update data permits updating, at the data-user computer, of masked data items produced with the current encryption key into masked data items produced with the new encryption key.