The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Mar. 04, 2014
Filed:
Jan. 13, 2012
Venkataramann Renganathan, Sammamish, WA (US);
Brian Thomas Carver, Kirkland, WA (US);
Daniel Browne Jump, Redmond, WA (US);
David Charles Leblanc, Monroe, WA (US);
Samuel Ira Weiss, Sacramento, CA (US);
Venkataramann Renganathan, Sammamish, WA (US);
Brian Thomas Carver, Kirkland, WA (US);
Daniel Browne Jump, Redmond, WA (US);
David Charles LeBlanc, Monroe, WA (US);
Samuel Ira Weiss, Sacramento, CA (US);
Microsoft Corporation, Redmond, WA (US);
Abstract
A secure hash, such as a Hash-based Message Authentication Code ('HMAC'), is generated using a piece of secret information (e.g., a secret key) and a piece of public information specific to each escrow key (e.g., a certificate hash or public key). Using the secret key ensures that escrow key validation data can only be generated by knowing the secret key, which prevents an attacker from generating the appropriate escrow key validation data. Using the certificate hash as the public data ties each escrow key validation data to a particular certificate, thereby preventing the attacker from simply copying the validation data from another escrow key. Any escrow key that is found to be invalid may be removed from the file container and a system audit log may be generated so that a company, individual, or other entity can be aware of the possible attempt at a security breach.