IDiyas

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 8837718 B1

PDFFull Text
Date of Patent:
Sep. 16, 2014

Filed:

Mar. 27, 2009

User-specified sharing of data via policy and/or inference from a hierarchical cryptographic store

Applicants:

Kristin Estella Lauter, Redmond, WA (US);

Mihir Bellare, San Diego, CA (US);

Josh Benaloh, Redmond, WA (US);

Melissa E. Chase, Kirkland, WA (US);

Erik J. Horvitz, Kirkland, WA (US);

Chris Demetrios Karkanias, Sammamish, WA (US);

Inventors:

Kristin Estella Lauter, Redmond, WA (US);

Mihir Bellare, San Diego, CA (US);

Josh Benaloh, Redmond, WA (US);

Melissa E. Chase, Kirkland, WA (US);

Erik J. Horvitz, Kirkland, WA (US);

Chris Demetrios Karkanias, Sammamish, WA (US);

Assignee:

Microsoft Corporation, Redmond, WA (US);

Attorneys:

Dan Choi

Judy Yee

Micky Minhas

Primary Examiner:

Jung Kim

Assistant Examiner:

Thomas Ho

Int. Cl.
CPC ...
H04L 9/14 (2006.01); H04L 9/30 (2006.01); G06F 21/62 (2013.01); H04L 9/08 (2006.01);
U.S. Cl.
CPC ...
H04L 9/3073 (2013.01); H04L 2209/88 (2013.01); G06F 21/6209 (2013.01); H04L 9/0836 (2013.01);
Abstract

The claimed subject matter relates to architectures that can construct a hierarchical set of decryption keys for facilitating user-controlled encrypted data storage with diverse accessibility and hosting of that encrypted data. In particular, a root key can be employed to derive a hierarchical set of decryption keys and a corresponding hierarchical set of encryption keys. Each key derived can conform to a hierarchy associated with encrypted data of the user, and the decryption capabilities of the decryption keys can be configured based upon a location or assignment of the decryption key within the hierarchy. The cryptographic methods can be joined with a policy language that specifies sets of keys for capturing preferences about patterns of sharing. These policies about sharing can themselves require keys for access and the policies can provide additional keys for other aspects of policy and or base-level accesses.

Find Patent Forward Citations

Loading…