logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 9894040 B1

PDFFull Text
Date of Patent:
Feb. 13, 2018

Filed:

Sep. 11, 2012

Trust services for securing data in the cloud

Applicants:

Irina Gorbach, Bellevue, WA (US);

Venkatesh Krishnan, Sammamish, WA (US);

Andrey Shur, Redmond, WA (US);

Dmitry Denisov, Bellevue, WA (US);

Lars Kuhtz, Seattle, WA (US);

Sumalatha Adabala, Redmond, WA (US);

Roy Peter D'souza, Bellevue, WA (US);

Michael Entin, Redmond, WA (US);

Michael Ray Clark, Redmond, WA (US);

Gitika Aggarwal Saubhasik, Sammamish, WA (US);

Inventors:

Irina Gorbach, Bellevue, WA (US);

Venkatesh Krishnan, Sammamish, WA (US);

Andrey Shur, Redmond, WA (US);

Dmitry Denisov, Bellevue, WA (US);

Lars Kuhtz, Seattle, WA (US);

Sumalatha Adabala, Redmond, WA (US);

Roy Peter D'Souza, Bellevue, WA (US);

Michael Entin, Redmond, WA (US);

Michael Ray Clark, Redmond, WA (US);

Gitika Aggarwal Saubhasik, Sammamish, WA (US);

Assignee:

Microsoft Technology Licensing, LLC, Redmond, WA (US);

Attorney:

Workman Nydegger

Primary Examiner:

Harris C Wang

Int. Cl.
CPC ...
H04L 29/06 (2006.01); G06F 21/62 (2013.01); G06F 17/30 (2006.01); G06F 9/445 (2018.01);
U.S. Cl.
CPC ...
H04L 63/04 (2013.01); G06F 17/30197 (2013.01); G06F 21/6218 (2013.01); H04L 63/06 (2013.01); H04L 63/20 (2013.01); G06F 8/61 (2013.01); G06F 2221/2107 (2013.01); G06F 2221/2115 (2013.01); H04L 2463/062 (2013.01);
Abstract

Embodiments are directed to securing data in the cloud, securely encrypting data that is to be stored in the cloud and to securely decrypting data accessed from the cloud. In one scenario, an instantiated trust service receives information indicating that a trust server is to be instantiated. The trust service instantiates the trust server, which is configured to store key references and encrypted keys. The trust service receives the public key portion of a digital certificate for each publisher and subscriber that is to have access to various specified portions of encrypted data. A data access policy is then defined that specifies which encrypted data portions can be accessed by which subscribers.

Find Patent Forward Citations

Loading…