×

Preventing persistent storage of cryptographic information

  • US 10,223,538 B1
  • Filed: 11/12/2013
  • Issued: 03/05/2019
  • Est. Priority Date: 11/12/2013
  • Status: Active Grant
First Claim
Patent Images

1. One or more non-transitory computer-readable storage media collectively stored thereon instructions that, as a result of being executed by one or more processors of a system, cause the system to:

  • provide a second computer system using an image of a first computer system, the second computer system instantiated based at least in part on;

    detecting a command to serialize the first computer system, the first computer system including computer system memory containing a plaintext representation of a cryptographic key;

    generating and storing metadata associated with the cryptographic key, said metadata comprising functions registered by the first computing system, including operations to be performed for restoring the cryptographic key; and

    executing the command by at least writing the image of the first computer system to persistent storage such that the image of the first computer system lacks the plaintext representation of the cryptographic key, the image usable to instantiate the first computer system without access to the plaintext representation of the cryptographic key;

    perform at least one cryptographic operation based at least in part of the registered functions and operations to be performed for restoring the cryptographic key in the metadata, to cause the second computer system to operate with access to the plaintext representation of the cryptographic key; and

    store the plaintext representation of the cryptographic key to memory of the second computer system.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×