×

Filekey access to data

  • US 10,430,599 B1
  • Filed: 06/30/2014
  • Issued: 10/01/2019
  • Est. Priority Date: 06/30/2014
  • Status: Active Grant
First Claim
Patent Images

1. A method for performing an operation for data objects associated with an owner in a computing system, the method comprising:

  • generating a key from an unencrypted data object during the operation;

    encrypting the unencrypted data object with the key to generate an encrypted data object;

    generating a fingerprint of the encrypted data object;

    encrypting the key with different access keys to generate access codes, wherein each of the access keys is a private key that that is associated a different public key, wherein each access code corresponds to one of the access keys and wherein the access codes are each associated with a different user and wherein the access codes are different and are configured to allow the owner of the data object to control which users associated with the owner are allowed to access the data object on an individual user basis, wherein the access codes are associated with the fingerprint and allow the encrypted data object to be accessed using the access code to be identified;

    storing the encrypted data objects in a tree-type structure that includes multiple levels of blocks, wherein higher levels of the tree-type structure point to lower levels of the tree-type structure, wherein the higher levels include encrypted keys needed to unlock lower levels and fingerprints, wherein each of the access codes allow a chain of blocks in the tree-type structure to be decrypted, wherein each block in the chain is encrypted with a different key and, as each block in the chain is decrypted, the key to decrypt the next block in the chain is obtained, wherein each of the data objects is associated with a different key; and

    allowing a group that is separate from the owner access to at least one of the data objects by generating an access code using a public key associated with the group, wherein members of the group access the at least one of the data objects using a private key associated with the group.

View all claims
  • 13 Assignments
Timeline View
Assignment View
    ×
    ×