Method and system for initializing a key management system
First Claim
Patent Images
1. A network system for key management, comprising:
- a server;
a key management system providing process logic for key management system initialization located on the server;
a key management system storage providing a secure data storage for the key management system; and
an interface providing a means for inputting data into the key management system.
3 Assignments
0 Petitions
Accused Products
Abstract
A network system for key management including a server, a key management system providing process logic for key management system initialization located on the server, a key management system storage providing a secure data storage for the key management system, and an interface providing a means for inputting data into the key management system.
-
Citations
35 Claims
-
1. A network system for key management, comprising:
-
a server;
a key management system providing process logic for key management system initialization located on the server;
a key management system storage providing a secure data storage for the key management system; and
an interface providing a means for inputting data into the key management system. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A network system for key management, comprising:
-
a server;
a key management system providing process logic for key management system initialization located on the server;
a key management system storage providing a secure data storage for the key management system;
an interface providing a means for inputting data into the key management system; and
a client computer operatively connected to the server, wherein the client computer comprises a user interface to input data into the key management system.
-
-
18. method for initializing a key management system comprising:
-
entering data into a key management system interface;
entering a key encryption key into the key management system interface;
combining data into a tuple;
encrypting the tuple with the key encryption key to produce a secret token;
storing the secret token in a vector;
hashing the key encryption key;
storing a hashed key encryption key in the vector;
storing a list of keys in the vector;
serializing the vector to produce a serialized file; and
storing the serialized file in a key management system storage. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
-
-
34. A method for initializing a key management system comprising:
-
entering data into a key management system interface;
entering a key encryption key into the key management system interface;
combining data into a tuple;
encrypting the tuple with the key encryption key to produce a secret token;
storing the secret token in a vector;
hashing the key encryption key;
storing a hashed key encryption key in the vector;
storing a list of keys in the vector;
serializing the vector to produce a serialized file;
storing the serialized file in a key management system storage;
encoding a key field of the tuple;
randomizing the order of the list of keys;
randomizing the order of the secret tokens in the vector; and
generating data to encrypt.
-
-
35. An apparatus for initializing a key management system comprising:
-
means for entering data into a key management system interface;
means for entering a key encryption key into the key management system interface;
means for combining data into a tuple;
means for encrypting the tuple with the key encryption key to produce a secret token;
means for storing the secret token in a vector;
means for hashing the key encryption key;
means for storing a hashed key encryption key in the vector;
means for storing a list of keys in the vector;
means for serializing the vector to produce a serialized file;
means for storing the serialized file in a key management system storage;
means for encoding a key field of the tuple;
means for randomizing the order of the list of keys;
means for randomizing the order of the secret tokens in the vector; and
means for generating data to encrypt.
-
Specification