Saving and retrieving data based on public key encryption

US 20030200450A1
Filed: 04/04/2003
Published: 10/23/2003
Est. Priority Date: 04/17/2002
Status: Active Grant

First Claim

Patent Images

1. A method, implemented in a computing device, the method comprising:

receiving data from a calling program; and

generating, using public key encryption, ciphertext that includes the data, wherein the ciphertext is generated in a manner that allows any of multiple target programs to be able to obtain the data from the ciphertext.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In accordance with certain aspects, data is received from a calling program. Ciphertext that includes the data is generated, using public key encryption, in a manner that allows only one or more target programs to be able to obtain the data from the ciphertext. In accordance with another aspect, a bit string is received from a calling program. An identifier of the calling program is checked to determine whether the calling program is allowed to access data encrypted in ciphertext of the bit string. The data is decrypted using public key decryption and returned to the calling program only if the calling program is allowed to access the data.

152 Citations

View as Search Results

75 Claims

1. A method, implemented in a computing device, the method comprising:
- receiving data from a calling program; and
  
  generating, using public key encryption, ciphertext that includes the data, wherein the ciphertext is generated in a manner that allows any of multiple target programs to be able to obtain the data from the ciphertext.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. A method as recited in claim 1, wherein the multiple target programs are identified by the calling program.
  - 3. A method as recited in claim 1, further comprising returning the ciphertext to the calling program.
  - 4. A method as recited in claim 1, wherein the data comprises a cryptographic key.
  - 5. A method as recited in claim 1, wherein the multiple target programs comprises a plurality of target programs.
  - 6. A method as recited in claim 1, wherein each of the multiple target programs is identified by a digest value generated by applying a cryptographic hash function to the target program.
  - 7. A method as recited in claim 1, wherein the multiple target programs comprises the calling program.
  - 8. A method as recited in claim 1, wherein receiving the data comprises receiving the data as part of a PKSeal operation.

9. A method, implemented in a computing device, the method comprising:
- receiving a bit string from a calling program;
  
  checking an identifier of the calling program to determine whether the calling program is one of multiple programs allowed to access data encrypted in ciphertext of the bit string; and
  
  returning the data, decrypted using public key decryption, to the calling program only if the calling program is one of multiple programs allowed to access the data.
- View Dependent Claims (10, 11, 12, 13, 14)
- - 10. A method as recited in claim 9, wherein the data comprises a cryptographic key.
  - 11. A method as recited in claim 9, wherein the checking comprising:
    - obtaining, from the bit string, an identifier of a target program that is allowed to access the data;
      
      checking whether the identifier of the target program is the same as the identifier of the calling program; and
      
      determining that the calling program is one of the multiple target programs allowed to access the data if the identifier of the target program is the same as the identifier of the calling program.
  - 12. A method as recited in claim 9, wherein the checking comprising:
    - obtaining, from the bit string, identifiers of the multiple target programs that are allowed to access the data;
      
      checking whether the identifier of the calling program is the same as at least one of the identifiers of the multiple target programs;
      
      determining that the calling program is allowed to access the data if the identifier of the calling program is the same as at least one of the identifiers of the multiple target programs; and
      
      determining that the calling program is not allowed to access the data if the identifier of the calling program is not the same as any of the identifiers of the multiple target programs.
  - 13. A method as recited in claim 9, wherein the identifier of the calling program comprises a digest value generated by applying a cryptographic hash function to the target program.
  - 14. A method as recited in claim 9, wherein receiving the bit string comprises receiving the bit string as part of an PKUnseal operation.

15. One or more computer readable media having stored thereon a plurality of instructions that, when executed by one or more processors of a computing device, causes the one or more processors to:
- receive data from a calling program;
  
  generate, using public key encryption, ciphertext that includes the data, wherein the ciphertext is generated in a manner that allows any of multiple target programs to be able to obtain the data from the ciphertext;
  
  after the ciphertext is generated, receive a bit string from another calling program;
  
  check an identifier of the other calling program to determine whether the other calling program is one of the multiple target programs allowed to access data encrypted in the ciphertext of the bit string; and
  
  return the data, decrypted using public key decryption, to the other calling program only if the other calling program is one of the multiple target programs allowed to access the data.
- View Dependent Claims (16, 17)
- - 16. One or more computer readable media as recited in claim 15, wherein the calling program and the other calling program are the same program.
  - 17. One or more computer readable media as recited in claim 15, wherein the plurality of instructions further cause the one or more processors to implement a BoundSign operation, a BoundQuote operation, a BoundDecrypt operation, a BoundPkUnseal operation, a GenBoundKey operation, a BoundKeyMigrate operation, and a BoundKeyExport operation.

18. One or more computer readable media having stored thereon a plurality of instructions to implement a PKSeal operation, wherein the plurality of instructions, when executed by one or more processors of a computing device, causes the one or more processors to:
- obtain data to be encrypted; and
  
  encrypt, using public key encryption, the data and a set of identifiers of programs that are allowed to decrypt the data.
- View Dependent Claims (19, 20)
- - 19. One or more computer readable media as recited in claim 18, wherein the identifiers of the programs comprise digests of the programs generated using a cryptographic hash function.
  - 20. One or more computer readable media as recited in claim 18, wherein the set of identifiers comprises an identifier of a caller of the PKSeal operation.

21. One or more computer readable media having stored thereon a plurality of instructions to implement a PKUnseal operation, wherein the plurality of instructions, when executed by one or more processors of a computing device, causes the one or more processors to:
- receive, from a calling program, a bit string including ciphertext;
  
  decrypt, using public key decryption, the ciphertext to generate plaintext;
  
  return the plaintext data to the calling program only if the calling program is one of a set of identified programs to which the plaintext data can be revealed.
- View Dependent Claims (22, 23)
- - 22. One or more computer readable media as recited in claim 21, wherein the instructions further cause the one or more processors to:
    - generate a digest of the calling program using a cryptographic hash function;
      
      compare the digest of the calling program to a set of digests identified in the bit string; and
      
      return the plaintext data to the calling program only if the digest of the calling program is the same as at least one of the set of digests identified in the bit string.
  - 23. One or more computer readable media as recited in claim 22, wherein the one or more digests identified in the bit string are part of the ciphertext.

24. A system comprising:
- means for receiving data from a calling program; and
  
  means for using public key encryption to generate ciphertext that includes the data, wherein the ciphertext is generated in a manner that allows one of a plurality of target programs to be able to obtain the data from the ciphertext.

25. A system comprising:
- means for receiving a bit string from a calling program;
  
  means for checking an identifier of the calling program to determine whether the calling program is one of a plurality of programs allowed to access data encrypted in ciphertext of the bit string; and
  
  means for returning the data, decrypted using public key decryption, to the calling program only if the calling program is one of the plurality of programs allowed to access the data.

26. One or more computer readable media having stored thereon a plurality of instructions that, when executed by one or more processors of a computing device, causes the one or more processors to:
- identify data to be sealed; and
  
  invoke a PKSeal operation, passing the data as an input to the PKSeal operation and identifying conditions that are to be satisfied in order for the data to be unsealed.
- View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34)
- - 27. One or more computer readable media as recited in claim 26, wherein the instructions further cause the one or more processors to receive, in response to the PKSeal operation, ciphertext including the data in an encrypted form, wherein the data is encrypted using public key encryption.
  - 28. One or more computer readable media as recited in claim 26, wherein the conditions comprise identifiers of multiple target programs that are allowed to unseal the data.
  - 29. One or more computer readable media as recited in claim 28, wherein the instructions further cause the one or more processors to pass, as another input to the PKSeal operation, identifiers of the multiple target programs.
  - 30. One or more computer readable media as recited in claim 29, wherein for each of the multiple target programs, the identifier of the target program comprises a digest generated by applying a cryptographic hash function to the target program.
  - 31. One or more computer readable media as recited in claim 28, wherein a program that invokes the PKSeal operation is one of the multiple target programs.
  - 32. One or more computer readable media as recited in claim 26, wherein one of the conditions comprises a time constraint for when the data can be unsealed.
  - 33. One or more computer readable media as recited in claim 26, wherein one of the conditions comprises a logical formula to be evaluated, and wherein the data can be unsealed only if the logical formula evaluates true.
  - 34. One or more computer readable media as recited in claim 26, wherein one of the conditions comprises a program to be executed, and wherein the data can be unsealed only if execution of the program returns an indication of true.

35. One or more computer readable media having stored thereon a plurality of instructions that, when executed by one or more processors of a computing device, causes the one or more processors to:
- invoke a PKUnseal operation in order to have a bit string decrypted, passing the bit string as an input to the PKUnseal operation; and
  
  receive, in response to invoking the PKUnseal operation, at least a portion of the decrypted bit string only if the plurality of instructions are one of multiple programs allowed to unseal the bit string, wherein the data is decrypted using public key encryption.
- View Dependent Claims (36, 37)
- - 36. One or more computer readable media as recited in claim 35, wherein the plurality of instructions are allowed to unseal the bit string if a digest generated by applying a cryptographic hash function to the plurality of instructions is the same as one or more digests identified by a calling program when data encrypted in the bit string was previously sealed using a PKSeal operation.
  - 37. One or more computer readable media as recited in claim 35, wherein the input to the PKUnseal operation is a pointer to the bit string.

38. One or more computer readable media having stored thereon a plurality of instructions that, when executed by one or more processors of a computing device, causes the one or more processors to:
- invoke a PKUnseal operation in order to obtain data from a bit string sealed in response to invocation of a PKSeal operation; and
  
  receive, in response to invoking the unseal operation, the data from the sealed bit string only if conditions that are to be satisfied in order for the data to be unsealed are satisfied.
- View Dependent Claims (39, 40, 41, 42)
- - 39. One or more computer readable media as recited in claim 38, wherein the conditions comprise identifiers of programs that are allowed to unseal the data.
  - 40. One or more computer readable media as recited in claim 38, wherein one of the conditions comprises a time constraint for when the data can be unsealed.
  - 41. One or more computer readable media as recited in claim 38, wherein one of the conditions comprises a logical formula to be evaluated, and wherein the data can be unsealed only if the logical formula evaluates true.
  - 42. One or more computer readable media as recited in claim 38, wherein one of the conditions comprises a program to be executed, and wherein the data can be unsealed only if execution of the program returns an indication of true.

43. A system comprising:
- a plurality of hierarchical layers including a lowest layer that guards a root resource;
  
  wherein the plurality of hierarchical layers further includes one or more intermediate layers that act as principals that request access to the root resource from the next lower layer and that act as guards to the root resource toward principals in the next higher layers; and
  
  allowing access to the root resource only to programs authorized to access the root resource, wherein the allowing comprises using a PKSeal operation to securely seal the root resource and a PKUnseal operation to retrieve the root resource.
- View Dependent Claims (44, 45)
- - 44. A system as recited in claim 43, wherein the plurality of hierarchical layers comprises four layers, wherein the lowest layer comprises a security kernel layer, wherein a next lowest layer comprises a basic input/output system layer, wherein a next lowest layer comprises an operating system layer, and wherein a highest layer comprises an application layer.
  - 45. A system as recited in claim 43, wherein the root resource comprises a cryptographic key.

46. One or more computer readable media having stored thereon a plurality of instructions to implement a BoundSign operation, wherein the plurality of instructions, when executed by one or more processors of a computing device, causes the one or more processors to:
- receive, as an input, both data to be signed and a bound key blob, wherein the bound key blob is bound to the one or more processors;
  
  recover, from the bound key blob, a private key associated with the bound key blob;
  
  generate a digital signature over the data using the private key; and
  
  output the digital signature.
- View Dependent Claims (47, 48)
- - 47. One or more computer readable media as recited in claim 46, wherein the bound key blob is bound to the one or more processors by encrypting the bound key blob using the public key of the one or more processors.
  - 48. One or more computer readable media as recited in claim 46, wherein the private key is restricted, by an element of the bound key blob, to being used by the BoundSign operation.

49. One or more computer readable media having stored thereon a plurality of instructions to implement a BoundQuote operation, wherein the plurality of instructions, when executed by one or more processors of a computing device, causes the one or more processors to:
- receive, as an input, both data to be signed and a bound key, wherein the bound key is bound to the one or more processors;
  
  reconstruct, based at least in part on the bound key, a private key associated with the bound key;
  
  generate a digital signature over the data using the private key; and
  
  output the digital signature.
- View Dependent Claims (50, 51)
- - 50. One or more computer readable media as recited in claim 49, wherein the bound key is bound to the one or more processors by encrypting the bound key using the public key of the one or more processors.
  - 51. One or more computer readable media as recited in claim 49, wherein the bound key is restricted to being used by the BoundQuote operation.

52. One or more computer readable media having stored thereon a plurality of instructions to implement a BoundDecrypt operation, wherein the plurality of instructions, when executed by one or more processors of a computing device, causes the one or more processors to:
- receive, as an input, both ciphertext and a bound key structure, wherein the bound key structure is bound to the one or more processors;
  
  recover, from the bound key structure, a private key associated with the bound key structure;
  
  decrypt the ciphertext using the private key to generate plaintext corresponding to the ciphertext; and
  
  output the plaintext.
- View Dependent Claims (53, 54)
- - 53. One or more computer readable media as recited in claim 52, wherein the bound key structure is bound to the one or more processors by encrypting the bound key structure using the public key of the one or more processors.
  - 54. One or more computer readable media as recited in claim 52, wherein the private key is restricted, based on a key usage element of the bound key structure, to being used by the BoundDecrypt operation.

55. One or more computer readable media having stored thereon a plurality of instructions to implement a BoundPkUnseal operation, wherein the plurality of instructions, when executed by one or more processors of a computing device, causes the one or more processors to:
- receive, as an input, both ciphertext and a bound key, wherein the bound key is bound to the one or more processors;
  
  reconstruct, based at least in part on the bound key, a private key associated with the bound key;
  
  decrypt the ciphertext using the private key to generate plaintext corresponding to the ciphertext; and
  
  output the plaintext.
- View Dependent Claims (56, 57)
- - 56. One or more computer readable media as recited in claim 55, wherein the bound key is bound to the one or more processors by encrypting the bound key using the public key of the one or more processors.
  - 57. One or more computer readable media as recited in claim 55, wherein the bound key is restricted to being used by the BoundPkUnseal operation.

58. One or more computer readable media having stored thereon a plurality of instructions to implement a GenBoundKey operation, wherein the plurality of instructions, when executed by one or more processors of a computing device, causes the one or more processors to:
- generate a data structure for a new bound key that is to be bound to the one or more processors, wherein the new bound key includes data that allows a private key of a public/private key pair to be recovered from the data structure; and
  
  cryptographically protect the data structure.
- View Dependent Claims (59)
- - 59. One or more computer readable media as recited in claim 58, wherein the instructions that cause the one or more processors to cryptographically protect the data structure comprise instructions that cause the one or more processors to encrypt the data structure using a public key of the public/private key pair.

60. One or more computer readable media having stored thereon a plurality of instructions to implement a BoundKeyMigrate operation, wherein the plurality of instructions, when executed by one or more processors of a computing device, causes the one or more processors to:
- receive, as an input, a bound key, wherein the bound key is bound to a program;
  
  verify that a usage condition associated with the key can be changed by the program; and
  
  change the usage condition if the verification is successful.
- View Dependent Claims (61, 62, 63, 64, 65, 66, 67)
- - 61. One or more computer readable media as recited in claim 60, wherein the usage condition comprises an identifier of a program to which the key is bound.
  - 62. One or more computer readable media as recited in claim 60, wherein the instructions that cause the one or more processors to verify that a usage condition associated with the key can be changed by the program comprise instructions that cause the one or more processors to verify that the bound key is marked as being migrateable.
  - 63. One or more computer readable media as recited in claim 60, wherein the instructions that cause the one or more processors to verify that a usage condition associated with the key can be changed by the program comprise instructions that cause the one or more processors to verify that the program calling the BoundKeyMigrate operation is permitted to migrate the bound key.
  - 64. One or more computer readable media as recited in claim 60, wherein the instructions that cause the one or more processors to verify that a usage condition associated with the key can be changed by the program comprise instructions that cause the one or more processors to verify that a logical formula evaluates true.
  - 65. One or more computer readable media as recited in claim 60, wherein the instructions that cause the one or more processors to verify that a usage condition associated with the key can be changed by the program comprise instructions that cause the one or more processors to verify that execution of a particular program returns an indication of true.
  - 66. One or more computer readable media as recited in claim 60, wherein the instructions that cause the one or more processors to verify that a usage condition associated with the key can be changed by the program comprise instructions that cause the one or more processors to verify that a time constraint is satisfied.
  - 67. One or more computer readable media as recited in claim 60, wherein the usage condition is an element of a data structure that includes the bound key.

68. One or more computer readable media having stored thereon a plurality of instructions to implement a BoundKeyExport operation, wherein the plurality of instructions, when executed by a processor of a computing device, causes the processor to:
- receive, as an input, a bound key, wherein the bound key is bound to a guard;
  
  verify that the key can be re-bound to a different guard; and
  
  re-bind the key to the different guard if the verification is successful.
- View Dependent Claims (69, 70, 71, 72, 73, 74, 75)
- - 69. One or more computer readable media as recited in claim 68, wherein the guard comprises the processor and the different guard comprises another processor.
  - 70. One or more computer readable media as recited in claim 68, wherein the different guard is identified as an input to the BoundKeyExport operation.
  - 71. One or more computer readable media as recited in claim 68, wherein the instructions that cause the processor to verify that the key can be re-bound to a different guard comprise instructions that cause the processor to verify that the bound key is marked as being exportable.
  - 72. One or more computer readable media as recited in claim 68, wherein the instructions that cause the processor to verify that the key can be re-bound to a different guard comprise instructions that cause the processor to verify that the program calling the BoundKeyExport operation is permitted to export the bound key.
  - 73. One or more computer readable media as recited in claim 68, wherein the instructions that cause the processor to verify that the key can be re-bound to a different guard comprise instructions that cause the processor to verify that a logical formula evaluates true.
  - 74. One or more computer readable media as recited in claim 68, wherein the instructions that cause the processor to verify that the key can be re-bound to a different guard comprise instructions that cause the processor to verify that execution of a particular program returns an indication of true.
  - 75. One or more computer readable media as recited in claim 68, wherein the instructions that cause the processor to verify that the key can be re-bound to a different guard comprise instructions that cause the processor to verify that a time constraint is satisfied.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
England, Paul, Peinado, Marcus

Granted Patent

US 7,890,771 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/189
CPC Class Codes

G06F 21/6218 to a system of files or obj...

Saving and retrieving data based on public key encryption

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

152 Citations

75 Claims

Specification

Use Cases

Quick Links

Others

Saving and retrieving data based on public key encryption

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

152 Citations

75 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others