Apparatus and method for generating keys in a network computing environment
First Claim
1. A networked computer system comprising:
- a first computer system; and
a second computer system coupled via a network to the first computer system, wherein the second computer system includes a global key control mechanism, the global key control mechanism allocating a first block of globally unique keys to a client key generation mechanism executing on the first computer system, the client key generation mechanism allocating at least one globally unique key in the block to at least one application that requests a key.
1 Assignment
0 Petitions
Accused Products
Abstract
A global key control mechanism provides a single point of overall control for key generation, but portions of the key generation and/or allocation tasks may be delegated to client computer systems, thereby reducing network traffic. The global key control mechanism may download a client key generation mechanism on one or more client computer systems, and may allocate a block of keys to the client key generation mechanism. Requests for keys may then be routed to the client key generation mechanism, which can generate and/or allocate keys within the block of keys that the global key control mechanism allocated to it. When the block of keys is used up, the client key generation mechanism may request another block from the global key control mechanism. The preferred embodiments also include the capability of downloading a client key generation mechanism with an associated block of keys once the requests from one or more client applications exceed a predetermined threshold. In addition, the preferred embodiments include a hierarchy of key control mechanisms, with a single global key control mechanism that maintains control over one or more client key control mechanisms that may, in turn, control other client key control mechanism(s) or which may generate and/or allocate keys directly to requesting applications.
27 Citations
53 Claims
-
1. A networked computer system comprising:
-
a first computer system; and
a second computer system coupled via a network to the first computer system, wherein the second computer system includes a global key control mechanism, the global key control mechanism allocating a first block of globally unique keys to a client key generation mechanism executing on the first computer system, the client key generation mechanism allocating at least one globally unique key in the block to at least one application that requests a key. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A networked computer system comprising:
-
a first computer system; and
a second computer system coupled via a network to the first computer system, wherein the second computer system includes a global key control mechanism that downloads a client key generation mechanism to the first computer system, the first computer system executing the client key generation mechanism, the client key generation mechanism allocating at least one globally unique key to at least one application that requests a key. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A networked computer system comprising:
-
(A) a first computer system; and
(B) a second computer system coupled via a network to the first computer system, wherein the second computer system includes a global key control mechanism that generates a plurality of globally unique keys and determines when to share some of the work load of allocating globally unique keys, and when the global key control mechanism determines to share some of the work load of allocating globally unique keys, the global key control mechanism performs the steps of;
(B1) downloading a client key allocation mechanism to the first computer system; and
(B2) allocating a first block of globally unique keys to the client key allocation mechanism;
(C) wherein the client key allocation mechanism allocates at least one key in the first block to at least one application that requests a key. - View Dependent Claims (14)
-
-
15. A networked computer system comprising:
-
(A) a first computer system; and
(B) a second computer system coupled via a network to the first computer system, wherein the second computer system includes a global key control mechanism that generates a plurality of globally unique keys and determines when to share some of the work load of generating globally unique keys, and when the global key control mechanism determines to share some of the work load of generating globally unique keys, the global key control mechanism performs the steps of;
(B1) downloading a client key generation mechanism to the first computer system; and
(B2) allocating a first block of globally unique keys to the client key generation mechanism;
(C) wherein the client key generation mechanism generates at least one key in the first block and allocates the at least one key to at least one application that requests a key. - View Dependent Claims (16)
-
-
17. A computer-implemented method for generating and allocating globally unique keys in a network computing environment, the method comprising the steps of:
-
(A) executing a global key control mechanism on a first computer system, the global key control mechanism generating a plurality of globally unique keys; and
(B) allocating a first block of the plurality of globally unique keys to a client key allocation mechanism executing on a second computer system coupled via network to the first computer system, the client key allocation mechanism allocating at least one globally unique key in the first block to at least one application that requests a key. - View Dependent Claims (18, 19, 20, 21)
-
-
22. A computer-implemented method for generating and allocating globally unique keys in a networked computing environment, the method comprising the steps of:
-
(A) executing a global key control mechanism on a first computer system, the global key control mechanism generating a plurality of globally unique keys; and
(B) the global key control mechanism downloading a client key generation mechanism to a second computer system coupled via network to the first computer system, the client key allocation mechanism allocating at least one globally unique key to at least one application that requests a key. - View Dependent Claims (23, 24, 25, 26, 27)
-
-
28. A computer-implemented method for generating and allocating globally unique keys in a networked computing environment, the method comprising the steps of:
-
(A) generating a plurality of globally unique keys on a first computer system;
(B) determining when to share some of the work load of allocating globally unique keys;
(C) when the determination is made to share some of the work load of allocating globally unique keys, the global key control mechanism performing the steps of;
(C1) downloading a client key allocation mechanism to a second computer system; and
(C2) allocating a first block of globally unique keys to the client key allocation mechanism;
(D) the client key allocation mechanism allocating at least one key in the first block to at least one application that requests a key. - View Dependent Claims (29)
-
-
30. A computer-implemented method for generating and allocating globally unique keys in a networked computing environment, the method comprising the steps of:
-
(A) generating a plurality of globally unique keys on a first computer system;
(B) determining when to share some of the work load of generating globally unique keys;
(C) when the determination is made to share some of the work load of generating globally unique keys, performing the steps of;
(C1) downloading a client key generation mechanism to a second computer system; and
(C2) allocating a first block of globally unique keys to the client key generation mechanism;
(D) the client key generation mechanism generating at least one key in the first block and allocating the at least one key to at least one application that requests a key. - View Dependent Claims (31)
-
-
32. A program product comprising:
-
(A) a global key control mechanism that allocates a first block of globally unique keys to a client key generation mechanism executing on a first computer system coupled via network to a second computer system executing the global key control mechanism, the client key generation mechanism allocating at least one globally unique key in the block to at least one application that requests a key; and
(B) computer-readable signal bearing media bearing the global key control mechanism. - View Dependent Claims (33, 34, 35, 36, 37, 38)
-
-
39. A program product comprising:
-
(A) a global key control mechanism that executes on a first computer system and downloads a client key generation mechanism to a second computer system, the client key generation mechanism allocating at least one globally unique key to at least one application that requests a key; and
(B) computer-readable signal bearing media bearing the global key control mechanism and the client key generation mechanism. - View Dependent Claims (40, 41, 42, 43, 44, 45)
-
-
46. A program product comprising:
-
(A) a global key control mechanism that generates a plurality of globally unique keys and determines when to share some of the work load of allocating globally unique keys, and when the global key control mechanism determines to share some of the work load of allocating globally unique keys, the global key control mechanism performs the steps of;
(A1) downloading a client key allocation mechanism to the first computer system; and
(A2) allocating a first block of globally unique keys to the client key allocation mechanism;
wherein the client key allocation mechanism allocates at least one key in the first block to at least one application that requests a key; and
(B) computer-readable signal bearing media bearing the global key control mechanism and the client key generation mechanism. - View Dependent Claims (47, 48, 49)
-
-
50. A program product comprising:
-
(A) a global key control mechanism that generates a plurality of globally unique keys and determines when to share some of the work load of allocating globally unique keys, and when the global key control mechanism determines to share some of the work load of generating globally unique keys, the global key control mechanism performs the steps of;
(A1) downloading a client key generation mechanism to the first computer system; and
(A2) allocating a first block of globally unique keys to the client key generation mechanism;
wherein the client key generation mechanism generates at least one key in the first block to at least one application that requests a key; and
(B) computer-readable signal bearing media bearing the global key control mechanism and the client key generation mechanism. - View Dependent Claims (51, 52, 53)
-
Specification