Method for Backing Up and Restoring an Encryption Key
First Claim
1. A method for backing up and restoring an encryption key, which is applicable to an encryption key for data encryption/decryption and generated inside trusted chips, a trusted chip in which an encryption key to be backed up is present being set as a source trusted chip, and a trusted chip in which an encrypted encryption key to be restored is present being set as a destination trusted chip, the method comprising:
- creating a backup key for backing up the encryption key inside the source trusted chip;
encrypting the encryption key with the backup key;
exporting the encrypted encryption key from the source trusted chip;
storing the exported encrypted encryption key;
exporting the backup key from the source trusted chip;
setting up an access password of the backup key;
encrypting the backup key and the access password together;
transmitting the backup key and the access password encrypted together to a trusted third party;
storing the backup key and the access password encrypted together received by the trusted third party;
acquiring the backup key from the trusted third party based on the access password;
importing the backup key and the encrypted encryption key to the destination trusted chip when the encrypted encryption key needs to be restored inside the destination trusted chip;
decrypting the encrypted encryption key with the backup key inside the destination trusted chip to obtain the encryption key of the source trusted chip.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention allows creation of a backup key for backing up an encryption key inside a source trusted chip, encrypting the encryption key with the backup key, exporting the encrypted encryption key from the source trusted chip and storing it in a storage device, encrypting the backup key for transmission to a trusted third party. If the encrypted encryption key needs to be restored inside a destination trusted chip, the backup key and the encryption key encrypted with the backup key are imported to the destination trusted chip, where the encrypted encryption key is decrypted with the backup key inside the destination trusted chip to obtain the encryption key of the source trusted chip.
-
Citations
13 Claims
-
1. A method for backing up and restoring an encryption key, which is applicable to an encryption key for data encryption/decryption and generated inside trusted chips, a trusted chip in which an encryption key to be backed up is present being set as a source trusted chip, and a trusted chip in which an encrypted encryption key to be restored is present being set as a destination trusted chip, the method comprising:
-
creating a backup key for backing up the encryption key inside the source trusted chip; encrypting the encryption key with the backup key; exporting the encrypted encryption key from the source trusted chip; storing the exported encrypted encryption key; exporting the backup key from the source trusted chip; setting up an access password of the backup key; encrypting the backup key and the access password together; transmitting the backup key and the access password encrypted together to a trusted third party; storing the backup key and the access password encrypted together received by the trusted third party; acquiring the backup key from the trusted third party based on the access password; importing the backup key and the encrypted encryption key to the destination trusted chip when the encrypted encryption key needs to be restored inside the destination trusted chip; decrypting the encrypted encryption key with the backup key inside the destination trusted chip to obtain the encryption key of the source trusted chip. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
Specification