SECURE SHARING OF ITEM LEVEL DATA IN THE CLOUD

US 20120210118A1
Filed: 02/14/2011
Published: 08/16/2012
Est. Priority Date: 02/14/2011
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method of sharing data in a supply chain, the data corresponding to an item having a tag associated therewith, the method comprising:

determining a random number from the tag, the random number being unique to the item;

selecting a first integer and a second integer;

generating a first public key based on the first integer and a semi-public key based on the second integer;

generating an identifier based on the first public key and the random number;

generating a key based on the semi-public key and the random number;

encrypting the data using the key to provide encrypted data;

defining a tuple comprising the identifier and the encrypted data; and

transmitting the tuple over a network for storage in a persistent storage device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Implementations of the present disclosure are directed to sharing data in a supply chain, the data corresponding to an item having a tag associated therewith. Methods include determining a random number from the tag, the random number being unique to the item, selecting a first integer and a second integer, generating a first public key based on the first integer and a semi-public key based on the second integer, generating an identifier based on the first public key and the random number, generating a key based on the semi-public key and the random number, encrypting the data using the key to provide encrypted data, defining a tuple comprising the identifier and the encrypted data, and transmitting the tuple over a network for storage in a persistent storage device.

46 Citations

View as Search Results

17 Claims

1. A computer-implemented method of sharing data in a supply chain, the data corresponding to an item having a tag associated therewith, the method comprising:
- determining a random number from the tag, the random number being unique to the item;
  
  selecting a first integer and a second integer;
  
  generating a first public key based on the first integer and a semi-public key based on the second integer;
  
  generating an identifier based on the first public key and the random number;
  
  generating a key based on the semi-public key and the random number;
  
  encrypting the data using the key to provide encrypted data;
  
  defining a tuple comprising the identifier and the encrypted data; and
  
  transmitting the tuple over a network for storage in a persistent storage device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, further comprising generating a value based on the semi-public key and the random number, wherein generating the encryption key is based on a pseudo-random function that maps the value to the key.
  - 3. The method of claim 1, further comprising providing the first public key to a second party, the second party seeking access to the encrypted data.
  - 4. The method of claim 3, further comprising transmitting the semi-public key to a second party, the second party seeking access to the encrypted data.
  - 5. The method of claim 2, further comprising transmitting the random number to the second party.
  - 6. The method of claim 1, further comprising:
    - generating a third integer;
      
      generating a second public key based on the first integer, the third integer, and the random number; and
      
      transmitting the second public key over the network for storage in the persistent storage device, the second public key used by the persistent storage device to determine the storing of the tuple.
  - 7. The method of claim 1, wherein a first party generates the key and transmits the key to a second party to enable the second party to access to the tuple for the item.
  - 8. The method of claim 1, wherein a first party generates the key and the identifier and transmits the key and the identifier to a second party to enable the second party to access to data corresponding to items that the second party possessed.
  - 9. The method of claim 1, wherein the first party generates the key and the identifier and transmits the key and the identifier to a second party to enable the second party to access data corresponding to items that the first party possessed.

10. A computer-implemented method of sharing data in a supply chain, the data corresponding to an item having a tag associated therewith, the method comprising:
- receiving at least one of a key and a semi-public key from a second party;
  
  identifying a public key associated with the second party;
  
  generating a query based on a random number, the random number being unique to the item;
  
  transmitting the query over a network to a third party;
  
  receiving, from the third party, one or more tuples identified by the third party based on the query, each tuple of the one or more tuple comprising respective encrypted data;
  
  decrypting the encrypted data based on at least one of the key and the semi-public key.
- View Dependent Claims (11, 12, 13, 14, 15)
- - 11. The method of claim 10, further comprising determining an identifier based on the public key and a random number, the random number being unique to the item, the query comprising the identifier.
  - 12. The method of claim 10, further comprising generating a value based on the random number, the query comprising the value.
  - 13. The method of claim 10, wherein the first party generates the key and transmits the key to a second party to enable the second party to access to the tuple for the item.
  - 14. The method of claim 10, wherein the first party generates the key and the identifier and transmits the key and the identifier to a second party to enable the second party to access to data corresponding to items that the second party possessed.
  - 15. The method of claim 10, wherein the first party generates the key and the identifier and transmits the key and the identifier to a second party to enable the second party to access data corresponding to items that the first party possessed.

16. A computer-readable storage medium coupled to one or more processors having instructions stored thereon which, when executed by the one or more processors, cause the one or more processors to perform operations for sharing data in a supply chain, the data corresponding to an item having a tag associated therewith, the operations comprising:
- determining a random number from the tag, the random number being unique to the item;
  
  selecting a first integer and a second integer;
  
  generating a first public key based on the first integer and a semi-public key based on the second integer;
  
  generating an identifier based on the first public key and the random number;
  
  generating a key based on the semi-public key and the random number;
  
  encrypting the data using the key to provide encrypted data;
  
  defining a tuple comprising the identifier and the encrypted data; and
  
  transmitting the tuple over a network for storage in a persistent storage device.

17. A system for sharing data in a supply chain, the data corresponding to an item having a tag associated therewith, the system comprising:
- one or more computers; and
  
  a computer-readable medium coupled to the one or more computers having instructions stored thereon which, when executed by the one or more computers, cause the one or more computers to perform operations comprising;
  
  determining a random number from the tag, the random number being unique to the item;
  
  selecting a first integer and a second integer;
  
  generating a first public key based on the first integer and a semi-public key based on the second integer;
  
  generating an identifier based on the first public key and the random number;
  
  generating a key based on the semi-public key and the random number;
  
  encrypting the data using the key to provide encrypted data;
  
  defining a tuple comprising the identifier and the encrypted data; and
  
  transmitting the tuple over a network for storage in a persistent storage device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
SAP AG (SAP SE)
Original Assignee
SAP AG (SAP SE)
Inventors
Chaves, Leonardo Weiss F., Kerschbaum, Florian

Granted Patent

US 8,811,620 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/150
CPC Class Codes

G06F 21/6218   to a system of files or obj...

G06F 2221/2107   File encryption

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 63/0442   wherein the sending and rec...

H04L 63/062   for key distribution, e.g. ...

H04L 9/0866   involving user or device id...

SECURE SHARING OF ITEM LEVEL DATA IN THE CLOUD

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

46 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

SECURE SHARING OF ITEM LEVEL DATA IN THE CLOUD

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

46 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links