SECURITY SYSTEM FORMING PART OF A BITCOIN HOST COMPUTER

US 20160344543A1
Filed: 05/19/2015
Published: 11/24/2016
Est. Priority Date: 05/19/2015
Status: Active Grant

First Claim

Patent Images

1. A host computer system comprising:

a key ceremony application configured to create a for-distribution master key,store the for-distribution master key in the memory,split the for-distribution master key into N shares,distribute the N shares among N custodians, andclear the for-distribution master key from the memory.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A key ceremony application creates bundles for custodians encrypted with their passphrases. Each bundle includes master key share. The master key shares are combined to store an operational master key. The operational master key is used for private key encryption during a checkout process. The operational private key is used for private key decryption for transaction signing in a payment process. The bundles further include TLS keys for authenticated requests to create an API key for a web application to communicate with a service and to unfreeze the system after it has been frozen by an administrator.

54 Citations

View as Search Results

8 Claims

1. A host computer system comprising:
- a key ceremony application configured to create a for-distribution master key,store the for-distribution master key in the memory,split the for-distribution master key into N shares,distribute the N shares among N custodians, andclear the for-distribution master key from the memory.
- View Dependent Claims (2, 3)
- - 2. The host computer system of claim 1, wherein the key ceremony application is configured to create a custodian transport layer security (TLS) key for each custodian, bundle a respective custodian TLS key with a respective share in a respective bundle, and distribute the respective bundles to the respective custodians.
  - 3. The host computer system of claim 2, wherein the key ceremony application is configured to receive a passphrase from each custodian, and encrypt each bundle with a respective passphrase of a respective custodian.

4. A method of distributing security data to custodians comprising:
- creating, by a key ceremony application, a for-distribution master key;
  
  storing, by the key ceremony application, the for-distribution master key in the memory;
  
  splitting, by the key ceremony application, the for-distribution master key into N shares;
  
  distributing, by the key ceremony application, the N shares among N custodians; and
  
  clearing, by the key ceremony application, the for-distribution master key from the memory.
- View Dependent Claims (5, 6)
- - 5. The method of claim 4, further comprising:
    - creating, by the key ceremony application, a custodian transport layer security (TLS) key for each custodian;
      
      bundling, by the key ceremony application, a respective custodian TLS key with a respective share in a respective bundle; and
      
      distributing, by the service, the respective bundles to the respective custodians.
  - 6. The method of claim 5, further comprising:
    - receiving a passphrase from each custodian; and
      
      encrypting each bundle with a respective passphrase of a respective custodian.

7. A computer-readable medium having stored thereon a set of instructions that, when executed by a processor of a computer carries out a method of distributing security data to custodians comprising:
- creating, by a key ceremony application, a for-distribution master key;
  
  storing, by the key ceremony application, the for-distribution master key in the memory;
  
  splitting, by the key ceremony application, the for-distribution master key into N shares;
  
  distributing, by the key ceremony application, the N shares among N custodians; and
  
  clearing, by the key ceremony application, the for-distribution master key from the memory.

8-63. -63. (canceled)

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Coinbase, Inc.
Original Assignee
Coinbase, Inc.
Inventors
Alness, Andrew E., Hudon, James Bradley

Granted Patent

US 9,735,958 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06Q 20/065   using e-cash

G06Q 20/3823   combining multiple encrypti...

H04L 63/00   Network architectures or ne...

H04L 63/06   for supporting key manageme...

H04L 63/166   at the transport layer

H04L 9/0819   Key transport or distributi...

H04L 9/0822   using key encryption key

H04L 9/085   Secret sharing or secret sp...

H04L 9/0863   involving passwords or one-...

SECURITY SYSTEM FORMING PART OF A BITCOIN HOST COMPUTER

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

54 Citations

8 Claims

Specification

Solutions

Use Cases

Quick Links

SECURITY SYSTEM FORMING PART OF A BITCOIN HOST COMPUTER

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

54 Citations

8 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links