SECURE DATA RE-ENCRYPTION
First Claim
1. A method comprising:
- decrypting, in a device, a first subset of encrypted data using a cryptographic device key associated with the device to produce first plain text, wherein a set of encrypted data comprises the first subset of encrypted data and a second subset of encrypted data, and wherein the first subset of encrypted data and the second subset of encrypted data each contain less encrypted data than the set of encrypted data and are different from each other;
decrypting, in the device, the second subset of encrypted data using the cryptographic device key associated with the device to produce second plain text;
encrypting, in the device, the first plain text using a first ephemeral key to produce first re-encrypted data; and
encrypting, in the device, the second plain text using a second ephemeral key to produce second re-encrypted data, the second ephemeral key being different from the first ephemeral key.
1 Assignment
0 Petitions
Accused Products
Abstract
A method includes: decrypting, in a device, a first subset of encrypted data using a cryptographic device key associated with the device to produce first plain text, where a set of encrypted data comprises the first subset of encrypted data and a second subset of encrypted data, and where the first subset of encrypted data and the second subset of encrypted data each contain less encrypted data than the set of encrypted data and are different from each other; decrypting, in the device, the second subset of encrypted data using the cryptographic device key to produce second plain text; encrypting, in the device, the first plain text using a first ephemeral key to produce first re-encrypted data; and encrypting, in the device, the second plain text using a second ephemeral key to produce second re-encrypted data, the second ephemeral key being different from the first ephemeral key.
24 Citations
29 Claims
-
1. A method comprising:
-
decrypting, in a device, a first subset of encrypted data using a cryptographic device key associated with the device to produce first plain text, wherein a set of encrypted data comprises the first subset of encrypted data and a second subset of encrypted data, and wherein the first subset of encrypted data and the second subset of encrypted data each contain less encrypted data than the set of encrypted data and are different from each other; decrypting, in the device, the second subset of encrypted data using the cryptographic device key associated with the device to produce second plain text; encrypting, in the device, the first plain text using a first ephemeral key to produce first re-encrypted data; and encrypting, in the device, the second plain text using a second ephemeral key to produce second re-encrypted data, the second ephemeral key being different from the first ephemeral key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A device comprising:
-
a memory; and a hardware cryptographic processor communicatively coupled to the memory and comprising; a decryption engine configured to; decrypt a first subset of encrypted data using a cryptographic device key associated with the device to produce first plain text; and decrypt a second subset of encrypted data using the cryptographic device key associated with the device to produce second plain text; wherein a set of encrypted data comprises the first subset of encrypted data and the second subset of encrypted data, and wherein the first subset of encrypted data and the second subset of encrypted data each contain less encrypted data than the set of encrypted data and are different from each other; and an encryption engine communicatively coupled to the decryption engine and configured to; encrypt the first plain text using a first ephemeral key to produce first re-encrypted data; and encrypt the second plain text using a second ephemeral key to produce second re-encrypted data, the second ephemeral key being different from the first ephemeral key. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A device comprising:
-
decryption means for; decrypting a first subset of encrypted data using a cryptographic device key associated with the device to produce first plain text; and decrypting a second subset of encrypted data using the cryptographic device key associated with the device to produce second plain text; wherein a set of encrypted data comprises the first subset of encrypted data and the second subset of encrypted data, and wherein the first subset of encrypted data and the second subset of encrypted data each contain less encrypted data than the set of encrypted data and are different from each other; and encryption means, communicatively coupled to the decryption means, for; encrypting the first plain text using a first ephemeral key to produce first re-encrypted data; and encrypting the second plain text using a second ephemeral key to produce second re-encrypted data, the second ephemeral key being different from the first ephemeral key. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29)
-
Specification