System and method for fault tolerant key management
First Claim
1. A key distribution system for generating and maintaining cryptographic keys comprising:
- a key distribution computer;
a primary key management computer operatively coupled to said key distribution computer by a first interface;
a secondary key management computer Operatively coupled to said key distribution computer by a second interface, said second interface being parallel to said first interface;
a primary server computer operatively coupled to said primary and secondary key management computers; and
a secondary server computer operatively coupled to said primary and secondary key management computers;
wherein one of said primary and secondary key management computers is operating on-line at a time, said operating one of said primary and secondary key management computers including means for writing key data received from said key distribution computer to an archive database in each of said primary and secondary server computers.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method of fault tolerant key management of cryptographic keys includes a key distribution computer and primary and secondary key management computers coupled to the key distribution computer, Primary and secondary server computers are each coupled to the primary and secondary key management computers, One of the primary and secondary key management computers is operational at a time, The operational one of the primary and secondary key management computers writes key data received from the key distribution computer to an archive database in each of the primary and secondary server computers, The method includes the steps of requesting storage of key data by an operational one of the primary and secondary key management computers; monitoring the operational status of each of primary and secondary server computers; writing key data to an archive database in each of the primary and secondary servers that are operational; writing key data to a log file in an operational one of the primary and secondary servers when one of the primary and secondary servers is not operational; monitoring a return to operational status of the non operational one of the primary and secondary servers; and writing to the archive database of the non-operational one of the primary and secondary server computers the key data stored in the log file of the operational one of the primary and secondary server computers.
42 Citations
9 Claims
-
1. A key distribution system for generating and maintaining cryptographic keys comprising:
-
a key distribution computer; a primary key management computer operatively coupled to said key distribution computer by a first interface; a secondary key management computer Operatively coupled to said key distribution computer by a second interface, said second interface being parallel to said first interface; a primary server computer operatively coupled to said primary and secondary key management computers; and a secondary server computer operatively coupled to said primary and secondary key management computers; wherein one of said primary and secondary key management computers is operating on-line at a time, said operating one of said primary and secondary key management computers including means for writing key data received from said key distribution computer to an archive database in each of said primary and secondary server computers. - View Dependent Claims (2, 3, 4)
-
-
5. A method of fault tolerant key management of cryptographic keys, comprising the steps of:
-
providing primary and secondary key management computers operatively coupled to primary and secondary server computers, requesting storage of key data by an operating one of said primary and secondary key management computers; monitoring the operating status of each of said primary and secondary server computers; writing key data to an archive database in each of said primary and secondary server computers that are operating; writing key data to a log file in an operating one of said primary and secondary server computers when one of said primary and secondary server computers is not operating; monitoring a return to operating status of said non-operating one of said primary and secondary server computers; and writing to said archive database of said non-operating one of said primary and secondary server computers that has returned to operating status said key data stored in said log file of said operating one of said primary and secondary server computers.
-
-
6. A fault tolerant data management system for synchronizing the replication of data comprising:
-
a data distribution computer; a primary data management computer operatively coupled to said data distribution computer by a first interface; a secondary data management computer operatively coupled to said data distribution computer by a second interface, said second interface being parallel to said first interface; a primary server computer operatively coupled to said primary and secondary data management computers; and a secondary server computer operatively coupled to said primary and secondary data management computers; wherein one of said primary and secondary data management computers is operating at a time, said operating one of said primary and secondary data management computers including means for writing data received from said data distribution computer to an archive database in each of said primary and secondary server computers. - View Dependent Claims (7, 8, 9)
-
Specification
-
- Resources
-
Current AssigneePitney Bowes Incorporated (Böwe Systec AG)
-
Original AssigneePitney Bowes Incorporated (Böwe Systec AG)
-
InventorsLi, Chunhua, Bator, Feliks, Baker, Walter J.
-
Primary Examiner(s)Gregory, Bernarr E.
-
Application NumberUS08/364,323Time in Patent Office840 DaysField of Search380/2, 380/21, 380/48, 380/49US Class Current380/277CPC Class CodesH04L 2209/56 Financial cryptography, e.g...H04L 9/083 involving central third par...
