×

Initializing, maintaining, updating and recovering secure operation within an integrated system employing a data access control function

  • US 6,957,335 B2
  • Filed: 10/23/2003
  • Issued: 10/18/2005
  • Est. Priority Date: 04/18/2002
  • Status: Active Grant
First Claim
Patent Images

1. A method of migrating data encrypted using a first key set to data encrypted using a second key set, said method comprising:

  • performing multiple writes of encrypted data using a first key set;

    employing a usage counter to count each use of the first key set to write encrypted data; and

    automatically transitioning to a second key set when the count of the usage counter exceeds a defined threshold, the automatically transitioning comprising;

    modifying an access table to indicated that encrypted data in a current data location is to be decrypted using the first key set, and is to be re-encrypted using the second key set when undergoing storage to a new data location;

    decrypting the encrypted data using the first key set;

    re-encrypting, by a data access control function within an integrated system, the data using the second key set, wherein the decrypting and the re-encrypting comprise reading the encrypted data from the current data location, decrypting the encrypted data using the first key set, then writing the data as encrypted data to the new data location employing the second key set; and

    modifying the access table further with the new data location being defined for encryption and decryption with the second key set.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×