Encryption gateway service
First Claim
1. A method for securing enterprise data, comprising:
- receiving unencrypted data by an encryption gateway service stored in a memory and executed by a processor, wherein the encryption gateway service includes an encryption/decryption component stored in a memory and executed by a processor, an identity management component stored in a memory and executed by a processor, a notification component stored in a memory and executed by a processor, and a logging/auditing component stored in a memory and executed by a processor;
authenticating and authorizing, by the identity management component, a user attempting to send the unencrypted data to the encryption gateway service by communicating with an enterprise identity management system;
encrypting, by the encryption/decryption component, the unencrypted data;
sending, by the notification component, a notification that the unencrypted data has been encrypted to an entity from which the unencrypted data was received within an enterprise operating the encryption gateway service;
logging, by the logging/auditing component, that the unencrypted data has been encrypted; and
sending, by the encryption gateway service, the encrypted data to a destination.
6 Assignments
0 Petitions
Accused Products
Abstract
An encryption management system of an enterprise is provided. The system includes an encryption/decryption component operable for enterprise messages to be secured by receiving and encrypting the messages received from enterprise applications. The encryption/decryption component further decrypts messages received from enterprise partners that are encrypted. The system includes an identity management component to manage access to the encryption management system, and a key management component to manage keys used by the encryption/decryption component. The system includes a notification component that initiates sending messages regarding events occurring in the encryption management system through communication with an enterprise messaging system. The system also includes a logging/auditing component to log events occurring in the encryption management system.
-
Citations
15 Claims
-
1. A method for securing enterprise data, comprising:
-
receiving unencrypted data by an encryption gateway service stored in a memory and executed by a processor, wherein the encryption gateway service includes an encryption/decryption component stored in a memory and executed by a processor, an identity management component stored in a memory and executed by a processor, a notification component stored in a memory and executed by a processor, and a logging/auditing component stored in a memory and executed by a processor; authenticating and authorizing, by the identity management component, a user attempting to send the unencrypted data to the encryption gateway service by communicating with an enterprise identity management system; encrypting, by the encryption/decryption component, the unencrypted data; sending, by the notification component, a notification that the unencrypted data has been encrypted to an entity from which the unencrypted data was received within an enterprise operating the encryption gateway service; logging, by the logging/auditing component, that the unencrypted data has been encrypted; and sending, by the encryption gateway service, the encrypted data to a destination. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
Specification