Apparatus and method for generating keys in a network computing environment
First Claim
1. A networked computer system comprising:
- a first computer system; and
a second computer system coupled via a network to the first computer system, wherein the second computer system includes a global key control mechanism, the global key control mechanism allocating and downloading a first block of globally unique keys to a client key generation mechanism executing on the first computer system, the client key generation mechanism allocating a plurality of globally unique keys from the first block to at least one application that requests a key.
1 Assignment
0 Petitions
Accused Products
Abstract
A global key control mechanism provides a single point of overall control for key generation, but portions of the key generation and/or allocation tasks may be delegated to client computer systems, thereby reducing network traffic. The global key control mechanism may download a client key generation mechanism on one or more client computer systems, and may allocate a block of keys to the client key generation mechanism. Requests for keys may then be routed to the client key generation mechanism, which can generate and/or allocate keys within the block of keys that the global key control mechanism allocated to it. When the block of keys is used up, the client key generation mechanism may request another block from the global key control mechanism. The preferred embodiments also include the capability of downloading a client key generation mechanism with an associated block of keys once the requests from one or more client applications exceed a predetermined threshold. In addition, the preferred embodiments include a hierarchy of key control mechanisms, with a single global key control mechanism that maintains control over one or more client key control mechanisms that may, in turn, control other client key control mechanism(s) or which may generate and/or allocate keys directly to requesting applications.
-
Citations
23 Claims
-
1. A networked computer system comprising:
-
a first computer system; and a second computer system coupled via a network to the first computer system, wherein the second computer system includes a global key control mechanism, the global key control mechanism allocating and downloading a first block of globally unique keys to a client key generation mechanism executing on the first computer system, the client key generation mechanism allocating a plurality of globally unique keys from the first block to at least one application that requests a key. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A networked computer system comprising:
-
(A) a first computer system; and (B) a second computer system coupled via a network to the first computer system, wherein the second computer system includes a global key control mechanism that generates a plurality of globally unique keys and determines when to share some of the work load of allocating globally unique keys, and when the global key control mechanism determines to share some of the work load of allocating globally unique keys, the global key control mechanism performs the steps of; (B1) downloading a client key allocation mechanism to the first computer system; and (B2) allocating and downloading a first block of globally unique keys to the client key allocation mechanism; (C) wherein the client key allocation mechanism allocates a plurality of globally unique keys to at least one application that requests a key. - View Dependent Claims (8)
-
-
9. A networked computer system comprising:
-
(A) a first computer system; and (B) a second computer system coupled via a network to the first computer system, wherein the second computer system includes a global key control mechanism that generates a plurality of globally unique keys and determines when to share some of the work load of generating globally unique keys, and when the global key control mechanism determines to share some of the work load of generating globally unique keys, the global key control mechanism performs the steps of; (B1) downloading a client key generation mechanism to the first computer system; and (B2) allocating a first block of globally unique keys to the client key generation mechanism; (C) wherein the client key generation mechanism generates a plurality of keys in the first block and allocates the plurality of keys to at least one application that requests a key. - View Dependent Claims (10)
-
-
11. A computer-implemented method for generating and allocating globally unique keys in a network computing environment, the method comprising the steps of:
-
(A) executing a global key control mechanism on a first computer system, the global key control mechanism generating a plurality of globally unique keys; and (B) allocating and downloading a first block of the plurality of globally unique keys to a client key allocation mechanism executing on a second computer system coupled via network to the first computer system, the client key allocation mechanism allocating a plurality of globally unique keys in the first block to at least one application that requests a key. - View Dependent Claims (12, 13, 14, 15)
-
-
16. A computer-implemented method for generating and allocating globally unique keys in a networked computing environment, the method comprising the steps of:
-
(A) generating a plurality of globally unique keys on a first computer system; (B) determining when to share some of the work load of allocating globally unique keys; (C) when the determination is made to share some of the work load of allocating globally unique keys, the global key control mechanism performing the steps of; (C1) downloading a client key allocation mechanism to a second computer system; and (C2) allocating and downloading a first block of globally unique keys to the client key allocation mechanism; (D) the client key allocation mechanism allocating a plurality of keys in the first block to at least one application that requests a key. - View Dependent Claims (17)
-
-
18. A computer-implemented method for generating and allocating globally unique keys in a networked computing environment, the method comprising the steps of:
-
(A) generating a plurality of globally unique keys on a first computer system; (B) determining when to share some of the work load of generating globally unique keys; (C) when the determination is made to share some of the work load of generating globally unique keys, performing the steps of; (C1) downloading a client key generation mechanism to a second computer system; and (C2) allocating a first block of globally unique keys to the client key generation mechanism; (D) the client key generation mechanism generating a plurality of keys in the first block and allocating the plurality of keys to at least one application that requests a key. - View Dependent Claims (19)
-
-
20. A computer-readable program product comprising:
-
(A) a global key control mechanism that generates a plurality of globally unique keys and determines when to share some of the work load of allocating globally unique keys, and when the global key control mechanism determines to share some of the work load of allocating globally unique keys, the global key control mechanism performs the steps of; (A1) downloading a client key allocation mechanism to the first computer system; and (A2) allocating and downloading a first block of globally unique keys to the client key allocation mechanism; wherein the client key allocation mechanism allocates a plurality of keys in the first block to at least one application that requests a key; and (B) recordable media bearing the global key control mechanism and the client key generation mechanism. - View Dependent Claims (21)
-
-
22. A computer-readable program product comprising:
-
(A) a global key control mechanism that generates a plurality of globally unique keys and determines when to share some of the work load of allocating globally unique keys, and when the global key control mechanism determines to share some of the work load of generating globally unique keys, the global key control mechanism performs the steps of; (A1) downloading a client key generation mechanism to the first computer system; and (A2) allocating a first block of globally unique keys to the client key generation mechanism; wherein the client key generation mechanism generates a plurality of keys in the first block to at least one application that requests a key; and (B) recordable media bearing the global key control mechanism and the client key generation mechanism. - View Dependent Claims (23)
-
Specification