×

System and method for communicating with a key management system

  • US 8,667,267 B1
  • Filed: 01/31/2012
  • Issued: 03/04/2014
  • Est. Priority Date: 01/31/2011
  • Status: Active Grant
First Claim
Patent Images

1. A method for providing authenticated access, comprising:

  • sending an encrypted message over a network from a computer having an encrypted file system to a key server, the encrypted message comprising;

    a new seed;

    an old seed;

    a message block containing a request for encryption data used to decrypt data in the encrypted file system; and

    an encryption encapsulation block including information for decrypting the message block, wherein the new seed, old seed, message block and encryption encapsulation block are encrypted;

    at the key server;

    receiving the encrypted message;

    determining if the encrypted message can be decrypted using an encryption key;

    rejecting the request in response to determining that the encrypted message cannot be decrypted using the encryption key;

    performing further authentication in response to decrypting the encrypted message, wherein performing further authentication comprises;

    comparing the new seed to a set of authentication data;

    comparing the old seed to the set of authentication data in response to the new seed not matching the set of authentication data;

    rejecting the request in response to neither the new seed nor the old seed matching the authentication data; and

    determining that the request is authenticated in response to either the old seed or new seed matching the authentication data;

    determining if the request is authorized in response to determining that the request is authenticated; and

    returning the encryption data to the computer in response to determining that the request is authorized.

View all claims
  • 6 Assignments
Timeline View
Assignment View
    ×
    ×