Accelerated cryptography with an encryption attribute
First Claim
Patent Images
1. A method comprising:
- encrypting, at a computing device, one or more segments of first data with a first key, the first data being associated with at least one encryption attribute and having a plurality of segments, wherein the encryption attribute includes information to identify the one or more segments of the first data to encrypt, wherein the information contained in the encryption attribute further includes one or more of a set of numbers corresponding to the one or more segments, one or more rules relating to the one or more segments, an identifier corresponding to the one or more rules, and a pointer to a location storing the one or more rules, further comprising lowering overall time for performing encryption by limiting the encryption to the one or more segments of the plurality of segments;
encrypting the encryption attribute with a second key to create an encrypted encryption attribute; and
storing at least a part of second data including partly encrypted data and the encrypted encryption attribute.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and systems for encrypting and decrypting are presented. In one embodiment, the method comprises encrypting one or more segments of a data with a key. The data is associated with at least one encryption attribute and having a plurality of segments. The encryption attribute includes information to identify one or more segments of the data to encrypt. The method further comprises encrypting the encryption attribute and storing the data including the partly encrypted data and the encrypted encryption attribute.
-
Citations
36 Claims
-
1. A method comprising:
-
encrypting, at a computing device, one or more segments of first data with a first key, the first data being associated with at least one encryption attribute and having a plurality of segments, wherein the encryption attribute includes information to identify the one or more segments of the first data to encrypt, wherein the information contained in the encryption attribute further includes one or more of a set of numbers corresponding to the one or more segments, one or more rules relating to the one or more segments, an identifier corresponding to the one or more rules, and a pointer to a location storing the one or more rules, further comprising lowering overall time for performing encryption by limiting the encryption to the one or more segments of the plurality of segments; encrypting the encryption attribute with a second key to create an encrypted encryption attribute; and storing at least a part of second data including partly encrypted data and the encrypted encryption attribute. - View Dependent Claims (2, 3, 5, 6, 7)
-
-
4. A method for decrypting comprising:
-
accessing, at a computing device, first data including partly encrypted data and an encrypted version of an encryption attribute, wherein the partly encrypted data comprises a plurality of segments; decrypting the encrypted encryption attribute with a first key to retrieve an encryption attribute, wherein the encryption attribute includes information to identify one or more segments of the plurality of segments of partly encrypted data that are encrypted, wherein the information contained in the encryption attribute further includes one or more of a set of numbers corresponding to the one or more segments, one or more rules relating to the one or more segments, an identifier corresponding to the one or more rules, and a pointer to a location storing the one or more rules, further comprising lowering overall time for performing encryption by limiting the encryption to the one or more segments of the plurality of segments; decrypting the one or more segments of the data with a second key; and decrypting an encrypted version of the second key with a third key, wherein the first data further includes the encrypted version of the second key, and wherein the first key and the second key are identical symmetric encryption keys, and the third key includes a private key. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A system comprising:
-
a controller to receive a request to encrypt first data associated with at least one encryption attribute; a first encryption engine to encrypt one or more segments of the first data with a first key, the first data being associated with the at least one encryption attribute and having a plurality of segments, wherein the encryption attribute includes information to identify the one or more segments of the first data to encrypt, wherein the information contained in the encryption attribute further includes one or more of a set of numbers corresponding to the one or more segments, one or more rules relating to the one or more segments, an identifier corresponding to the one or more rules, and a pointer to a location storing the one or more rules, further comprising lowering overall time for performing encryption by limiting the encryption to the one or more segments of the plurality of segments; a second encryption engine to encrypt the encryption attribute with a second key to create an encrypted encryption attribute; and a storage to store at least a part of second data including partly encrypted data and the encrypted encryption attribute. - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. A system comprising:
-
a controller to access first data including partly encrypted data and an encrypted version of an encryption attribute, wherein the partly encrypted data comprises a plurality of segments; a first decryption engine to decrypt the encrypted encryption attribute with a first key to retrieve an encryption attribute, wherein the encryption attribute includes information to identify one or more segments of the plurality of segments of partly encrypted data that are encrypted, wherein the information contained in the encryption attribute further includes one or more of a set of numbers corresponding to the one or more segments, one or more rules relating to the one or more segments, an identifier corresponding to the one or more rules, and a pointer to a location storing the one or more rules, further comprising lowering overall time for performing encryption by limiting the encryption to the one or more segments of the plurality of segments; a second decryption engine to decrypt the one or more segments of the data with a second key; and a third decryption engine to decrypt an encrypted version of the second key with a third key, wherein the first data further includes the encrypted version of the second key, and wherein the first key and the second key are identical symmetric encryption keys, and the third key includes a private key. - View Dependent Claims (20, 21, 22, 23, 24)
-
-
25. At least one non-transitory machine-readable medium having stored thereon instructions which, when executed by a processing device, cause the processing device to perform one or more operations comprising:
-
encrypting one or more segments of first data with a first key, the first data being associated with at least one encryption attribute and having a plurality of segments, wherein the encryption attribute includes information to identify the one or more segments of the first data to encrypt, wherein the information contained in the encryption attribute further includes one or more of a set of numbers corresponding to the one or more segments, one or more rules relating to the one or more segments, an identifier corresponding to the one or more rules, and a pointer to a location storing the one or more rules, further comprising lowering overall time for performing encryption by limiting the encryption to the one or more segments of the plurality of segments; encrypting the encryption attribute with a second key to create an encrypted encryption attribute; and storing at least a part of second data including partly encrypted data and the encrypted encryption attribute. - View Dependent Claims (26, 27, 28, 29, 30)
-
-
31. At least one non-transitory machine-readable medium having stored thereon instructions which, when executed by a processing device, cause the processing device to perform one or more operations comprising:
-
accessing first data including partly encrypted data and an encrypted version of an encryption attribute, wherein the partly encrypted data comprises a plurality of segments; decrypting the encrypted encryption attribute with a first key to retrieve an encryption attribute, wherein the encryption attribute includes information to identify one or more segments of the plurality of segments of partly encrypted data that are encrypted, wherein the information contained in the encryption attribute further includes one or more of a set of numbers corresponding to the one or more segments, one or more rules relating to the one or more segments, an identifier corresponding to the one or more rules, and a pointer to a location storing the one or more rules, further comprising lowering overall time for performing encryption by limiting the encryption to the one or more segments of the plurality of segments; and decrypting the one or more segments of the data with a second key; and decrypting an encrypted version of the second key with a third key, wherein the first data further includes the encrypted version of the second key, and wherein the first key and the second key are identical symmetric encryption keys, and the third key includes a private key. - View Dependent Claims (32, 33, 34, 35, 36)
-
Specification