×

Cloud key directory for federating data exchanges

  • US 9,558,370 B2
  • Filed: 12/02/2015
  • Issued: 01/31/2017
  • Est. Priority Date: 06/17/2011
  • Status: Active Grant
First Claim
Patent Images

1. At a computer system including at least one processor and a memory, in a computer networking environment including a plurality of computing systems, a computer-implemented method for providing attribute-based data access, the method comprising:

  • receiving a data request, the data request specifying one or more search data attributes describing requested data that is to be found in a data store, wherein the data store is configured to provide access to secured data of one or more clients according to corresponding access controls defined by each of the one or more clients, the secured data including a particular portion of data that is associated with a particular client and that is encrypted using an attribute-based encryption that associates the particular portion of data with one or more encryption data attributes and that enables the particular portion of data to be provided if conditions in the corresponding access controls are met;

    determining that the particular portion of data should be provided based on determining that the conditions in the corresponding access controls are met, and that at least one of the search data attributes of the data request is determined to be relevant to at least one of the encryption data attributes; and

    providing the particular portion of data in response to the data request.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×