×

Data security service

  • US 9,590,959 B2
  • Filed: 02/12/2013
  • Issued: 03/07/2017
  • Est. Priority Date: 02/12/2013
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method for providing data storage services, comprising:

  • under the control of one or more computer systems of a computing resource service provider, the one or more computer systems configured with executable instructions,receiving, at a data service front end, from a customer of the computing resource service provider, a request to utilize a data storage service of the computing resource service provider to store a data object; and

    as a result of having received the request to utilize the data storage service, at least;

    obtaining, by the data service front end, proof information usable to cryptographically verify authenticity of the request;

    analyzing the request to determine a cryptographic signature of the request; and

    if the cryptographic signature matches the proof information, at least;

    causing a cryptography service of the computing resource service provider to provide, to the data storage service, information encrypted by the cryptography service using a key that is inaccessible to the data storage service, the encrypted information usable to obtain the data object in unencrypted form and the key from a plurality of keys managed by the cryptography service on behalf of a plurality of customers of the computing resource service provider; and

    using the data storage service to store the encrypted information and the data object in encrypted form.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×