Communication device, communication method, computer program product, and communication system

US 9,928,370 B2
Filed: 02/20/2014
Issued: 03/27/2018
Est. Priority Date: 06/11/2013
Status: Active Grant

First Claim

Patent Images

1. A communication device, comprising:

processing circuitry configured to operate asa key sharer configured to receive a communication request from a first application, identify an external device associated with the first application, and exchange and share an encryption key obtained from a memory with the external device;

a key provider configured to provide one or more applications, including the first application, with respective volumes of one or more shared encryption keys to be assigned to corresponding applications of the one or more applications, and respective shared encryption keys of the one or more shared encryption keys being updated by corresponding applications of the one or more applications;

an acquirer configured to receive information relating to a key usage history for each of the one or more applications, the key usage history for an application of the one or more applications indicating a number of encryption key updates performed by the application and a length of the encryption key; and

a determiner configured to determine the respective volumes of the one or more shared encryption keys to be assigned to the one or more applications using the key usage history, whereinthe key provider provides to the one or more applications the volumes of the one or more shared encryption keys determined using the key usage history.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

According to an embodiment, a communication device includes an acquirer and a determiner. The acquirer is configured to acquire a first history value for each of one or more applications that use an encryption key. The first history value indicates a history value of a volume of the encryption key used by the each of one or more applications. The determiner is configured to determine a volume of the encryption key to be assigned to the corresponding application, according to the first history value.

31 Citations

9 Claims

1. A communication device, comprising:
- processing circuitry configured to operate asa key sharer configured to receive a communication request from a first application, identify an external device associated with the first application, and exchange and share an encryption key obtained from a memory with the external device;
  
  a key provider configured to provide one or more applications, including the first application, with respective volumes of one or more shared encryption keys to be assigned to corresponding applications of the one or more applications, and respective shared encryption keys of the one or more shared encryption keys being updated by corresponding applications of the one or more applications;
  
  an acquirer configured to receive information relating to a key usage history for each of the one or more applications, the key usage history for an application of the one or more applications indicating a number of encryption key updates performed by the application and a length of the encryption key; and
  
  a determiner configured to determine the respective volumes of the one or more shared encryption keys to be assigned to the one or more applications using the key usage history, whereinthe key provider provides to the one or more applications the volumes of the one or more shared encryption keys determined using the key usage history.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The device according to claim 1, wherein the determiner is configured to determine the volumes of the one or more shared encryption keys to be assigned to the one or more applications in such a manner that, for each application of the one or more applications, a rate of the volume of the shared encryption key to be assigned to the each application is proportional to a rate of the key usage history of the each application.
  - 3. The device according to claim 1, wherein the determiner is configured to determine the volume of the shared encryption key to be assigned the first application is greater than a volume of the shared encryption key to be assigned to a second application of the one or more applications, when a value of the key usage history of the first application is greater than a value of the key usage history of the second application.
  - 4. The device according to claim 1, whereinthe determiner is configured tofurther acquire a requested volume indicating a volume of the encryption keys requested by each application,determine the volumes of the shared encryption key to be assigned to the one or more applications using the requested volume when the key usage history is not acquired, anddetermine the volumes of the shared encryption key to be assigned to the one or more applications using the key usage history when the key usage history is acquired.
  - 5. The device according to claim 4, wherein the determiner is configured to determine the volumes of the shared encryption key to be assigned to the one or more applications in such a manner that, for each application of the one or more applications, a rate of the volume to be assigned to the each application is proportional to a rate of the requested volume of the each application.
  - 6. The device according to claim 4, wherein the determiner is configured to determine the volumes of the shared encryption key to be assigned to the one or more applications, according to a difference between the key usage history and the volumes assigned according to the requested volume.

7. A communication method, comprising:
- receiving a communication request from a first application;
  
  identifying an external device associated with the first application;
  
  exchanging and sharing an encryption key with the external device;
  
  providing one or more applications, including the first application, with respective volumes of one or more shared encryption keys to be assigned to corresponding applications of the one or more applications, and respective shared encryption keys of the one or more shared encryption keys being updated by corresponding applications of the one or more applications;
  
  receiving information relating to a key usage history for each of the one or more applications, the key usage history for an application of the one or more applications indicating the number of encryption key updates performed by the application and the length of the encryption key; and
  
  determining the respective volumes of the shared encryption keys to be assigned to the one or more applications using the key usage history, whereinthe volumes of the one or more shared encryption keys determined using the key usage history are the volumes of the one or more shared encryption keys provided to the one or more applications in the step of providing the one or more applications, including the first application, with the respective volumes of the one or more shared encryption keys.

8. A computer program product comprising a non-transient computer-readable medium containing a program executed by a computer, the program causing the computer to execute:
- identifying an external device associated with a first application from a communication request from the first application;
  
  exchanging and sharing an encryption key with the external device;
  
  providing one or more applications, including the first application, with respective volumes of one or more shared encryption keys to be assigned to corresponding applications of the one or more applications, and respective shared encryption keys of the one or more shared encryption keys being updated by corresponding applications of the one or more applications;
  
  receiving information relating to a key usage history for each of the one or more applications, the key usage history for an application of the one or more applications indicating the number of encryption key updates performed by the application and the length of the encryption key; and
  
  determining the respective volumes of the shared encryption keys to be assigned to the one or more applications using the key usage history, whereinthe volumes of the one or more shared encryption keys determined using the key usage history are the volumes of the one or more shared encryption keys provided to the one or more applications in the step of providing the one or more applications, including the first application, with the respective volumes of the one or more shared encryption keys.

9. A communication system, comprising:
- one or more applications configured to use an encryption key; and
  
  a communication device configured to provide the encryption key to the application, whereinthe communication device includesprocessing circuitry configured to operate asa key sharer configured to receive a communication request from a first application, identify an external device associated with the first application, and exchange and share an encryption key obtained from a memory with the external device;
  
  a key provider configured to provide one or more applications, including the first application, with respective volumes of one or more shared encryption keys to be assigned to corresponding applications of the one or more applications, and respective shared encryption keys of the one or more shared encryption keys being updated by corresponding applications of the one or more applications;
  
  an acquirer configured to receive information relating to a key usage history for each of the one or more applications, the key usage history for an application of the one or more applications indicating a number of encryption key updates performed by the application and a length of the encryption key; and
  
  a determiner configured to determine the respective volumes of the shared encryption key to be assigned to the one or more applications using the key usage history, whereinthe key provider provides to the one or more applications the volumes of the one or more shared encryption keys determined using the key usage history.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Kabushiki Kaisha Toshiba (Toshiba Corporation)
Original Assignee
Kabushiki Kaisha Toshiba (Toshiba Corporation)
Inventors
Tanizawa, Yoshimichi, Sato, Hideaki, Takahashi, Ririka, Kawamura, Shinichi, Murai, Shinya
Primary Examiner(s)
Avery, Jeremiah

Application Number

US14/184,907
Publication Number

US 20140365786A1
Time in Patent Office

1,496 Days
Field of Search

None
US Class Current
CPC Class Codes

G06F 21/602   Providing cryptographic fac...

G06F 21/629   to features or functions of...

H04L 63/061   for key exchange, e.g. in p...

H04L 9/0816   Key establishment, i.e. cry...

H04L 9/0855   involving additional nodes,...

Communication device, communication method, computer program product, and communication system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

31 Citations

9 Claims

Specification

Solutions

Use Cases

Quick Links

Communication device, communication method, computer program product, and communication system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

31 Citations

9 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links