CLOUD-BASED HARDWARE SECURITY MODULES
First Claim
Patent Images
1. A system for cloud-based hardware security modules, comprising:
- a physical security device with a processor configured to;
create a secure connection to a user device across a multi-user network; and
decrypt data accessed by the user device over the multi-user network.
1 Assignment
0 Petitions
Accused Products
Abstract
A cloud-based hardware security device (HSM) providing core security functions of a physically controlled HSM, such as a USB HSM, while allowing user access within the cloud and from a user device, including user devices without input ports capable of direct connection to the HSM. The HSMs can be connected to multi-HSM appliances on the organization or user side of the cloud network, or on the cloud provider side of the cloud network. HSMs can facilitate multiple users, and multi-HSM appliances can facilitate multiple organizations.
406 Citations
35 Claims
-
1. A system for cloud-based hardware security modules, comprising:
a physical security device with a processor configured to; create a secure connection to a user device across a multi-user network; and decrypt data accessed by the user device over the multi-user network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
13. A method for providing hardware security modules over a multi-user network, comprising:
-
providing shared resources over a multi-user network to multiple users; connecting multiple hardware security modules to the shared resources, wherein each hardware security module is associated with at least one user; establishing a secure connection over the multi-user network between the at least one user and an associated hardware security module; and providing encrypted data to the at least one user, wherein the encrypted data can only be decrypted with one or more keys stored on the associated hardware security module. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27)
-
-
28. A method for managing data in a non-volatile memory system, comprising:
-
providing shared resources over a multi-user network to multiple users; connecting multiple hardware security modules to the shared resources, wherein each hardware security module is associated with at least one user; establishing a secure connection over the multi-user network between the at least one user and an associated hardware security module; and providing encrypted data to the at least one user, wherein the data can be decrypted with one or more keys stored on the associated hardware security module. - View Dependent Claims (29, 30, 31, 32, 33, 34)
-
-
35. A non-volatile computer readable storage medium including instructions interpretable by a computing device:
-
to provide shared resources over a multi-user network to multiple users; to connect multiple hardware security modules to the shared resources, wherein each hardware security module is associated with at least one user; to establish a secure connection over the multi-user network between the at least one user and an associated hardware security module; and to provide encrypted data to the at least one user, wherein the encrypted data can only be decrypted with one or more keys stored on the associated hardware security module.
-
Specification