Secure peer-to-peer distribution of an updatable keyring
First Claim
1. A first computerized device for documents comprising:
- a processing unit; and
data storage including executable program code,wherein the processing unit is configured to;
generate a feed object;
generate a first key based on contents of the feed object, wherein the first key comprises information identifying the feed object and a decryption key to decrypt an encrypted form of the feed object;
generate a first keyring entry comprising an encrypted form of the first key, wherein an entry key is configured to decrypt the encrypted form of the first key, wherein the first keyring entry is associated with the feed object;
transmit the encrypted form of the feed object to a second computerized device that is in communication with the first computerized device; and
transmit the first keyring entry to the second computerized device,wherein the encrypted form of the feed object and the first keyring entry are stored on the second computerized device.
1 Assignment
0 Petitions
Accused Products
Abstract
A distributed peer-to-peer document archive system provides version-control, security, access control, linking among stored documents and remote access to documents usually associated with centralized storage systems while still providing the simplicity, personalization and robustness to network outages associated with personal and peer-to-peer storage systems. A “keyring” is an encrypted repository that allows a user to recover and access a user'"'"'s entire digital archive with a single master key. After the key is created, it does not need to be updated, and can be stored in a safe, safety-deposit box or other secure location. In the event the user'"'"'s computer is stolen or destroyed, the user need only install the system on a new machine and import the master key. The system will then use that key to browse nearby servers to find and decrypt all files necessary to recreate the full digital archive in its most recent state.
42 Citations
12 Claims
-
1. A first computerized device for documents comprising:
-
a processing unit; and data storage including executable program code, wherein the processing unit is configured to; generate a feed object; generate a first key based on contents of the feed object, wherein the first key comprises information identifying the feed object and a decryption key to decrypt an encrypted form of the feed object; generate a first keyring entry comprising an encrypted form of the first key, wherein an entry key is configured to decrypt the encrypted form of the first key, wherein the first keyring entry is associated with the feed object; transmit the encrypted form of the feed object to a second computerized device that is in communication with the first computerized device; and transmit the first keyring entry to the second computerized device, wherein the encrypted form of the feed object and the first keyring entry are stored on the second computerized device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for creating a keyring feed entry comprising:
-
receiving, by a first device, a passphrase from a user of the first device; creating, by the first device, a keyring feed comprising an entry key; receiving, by the first device, a first access key, wherein the first access key includes (a) information identifying a first encrypted document object and (b) a first decryption key for decrypting the first encrypted document object and wherein the entry key is used to encrypt and decrypt the first access key; encrypting, by the first device, the first access key using the entry key to generate an encrypted first access key; and storing, by the first device, the encrypted first access key as a first keyring entry associated with the keyring feed. - View Dependent Claims (9, 10, 11, 12)
-
Specification