CA2151851A1 - Methods for providing secure access to shared information - Google Patents

Methods for providing secure access to shared information

Info

Publication number
CA2151851A1
CA2151851A1 CA2151851A CA2151851A CA2151851A1 CA 2151851 A1 CA2151851 A1 CA 2151851A1 CA 2151851 A CA2151851 A CA 2151851A CA 2151851 A CA2151851 A CA 2151851A CA 2151851 A1 CA2151851 A1 CA 2151851A1
Authority
CA
Canada
Prior art keywords
key
server
secure access
encrypted
information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CA2151851A
Other languages
French (fr)
Other versions
CA2151851C (en
Inventor
Zygmunt Haas
Sanjoy Paul
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
AT&T Corp
Original Assignee
Zygmunt Haas
Sanjoy Paul
American Telephone And Telegraph Company
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Zygmunt Haas, Sanjoy Paul, American Telephone And Telegraph Company filed Critical Zygmunt Haas
Publication of CA2151851A1 publication Critical patent/CA2151851A1/en
Application granted granted Critical
Publication of CA2151851C publication Critical patent/CA2151851C/en
Anticipated expiration legal-status Critical
Expired - Lifetime legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/062Network architectures or network communication protocols for network security for supporting key management in a packet data network for key distribution, e.g. centrally by trusted party
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0891Revocation or update of secret information, e.g. encryption key update or rekeying
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage

Abstract

The inventive methods employ symmetric encryption with first and second keys to provide secure access to information accessible to be shared among a dynamically changing set of authorized users on a network having a server. A single copy of the information, encrypted with the first key of the server, is stored in a location accessible to all network users. The second key is a private key of an authorized user and is used by the server to encrypt the first key.
The encrypted first key is then stored by the server at a storage location accessible by the authorized user. The user accesses the storage location, obtains the encrypted first key, and uses his private second key to decrypt and thereby recover the first key. The user then decrypts the stored information using the recovered first key.
CA002151851A 1994-08-01 1995-06-15 Methods for providing secure access to shared information Expired - Lifetime CA2151851C (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US08/284,025 US5719938A (en) 1994-08-01 1994-08-01 Methods for providing secure access to shared information
US284,025 1994-08-01

Publications (2)

Publication Number Publication Date
CA2151851A1 true CA2151851A1 (en) 1996-02-02
CA2151851C CA2151851C (en) 1999-05-18

Family

ID=23088575

Family Applications (1)

Application Number Title Priority Date Filing Date
CA002151851A Expired - Lifetime CA2151851C (en) 1994-08-01 1995-06-15 Methods for providing secure access to shared information

Country Status (5)

Country Link
US (1) US5719938A (en)
EP (1) EP0695997B1 (en)
JP (1) JP3510941B2 (en)
CA (1) CA2151851C (en)
DE (1) DE69528557T2 (en)

Families Citing this family (93)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8073695B1 (en) 1992-12-09 2011-12-06 Adrea, LLC Electronic book with voice emulation features
US7835989B1 (en) * 1992-12-09 2010-11-16 Discovery Communications, Inc. Electronic book alternative delivery systems
US7336788B1 (en) * 1992-12-09 2008-02-26 Discovery Communicatoins Inc. Electronic book secure communication with home subsystem
US7298851B1 (en) * 1992-12-09 2007-11-20 Discovery Communications, Inc. Electronic book security and copyright protection system
US7861166B1 (en) * 1993-12-02 2010-12-28 Discovery Patent Holding, Llc Resizing document pages to fit available hardware screens
US9053640B1 (en) 1993-12-02 2015-06-09 Adrea, LLC Interactive electronic book
JPH07271865A (en) 1994-04-01 1995-10-20 Mitsubishi Corp Method for managing copyright of data base
US7302415B1 (en) * 1994-09-30 2007-11-27 Intarsia Llc Data copyright management system
EP0715241B1 (en) 1994-10-27 2004-01-14 Mitsubishi Corporation Apparatus for data copyright management system
US6424715B1 (en) 1994-10-27 2002-07-23 Mitsubishi Corporation Digital content management system and apparatus
US7133845B1 (en) * 1995-02-13 2006-11-07 Intertrust Technologies Corp. System and methods for secure transaction management and electronic rights protection
US6948070B1 (en) * 1995-02-13 2005-09-20 Intertrust Technologies Corporation Systems and methods for secure transaction management and electronic rights protection
DE69637733D1 (en) * 1995-02-13 2008-12-11 Intertrust Tech Corp SYSTEMS AND METHOD FOR SAFE TRANSMISSION
US7095854B1 (en) * 1995-02-13 2006-08-22 Intertrust Technologies Corp. Systems and methods for secure transaction management and electronic rights protection
US8595502B2 (en) 1995-09-29 2013-11-26 Intarsia Software Llc Data management system
US5812278A (en) 1995-10-20 1998-09-22 Matsushita Graphic Communication Systems, Inc. Image communicating method, facsimile type electronic mail apparatus and facsimile apparatus
US6665797B1 (en) * 1995-12-01 2003-12-16 Tse Ho Keung Protection of software again against unauthorized use
US5943423A (en) * 1995-12-15 1999-08-24 Entegrity Solutions Corporation Smart token system for secure electronic transactions and identification
JP3176030B2 (en) 1996-01-08 2001-06-11 株式会社東芝 Copy control method and copy control device
US6085323A (en) * 1996-04-15 2000-07-04 Kabushiki Kaisha Toshiba Information processing system having function of securely protecting confidential information
JP3093678B2 (en) * 1996-06-28 2000-10-03 株式会社東芝 Encryption method, decryption method, recording / reproducing device, decryption device, decryption unit device and recording medium manufacturing method
US5940507A (en) * 1997-02-11 1999-08-17 Connected Corporation Secure file archive through encryption key management
JP3349910B2 (en) * 1997-02-12 2002-11-25 日本電気株式会社 Image data encoding system
US5923754A (en) * 1997-05-02 1999-07-13 Compaq Computer Corporation Copy protection for recorded media
US6134660A (en) * 1997-06-30 2000-10-17 Telcordia Technologies, Inc. Method for revoking computer backup files using cryptographic techniques
US5983273A (en) 1997-09-16 1999-11-09 Webtv Networks, Inc. Method and apparatus for providing physical security for a user account and providing access to the user's environment and preferences
US6052468A (en) * 1998-01-15 2000-04-18 Dew Engineering And Development Limited Method of securing a cryptographic key
US6182227B1 (en) * 1998-06-22 2001-01-30 International Business Machines Corporation Lightweight authentication system and method for validating a server access request
US6296071B1 (en) 1998-06-30 2001-10-02 Harley-Davidson Motor Company Group, Inc. Motorcycle rocker assembly
JP4527882B2 (en) 1998-10-07 2010-08-18 アドビ・システムズ・インコーポレーテッド Method and system for distributing access to data items
GB2342827A (en) * 1998-10-11 2000-04-19 Mark Baker A system for authentication, data security, digital rights management and encryption for use with electronic commerce and electronic business systems
US6370250B1 (en) * 1998-10-29 2002-04-09 International Business Machines Corporation Method of authentication and storage of private keys in a public key cryptography system (PKCS)
US6356941B1 (en) * 1999-02-22 2002-03-12 Cyber-Ark Software Ltd. Network vaults
US7162452B1 (en) * 1999-03-25 2007-01-09 Epstein Michael A Key distribution via a memory device
AU3384800A (en) * 1999-04-08 2000-11-14 James M. Blum System and method for transmission of encrypted files from central server computer to a remote computer
US6554188B1 (en) * 1999-04-13 2003-04-29 Electronic Data Holdings Limited Terminal for an active labelling system
US7127610B1 (en) * 1999-06-02 2006-10-24 Nortel Networks Limited Apparatus and method of implementing multicast security between multicast domains
US7391865B2 (en) 1999-09-20 2008-06-24 Security First Corporation Secure data parser method and system
AU7596500A (en) 1999-09-20 2001-04-24 Quintiles Transnational Corporation System and method for analyzing de-identified health care data
US7213005B2 (en) * 1999-12-09 2007-05-01 International Business Machines Corporation Digital content distribution using web broadcasting services
JP2003523003A (en) * 1999-12-20 2003-07-29 パット−ライツ リミテッド Software and method for restricting use of other software only to legitimate users
WO2001063831A1 (en) * 2000-02-24 2001-08-30 Valicert Corporation Mechanism for efficient private bulk messaging
US7546337B1 (en) 2000-05-18 2009-06-09 Aol Llc, A Delaware Limited Liability Company Transferring files
US7366779B1 (en) 2000-06-19 2008-04-29 Aol Llc, A Delaware Limited Liability Company Direct file transfer between subscribers of a communications system
US7113995B1 (en) * 2000-10-19 2006-09-26 International Business Machines Corporation Method and apparatus for reporting unauthorized attempts to access nodes in a network computing system
US6978300B1 (en) 2000-10-19 2005-12-20 International Business Machines Corporation Method and apparatus to perform fabric management
US7636772B1 (en) 2000-10-19 2009-12-22 International Business Machines Corporation Method and apparatus for dynamic retention of system area network management information in non-volatile store
US6990528B1 (en) 2000-10-19 2006-01-24 International Business Machines Corporation System area network of end-to-end context via reliable datagram domains
US6941350B1 (en) 2000-10-19 2005-09-06 International Business Machines Corporation Method and apparatus for reliably choosing a master network manager during initialization of a network computing system
US7099955B1 (en) 2000-10-19 2006-08-29 International Business Machines Corporation End node partitioning using LMC for a system area network
US6981025B1 (en) 2000-10-19 2005-12-27 International Business Machines Corporation Method and apparatus for ensuring scalable mastership during initialization of a system area network
US20020073257A1 (en) * 2000-12-07 2002-06-13 Ibm Corporation Transferring foreign protocols across a system area network
KR100413627B1 (en) * 2001-03-19 2003-12-31 스톰 씨엔씨 인코포레이티드 System for jointing digital literary works against unlawful reproduction through communication network and method for there of
US7003111B2 (en) * 2001-10-11 2006-02-21 International Business Machines Corporation Method, system, and program, for encoding and decoding input data
US7865440B2 (en) * 2001-10-11 2011-01-04 International Business Machines Corporation Method, system, and program for securely providing keys to encode and decode data in a storage cartridge
US20040025039A1 (en) * 2002-04-30 2004-02-05 Adam Kuenzi Lock box security system with improved communication
US7042334B2 (en) * 2003-01-31 2006-05-09 General Electric Company Methods for managing access to physical assets
US7123127B2 (en) 2003-01-31 2006-10-17 General Electric Company System for managing physical assets
US7061367B2 (en) * 2002-04-30 2006-06-13 General Electric Company Managing access to physical assets
US20040143733A1 (en) * 2003-01-16 2004-07-22 Cloverleaf Communication Co. Secure network data storage mediator
EP1618700A4 (en) * 2003-04-17 2010-04-28 Tecsec Inc Server-based cryptography
US20040250140A1 (en) * 2003-05-02 2004-12-09 International Business Machines Corporation Identifying users of network environments
US6883505B1 (en) 2004-04-02 2005-04-26 Midwest Motorcycle Supply Rocker box assembly with reed valve
US20070050293A1 (en) * 2005-08-26 2007-03-01 Petr Peterka Method and apparatus for distributing content to a client device
US8266438B2 (en) 2004-10-25 2012-09-11 Security First Corp. Secure data parser method and system
US7899189B2 (en) * 2004-12-09 2011-03-01 International Business Machines Corporation Apparatus, system, and method for transparent end-to-end security of storage data in a client-server environment
KR100708162B1 (en) * 2005-04-25 2007-04-16 삼성전자주식회사 Method for managing a domain and apparatus therefor
US7420474B1 (en) 2005-05-13 2008-09-02 Barron Associates, Inc. Idiosyncratic emissions fingerprinting method for identifying electronic devices
US8684577B2 (en) * 2005-05-13 2014-04-01 Invuity, Inc. Body cavity illumination system
CN1889418B (en) * 2005-06-30 2011-11-16 诺基亚西门子通信系统技术(北京)有限公司 Network storing method and network storing system
US20070022459A1 (en) * 2005-07-20 2007-01-25 Gaebel Thomas M Jr Method and apparatus for boundary-based network operation
WO2023009362A1 (en) * 2021-07-22 2023-02-02 Racuya Robbins Ann Elizabeth System for knowledge creation and living trust
US11100383B2 (en) * 2007-07-24 2021-08-24 Ann Racuya-Robbins Living machine for the manufacture of living knowledge
EP2482218A3 (en) 2006-12-05 2012-10-31 Security First Corporation Improved storage backup method using a secure data parser
US9355273B2 (en) 2006-12-18 2016-05-31 Bank Of America, N.A., As Collateral Agent System and method for the protection and de-identification of health care data
US9670694B2 (en) * 2007-04-12 2017-06-06 Utc Fire & Security Americas Corporation, Inc. Restricted range lockbox, access device and methods
KR101401818B1 (en) 2007-09-12 2014-05-30 소니 픽쳐스 엔터테인먼트, 인크. Open market content distribution
US8315394B2 (en) * 2007-10-24 2012-11-20 Hitachi Global Storage Technologies Netherlands, B.V. Techniques for encrypting data on storage devices using an intermediate key
CA2659016A1 (en) * 2009-03-23 2010-09-23 Doug P. Horsley Polychromatic harmonica
US9237381B2 (en) 2009-08-06 2016-01-12 Time Warner Cable Enterprises Llc Methods and apparatus for local channel insertion in an all-digital content distribution network
US9635421B2 (en) 2009-11-11 2017-04-25 Time Warner Cable Enterprises Llc Methods and apparatus for audience data collection and analysis in a content delivery network
CA2781872A1 (en) 2009-11-25 2011-06-09 Security First Corp. Systems and methods for securing data in motion
GB201000288D0 (en) 2010-01-11 2010-02-24 Scentrics Information Security System and method of enforcing a computer policy
US20100185868A1 (en) * 2010-03-21 2010-07-22 William Grecia Personilized digital media access system
US8402555B2 (en) 2010-03-21 2013-03-19 William Grecia Personalized digital media access system (PDMAS)
JP5663083B2 (en) 2010-03-31 2015-02-04 セキュリティー ファースト コープ. System and method for securing data in motion
CN105071936B (en) 2010-09-20 2018-10-12 安全第一公司 The system and method shared for secure data
US8930979B2 (en) 2010-11-11 2015-01-06 Time Warner Cable Enterprises Llc Apparatus and methods for identifying and characterizing latency in a content delivery network
US10148623B2 (en) 2010-11-12 2018-12-04 Time Warner Cable Enterprises Llc Apparatus and methods ensuring data privacy in a content distribution network
EP2684311A1 (en) * 2011-03-07 2014-01-15 Security First Corp. Secure file sharing method and system
US8856530B2 (en) 2011-09-21 2014-10-07 Onyx Privacy, Inc. Data storage incorporating cryptographically enhanced data protection
WO2016079371A1 (en) * 2014-11-18 2016-05-26 Nokia Technologies Oy Secure access to remote data
US11509459B2 (en) 2019-05-10 2022-11-22 Conduent Business Services, Llc Secure and robust decentralized ledger based data management

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5010571A (en) * 1986-09-10 1991-04-23 Titan Linkabit Corporation Metering retrieval of encrypted data stored in customer data retrieval terminal
US5247575A (en) * 1988-08-16 1993-09-21 Sprague Peter J Information distribution system
GB9003325D0 (en) * 1990-02-14 1990-04-11 Enfranchise Sixty Ltd Apparatus and method for controlling access to broadcast signals
JPH06102822A (en) * 1991-09-26 1994-04-15 Rooreru Intelligent Syst:Kk File security system
JPH088565B2 (en) * 1992-09-11 1996-01-29 日本電気株式会社 Broadcast key distribution device
US5319705A (en) * 1992-10-21 1994-06-07 International Business Machines Corporation Method and system for multimedia access control enablement
US5349642A (en) * 1992-11-03 1994-09-20 Novell, Inc. Method and apparatus for authentication of client server communication
US5509074A (en) * 1994-01-27 1996-04-16 At&T Corp. Method of protecting electronically published materials using cryptographic protocols

Also Published As

Publication number Publication date
US5719938A (en) 1998-02-17
EP0695997B1 (en) 2002-10-16
EP0695997A3 (en) 1999-06-16
JPH0863436A (en) 1996-03-08
DE69528557T2 (en) 2003-07-17
CA2151851C (en) 1999-05-18
EP0695997A2 (en) 1996-02-07
DE69528557D1 (en) 2002-11-21
JP3510941B2 (en) 2004-03-29

Similar Documents

Publication Publication Date Title
CA2151851A1 (en) Methods for providing secure access to shared information
Blaze Key Management in an Encrypting File System.
CA2241745A1 (en) Method and apparatus for controlling access to encrypted data files in a computer system
CA2341784A1 (en) Method to deploy a pki transaction in a web browser
CA2253539C (en) A method for providing a secure non-reusable one-time password
US5315658B1 (en) Fair cryptosystems and methods of use
US5276737B1 (en) Fair cryptosystems and methods of use
CA2267395A1 (en) Method and system for managing keys for encrypted data
ATE324721T1 (en) MANAGEMENT OF ENCRYPTED MEDIA KEYS
WO2004034184A3 (en) Encrypting operating system
WO2001065545A3 (en) Method and apparatus for using non-secure file servers for secure information storage
MX9700980A (en) System and method for key escrow and data escrow encryption.
EP0725512A3 (en) Data communication system using public keys
CA2568739A1 (en) System, method, and computer program product for providing digital rights management of protected content
CA2133237A1 (en) Software Pay-Per-Use System
WO2002029577A3 (en) Method and apparatus for automatic database encryption
KR960703248A (en) DATA PROTECTION SYSTEM
IL124990A0 (en) System and method for general purpose network analysis
WO2001097440A3 (en) Encryption system that dynamically locates keys
CA2075329A1 (en) Public key cryptosystem key management based on control vectors
AU2002252241A1 (en) Method and system for providing bus encryption based on cryptographic key exchange
CA2388537A1 (en) Wireless security access management for a portable data storage cartridge
WO2004027622A3 (en) Method and system for secure distribution
WO2001037478A3 (en) Encryption key management system using multiple smart cards
Preparata et al. Fully dynamic techniques for point location and transitive closure in planar structures

Legal Events

Date Code Title Description
EEER Examination request
MKEX Expiry

Effective date: 20150615