US Patent Application 17714954. DYNAMIC CRYPTOGRAPHIC KEY MANAGEMENT FOR HANDLING KEY COMPROMISES IN CACHED DATA AND METADATA simplified abstract
Contents
DYNAMIC CRYPTOGRAPHIC KEY MANAGEMENT FOR HANDLING KEY COMPROMISES IN CACHED DATA AND METADATA
Organization Name
Inventor(s)
Niharika Avasarala of Cupertino CA (US)
Mahadev Karadigudda of San Jose CA (US)
Nitin Madan of Cupertino CA (US)
Madhu Agrahara Gopalakrishna of Fremont CA (US)
DYNAMIC CRYPTOGRAPHIC KEY MANAGEMENT FOR HANDLING KEY COMPROMISES IN CACHED DATA AND METADATA - A simplified explanation of the abstract
- This abstract for appeared for US patent application number 17714954 Titled 'DYNAMIC CRYPTOGRAPHIC KEY MANAGEMENT FOR HANDLING KEY COMPROMISES IN CACHED DATA AND METADATA'
Simplified Explanation
This abstract describes a system for managing cryptographic keys for cached data. When a request is made to access a data block that is encrypted with a compromised encryption key, the system identifies the compromised key and removes the corresponding data block from the cache. The system then re-encrypts the data block with a new encryption key when a new request is received. Any other data blocks that are still encrypted with the compromised key are also removed from the cache according to a defined policy.
Original Abstract Submitted
Embodiments of a cryptographic key management system for cached data that efficiently re-encrypts cached data encrypted with a compromised encryption key by receiving a request to access a cached data block encrypted with an original encryption key. Upon determining that the original encryption key is compromised or destroyed, thus resulting in the requested data block being invalid, evicting the requested data block from the cache storing the cached data. The data block is re-encrypted using a new encryption key upon receipt of a new request to access the cached data. Any remaining cached data encrypted with the original encryption key is evicted from the cache through a defined cache eviction policy.
