18426150. MULTI-TENANT HARDWARE-BACKED TRANSPORT LAYER SECURITY KEY MANAGEMENT (Salesforce, Inc.)
MULTI-TENANT HARDWARE-BACKED TRANSPORT LAYER SECURITY KEY MANAGEMENT
Organization Name
Inventor(s)
Prasad Peddada of Alameda CA (US)
MULTI-TENANT HARDWARE-BACKED TRANSPORT LAYER SECURITY KEY MANAGEMENT
This abstract first appeared for US patent application 18426150 titled 'MULTI-TENANT HARDWARE-BACKED TRANSPORT LAYER SECURITY KEY MANAGEMENT
Original Abstract Submitted
A method of data processing is described. The method includes receiving, at a server host, a request to access a web domain associated with a tenant of a multi-tenant cloud platform; retrieving, from a database, a tenant private key and a certificate associated with the tenant, where the tenant private key is encrypted with a secret key derived from a key agreement public key associated with the tenant and a private key provisioned to a key protection component of the server host; providing, to the key protection component, the encrypted tenant private key and the key agreement public key; receiving, from the key protection component, an API response including a signature associated with the tenant private key; and providing, to a client device associated with the request to access the web domain of the tenant, the certificate and the signature, where the certificate is used to verify the signature.