首页> 外国专利> INCREASING DATA SECURITY IN ENTERPRISE APPLICATIONS BY OBFUSCATING ENCRYPTION KEYS

INCREASING DATA SECURITY IN ENTERPRISE APPLICATIONS BY OBFUSCATING ENCRYPTION KEYS

机译：通过加密密钥来提高企业应用程序中的数据安全性

页面导航

摘要
著录项
相似文献

摘要

A method, system, and computer program product for using hidden buffer formatting and passing obfuscated encryption key values to detect tampering with and/or prevent unauthorized inspection of a data buffer. The method comprises receiving an unencrypted sequence to be encrypted, selecting a layout version to associate to an encryption method and a checksum method, then encrypting the unencrypted sequence using the encryption method to form an encrypted sequence, and calculating, using the checksum calculation method, an unencrypted sequence checksum. Further, storing the encrypted sequence to form a hidden buffer payload, which hidden buffer has its own hidden buffer payload checksum. Encryption keys are not stored in program data, nor sent in the hidden buffers. Instead obfuscated encryption key values are used to generate keys on the fly. The receiver of a hidden buffer and obfuscated encryption key values can detect tampering or data corruption of the payload for further processing.

机译：一种方法，系统和计算机程序产品，用于使用隐藏缓冲区格式化并传递混淆的加密密钥值来检测对数据缓冲区的篡改和/或防止对其进行未经授权的检查。该方法包括：接收要加密的未加密序列;选择要与加密方法和校验和方法关联的布局版本;然后使用该加密方法对未加密的序列进行加密以形成加密序列;以及使用校验和计算方法进行计算，未加密的序列校验和。此外，存储加密序列以形成隐藏缓冲区有效载荷，该隐藏缓冲区具有其自己的隐藏缓冲区有效载荷校验和。加密密钥不存储在程序数据中，也不在隐藏缓冲区中发送。取而代之的是，使用混淆的加密密钥值来动态生成密钥。隐藏缓冲区的接收者和混淆的加密密钥值可以检测有效载荷的篡改或数据损坏，以进行进一步处理。

著录项

公开/公告号US2013086393A1

专利类型
公开/公告日2013-04-04

原文格式PDF
申请/专利权人 GEORGE R. POGMORE;
展开▼

申请/专利号US201213459829
发明设计人 GEORGE R. POGMORE;
展开▼

申请日2012-04-30
分类号G06F21;H04L9;
国家 US
入库时间 2022-08-21 16:47:27

相似文献

专利
外文文献
中文文献