A METHOD OF DATA TRANSFER A METHOD OF CONTROLLING USE OF DATA AND A CRYPTOGRAPHIC DEVICE

摘要

A method of transferring data from a tenant to a service provider includes encrypting data with a public key of a key pair generated by a security device in a service provider system. Thus, data cannot be accessed by the service provider during transmission. The data is created along with a corresponding access control list specifying that a valid certificate must be presented in order to authorize a specific use of the data once stored. Accordingly, the tenant can maintain control of the use of the data even though it has been transferred to the outside of the tenant system. The method of controlling the use of data safely stored in the service provider system includes issuing a use certificate having an expiration time to a person requesting use of the data. The usage certificate must be verified before use of the stored data is permitted. This allows the tenant to authorize the use of data stored for a limited period of time.