skip to main content
OSTI.GOV title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Secure key storage and distribution

Abstract

This disclosure describes a distributed, fault-tolerant security system that enables the secure storage and distribution of private keys. In one implementation, the security system includes a plurality of computing resources that independently store private keys provided by publishers and encrypted using a single security system public key. To protect against malicious activity, the security system private key necessary to decrypt the publication private keys is not stored at any of the computing resources. Rather portions, or shares of the security system private key are stored at each of the computing resources within the security system and multiple security systems must communicate and share partial decryptions in order to decrypt the stored private key.

Inventors:
Publication Date:
Research Org.:
Washington State Univ., Pullman, WA (United States)
Sponsoring Org.:
USDOE
OSTI Identifier:
1183337
Patent Number(s):
9,049,011
Application Number:
13/967,029
Assignee:
Washington State University (Pullman, WA) NETL
DOE Contract Number:  
OE0000097
Resource Type:
Patent
Country of Publication:
United States
Language:
English
Subject:
97 MATHEMATICS AND COMPUTING; 99 GENERAL AND MISCELLANEOUS

Citation Formats

Agrawal, Punit. Secure key storage and distribution. United States: N. p., 2015. Web.
Agrawal, Punit. Secure key storage and distribution. United States.
Agrawal, Punit. Tue . "Secure key storage and distribution". United States. https://www.osti.gov/servlets/purl/1183337.
@article{osti_1183337,
title = {Secure key storage and distribution},
author = {Agrawal, Punit},
abstractNote = {This disclosure describes a distributed, fault-tolerant security system that enables the secure storage and distribution of private keys. In one implementation, the security system includes a plurality of computing resources that independently store private keys provided by publishers and encrypted using a single security system public key. To protect against malicious activity, the security system private key necessary to decrypt the publication private keys is not stored at any of the computing resources. Rather portions, or shares of the security system private key are stored at each of the computing resources within the security system and multiple security systems must communicate and share partial decryptions in order to decrypt the stored private key.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2015},
month = {6}
}

Patent:

Save / Share:

Works referenced in this record:

Long-lived authentication protocols for process control systems
journal, December 2010

  • Chakravarthy, Rasika; Hauser, Carl; Bakken, David E.
  • International Journal of Critical Infrastructure Protection, Vol. 3, Issue 3-4, p. 174-181
  • DOI: 10.1016/j.ijcip.2010.10.001