Method for distributed trust authentication
US-2016294562-A1 · Oct 6, 2016 · US
Bluesalt security
US9736122B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9736122-B2 |
| Application number | US-201514843390-A |
| Country | US |
| Kind code | B2 |
| Filing date | Sep 2, 2015 |
| Priority date | Sep 2, 2015 |
| Publication date | Aug 15, 2017 |
| Grant date | Aug 15, 2017 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Embodiments of the present invention disclose a method, system, and computer program product for bluesalt security. A computer receives a confidential data configuration wherein specific sensor are assigned to specific confidential information. The assigned sensors are measured for values as a system administrator enters a password corresponding to the confidential information. The measured values are converted into a salt and concatenated with the password to generate a primary key. The primary key is used to encrypt the confidential information, then the primary key is encrypted using a secondary key comprised of a second password with a second set of sensor information as the salt. The encrypted key is saved securely while the secondary key is destroyed. In order to decrypt the confidential information, a user must replicate the password and sensor values to generate the primary or secondary key.
First claim
Opening claim text (preview).
What is claimed is: 1. A method for a bluesalt security program, the method comprising: receiving a configuration of a resource, wherein receiving the configuration of the resource further comprises: associating one or more primary sensors with the resource and identifying a lock password; referencing the one or more primary sensors to obtain one or more lock sensor values; converting the one or more lock sensor values into a lock salt value; concatenating the lock password and the lock salt value into a lock hash key; and encrypting the data using the lock hash key; receiving an access request which includes the resource and an access password; referencing the one or more primary sensors to obtain one or more access sensor values; converting the one or more access sensor values into an access salt value; concatenating the access password and the access salt value into an access hash key; determining whether the access hash key decrypts a data; based on determining that the access hash key decrypts the data, providing access to the data; based on determining that the access hash key does not decrypt the data, determining whether the access hash key decrypts an encrypted key; and based on the determining that the access hash key decrypts the encrypted key, decrypting the encrypted key and decrypting the data with the decrypted, encrypted key, wherein one or more steps of the above method are performed using one or more computers. 2. The method of claim 1 , further comprising: based on determining that the access hash key does not decrypt the encrypted key, denying access to the data. 3. The method of claim 1 , wherein receiving the configuration of the resource further comprises: associating one or more backup sensors with the resource and identifying a backup password; referencing the one or more backup sensors to obtain one or more backup sensor values; converting the one or more backup sensor values into a backup salt value; concatenating the backup password and the backup salt value into a backup hash key; and encrypting the lock hash key into the encrypted key by utilizing the backup hash key. 4. The method of claim 3 , wherein the data is encrypted symmetrically by utilizing the lock hash key. 5. The method of claim 3 , wherein the one or more primary sensors and the one or more backup sensors include at least one of a clock, a calendar, a gyroscope, an accelerometer, a compass, a global positioning system, a pressure sensor, a barometer, a thermometer, a humidity sensor, a proximity sensor, a camera, a microphone, a light sensor, a facial recognition device, a iris scanning device, a voice recognition device, a fingerprint scanner, or a device capable of detecting a Wi-Fi connection, a Bluetooth connection, a network connection, an infrared connection, or a near field communication. 6. The method of claim 1 , wherein determining whether the access hash key decrypts the data further comprises: monitoring one or more systems associated with the decrypted data; and determining whether at least one process of the one or more systems has failed based on attempting to decrypt the data by utilizing the access hash key. 7. A computer program product for a bluesalt security program, the computer program product comprising: one or more computer-readable storage media and program instructions stored on the one or more computer-readable storage media, the program instructions comprising: program instructions to receive a configuration of a resource, wherein the program instructions to receive the configuration of the resource further comprises: program instructions to associate the one or more primary sensors with the resource and identify a lock password; program instructions to reference the one or more primary sensors to obtain one or more lock sensor values; program instructions to convert the one or more lock sensor values into a lock salt value; program instructions to concatenate the lock password and the lock salt value into a lock hash key; and program instructions to encrypt the data using the lock hash key; program instructions to receive an access request which includes the resource and an access password; program instructions to reference the one or more primary sensors to obtain one or more access sensor values; program instructions to convert the one or more access sensor values into an access salt value; program instructions to concatenate the access password and the access salt value into an access hash key; program instructions to determine whether the access hash key decrypts a data; based on determining that the access hash key decrypts the data, program instructions to provide access to the data; based on determining that the access hash key does not decrypt the data, program instructions to determine whether the access hash key decrypts an encrypted key; and based on the determining that the access hash key decrypts the encrypted key, program instructions to decrypt the encrypted key and decrypting the data with the decrypted, encrypted key. 8. The computer program product of claim 7 , further comprising: based on determining that the access hash key does not decrypt the encrypted key, program instructions to deny access to the data. 9. The computer program product of claim 7 , wherein the program instructions to receive the configuration of the resource further comprises: program instructions to associate one or more backup sensors with the resource and identifying a backup password; program instructions to reference the one or more backup sensors to obtain one or more backup sensor values; program instructions to convert the one or more backup sensor values into a backup salt value; program instructions to concatenate the backup password and the backup salt value into a backup hash key; and program instructions to encrypt the lock hash key into the encrypted key by utilizing the backup hash key. 10. The computer program product of claim 9 , wherein the data is encrypted symmetrically by utilizing the lock hash key. 11. The computer program product of claim 9 , wherein the one or more primary sensors and the one or more backup sensors include at least one of a clock, a calendar, a gyroscope, an accelerometer, a compass, a global positioning system, a pressure sensor, a barometer, a thermometer, a humidity sensor, a proximity sensor, a camera, a microphone, a light sensor, a facial recognition device, a iris scanning device, a voice recognition device, a fingerprint scanner, or a device capable of detecting a Wi-Fi connection, a Bluetooth connection, a network connection, an infrared connection, or a near field communication. 12. The computer program product of claim 7 , wherein the program instructions to determine whether the access hash key decrypts the data further comprises: program instructions to monitor one or more systems associated with the decrypted data; and program instructions to determine whether at least one process of the one or more systems has failed based on attempting to decrypt the data by utilizing the access hash key. 13. A computer system for a bluesalt security program, the computer system comprising: one or more computer processors, one or more computer-readable storage media, and program instructions stored on one or more of the computer-readable storage media for execution by at least one of the one or more processors, the program instructions comprising: program instructions to receive a configuration of a resource, wherein the program instructions to receive the configuration of the resource further comprises: program instructions to asso
Assignees
Inventors
Classifications
using a plurality of keys or algorithms · CPC title
involving keyed hash functions, e.g. message authentication codes [MACs], CBC-MAC or HMAC · CPC title
involving passwords or one-time passwords (network architectures or network communication protocols for using one-time keys in a packet data network H04L63/067) · CPC title
- H04L63/0435Primary
wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption (cryptographic mechanisms or cryptographic arrangements for symmetric key encryption H04L9/06) · CPC title
applying encryption of the keys · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9736122B2 cover?
- Embodiments of the present invention disclose a method, system, and computer program product for bluesalt security. A computer receives a confidential data configuration wherein specific sensor are assigned to specific confidential information. The assigned sensors are measured for values as a system administrator enters a password corresponding to the confidential information. The measured val…
- Who is the assignee on this patent?
- IBM
- What technology area does this patent fall under?
- Primary CPC classification H04L63/0435. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Aug 15 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).