Kenneth E Kerr

US Patent:

20130039494, Feb 14, 2013

Filed:

Oct 15, 2012

Appl. No.:

13/652022

Inventors:

INTERNATIONAL BUSINESS MACHINES CORPORATION - Armonk NY, US
Elizabeth A. Dames - Concord NC, US
Carsten D. Frehr - Farum, DK
Michael J. Kelly - Staatsburg NY, US
Kenneth B. Kerr - New Paltz NY, US
Richard V. Kisley - Charlotte NC, US
Eric D. Rossman - Concord NC, US
Eric B. Smith - Concord NC, US

Assignee:

INTERNATIONAL BUSINESS MACHINES CORPORATION - Armonk NY

International Classification:

H04L 9/00

US Classification:

380277

Abstract:

According to one embodiment, a method for implementing secure key management is provided. The method includes populating a section of information associated with a key, the section being populated with information relating to how the key was created. The method also includes populating the section with information relating to how the key was acquired by a secure module; and binding the section to the key, wherein the key is encrypted.

US Patent:

20130039495, Feb 14, 2013

Filed:

Oct 15, 2012

Appl. No.:

13/652027

Inventors:

International Business Machines Corporation - Armonk NY, US
Elizabeth A. Dames - Concord NC, US
Thomas J. Dewkett - Staatsburg NY, US
Carsten D. Frehr - Farum, DK
Michael J. Kelly - Staatsburg NY, US
Kenneth B. Kerr - New Paltz NY, US
Richard V. Kisley - Charlotte NC, US
Eric D. Rossman - Wappingers Falls NY, US
Eric B. Smith - Concord NC, US

Assignee:

INTERNATIONAL BUSINESS MACHINES CORPORATION - Armonk NY

International Classification:

H04L 9/00

US Classification:

380277

Abstract:

According to one embodiment, a method for implementing computer security is provided. The method includes creating a token and populating a payload section of the token with key material and selecting a wrapping method that specifies how the key material is securely bound to key control information, wherein a structure of the key control information in the token is independent of the wrapping method. The method also includes wrapping the key material and binding key control information to the key material in the token, wherein the key control information includes information relating to usage and management of the key material.

US Patent:

20130044879, Feb 21, 2013

Filed:

Oct 15, 2012

Appl. No.:

13/652032

Inventors:

International Business Machines Corporation - Armonk NY, US
Elizabeth A. Dames - Concord NC, US
Carsten D. Frehr - Farum, DK
Michael J. Kelly - Staatsburg NY, US
Kenneth B. Kerr - New Paltz NY, US
Richard V. Kisley - Charlotte NC, US
Eric D. Rossman - Concord NC, US
Eric B. Smith - Concord NC, US

Assignee:

International Business Machines Corporation - Armonk NY

International Classification:

H04L 9/00

US Classification:

380277

Abstract:

Secure key management includes populating a section of information associated with a key, the section of information being populated with information relating to a level of protection of the key accumulated over time. Secure key management further includes securely binding the section of information to the key, wherein the key is encrypted.

US Patent:

20130044880, Feb 21, 2013

Filed:

Oct 17, 2012

Appl. No.:

13/653929

Inventors:

International Business Machines Corporation - Armonk NY, US
Elizabeth A. Dames - Concord NC, US
Carsten D. Frehr - Farum DE, US
Michael J. Kelly - Wappingers Falls NY, US
Kenneth B. Kerr - New Paltz NY, US
Richard V. Kisley - Charlotte NC, US
Eric D. Rossman - Wappingers Falls NY, US
Eric B. Smith - Concord NC, US

Assignee:

INTERNATIONAL BUSINESS MACHINES CORPORATION - Armonk NY

International Classification:

H04L 9/00

US Classification:

380277

Abstract:

A computer program product for secure key management is provided. The computer program product includes a tangible storage medium readable by a processing circuit and storing instructions for execution by the processing circuit for performing a method. The method includes creating a token and populating the token with key material, and binding key control information to the key material. The key control information includes information relating to management of the key material populating one or more key management fields that define attributes that limit distribution of the key material.

US Patent:

20130103954, Apr 25, 2013

Filed:

Oct 19, 2012

Appl. No.:

13/656101

Inventors:

International Business Machines Corporation - Armonk NY, US
Elizabeth A. Dames - Concord NC, US
Carsten D. Frehr - Farum, DE
Michael J. Kelly - Wappingers Falls NY, US
Kenneth B. Kerr - New Paltz NY, US
Richard V. Kisley - Charlotte NC, US
Eric D. Rossman - Wappingers Falls NY, US
Eric B. Smith - Concord NC, US

Assignee:

INTERNATIONAL BUSINESS MACHINES CORPORATION - Armonk NY

International Classification:

G06F 21/60

US Classification:

713189

Abstract:

A computer program product for secure key management is provided. The computer program product includes a tangible storage medium readable by a processing circuit and storing instructions for execution by the processing circuit for performing a method. The method includes creating a token and populating the token with key material, and binding key control information to the key material. The key control information includes information relating to usage of the key material populating one or more key usage fields that define attributes that limit actions that may be performed with the key material.