WO2007038509A3 - System and method for protecting sensitive data - Google Patents

System and method for protecting sensitive data Download PDF

Info

Publication number
WO2007038509A3
WO2007038509A3 PCT/US2006/037477 US2006037477W WO2007038509A3 WO 2007038509 A3 WO2007038509 A3 WO 2007038509A3 US 2006037477 W US2006037477 W US 2006037477W WO 2007038509 A3 WO2007038509 A3 WO 2007038509A3
Authority
WO
WIPO (PCT)
Prior art keywords
data
sensitive data
encryption
protecting sensitive
encrypting
Prior art date
Application number
PCT/US2006/037477
Other languages
French (fr)
Other versions
WO2007038509A2 (en
Inventor
Brian Metzger
Stephen Mauldin
Bruce Sandell
Jorge Chang
Original Assignee
Ingrian Networks Inc
Brian Metzger
Stephen Mauldin
Bruce Sandell
Jorge Chang
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US11/236,294 external-priority patent/US20070079140A1/en
Priority claimed from US11/236,046 external-priority patent/US20070074047A1/en
Priority claimed from US11/236,061 external-priority patent/US20070079386A1/en
Application filed by Ingrian Networks Inc, Brian Metzger, Stephen Mauldin, Bruce Sandell, Jorge Chang filed Critical Ingrian Networks Inc
Priority to EP06825127A priority Critical patent/EP1934713A4/en
Priority to JP2008533520A priority patent/JP2009510616A/en
Publication of WO2007038509A2 publication Critical patent/WO2007038509A2/en
Publication of WO2007038509A3 publication Critical patent/WO2007038509A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6227Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database where protection concerns the structure of data, e.g. records, types, queries
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0891Revocation or update of secret information, e.g. encryption key update or rekeying

Abstract

A technique for protecting sensitive data (202) involves using encryption in a database ( 108). A system and method according to the technique may include automatically selecting a new encrypting key for re-encrypting data in a target database. New initialization vectors may be specified for re-encrypting each column of data selected for re-encryption. A new initialization vector may be specified For one or more rows of data in a database table in the target database that is selected for re-encryption (712).
PCT/US2006/037477 2005-09-26 2006-09-26 System and method for protecting sensitive data WO2007038509A2 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
EP06825127A EP1934713A4 (en) 2005-09-26 2006-09-26 System and method for protecting sensitive data
JP2008533520A JP2009510616A (en) 2005-09-26 2006-09-26 System and method for protecting sensitive data in a database

Applications Claiming Priority (6)

Application Number Priority Date Filing Date Title
US11/236,294 2005-09-26
US11/236,294 US20070079140A1 (en) 2005-09-26 2005-09-26 Data migration
US11/236,046 US20070074047A1 (en) 2005-09-26 2005-09-26 Key rotation
US11/236,046 2005-09-26
US11/236,061 2005-09-26
US11/236,061 US20070079386A1 (en) 2005-09-26 2005-09-26 Transparent encryption using secure encryption device

Publications (2)

Publication Number Publication Date
WO2007038509A2 WO2007038509A2 (en) 2007-04-05
WO2007038509A3 true WO2007038509A3 (en) 2007-10-04

Family

ID=37900395

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2006/037477 WO2007038509A2 (en) 2005-09-26 2006-09-26 System and method for protecting sensitive data

Country Status (4)

Country Link
EP (1) EP1934713A4 (en)
JP (1) JP2009510616A (en)
TW (1) TW200802029A (en)
WO (1) WO2007038509A2 (en)

Families Citing this family (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP5776696B2 (en) * 2010-09-28 2015-09-09 日本電気株式会社 Encrypted database system, client terminal, encrypted database server, natural join method and program
JP5875441B2 (en) 2012-03-29 2016-03-02 インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Machines Corporation Apparatus and method for encrypting data
TWI545460B (en) 2012-08-31 2016-08-11 萬國商業機器公司 Method,computer system and program product for transforming user-input data in a scripting languages
US9860063B2 (en) 2015-02-27 2018-01-02 Microsoft Technology Licensing, Llc Code analysis tool for recommending encryption of data without affecting program semantics
TWI640187B (en) * 2015-07-16 2018-11-01 國立成功大學 Tenon encryption method
CN105389366B (en) * 2015-11-10 2019-07-09 中国建设银行股份有限公司 A kind of big data quantity report form inquiring method and system
US10210266B2 (en) 2016-05-25 2019-02-19 Microsoft Technology Licensing, Llc Database query processing on encrypted data
JP6572926B2 (en) * 2017-03-17 2019-09-11 富士ゼロックス株式会社 Document management system
TWI626582B (en) * 2017-04-11 2018-06-11 Complex form application system
CN109033873B (en) * 2018-07-19 2020-11-17 四川长虹智慧健康科技有限公司 Data desensitization method for preventing privacy leakage
CN114925400A (en) * 2022-05-27 2022-08-19 杭州帕拉迪网络科技有限公司 Data dynamic desensitization method and device

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5999629A (en) * 1995-10-31 1999-12-07 Lucent Technologies Inc. Data encryption security module

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002169808A (en) * 2000-11-30 2002-06-14 Hitachi Ltd Secure multi-database system
US7266699B2 (en) * 2001-08-30 2007-09-04 Application Security, Inc. Cryptographic infrastructure for encrypting a database

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5999629A (en) * 1995-10-31 1999-12-07 Lucent Technologies Inc. Data encryption security module

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of EP1934713A4 *

Also Published As

Publication number Publication date
EP1934713A4 (en) 2009-04-22
WO2007038509A2 (en) 2007-04-05
TW200802029A (en) 2008-01-01
JP2009510616A (en) 2009-03-12
EP1934713A2 (en) 2008-06-25

Similar Documents

Publication Publication Date Title
WO2007038509A3 (en) System and method for protecting sensitive data
WO2006041517A3 (en) Partition and recovery of a verifiable digital secret
TW200707255A (en) Data transcription in a data storage device
WO2006126191A3 (en) Method, device, and system of encrypting/decrypting data
MXPA05005218A (en) Secure storage on recordable medium in a content protection system.
GB2440697A (en) Computer security system and method
WO2003054662A3 (en) A system and method for preventing unauthorized use of protected software utilizing a portable security device
WO2007121035A3 (en) Method and system for high throughput blockwise independent encryption/decryption
MXPA06000364A (en) Method for generating and managing a local area network.
NO985073L (en) Encryption and decryption of multimedia data
WO2006131921A3 (en) Method, device, and system of maintaining a context of a secure execution environment
MY146340A (en) Method of protecting and managing digital contents and system for using thereof
WO2005008563A3 (en) Encryption of radio frequency identification tags
EP1944712A3 (en) Methods and apparatus for protecting data
WO2007089266A3 (en) Administration of data encryption in enterprise computer systems
WO2009134937A3 (en) Format-preserving cryptographic systems
AU2001262803A1 (en) Certification method using variable encryption key system based on encryption key of certification medium and inherent information of computer hardware, and certification medium for storing the same and indicating effective term and authorization thereof
WO2004040410A3 (en) Password encryption key
WO2008031109A3 (en) System and method for encrypting data
WO2002056156A3 (en) Computer system protection
WO2005089088A3 (en) Method, apparatus and system for use in distributed and parallel decryption
TW200701728A (en) Data-encrypting/decrypting method, data-saving media using the method, and data-encrypting/decrypting module
EP1355445A3 (en) Method and apparatus for encrypting/decrypting data
TW200635328A (en) Method and device for controlling distribution and use of a digital work
WO2008038242A3 (en) A secure non-volatile memory device and a method of protecting data therein

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application
ENP Entry into the national phase

Ref document number: 2008533520

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 2006825127

Country of ref document: EP