SAP SE
Secure, reliable, and decentralized communication in cloud platform

Abstract:

A Secure, Reliable, and Decentralized Communication ("SRDC") system may initialize primary and auxiliary processes associated with a mobile application, including creation of an Obfuscated Symmetric Primary Key ("OSPK") and an Obfuscated Symmetric Auxiliary Key ("OSAK"). A cipher key manager may apply a two-way function f( ) to generate two subkeys: SPAK1 (designated (SPAK).sub.primary) and SPAK2 (designated (SPAK).sub.auxiliary). (SPAK).sub.auxiliary may be encrypted using (SPAK).sub.primary to obtain (E-SPAK).sub.auxiliary. OSAK may be de-obfuscated to obtain Symmetric Auxiliary Key ("SAK") and (E-SPAK).sub.auxiliary may be encrypted using SAK to obtain (EE-SPAK).sub.auxiliary. A key obfuscator may be called to de-obfuscate OSPK to obtain Symmetric Primary Key ("SPK"). (SPAK).sub.primary may then be encrypted using SPK to obtain (E-SPAK).sub.primary. The SRDC system may communicate with a CP mobile service and store (E-SPAK).sub.primary in a storage service. Data Encryption Key ("DEK") may be generated, encrypted with SPAK and stored in the keychain persistent store of the primary process.