| CPC H04L 9/0894 (2013.01) [H04L 9/083 (2013.01); H04L 9/0822 (2013.01); H04L 9/0869 (2013.01)] | 26 Claims |
|
1. An electronic device, comprising:
a memory to store instructions; and
at least one application processor coupled with the memory, the at least one application processor to execute instructions stored in the memory, wherein the at least
one application processor is to:
split an account recovery key into multiple key portions, wherein the account recovery key is to enable recovery of an account associated with the electronic device;
receive an encryption key from an accessory device associated with the electronic device, wherein the encryption key is signed with an attestation key;
verify authenticity of the accessory device with the signed encryption key;
encrypt a portion of the account recovery key using cryptographic material derived from the encryption key, wherein encrypting the portion of the account recovery key includes to:
generate an ephemeral key pair;
compute a first portion of the cryptographic material based in part on a first key of the ephemeral key pair and the encryption key;
compute a second portion of the cryptographic material based in part on a second key of the ephemeral key pair and the first portion of the cryptographic material; and
encrypt the portion of the account recovery key using the second portion
of the cryptographic material; and
provide an encrypted portion of the account recovery key to a server associated with a user account associated with the electronic device.
|