| CPC H04L 9/3247 (2013.01) [G06N 10/00 (2019.01); H04L 9/0618 (2013.01); H04L 9/0825 (2013.01); H04L 9/0852 (2013.01); H04L 9/0877 (2013.01); H04L 9/14 (2013.01); H04L 9/3073 (2013.01); H04L 9/0836 (2013.01); H04L 9/3239 (2013.01)] | 21 Claims |
|
1. An apparatus, comprising:
a computer readable memory;
a plurality of hardware security modules, at least a first hardware security module in the plurality of hardware security modules comprising processing circuitry to:
determine a number of hardware security modules available to perform a signature process;
generate a first plurality of pairs of cryptographic key pairs comprising a first plurality of private keys and a first plurality of public keys;
forward the first plurality of public keys to a remote computing device;
receive, from the remote computing device, a first plurality of ciphertexts, wherein each ciphertext in the plurality of ciphertexts represents an encryption of a cryptographic seed with a public key selected from the plurality of public keys;
select, from the plurality of hardware security modules, a subset of hardware security modules to perform the signature process;
receive, from the subset of hardware security modules in the plurality of hardware security modules, a subset of private keys; and
generate at least one of:
a first signal when the subset of private keys comprises a number of private keys that exceeds a threshold; or
a second signal when the subset of private keys comprises a number of private keys that does not exceed a threshold.
|