| CPC G06F 21/602 (2013.01) [G06F 12/1408 (2013.01); G06N 20/00 (2019.01); H04L 9/0844 (2013.01); H04L 9/321 (2013.01); H04L 9/3247 (2013.01); G06F 2212/1052 (2013.01)] | 20 Claims |
|
1. A computer implemented system for processing secure data in a secure data warehouse, the system comprising:
a computer readable memory having a secure enclave protected memory region that is encrypted by a storage key such that the secure enclave protected memory region cannot be directly accessed or interacted with by at least one of an operating system and kernel system, the secure enclave protected memory region including at least a data storage region and a data processing subsystem storage region;
a secure enclave data processor configured to:
receive, from each partner system of a plurality of partner systems, a data set corresponding to the partner system, the data set encrypted by a partner key corresponding to the partner system,
securely store, using the storage key, the encrypted data sets received from the plurality of partner systems within the data storage region of the secure enclave protected memory region;
responsive to receiving a query data message relating to the encrypted data sets in the secure enclave protected memory region, decrypt the encrypted data sets and store the decrypted data sets within the data processing subsystem storage region of the secure enclave protected memory region;
execute the query against the decrypted data sets;
and
generate an output data structure generated based on execution of the query against the decrypted data sets stored in the secure enclave protected memory region.
|