| CPC H04L 9/0872 (2013.01) [G06F 21/602 (2013.01); H04L 9/0894 (2013.01)] | 13 Claims |
|
1. A method for updating a cryptographic key via a computation unit configured with one or more processors and a memory coupled to the one or more processors comprising:
loading a first base key into a cryptographic storage unit integrated with a cryptographic application, wherein the first base key is persistent, wherein a lifetime of the first base key is limited to a specific time period;
generating a first temporal key based on the first base key using a one-way key update algorithm via cryptographic application logic integrated within the cryptographic application, wherein the first temporal key is assigned a first update count based on a number of updates performed on the first temporal key;
comparing the first update count value to a required update count;
updating the first temporal key if the first update count is less than the required update count, wherein the first temporal key is continually updated until the first update count is equal to the required update count; and
terminating the first temporal key if the first update count is more than the required update count,
wherein upon a zeroization of the first temporal key, a new first temporal key is generated based on the first base key, the new first temporal key configured a new first update count, wherein the new first temporal key is updated until the new first update count is equal to the required update count.
|