CPC G06F 11/1464 (2013.01) [G06F 11/1451 (2013.01); G06F 11/1461 (2013.01); G06F 11/1469 (2013.01); G06F 21/62 (2013.01); G06F 21/78 (2013.01); H04L 9/0643 (2013.01); H04L 9/0825 (2013.01); H04L 9/3226 (2013.01); H04L 9/3271 (2013.01)] | 35 Claims |
1. A method for backing up critical data stored on an originator edge device associated with a user such that the backed up critical data may be recovered onto a target edge device, the method comprising:
requesting, by a vault-broker server, the originator edge device to create an export backup record of critical data stored on the originator edge device;
generating a wrapping key;
generating, by the originator edge device, the export backup record in response to the request for the export backup record, the export backup record being a function of the wrapping key, a cryptographic key, and the critical data being backed up;
transmitting a backup-response message including the export backup record, by the originator edge device to the vault-broker server;
transmitting the backup-response message including the export backup record by the vault-broker server to a surrogate edge device;
storing the export backup record on the surrogate edge device without information allowing the surrogate edge device to access the critical data backed up from the originator edge device; and
storing an association between the originator edge device and the surrogate edge device on the vault-broker server.
|