The offline private key protocol (OPKP) is a cryptographic protocol to prevent unauthorized access to back up or archive data. The protocol results in a public key that can be used to encrypt data and an offline private key that can later be used to decrypt that data.
The protocol is based on three rules regarding the key. An offline private key should:
- not be stored with the encrypted data (obviously)
- not be kept by the organisation that physically stores the encrypted data, to ensure privacy
- not be stored at the same system as the original data, to avoid the possibility that theft of only the private key would give access to all data at the storage provider; and to avoid that when the key would be needed to restore a backup, the key would be lost together with the data loss that made the restore necessary in the first place
To comply with these rules, the offline private key protocol uses a method of asymmetric key wrapping.
Read more about Offline Private Key Protocol: Security, Operation, See Also
Famous quotes containing the words private and/or key:
“The issue is privacy. Why is the decision by a woman to sleep with a man she has just met in a bar a private one, and the decision to sleep with the same man for $100 subject to criminal penalties?”
—Anna Quindlen (b. 1952)
“Now narrow minds can develop as well through persecution as through benevolence; they can assure themselves of their power by tyrannizing cruelly or beneficently over others; they go the way their nature guides them. Add to this the guidance of interest, and you will have the key to most social riddles.”
—HonorĂ© De Balzac (1799–1850)