Abstract: A device and a method for performing a cryptographic algorithm is described herein..

Abstract: A computer implemented method comprising: obtaining first data, comprising a representation of computer program code that embodies a cryptographic algorithm; obtaining second data; receiving a request for a first mechanism to be performed, the request comprising information identifying the first mechanism, and information identifying the first data as corresponding to a program and the second data as corresponding to an input; performing the first mechanism, wherein performing the first mechanism comprises: performing a first determination, the first determination comprising: determining whether a first policy associated with the second data permits the second data to be used with the program represented in the first data, and determining whether a third policy associated with the computer program code permits the computer program code to be used with the second data; and if the first determination is successful, executing the program represented in the first data taking the second data as input.

Abstract: A computer-implemented method of storing data from a second storage component in a first storage component includes: storing information relating to a first sequence of values in the first storage component; storing a second sequence of values from the second storage component into the first storage component in a plurality of steps, deleting or overwriting one or more values from the second sequence of values which were stored in the first storage component in a previous step; and storing an encrypted third sequence of values in the first storage component. The third sequence of values is derivable from the first sequence of values and the second sequence of values.

Abstract: A method of data transfer from a tenant to a service provider comprises encrypting the data with a public key of a key pair generated by a secure device within the service provider system. The data thus cannot be accessed by the service provider during transmission. The data is generated with a corresponding access control list, which specifies that a valid certificate must be presented in order to grant a particular use of the data once stored. The tenant can thus retain control of the use of the data even though it has been transferred out of the tenant system. A method of controlling use of data securely stored in the service provider system comprises issuing a use certificate having an expiry time to the party requesting use of the data. The use certificate must be validated before use of the stored data is granted. This enables the tenant to grant use of the stored data for a limited time period.

Abstract: A method of performing a file transaction, the method comprising: providing a transaction instruction to perform a set of one or more transaction operations on a device; responsive to determining the transaction instruction comprises one or more write transaction operations, wherein the one or more write transaction operations collectively relate to a first file group comprising at least one file object, the first file group has a first size, and each of the at least one file objects comprises identification information, if the first size does not exceed available device storage: writing each of the at least one file objects with an uncommitted file type; after the first file group is written, storing transaction information on the device storage indicating that the transaction is committed; responsive to determining that one or more pre-existing file objects share identification information with any of the first file group, erasing the one or more pre-existing file objects; updating the type of each of the a

Abstract: A method of data transfer from a tenant to a service provider comprises encrypting the data with a public key of a key pair generated by a secure device within the service provider system. The data thus cannot be accessed by the service provider during transmission. The data is generated with a corresponding access control list, which specifies that a valid certificate must be presented in order to grant a particular use of the data once stored. The tenant can thus retain control of the use of the data even though it has been transferred out of the tenant system. A method of controlling use of data securely stored in the service provider system comprises issuing a use certificate having an expiry time to the party requesting use of the data. The use certificate must be validated before use of the stored data is granted. This enables the tenant to grant use of the stored data for a limited time period.

Abstract: A method of data transfer from a tenant to a service provider comprises encrypting the data with a public key of a key pair generated by a secure device within the service provider system. The data thus cannot be accessed by the service provider during transmission. The data is generated with a corresponding access control list, which specifies that a valid certificate must be presented in order to grant a particular use of the data once stored. The tenant can thus retain control of the use of the data even though it has been transferred out of the tenant system. A method of controlling use of data securely stored in the service provider system comprises issuing a use certificate having an expiry time to the party requesting use of the data. The use certificate must be validated before use of the stored data is granted. This enables the tenant to grant use of the stored data for a limited time period.

Abstract: A computer implemented method comprising: obtaining first data, comprising a representation of computer program code that embodies a cryptographic algorithm; obtaining second data; receiving a request for a first mechanism to be performed; the request comprising information identifying the first mechanism, and information identifying the first data as corresponding to a program and the second data as corresponding to an input; performing the first mechanism, wherein performing the first mechanism comprises: performing a first determination, the first determination comprising: determining whether a first policy associated with the second data permits the second data to be used with the program represented in the first data, and determining whether a third policy associated with the computer program code permits the computer program code to be used with the second data; and if the first determination is successful, executing the program represented in the first data taking the second data as input.

Abstract: A method of data transfer from a tenant to a service provider comprises encrypting the data with a public key of a key pair generated by a secure device within the service provider system. The data thus cannot be accessed by the service provider during transmission. The data is generated with a corresponding access control list, which specifies that a valid certificate must be presented in order to grant a particular use of the data once stored. The tenant can thus retain control of the use of the data even though it has been transferred out of the tenant system. A method of controlling use of data securely stored in the service provider system comprises issuing a use certificate having an expiry time to the party requesting use of the data. The use certificate must be validated before use of the stored data is granted. This enables the tenant to grant use of the stored data for a limited time period.

Abstract: A method of data transfer from a tenant to a service provider comprises encrypting the data with a public key of a key pair generated by a secure device within the service provider system. The data thus cannot be accessed by the service provider during transmission. The data is generated with a corresponding access control list, which specifies that a valid certificate must be presented in order to grant a particular use of the data once stored. The tenant can thus retain control of the use of the data even though it has been transferred out of the tenant system. A method of controlling use of data securely stored in the service provider system comprises issuing a use certificate having an expiry time to the party requesting use of the data. The use certificate must be validated before use of the stored data is granted. This enables the tenant to grant use of the stored data for a limited time period.