Abstract: In various examples, an encrypted file such as one representing an encrypted game build may be distributed with an encrypted content-encryption key that was used to encrypt the file and/or an identifier associated with a key-encryption key that was used to encrypt the content-encryption key. An authorized recipient may extract the encrypted content-encryption key and the identifier from the encrypted file, use the identifier to retrieve a corresponding key-encryption key, use the key-encryption key to decrypt the encrypted content-encryption key, and use the decrypted content-encryption key to decrypt the file. Taking an encrypted game build for cloud gaming as an example, a cloud gaming platform may decrypt, attach, and mount the build (e.g., as a block device or other virtual data disk) using the decrypted content-encryption key. Accordingly, the game build may be installed and executed without the need to distribute the game build to the end user.

Abstract: In various examples, a file such as one representing a game build may be encrypted using a (e.g., randomly generated) content-encryption key, and the content-encryption key may be encrypted using a key-encryption key. The encrypted content-encryption key may be included in the encrypted file (e.g., as metadata), and an identifier associated with the key-encryption key may be included in the encrypted file (e.g., as part of an entropy tag appended to the filename). As such, the encrypted file may be securely distributed (e.g., via a content distribution network). Taking an encrypted game build for cloud gaming as an example, a game developer may encrypt a game build (e.g., as an encrypted disk) and distribute the encrypted build through an interface such as a developer portal of a cloud gaming platform, which may distribute the encrypted build to various data centers and/or geographic zones of the cloud gaming platform.

Abstract: In various examples, an encrypted file such as one representing an encrypted game build may be distributed with an encrypted content-encryption key that was used to encrypt the file and/or an identifier associated with a key-encryption key that was used to encrypt the content-encryption key. An authorized recipient may extract the encrypted content-encryption key and the identifier from the encrypted file, use the identifier to retrieve a corresponding key-encryption key, use the key-encryption key to decrypt the encrypted content-encryption key, and use the decrypted content-encryption key to decrypt the file. Taking an encrypted game build for cloud gaming as an example, a cloud gaming platform may decrypt, attach, and mount the build (e.g., as a block device or other virtual data disk) using the decrypted content-encryption key. Accordingly, the game build may be installed and executed without the need to distribute the game build to the end user.

Abstract: In various examples, a file such as one representing a game build may be encrypted using a (e.g., randomly generated) content-encryption key, and the content-encryption key may be encrypted using a key-encryption key. The encrypted content-encryption key may be included in the encrypted file (e.g., as metadata), and an identifier associated with the key-encryption key may be included in the encrypted file (e.g., as part of an entropy tag appended to the filename). As such, the encrypted file may be securely distributed (e.g., via a content distribution network). Taking an encrypted game build for cloud gaming as an example, a game developer may encrypt a game build (e.g., as an encrypted disk) and distribute the encrypted build through an interface such as a developer portal of a cloud gaming platform, which may distribute the encrypted build to various data centers and/or geographic zones of the cloud gaming platform.

Abstract: In an example, an active authentication session may b transferred from a first device to a second device. An authentication server may store a new authentication session token for the second device in session storage. The new authentication session token may be derived from an active authentication session token that was received from the first device. The authentication server may also receive an identification value from the first device, which was obtained from the second device, in response to verifying a query by the second device regarding an existence of a locator key based on the identification value in the session storage, the new authentication session token may be transmitted to the second device.

Abstract: In an example, an active authentication session may b transferred from a first device to a second device. An authentication server may store a new authentication session token for the second device in session storage. The new authentication session token may be derived from an active authentication session token that was received from the first device. The authentication server may also receive an identification value from the first device, which was obtained from the second device, in response to verifying a query by the second device regarding an existence of a locator key based on the identification value in the session storage, the new authentication session token may be transmitted to the second device.