Systems and methods of protecting secrets in use with containerized applications
Grant
US12591655B2
Kind: B2
Mar 31, 2026
Assignee
Visa International Service Association
Inventors
Michael Joseph Quinlan, Ajit Gaddam, Rashmi Krishnan
Abstract
Data encryption keys (and other sensitive data) can be secured during use by a key protection service that performs cryptographic operations on behalf of a client application. The key protection service can be implemented as a lightweight virtual machine that appears externally as a container and that can be executed in a secured environment. The lightweight virtual machine can include containerized processes to support an application program interface to interact with the client application and an attestation client to interact with a secured key storage system external to the secured environment.
CPC Classifications
H04L 63/10
H04L 63/102
H04L 63/108
H04L 63/105
H04L 63/08
H04L 63/0876
H04L 9/08
H04L 9/088
H04L 9/0897
H04L 9/0894
H04L 9/32
H04L 9/3234
H04L 9/3239
H04L 9/3236
H04L 9/3271
H04L 9/3273
G06F 21/575
G06F 21/577
G06F 21/57
G06F 21/50
Filing Date
2022-03-29
Application No.
18552877
Claims
18