Photo by erica steeves on Unsplash

Envelope Encryption — Storing Secrets in the Cloud

Prof Bill Buchanan OBE

Published in

ASecuritySite: When Bob Met Alice

3 min readNov 29, 2022

--

With envelope encryption, we take our data, and then encrypt it with a Data Encryption Key (DEK) — also known as a data key. We then take the DEK and encrypt it with a Customer Master Key (CMK) — also known as a root key. After this we can store the encrypted DEK alongside the encrypted data. In Figure 1, we see that Alice has the CMK and Wendy has the DEK. Wendy takes Alice’s data, and then encrypts…

Prof Bill Buchanan OBE

Written by Prof Bill Buchanan OBE

Editor for

ASecuritySite: When Bob Met Alice

Professor of Cryptography. Serial innovator. Believer in fairness, justice & freedom. Based in Edinburgh. Old World Breaker. New World Creator. Building trust.

More from Prof Bill Buchanan OBE and ASecuritySite: When Bob Met Alice

Prof Bill Buchanan OBE
in
ASecuritySite: When Bob Met Alice

Elliptic Curve Integrated Encryption Scheme (ECIES): Encrypting Using Elliptic Curves

With ECC (Elliptic Curve Cryptography), we have an opportunity to use both the power of public-key encryption, with the speed and security…

4 min readApr 30

--

Prof Bill Buchanan OBE
in
ASecuritySite: When Bob Met Alice

The Most Important Area of Cybersecurity? Perhaps Identity and Access Management?

Meet Microsoft Entra

6 min read6 days ago

--

Prof Bill Buchanan OBE
in
ASecuritySite: When Bob Met Alice

Building A New World of Security With Zero Trust, Trusted Attributes and Claims

We have now started a new collaboration with MIRACL, and aim to build systems that have high levels of trust and implement a zero-trust…

5 min readMay 5

--

Prof Bill Buchanan OBE
in
ASecuritySite: When Bob Met Alice

Security-By Design: Meet Near Perfect Message Security: Messaging Layer Security (MLS)

The use of SSL/TLS fixed the problem of transmitting data packets without encryption, and in not checking the trustworthiness of the…

4 min readMay 15

--

See all from Prof Bill Buchanan OBE

See all from ASecuritySite: When Bob Met Alice

Recommended from Medium

Prof Bill Buchanan OBE
in
ASecuritySite: When Bob Met Alice

Can We Generate a Secret Based on Bob and Alice’s Secret — And Prove It?

It has been a tough time for Bob and Alice. The demands of cybersecurity has meant that they just don’t trust anyone or anything anymore —…

3 min readDec 14, 2022

--

Sigmund Brandstaetter, CISSP, CCSP, CISM, C|CISO
in
OSINT TEAM

Dark Web — How to get started

You may ask yourself now, “Why would anybody be interested in the Dark Web besides Criminals and Drug dealers/users?” — Well, the answer…

6 min readApr 22

--

Lists

Staff Picks

332 stories87 saves

Stories to Help You Level-Up at Work

19 stories56 saves

Self-Improvement 101

20 stories108 saves

Productivity 101

20 stories120 saves

A man floating in the buoyant waters of the Dead Sea

Sam Westreich, PhD

Beware the Dead Sea Effect at Companies

“Salty” is a terrible adjective to apply to a job.

7 min read6 days ago

--

Rhett Allain

Is a 50 mph-50 mph Collision the Same as a 100–0 mph Collision?

A long time ago there was a MythBusters episode that looked at head to head crashing cars. Suppose you have two equal mass cars both…

9 min readMay 19

--

LORY

Secure Programming — How does RSA work and why is it secure?

RSA encryption and decryption process step by step in 10 mins

4 min readJan 22

--

Love Sharma
in
Dev Genius

System Design Blueprint: The Ultimate Guide

Developing a robust, scalable, and efficient system can be daunting. However, understanding the key concepts and components can make the…

9 min readApr 20

--

See more recommendations

Help
Status
Writers
Blog
Careers
Privacy
Terms
About
Text to speech