1130494-A2 is referenced by 3 patents.
An apparatus, system and technique for cryptographically securing data in a secure computing environment are provided. Different components of a computer system have associated cryptographic data that is either common to the enterprise or unique to the system component for a given file transfer. In a preferred embodiment, one or more of a user, a processor/host, a remote storage device, and a remote storage medium each have associated cryptographic information that cryptographically secures data files. Once a file is cryptographically transferred to a medium using a cryptographically secure enterprise computer, the medium can be read only from a similarly configured cryptographically secure enterprise computer. Furthermore, storage media are uniquely identified so that copies of the medium can not be read even with a similarly configured cryptographically secure enterprise computer.; A distributed encryption method is provided for use in connection with file encryption. Each file that is transferred to a storage medium has a unique key file associated therewith that is also transferred, and in order for the file to be read from the medium, a system with a predefined number of components having the enterprise-common cryptographic data must be present.