The overall objective of smart encryption keys that are location aware is to provide a solution that can enable secure data services for cloud computing unstructured data at rest, data in motion, and data in use. Key elements comprise:
Provide the data owner control and sole possession of their encryption keys.
Provide a convoluted approach to data encryption and encryption keys hardening so no one adversarial act can result in possession of the data encryption key and obtaining a copy of a key is of no avail.
Physical and logical hardened separation of encrypted data from its smart location-aware encryption keys.
Design approach that can leverage cloud provider product/services offerings for implementation.
Embrace industry standards and support compliance as well as optimize performance.
Implement Public Key Infrastructure (PKI) to enable group data sharing of the secured data.