Secure session capability using public-key cryptography without access to the private key

US 10,033,529 B2
Filed: 07/05/2016
Issued: 07/24/2018
Est. Priority Date: 04/08/2014
Status: Active Grant

First Claim

Patent Images

1. A method in a first server for establishing and using a secure session with a client device, the method comprising:

transmitting a plurality of messages between the client device and a second server that has access to a private key used in establishing the secure session, wherein the private key is not available on the first server, and wherein the plurality of messages transmitted between the client device and the second server includes a Client Hello message received from the client device, a Server Hello message received from the second server, a Certificate message received from the second server, a Server Key Exchange message received from the second server, a Server Hello Done message received from the second server, and a Client Key Exchange message received from the client device;

receiving, from the second server, a master secret that was generated using a premaster secret that was generated using a Diffie-Hellman public value selected by the client device and a Diffie-Hellman public value selected by the second server;

receiving, from the client device, a first Change Cipher Spec message and a first Finished message;

verifying information in the first Finished message including,calculating a first value using a function that takes as input at least the master secret and a hash of the Client Hello message, Server Hello message, Certificate message, Server Key Exchange message, Server Hello Done message, Client Key Exchange message, and first Change Cipher Spec message, andcomparing the calculated first value with a second value included in the first Finished message, wherein a same first value and second value indicates a successful key exchange;

transmitting a second Change Cipher Spec message to the client device;

receiving, from the second server, a set of one or more session keys to be used in the secure session for encrypting and decrypting communication between the client device and the first server that were generated at least using the master secret;

calculating a third value using a function that takes as input at least the master secret and a hash of the Client Hello message, Server Hello message, Certificate message, Server Key Exchange message, Server Hello Done message, Client Key Exchange message, first Change Cipher Spec message, first Finished message, and second Change Cipher Spec message; and

transmitting a second Finished message to the client device that includes the third value;

receiving, from the client device over the secure session, an encrypted request for a resource;

decrypting, using the set of session keys, the encrypted request for the resource;

retrieving the requested resource;

generating a response that includes the retrieved resource;

encrypting the generated response using the set of session keys; and

transmitting, to the client device over the secure session, the encrypted response.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A server establishes a secure session with a client device where a private key used in the handshake when establishing the secure session is stored in a different server. During the handshake procedure, the server proxies messages to/from the different server including a set of signed cryptographic parameters signed using the private key on the different server. The different server generates the master secret, and generates and transmits the session keys to the server that are to be used in the secure session for encrypting and decrypting communication between the client device and the server.

Citations

15 Claims

1. A method in a first server for establishing and using a secure session with a client device, the method comprising:
- transmitting a plurality of messages between the client device and a second server that has access to a private key used in establishing the secure session, wherein the private key is not available on the first server, and wherein the plurality of messages transmitted between the client device and the second server includes a Client Hello message received from the client device, a Server Hello message received from the second server, a Certificate message received from the second server, a Server Key Exchange message received from the second server, a Server Hello Done message received from the second server, and a Client Key Exchange message received from the client device;
  
  receiving, from the second server, a master secret that was generated using a premaster secret that was generated using a Diffie-Hellman public value selected by the client device and a Diffie-Hellman public value selected by the second server;
  
  receiving, from the client device, a first Change Cipher Spec message and a first Finished message;
  
  verifying information in the first Finished message including,calculating a first value using a function that takes as input at least the master secret and a hash of the Client Hello message, Server Hello message, Certificate message, Server Key Exchange message, Server Hello Done message, Client Key Exchange message, and first Change Cipher Spec message, andcomparing the calculated first value with a second value included in the first Finished message, wherein a same first value and second value indicates a successful key exchange;
  
  transmitting a second Change Cipher Spec message to the client device;
  
  receiving, from the second server, a set of one or more session keys to be used in the secure session for encrypting and decrypting communication between the client device and the first server that were generated at least using the master secret;
  
  calculating a third value using a function that takes as input at least the master secret and a hash of the Client Hello message, Server Hello message, Certificate message, Server Key Exchange message, Server Hello Done message, Client Key Exchange message, first Change Cipher Spec message, first Finished message, and second Change Cipher Spec message; and
  
  transmitting a second Finished message to the client device that includes the third value;
  
  receiving, from the client device over the secure session, an encrypted request for a resource;
  
  decrypting, using the set of session keys, the encrypted request for the resource;
  
  retrieving the requested resource;
  
  generating a response that includes the retrieved resource;
  
  encrypting the generated response using the set of session keys; and
  
  transmitting, to the client device over the secure session, the encrypted response.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1, wherein the first server and the second server are owned or operated by different entities.
  - 3. The method of claim 1, wherein the set of session keys are received from the second server over a secure session between the first server and the second server.
  - 4. The method of claim 1, wherein retrieving the requested resource includes transmitting the request for the resource to a third server and receiving the resource from the third server in response to the request, and wherein the second server and the third server are the same server.
  - 5. The method of claim 1, wherein retrieving the requested resource includes retrieving the requested resource locally on the first server.

6. A non-transitory computer-readable storage medium storing instructions, which when executed by a set of one or more processors of a first server, cause the set of processors to perform operations comprising:
- transmitting a plurality of messages between the client device and a second server that has access to a private key used in establishing a secure session between the client device and the first server, wherein the private key is not available on the first server, and wherein the plurality of messages transmitted between the client device and the second server includes a Client Hello message received from the client device, a Server Hello message received from the second server, a Certificate message received from the second server, a Server Key Exchange message received from the second server, a Server Hello Done message received from the second server, and a Client Key Exchange message received from the client device;
  
  receiving, from the second server, a master secret that was generated using a premaster secret that was generated using a Diffie-Hellman public value selected by the client device and a Diffie-Hellman public value selected by the second server;
  
  receiving, from the client device, a first Change Cipher Spec message and a first Finished message;
  
  verifying information in the first Finished message including,calculating a first value using a function that takes as input at least the master secret and a hash of the Client Hello message, Server Hello message, Certificate message, Server Key Exchange message, Server Hello Done message, Client Key Exchange message, and first Change Cipher Spec message, andcomparing the calculated first value with a second value included in the first Finished message, wherein a same first value and second value indicates a successful key exchange;
  
  transmitting a second Change Cipher Spec message to the client device;
  
  receiving, from the second server, a set of one or more session keys to be used in the secure session for encrypting and decrypting communication between the client device and the first server that were generated at least using the master secret;
  
  calculating a third value using a function that takes as input at least the master secret and a hash of the Client Hello message, Server Hello message, Certificate message, Server Key Exchange message, Server Hello Done message, Client Key Exchange message, first Change Cipher Spec message, first Finished message, and second Change Cipher Spec message; and
  
  transmitting a second Finished message to the client device that includes the third value;
  
  receiving, from the client device over the secure session, an encrypted request for a resource;
  
  decrypting, using the set of session keys, the encrypted request for the resource;
  
  retrieving the requested resource;
  
  generating a response that includes the retrieved resource;
  
  encrypting the generated response using the set of session keys; and
  
  transmitting, to the client device over the secure session, the encrypted response.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The non-transitory computer-readable storage medium of claim 6, wherein the first server and the second server are owned or operated by different entities.
  - 8. The non-transitory computer-readable storage medium of claim 6, wherein the set of session keys are received from the second server over a secure session between the first server and the second server.
  - 9. The non-transitory computer-readable storage medium of claim 6, wherein retrieving the requested resource includes transmitting the request for the resource to a third server and receiving the resource from the third server in response to the request, and wherein the second server and the third server are the same server.
  - 10. The non-transitory computer-readable storage medium of claim 6, wherein retrieving the requested resource includes retrieving the requested resource locally on the first server.

11. An apparatus comprising:
- a first server including a set of one or more processors and a set of one or more non-transitory computer-readable storage mediums storing instructions, that when executed by the set of processors, cause the set of processors to perform the following operations;
  
  transmit a plurality of messages between the client device and a second server that has access to a private key used in establishing a secure session between the client device and the first server, wherein the private key is not available on the first server, wherein the plurality of messages to be transmitted between the client device and the second server includes a Client Hello message received from the client device, a Server Hello message received from the second server, a Certificate message received from the second server, a Server Key Exchange message received from the second server, a Server Hello Done message received from the second server, and a Client Key Exchange message received from the client device;
  
  receive, from the second server, a master secret that was generated using a premaster secret that was generated using a Diffie-Hellman public value selected by the client device and a Diffie-Hellman public value selected by the second server;
  
  receive, from the client device, a first Change Cipher Spec message and a first Finished message;
  
  verify information in the first Finished message including,calculate a first value using a function that takes as input at least the master secret and a hash of the Client Hello message, Server Hello message, Certificate message, Server Key Exchange message, Server Hello Done message, Client Key Exchange message, and first Change Cipher Spec message, andcompare the calculated first value with a second value included in the first Finished message, wherein a same first value and second value indicates a successful key exchange;
  
  transmit a second Change Cipher Spec message to the client device;
  
  receive, from the second server, a set of one or more session keys to be used in the secure session for encrypting and decrypting communication between the client device and the first server that were generated at least using the master secret;
  
  calculate a third value using a function that takes as input at least the master secret and a hash of the Client Hello message, Server Hello message, Certificate message, Server Key Exchange message, Server Hello Done message, Client Key Exchange message, first Change Cipher Spec message, first Finished message, and second Change Cipher Spec message; and
  
  transmit a second Finished message to the client device that includes the third value;
  
  receive, from the client device over the secure session, an encrypted request for a resource;
  
  decrypt, using the set of session keys, the encrypted request for the resource;
  
  retrieve the requested resource;
  
  generate a response that includes the retrieved resource;
  
  encrypt the generated response using the set of session keys; and
  
  transmit, to the client device over the secure session, the encrypted response.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The apparatus of claim 11, wherein the first server and the second server are owned or operated by different entities.
  - 13. The apparatus of claim 11, wherein the set of session keys are to be received from the second server over a secure session between the first server and the second server.
  - 14. The apparatus of claim 11, wherein retrieval of the requested resource includes transmission of the request for the resource to a third server and receipt of the resource from the third server in response to the request, wherein the second server and the third server are the same server.
  - 15. The apparatus of claim 11, wherein retrieval of the requested resource includes local retrieval of the requested resource on the first server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
CloudFlare Incorporated
Original Assignee
CloudFlare Incorporated
Inventors
Pahl, Sebastien Andreas Henry, Tourne, Matthieu Philippe Francois, Sikora, Piotr, Bejjani, Ray Raymond, Knecht, Dane Orion, Prince, Matthew Browning, Graham-Cumming, John, Holloway, Lee Hahn, Sullivan, Nicholas Thomas, Strasheim, Albertus
Primary Examiner(s)
Ho, Dao Q

Application Number

US15/202,371
Publication Number

US 20160315767A1
Time in Patent Office

749 Days
Field of Search

None
US Class Current
CPC Class Codes

H04L 63/061   for key exchange, e.g. in p...

H04L 63/166   at the transport layer

H04L 9/0844   with user authentication or...

H04L 9/14   using a plurality of keys o...

H04L 9/30   Public key, i.e. encryption...

H04L 9/321   involving a third party or ...

H04L 9/3263   involving certificates, e.g...

H04L 9/3268   using certificate validatio...

Secure session capability using public-key cryptography without access to the private key

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Secure session capability using public-key cryptography without access to the private key

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links