Digital security bubble

US 10,038,677 B1
Filed: 04/25/2017
Issued: 07/31/2018
Est. Priority Date: 07/16/2012
Status: Active Grant

First Claim

Patent Images

1. A system, comprising:

a processor configured to;

receive, at a first device, an encrypted encapsulation from a sender, wherein the encrypted encapsulation includes an encrypted communication, an encrypted first key, and a first identifier;

determine whether the first device is permitted to access the encrypted encapsulation by comparing the first identifier received in the encrypted encapsulation with a second identifier related to one or more components of the first device;

decrypt the encrypted first key using at least a second key when the first identifier matches the second identifier;

decrypt the encrypted communication using the first key to produce a decrypted communication; and

provide the decrypted communication to a recipient;

a memory coupled to the processor and configured to provide the processor with instructions.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A digital security bubble encapsulation is disclosed. A public key and a device identifier of at least one recipient is requested from a first server. A message containing one or more components is encrypted using a symmetric key. The symmetric key is encrypted with a public key received in response to the request. The encrypted message, the encrypted symmetric key, and the device identifier are encapsulated in a digital security bubble encapsulation. The digital security bubble encapsulation is transmitted to a second server.

102 Citations

20 Claims

1. A system, comprising:
- a processor configured to;
  
  receive, at a first device, an encrypted encapsulation from a sender, wherein the encrypted encapsulation includes an encrypted communication, an encrypted first key, and a first identifier;
  
  determine whether the first device is permitted to access the encrypted encapsulation by comparing the first identifier received in the encrypted encapsulation with a second identifier related to one or more components of the first device;
  
  decrypt the encrypted first key using at least a second key when the first identifier matches the second identifier;
  
  decrypt the encrypted communication using the first key to produce a decrypted communication; and
  
  provide the decrypted communication to a recipient;
  
  a memory coupled to the processor and configured to provide the processor with instructions.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. They system of claim 1, wherein the first key is a symmetric key.
  - 3. The system of claim 1, wherein the second key is a private key of the recipient.
  - 4. The system of claim 1, wherein the encrypted encapsulation includes a plurality of recipients.
  - 5. The system of claim 4, wherein the encrypted encapsulation includes a plurality of first keys encrypted, in part, with a second key associated with each of the plurality of recipients.
  - 6. The system of claim 1, wherein the encrypted encapsulation includes at least one communication control option.
  - 7. The system of claim 6, wherein the at least one communication control option includes a time-to-live value for the communication.
  - 8. The system of claim 7, wherein the processor is further configured to:
    - delete the decrypted communication when the time-to-live value expires.

9. A method, comprising:
- receiving, at a first device, an encrypted encapsulation from a second device, wherein the encrypted encapsulation includes an encrypted communication, an encrypted first key, and a first identifier;
  
  determining, at the first device, whether the first device is permitted to access the encrypted encapsulation by comparing the first identifier received in the encrypted encapsulation with a second identifier related to one or more components of the first device;
  
  decrypting, by the first device, the encrypted first key using at least a second key when the first identifier matches the second identifier;
  
  decrypting, by the first device, the encrypted communication using the first key to produce a decrypted communication; and
  
  providing, by the first device, the decrypted communication to a user of the first device.
- View Dependent Claims (10, 11, 12, 13, 14)
- - 10. The method of claim 9, wherein the first key is a symmetric key.
  - 11. The method of claim 9, wherein the second key is a private key of the user.
  - 12. The method of claim 9, wherein the encrypted encapsulation includes a plurality of recipients.
  - 13. The method of claim 12, wherein the encrypted encapsulation includes a plurality of first keys encrypted, in part, with a second key associated with each of the plurality of recipients.
  - 14. The method of claim 9, further comprising:
    - deleting, by the first device, the decrypted communication when a time-to-live value associated with the decrypted communication.

15. A non-transitory computer-readable medium comprising instructions that when, executed by at least one processor, perform the steps of:
- receiving, at a first device, an encrypted encapsulation from a second device, wherein the encrypted encapsulation includes an encrypted communication, an encrypted first key, and a first identifier;
  
  determining whether the first device is permitted to access the encrypted encapsulation by comparing the first identifier received in the encrypted encapsulation with a second identifier related to one or more components of the first device;
  
  decrypting the encrypted first key using at least a second key when the first identifier matches the second identifier;
  
  decrypting the encrypted communication using the first key to produce a decrypted communication; and
  
  providing the decrypted communication to a user of the first device.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The non-transitory computer-readable medium of claim 15, wherein the first key is a symmetric key.
  - 17. The non-transitory computer-readable medium of claim 15, wherein the second key is a private key of the user.
  - 18. The non-transitory computer-readable medium of claim 15, wherein the encrypted encapsulation includes a plurality of recipients.
  - 19. The non-transitory computer-readable medium of claim 18, wherein the encrypted encapsulation includes a plurality of first keys encrypted, in part, with a second key associated with each of the plurality of recipients.
  - 20. The non-transitory computer-readable medium of claim 15, further comprising instructions for:
    - deleting the decrypted communication when a time-to-live value expires.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Wickr Inc. (Amazon.com, Inc.)
Original Assignee
Wickr Inc. (Amazon.com, Inc.)
Inventors
Howell, Christopher, Statica, Robert, Coppa, Kara Lynn
Primary Examiner(s)
Reza, Mohammad W

Application Number

US15/496,187
Time in Patent Office

462 Days
Field of Search

713171
US Class Current
CPC Class Codes

G06F 21/62   Protecting access to data v...

G06F 21/84   output devices, e.g. displa...

G06F 2203/04104   Multi-touch detection in di...

G06F 2203/04808   Several contacts: gestures ...

G06F 3/0481   based on specific propertie...

G06F 3/0488   using a touch-screen or dig...

G06F 3/04886   by partitioning the display...

G06V 20/64   Three-dimensional objects

H04L 2209/24   Key scheduling, i.e. genera...

H04L 63/04   for providing a confidentia...

H04L 63/0421   Anonymous communication, i....

H04L 63/0435   wherein the sending and rec...

H04L 63/0442   wherein the sending and rec...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/08   for authentication of entit...

H04L 63/0853   using an additional device,...

H04L 9/08   Key distribution or managem...

H04L 9/0816   Key establishment, i.e. cry...

H04L 9/0822   using key encryption key

H04L 9/0825   using asymmetric-key encryp...

H04L 9/0841 : involving Diffie-Hellman or...

H04L 9/0869 : involving random numbers or...

H04L 9/30 : Public key, i.e. encryption...

H04L 9/3066 : involving algebraic varieti...

H04L 9/3236 : using cryptographic hash fu...

View All

Digital security bubble

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

102 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Digital security bubble

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

102 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links