Widely distributed parameterization
First Claim
1. In a distributed computing environment, a method for determining a widely dispersed set of digital information, comprising:
- querying a first computational environment to discover a first set of widely dispersed digital information;
obtaining at least a second set of widely dispersed digital information discovered by at least a second computational environment;
combining the at least two subsets of the widely dispersed digital information by at least one of the computational environments;
deriving cryptographic material from a combination of the first widely dispersed digital information set and the second widely dispersed digital information set;
using the derived cryptographic material as parameters to encrypt a message; and
communicating the encrypted message and additional differential information to enable a further end point to enables an at least one other computational environment to derive the same cryptographic material enabling decryption of the encrypted message without communicating or revealing the derived cryptographic material.
1 Assignment
0 Petitions
Accused Products
Abstract
This technology mitigates the vulnerabilities of parameter storage by calculating parameters dynamically rather than storing and using static parameters. This example non-limiting technology derives parameters “on-demand” from a subset of widely distributed parameters determined by a random string generated for each encrypted session. The subset of widely distributed parameters will be different each time a new subset is generated as the individual parameters are randomly selected. Thus the individual encrypted message (or document) will be encrypted differently using a different set of parameters each time. Some of these parameters bind the encrypted message to a specific user account and user device making the resulting encrypted message highly secure.
-
Citations
16 Claims
-
1. In a distributed computing environment, a method for determining a widely dispersed set of digital information, comprising:
-
querying a first computational environment to discover a first set of widely dispersed digital information; obtaining at least a second set of widely dispersed digital information discovered by at least a second computational environment; combining the at least two subsets of the widely dispersed digital information by at least one of the computational environments; deriving cryptographic material from a combination of the first widely dispersed digital information set and the second widely dispersed digital information set; using the derived cryptographic material as parameters to encrypt a message; and communicating the encrypted message and additional differential information to enable a further end point to enables an at least one other computational environment to derive the same cryptographic material enabling decryption of the encrypted message without communicating or revealing the derived cryptographic material. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 14)
-
-
12. In a distributed computing environment, a method for determining a widely dispersed set of digital information,
wherein the widely dispersed set of digital information is determined by at least two computational environments, the widely dispersed set of digital information is combined by at least one of the computational environments, the combined widely dispersed set of digital information is used by the at least one computational environment as input parameters to a derivation process which generates cryptographic material used for an encrypting process of additional input data; -
the method comprising; querying a first of the at least two computational environment to discover a subset of the widely dispersed digital information; generating at least one other subset of widely dispersed digital information by the at least one other computational environment; communicating between the at least one other and the first computational environments the at least one other subset of widely dispersed digital information; combining the at least two subsets of the widely dispersed digital information by at least one of the computational environments; using the combined set of widely dispersed digital information as input to the cryptographic material derivation process; using the derived cryptographic material as parameters to the encryption process; the encryption process produces encrypted digital data from the additional input data, wherein the method allows for the communication of the encrypted digital data and additional differential information that enables an at least one other computational environment to derive the same cryptographic material enabling the decryption of the encrypted digital information without ever exchanging or revealing the derived cryptographic material. - View Dependent Claims (15)
-
-
13. A distributed computing system for determining a widely dispersed set of digital information, the system comprising:
-
a first computational environment; a second computation environment different from the first computational environment; the first and second computational environments being configured to determine the widely dispersed set of digital information, at least one of the first and second computational environments combining the widely dispersed set of digital information, the at least one of the first and second computational environments using the combined widely dispersed set of digital information as input parameters to a derivation process which generates cryptographic material used for an encrypting process of additional input data; at least one processor that queries the first computational environment to discover a first subset of the widely dispersed digital information; at least one further processor that queries the second computational environment to discover at least a further subset of widely dispersed digital information; at least one communication device that communicates the at least one further subset of widely dispersed digital information between the first and second computational environments; at least one of said processors being further configured to combine the first subset and the at least one further subset of the widely dispersed digital information; and at least one of the first sand second computational environments using the combined set of widely dispersed digital information as input to a cryptographic material derivation process, using the derived cryptographic material as parameters to an encryption process that produces encrypted digital data from additional input data, the at least one communication device enabling communication of the encrypted digital data and additional differential information that enables an at least one other computational environment to derive the same cryptographic material enabling the decryption of the encrypted digital information without ever exchanging or revealing the derived cryptographic material. - View Dependent Claims (16)
-
Specification