Method for strongly encrypting .zip files

US 10,127,397 B2
Filed: 06/29/2015
Issued: 11/13/2018
Est. Priority Date: 07/16/2003
Status: Active Grant

First Claim

Patent Images

1. A method of placing data in a .ZIP file format data container on a computer, said method including:

receiving a first data file at an application on a computer, wherein said first data file has been retrieved from an electronic computer data storage by said application;

compressing said first data file to form a first compressed data file using said application before encrypting said first data file;

encrypting said first compressed data file to form a first encrypted data file, wherein said encrypting uses symmetric encryption employing a first encryption method using a first symmetric key having a first symmetric key bit length,wherein said first symmetric key bit length is one of a plurality of available symmetric key bit lengths that may be used to perform said encrypting;

placing said first encrypted data file in a data container using said application on said computer,wherein said data container is constructed in accordance with the .ZIP file format,wherein said data container includes an electronic indication that is set when said first compressed data file has been encrypted using a symmetric key having a symmetric key bit length greater than a predetermined bit length,wherein, when said first data file has been encrypted using a symmetric key having a symmetric key bit length greater than a predetermined bit length, said data container is modified to include;

a first data field indicating the actual bit length of said first symmetric key;

a second data field including an identification of said first encryption method employed in said encrypting, wherein said first encryption method is one of a plurality of available encryption methods selectable by a user using said application,wherein a plurality of encryption method identifiers for said plurality of available encryption methods are available using said application for inclusion as said identification; and

a third data field identifying an encryption record version of said first encrypted data file, wherein said encryption record version is one of a plurality of available encryption record versions.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides a method of integrating existing strong encryption methods into the processing of a .ZIP file to provide a highly secure data container which provides flexibility in the use of symmetric and asymmetric encryption technology. The present invention adapts the well-established .ZIP file format to support higher levels of security and multiple methods of data encryption and key management, thereby producing a highly secure and flexible digital container for electronically storing and transferring confidential data.

286 Citations

16 Claims

1. A method of placing data in a .ZIP file format data container on a computer, said method including:
- receiving a first data file at an application on a computer, wherein said first data file has been retrieved from an electronic computer data storage by said application;
  
  compressing said first data file to form a first compressed data file using said application before encrypting said first data file;
  
  encrypting said first compressed data file to form a first encrypted data file, wherein said encrypting uses symmetric encryption employing a first encryption method using a first symmetric key having a first symmetric key bit length,wherein said first symmetric key bit length is one of a plurality of available symmetric key bit lengths that may be used to perform said encrypting;
  
  placing said first encrypted data file in a data container using said application on said computer,wherein said data container is constructed in accordance with the .ZIP file format,wherein said data container includes an electronic indication that is set when said first compressed data file has been encrypted using a symmetric key having a symmetric key bit length greater than a predetermined bit length,wherein, when said first data file has been encrypted using a symmetric key having a symmetric key bit length greater than a predetermined bit length, said data container is modified to include;
  
  a first data field indicating the actual bit length of said first symmetric key;
  
  a second data field including an identification of said first encryption method employed in said encrypting, wherein said first encryption method is one of a plurality of available encryption methods selectable by a user using said application,wherein a plurality of encryption method identifiers for said plurality of available encryption methods are available using said application for inclusion as said identification; and
  
  a third data field identifying an encryption record version of said first encrypted data file, wherein said encryption record version is one of a plurality of available encryption record versions.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1 wherein said first symmetric key bit length is selected by a user for said first data file from a plurality of user-selectable symmetric key bit lengths.
  - 3. The method of claim 1 wherein said first encryption method is selected by a user for said first data file from a plurality of user-selectable encryption methods.
  - 4. The method of claim 1 further including:
    - receiving a second data file at said application on said computer, wherein said second data file has been retrieved from electronic computer data storage by said application;
      
      encrypting said second data file to form a second encrypted data file, wherein said encrypting uses symmetric encryption employing a second encryption method using a symmetric key having a second symmetric key bit length,wherein said second symmetric key bit length is one of said plurality of available symmetric key bit lengths that may be used to perform said encrypting; and
      
      placing said second encrypted data file in said data container using said application on said computer.
  - 5. The method of claim 4 wherein said second symmetric key bit length is not equal to said first symmetric key bit length.
  - 6. The method of claim 5 wherein said second encryption method is not the same as said first encryption method.
  - 7. The method of claim 5 wherein said data container is modified to include a fourth data field identifying an encryption record version of said second encrypted data file, wherein said encryption record version of said first encrypted file is not the same as said encryption record version of said second encrypted file.
  - 8. The method of claim 4 wherein said second data file is compressed to form a second compressed data file using said application before encrypting said data file.

9. A method of constructing .ZIP file format data container on a computer, said method including:
- receiving a first data file at an application on a computer, wherein said first data file has been retrieved from an electronic computer data storage by said application;
  
  compressing said first data file to form a first compressed data file using said application before encrypting said first data file;
  
  encrypting said first compressed data file to form a first encrypted data file, wherein said encrypting uses symmetric encryption employing a first encryption method using a first symmetric key having a first symmetric key bit length,wherein said first symmetric key bit length is one of a plurality of user-selectable symmetric key bit lengths that may be used to perform said encrypting; and
  
  electronically constructing a modified .ZIP format data container stored on said computer using said application,wherein, when said first symmetric key bit length is at least as long as a predetermined bit length, said data container is modified to include;
  
  an electronic indication that indicates that said data file has been encrypted using a symmetric key having a symmetric key bit length at least as long as a predetermined bit length;
  
  a first data field indicating the actual bit length of said first symmetric key;
  
  a second data field including an identification of said first encryption method employed in said encrypting, wherein said first encryption algorithm is one of a plurality of user-selectable encryption algorithms selectable by a user using said application,wherein a plurality of encryption method identifiers for said plurality of user-selectable encryption algorithms are available using said application for inclusion as said identification; and
  
  a third data field identifying an encryption record version of said first encrypted data file.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The method of claim 9 wherein said encryption record version of said first encrypted data file is one of a plurality of available encryption record versions.
  - 11. The method of claim 9 wherein said first encryption method is selected by a user for said first data file from a plurality of user-selectable encryption methods.
  - 12. The method of claim 9 further including:
    - receiving a second data file at said application on said computer, wherein said second data file has been retrieved from electronic computer data storage by said application;
      
      encrypting said second data file to form a second encrypted data file, wherein said encrypting uses symmetric encryption employing a second encryption method using a symmetric key having a second symmetric key bit length,wherein said second symmetric key bit length is one of said plurality of available symmetric key bit lengths that may be used to perform said encrypting; and
      
      including said second encrypted data file in said data container using said application on said computer.
  - 13. The method of claim 12 wherein said second symmetric key bit length is not equal to said first symmetric key bit length.
  - 14. The method of claim 12 wherein said second encryption method is not the same as said first encryption method.
  - 15. The method of claim 12 wherein said data container is modified to include a fourth data field identifying an encryption record version of said second encrypted data file, wherein said encryption record version of said first encrypted file is not the same as said encryption record version of said second encrypted file.
  - 16. The method of claim 12 wherein said second data file is compressed to form a second compressed data file using said application before encrypting said data file.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
PKWARE, Inc. (PKW Holdings, Inc.)
Original Assignee
PKWARE, Inc. (PKW Holdings, Inc.)
Inventors
Peterson, James C.
Primary Examiner(s)
Dinh, Minh

Application Number

US14/753,888
Publication Number

US 20160026816A1
Time in Patent Office

1,233 Days
Field of Search

None
US Class Current
CPC Class Codes

G06F 16/1744   using compression, e.g. spa...

G06F 21/6209   to a single file or object,...

G06F 21/6218   to a system of files or obj...

G06F 2221/2107   File encryption

G06F 2221/2153   Using hardware token as a s...

H04L 2209/30   Compression, e.g. Merkle-Da...

H04L 9/0819   Key transport or distributi...

H04L 9/088   Usage controlling of secret...

Method for strongly encrypting .zip files

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

286 Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Method for strongly encrypting .zip files

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

286 Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links