Method and system for securing communication

US 10,320,765 B2
Filed: 03/10/2015
Issued: 06/11/2019
Est. Priority Date: 03/25/2009
Status: Active Grant

First Claim

Patent Images

1. A method for obtaining a secure communication session, the method comprising:

receiving, via a first communication channel and by a server;

a client identifier from a client;

determining, by the server, whether the client is authorized based on the client identifier;

in response to determining that the client is authorized, sending, via a second communication channel and by the server, a challenge;

receiving, via the first communication channel and by the server, a response from the client, said response comprising a combination of (a) information extracted from a message digest computed using the challenge sent by the server with (b) the challenge sent by the server; and

in response to determining that the response is correct, generating, by the server, a cryptographic key for the secure communication by providing at least the challenge as an input to cryptographic key generator.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for obtaining a secure communication session includes a first member computing device receiving, via a first communication channel, a first input from a second member computing device, sending, via a second communication channel, a second input to the second member computing device, and receiving, via the first communication channel, the second input from the second member computing device. The secure communication session is initiated based on the first input and second input.

73 Citations

14 Claims

1. A method for obtaining a secure communication session, the method comprising:
- receiving, via a first communication channel and by a server;
  
  a client identifier from a client;
  
  determining, by the server, whether the client is authorized based on the client identifier;
  
  in response to determining that the client is authorized, sending, via a second communication channel and by the server, a challenge;
  
  receiving, via the first communication channel and by the server, a response from the client, said response comprising a combination of (a) information extracted from a message digest computed using the challenge sent by the server with (b) the challenge sent by the server; and
  
  in response to determining that the response is correct, generating, by the server, a cryptographic key for the secure communication by providing at least the challenge as an input to cryptographic key generator.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, wherein the first communication channel comprises at least one selected from a group consisting of the Internet, short messaging service, Bluetooth, and email.
  - 3. The method of claim 1, wherein the first communication channel is the Internet and the second communication channel is short messaging service.
  - 4. The method of claim 1, wherein a secret known only to the server and the client is another input to the cryptographic key generator.
  - 5. The method of claim 1, wherein the cryptographic key generator comprises a n-bit generator.
  - 6. The method of claim 5, wherein the cryptographic key is derived from a message digest produced by the n-bit generator.

7. A system for obtaining a secure communication session, the system comprising:
- a computer processor; and
  
  a data repository for storing instructions that when executed by the computer processor cause the computer processor to;
  
  receive, via a first communication channel, a client identifier from a client;
  
  determine whether the client is authorized based on the client identifier;
  
  in response to determining that the client is authorized, send, via a second communication channel, a challenge;
  
  receive;
  
  via the first communication channel, a response from the client, said response comprising a combination of (a) information extracted from a message digest computed using the challenge sent by the server with (b) the challenge sent by the server;
  
  in response to determining that the response is correct, generate an encryption key using the challenge as an input to an n-bit generator.
- View Dependent Claims (8, 9, 10)
- - 8. The system of claim 7, wherein the first communication channel comprises at least one selected from a group consisting of the Internet;
    - short messaging service, Bluetooth, and email.
  - 9. The system of claim 7, wherein the first communication channel is the Internet and the second communication channel is short messaging service.
  - 10. The system of claim 7, wherein a secret known only to the server and the client is another input to the n-bit generator.

11. A non-transitory computer readable medium comprising computer readable program code that, when executed by a processor, causes the processor to:
- receive, via a first communication channel;
  
  a client identifier from a client;
  
  determine whether the client is authorized based on the client identifier;
  
  in response to determining that the client is authorized, send, via a second communication channel, a challenge;
  
  receive, via the first communication channel, a response from the client, said response comprising a combination of (a) information extracted from a message digest computed using the challenge sent by the server with (b) the challenge sent by the server;
  
  in response to determining that the response is correct, generate an encryption key by providing at least the challenge as an input to an n-bit generator.
- View Dependent Claims (12, 13, 14)
- - 12. The non-transitory computer readable medium of claim 11, wherein the first communication channel comprises at least one selected from a group consisting of the Internet, short messaging service, Bluetooth, and email.
  - 13. The non-transitory computer readable medium of claim 11, wherein the first communication channel is the Internet and the second communication channel is short messaging service.
  - 14. The non-transitory computer readable medium of claim 11, wherein a secret known only to the server and the client is another input to the n-bit generator.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
PACid Technologies, LLC
Original Assignee
PACid Technologies, LLC
Inventors
Fielder, Guy
Primary Examiner(s)
Homayounmehr, Farid
Assistant Examiner(s)
Debnath, Suman

Application Number

US14/643,560
Publication Number

US 20150188901A1
Time in Patent Office

1,554 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/6209   to a single file or object,...

H04L 63/08   for authentication of entit...

H04L 63/0876   based on the identity of th...

H04L 9/0643   Hash functions, e.g. MD5, S...

H04L 9/0866   involving user or device id...

H04L 9/0891   Revocation or update of sec...

H04L 9/32   including means for verifyi...

H04L 9/3228   One-time or temporary data,...

Method and system for securing communication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

73 Citations

14 Claims

Specification

Use Cases

Quick Links

Others

Method and system for securing communication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

73 Citations

14 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others