Method and system for sharing encrypted content
First Claim
1. A method of encrypting and/or decrypting content by a first user having a first computer, using a first permit obtained from a system for sharing content, which has been encrypted, between the first user and a second user having a second computer, the method comprising:
- providing the first permit for use by the first user, the first permit having an encrypted first content key for use to encrypt and/or decrypt the content and having an encrypted first workspace key, the first workspace key being independent of the first user and including one or more control parameters associated with the first workspace, for use to encrypt and/or decrypt the first content key;
obtaining by the first computer the first permit and therefrom the encrypted first content key and the encrypted first workspace key;
decrypting by the first computer the encrypted first workspace key to obtain the first workspace key and using the first workspace key to decrypt the encrypted first content key to obtain the first content key;
using by the first computer the first content key to encrypt the content and provide the encrypted content and/or decrypting the encrypted content using the first content key to obtain the content;
using by the second user'"'"'s second computer a second permit obtained from the system for sharing encrypted content, the second permit having a second encrypted first content key for use to encrypt and/or decrypt the content and having a second encrypted first workspace key for use to encrypt and/or decrypt the first content key;
obtaining by the second computer the second permit and therefrom the second encrypted first content key and the second encrypted first workspace key;
decrypting by the second computer the second encrypted first workspace key to obtain the first workspace key and using the first workspace key to decrypt the encrypted first content key to obtain the first content key; and
using by the second computer the first content key to encrypt the content and provide the encrypted content and/or decrypting the encrypted content using the first content key to obtain the content, wherein users sharing the same workspace share a common community key defining the users who are members of a community, the first workspace key being operable to encrypt and/or decrypt using the community key.
2 Assignments
0 Petitions
Accused Products
Abstract
The present invention relates to the field of sharing encrypted content. In one form, the invention relates to multiple user access and management of encrypted content. In one particular aspect, the present invention is suitable for use in community controlled encryption of shared content using indirect keys.
The present invention relates to the use of encrypted intermediate key(s), such as an encrypted community key and/or workspace key. A changeable group of users is associated with a community key. Changeable set of content is associated with a workspace key. The present invention also uses permits in association with encrypted keys.
-
Citations
24 Claims
-
1. A method of encrypting and/or decrypting content by a first user having a first computer, using a first permit obtained from a system for sharing content, which has been encrypted, between the first user and a second user having a second computer, the method comprising:
-
providing the first permit for use by the first user, the first permit having an encrypted first content key for use to encrypt and/or decrypt the content and having an encrypted first workspace key, the first workspace key being independent of the first user and including one or more control parameters associated with the first workspace, for use to encrypt and/or decrypt the first content key; obtaining by the first computer the first permit and therefrom the encrypted first content key and the encrypted first workspace key; decrypting by the first computer the encrypted first workspace key to obtain the first workspace key and using the first workspace key to decrypt the encrypted first content key to obtain the first content key; using by the first computer the first content key to encrypt the content and provide the encrypted content and/or decrypting the encrypted content using the first content key to obtain the content; using by the second user'"'"'s second computer a second permit obtained from the system for sharing encrypted content, the second permit having a second encrypted first content key for use to encrypt and/or decrypt the content and having a second encrypted first workspace key for use to encrypt and/or decrypt the first content key; obtaining by the second computer the second permit and therefrom the second encrypted first content key and the second encrypted first workspace key; decrypting by the second computer the second encrypted first workspace key to obtain the first workspace key and using the first workspace key to decrypt the encrypted first content key to obtain the first content key; and using by the second computer the first content key to encrypt the content and provide the encrypted content and/or decrypting the encrypted content using the first content key to obtain the content, wherein users sharing the same workspace share a common community key defining the users who are members of a community, the first workspace key being operable to encrypt and/or decrypt using the community key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A system for sharing content using encryption and decryption comprising:
-
a permit source for providing at least first and second permits; a first computer operative by a first user for-encrypting and/or decrypting content using a first permit obtained from said permit source, and a second computer in communication with said first computer and operative by a second user, for encrypting and/or decrypting content which has been encrypted, wherein said permit source provides the first permit for use by the first user, the first permit having an encrypted first content key, for use to encrypt and/or decrypt the content and having an encrypted first workspace key for use to encrypt and/or decrypt the first content key, the first workspace key being independent of the first user and including one or more control parameters associated with the first workspace; wherein the first computer obtains the first permit and therefrom the encrypted first content key and the encrypted first workspace key; wherein the first computer decrypts the encrypted first workspace key to obtain the first workspace key and uses the first workspace key to decrypt the encrypted first content key to obtain the first content key; wherein the first computer uses the first content key to encrypt the content and provide the encrypted content and/or decrypt the encrypted content using the first content key to obtain the content; wherein the second computer obtains the second permit from the permit source, the second permit having a second encrypted first content key for use to encrypt and/or decrypt the content and having a second encrypted first workspace key for use to encrypt and/or decrypt the first content key; wherein the second computer decrypts the second encrypted first workspace key to obtain the first workspace key and uses the first workspace key to decrypt the encrypted first content key to obtain the first content key; wherein the second computer uses the first content key to encrypt the content and provide the encrypted content and/or uses the first content key to decrypt the encrypted content and obtain the content; and wherein users sharing the same workspace share a common community key defining the users who are members of a community, the first workspace key being operable to encrypt and/or decrypt using the community key. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
Specification