Digital security bubble

US 10,432,597 B1
Filed: 02/21/2018
Issued: 10/01/2019
Est. Priority Date: 07/16/2012
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving, at a first device, a notification of an encrypted encapsulation from a security platform;

obtaining, by the first device, the encrypted encapsulation from the security platform in response to receiving the notification, wherein the encrypted encapsulation includes an encrypted message, an encrypted first key, and a device identifier associated with an intended recipient;

decrypting, by the first device, the encrypted encapsulation;

comparing, by the first device, the received device identifier with a local device identifier;

decrypting, by the first device, the encrypted first key using a private key of the intended recipient in response to a determination that the received device identifier matches the local device identifier;

decrypting, by the first device, the encrypted message using the first key to produce a decrypted message; and

providing, by the first device, the decrypted message to a recipient.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A digital security bubble encapsulation is disclosed. A public key and a device identifier of at least one recipient is requested from a first server. A message containing one or more components is encrypted using a symmetric key. The symmetric key is encrypted with a public key received in response to the request. The encrypted message, the encrypted symmetric key, and the device identifier are encapsulated in a digital security bubble encapsulation. The digital security bubble encapsulation is transmitted to a second server.

110 Citations

13 Claims

1. A method comprising:
- receiving, at a first device, a notification of an encrypted encapsulation from a security platform;
  
  obtaining, by the first device, the encrypted encapsulation from the security platform in response to receiving the notification, wherein the encrypted encapsulation includes an encrypted message, an encrypted first key, and a device identifier associated with an intended recipient;
  
  decrypting, by the first device, the encrypted encapsulation;
  
  comparing, by the first device, the received device identifier with a local device identifier;
  
  decrypting, by the first device, the encrypted first key using a private key of the intended recipient in response to a determination that the received device identifier matches the local device identifier;
  
  decrypting, by the first device, the encrypted message using the first key to produce a decrypted message; and
  
  providing, by the first device, the decrypted message to a recipient.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein the device identifier is based at least in part on at least one hardware identifier.
  - 3. The method of claim 1, wherein the first key is a symmetric key.
  - 4. The method of claim 1, wherein the encrypted encapsulation includes a plurality of encrypted first keys.
  - 5. The method of claim 4, wherein each of the plurality of encrypted first keys is encrypted with a second key associated with an intended recipient.
  - 6. The method of claim 1, wherein the encapsulation includes at least one message control option selected from the group consisting of message lifetime, sharing, saving, forwarding, recalling, and deleting.
  - 7. The method of claim 6, comprising:
    - deleting, by the first device, the decrypted message after an expiration of the lifetime option.

8. A non-transitory computer-readable medium comprising instructions that, when executed by a processor, perform the steps of:
- receiving a notification of an encrypted encapsulation from a security platform;
  
  obtaining the encrypted encapsulation from the security platform in response to receiving the notification, wherein the encrypted encapsulation includes an encrypted message, an encrypted first key, and a device identifier associated with an intended recipient;
  
  decrypting the encrypted encapsulation;
  
  comparing the received device identifier with a local device identifier;
  
  decrypting the encrypted first key using a private key of the intended recipient in response to a determination that the received device identifier matches the local device identifier;
  
  decrypting the encrypted message using the first key to produce a decrypted message; and
  
  providing the decrypted message to a recipient.
- View Dependent Claims (9, 10, 11, 12, 13)
- - 9. The non-transitory computer-readable medium of claim 8, wherein the device identifier is based at least in part on at least one hardware identifier.
  - 10. The non-transitory computer-readable medium of claim 8, wherein the first key is a symmetric key.
  - 11. The non-transitory computer-readable medium of claim 8, wherein the encrypted encapsulation includes a plurality of encrypted first keys.
  - 12. The non-transitory computer-readable medium of claim 11, wherein each of the plurality of encrypted first keys is encrypted with a second key associated with an intended recipient.
  - 13. The non-transitory computer-readable medium of claim 8, comprising computer instructions for:
    - deleting the decrypted message after an expiration of a lifetime option included in the encrypted encapsulation.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Original Assignee
Wickr Inc. (Amazon.com, Inc.)
Inventors
Howell, Christopher, Statica, Robert, Coppa, Kara Lynn
Primary Examiner(s)
Reza, Mohammad W

Application Number

US15/900,897
Time in Patent Office

587 Days
Field of Search

713171
US Class Current
CPC Class Codes

G06F 21/62   Protecting access to data v...

G06F 21/84   output devices, e.g. displa...

G06F 2203/04104   Multi-touch detection in di...

G06F 2203/04808   Several contacts: gestures ...

G06F 3/0481   based on specific propertie...

G06F 3/0488   using a touch-screen or dig...

G06F 3/04886   by partitioning the display...

G06V 20/64   Three-dimensional objects

H04L 2209/24   Key scheduling, i.e. genera...

H04L 63/04   for providing a confidentia...

H04L 63/0421   Anonymous communication, i....

H04L 63/0435   wherein the sending and rec...

H04L 63/0442   wherein the sending and rec...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/08   for authentication of entit...

H04L 63/0853   using an additional device,...

H04L 9/08   Key distribution or managem...

H04L 9/0816   Key establishment, i.e. cry...

H04L 9/0822   using key encryption key

H04L 9/0825   using asymmetric-key encryp...

H04L 9/0841 : involving Diffie-Hellman or...

H04L 9/0869 : involving random numbers or...

H04L 9/30 : Public key, i.e. encryption...

H04L 9/3066 : involving algebraic varieti...

H04L 9/3236 : using cryptographic hash fu...

View All

Digital security bubble

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

110 Citations

13 Claims

Specification

Solutions

Use Cases

Quick Links

Digital security bubble

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

110 Citations

13 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links