Systems and methods for ephemeral shared data set management and communication protection

US 10,541,989 B2
Filed: 10/01/2018
Issued: 01/21/2020
Est. Priority Date: 05/31/2017
Status: Active Grant

First Claim

Patent Images

1. A method of protecting a communication between a first computing device and a second computing device, comprising:

selecting by the first computing device elements from an ephemeral shared data set stored at the first computing device and the second computing device;

generating by the first computing device a rule set indicating locations of the selected elements in the ephemeral shared data set;

sending by the first computing device the generated rule set to the second computing device;

generating by the first computing device a result based on the selected elements;

encrypting by the first computing device a message using the generated result; and

sending the encrypted message to the second computing device.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Various embodiments provide methods and computing devices configured to implement the methods for dynamically changing an ephemeral shared data set. Various embodiments provide methods and computing devices configured to implement the methods for the dynamic generation of a value that may be used to protect a communication based on the dynamically changed ephemeral shared data set. Various embodiments incorporate the assumption that trusted systems ultimately are demonstrably insecure, because such systems are penetrable and vulnerable. Various embodiments provide a digital communication system that assumes no trust among various network elements, for at least the reason that the digital environment is inherently untrustworthy.

24 Citations

View as Search Results

21 Claims

1. A method of protecting a communication between a first computing device and a second computing device, comprising:
- selecting by the first computing device elements from an ephemeral shared data set stored at the first computing device and the second computing device;
  
  generating by the first computing device a rule set indicating locations of the selected elements in the ephemeral shared data set;
  
  sending by the first computing device the generated rule set to the second computing device;
  
  generating by the first computing device a result based on the selected elements;
  
  encrypting by the first computing device a message using the generated result; and
  
  sending the encrypted message to the second computing device.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein selecting elements from the ephemeral shared data set stored at the first computing device and the second computing device comprises:
    - receiving instructions from a data set management device to extract elements from the ephemeral shared data set stored at the first computing device and the second computing device; and
      
      extracting elements from the shared data set according to the instructions.
  - 3. The method of claim 2, wherein selecting elements from the shared data set stored at the first computing device and the second computing device comprises:
    - selecting elements from among the extracted elements.
  - 4. The method of claim 1, further comprising:
    - determining by the first computing device whether an acknowledgement has been received from the second computing device; and
      
      encrypting by the first computing device another communication using the generated result in response to determining that the acknowledgement has been received from the second computing device.
  - 5. The method of claim 4, further comprising:
    - determining that the second computing device is not authenticated in response to determining that the acknowledgement is not received.
  - 6. The method of claim 4, further comprising:
    - sending a synchronization query to a data set manager in response to determining that the acknowledgement is not received.
  - 7. The method of claim 4, further comprising:
    - determining that the second computing device is authenticated in response to determining that the acknowledgement is received.

8. A computing device, comprising:
- a memory; and
  
  a processor coupled to the memory and configured with processor-executable instructions to perform operations comprising;
  
  selecting elements from an ephemeral shared data set stored at the computing device and a second computing device;
  
  generating a rule set indicating locations of the selected elements in the ephemeral shared data set;
  
  sending the generated rule set to the second computing device;
  
  generating a result based on the selected elements;
  
  encrypting a message using the generated result; and
  
  sending the encrypted message to the second computing device.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The computing device of claim 8, wherein the processor is configured with processor-executable instructions to perform operations such that selecting elements from the ephemeral shared data set stored at the computing device and the second computing device comprises:
    - receiving instructions from a data set management device to extract elements from the ephemeral shared data set stored at the computing device and the second computing device; and
      
      extracting elements from the shared data set according to the instructions.
  - 10. The computing device of claim 9, wherein the processor is configured with processor-executable instructions to perform operations such that selecting elements from the shared data set stored at the computing device and the second computing device comprises:
    - selecting elements from among the extracted elements.
  - 11. The computing device of claim 8, wherein the processor is configured with processor-executable instructions to perform operations further comprising:
    - determining whether an acknowledgement is received from the second computing device; and
      
      encrypting another communication using the generated result in response to determining that the acknowledgement is received from the second computing device.
  - 12. The computing device of claim 11, wherein the processor is configured with processor-executable instructions to perform operations further comprising:
    - determining that the second computing device is not authenticated in response to determining that the acknowledgement is not received.
  - 13. The computing device of claim 11, wherein the processor is configured with processor-executable instructions to perform operations further comprising:
    - sending a synchronization query to a data set manager in response to determining that the acknowledgement is not received.
  - 14. The computing device of claim 11, wherein the processor is configured with processor-executable instructions to perform operations further comprising:
    - determining that the second computing device is authenticated in response to determining that the acknowledgement is received.

15. A non-transitory processor-readable storage medium having stored thereon processor-executable instructions configured to cause a processor of a first computing device to perform operations comprising:
- selecting elements from an ephemeral shared data set stored at the first computing device and a second computing device;
  
  generating a rule set indicating locations of the selected elements in the ephemeral shared data set;
  
  sending the generated rule set to the second computing device;
  
  generating a result based on the selected elements;
  
  encrypting a message using the generated result; and
  
  sending the encrypted message to the second computing device.
- View Dependent Claims (16, 17, 18, 19, 20, 21)
- - 16. The non-transitory processor-readable storage medium of claim 15, wherein the stored processor-executable instructions are configured to cause the processor of the first computing device to perform operations such that selecting elements from the ephemeral shared data set stored at the first computing device and the second computing device comprises:
    - receiving instructions from a data set management device to extract elements from the ephemeral shared data set stored at the first computing device and the second computing device; and
      
      extracting elements from the shared data set according to the instructions.
  - 17. The non-transitory processor-readable storage medium of claim 16, wherein the stored processor-executable instructions are configured to cause the processor of the first computing device to perform operations such that selecting elements from the shared data set stored at the first computing device and the second computing device comprises:
    - selecting elements from among the extracted elements.
  - 18. The non-transitory processor-readable storage medium of claim 15, wherein the stored processor-executable instructions are configured to cause the processor of the first computing device to perform operations further comprising:
    - determining whether an acknowledgement has been received from the second computing device; and
      
      encrypting another communication using the generated result in response to determining that the acknowledgement has been received from the second computing device.
  - 19. The non-transitory processor-readable storage medium of claim 18, wherein the stored processor-executable instructions are configured to cause the processor of the first computing device to perform operations further comprising:
    - determining that the second computing device is not authenticated in response to determining that the acknowledgement is not received.
  - 20. The non-transitory processor-readable storage medium of claim 18, wherein the stored processor-executable instructions are configured to cause the processor of the first computing device to perform operations further comprising:
    - sending a synchronization query to a data set manager in response to determining that the acknowledgement is not received.
  - 21. The non-transitory processor-readable storage medium of claim 18, wherein the stored processor-executable instructions are configured to cause the processor of the first computing device to perform operations further comprising:
    - determining that the second computing device is authenticated in response to determining that the acknowledgement is received.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Qwerx Incorporated
Original Assignee
infOsci, LLC
Inventors
Ellingson, John, Richardson, Matthew
Primary Examiner(s)
Murphy, J. Brant

Application Number

US16/148,651
Publication Number

US 20190036899A1
Time in Patent Office

477 Days
Field of Search
US Class Current
CPC Class Codes

G06F 16/176   Support for shared access t...

G06F 16/178   Techniques for file synchro...

G06F 21/10   Protecting distributed prog...

G06F 21/60   Protecting data

H04L 63/04   for providing a confidentia...

H04L 63/0428   wherein the data content is...

H04L 63/06   for supporting key manageme...

H04L 63/08   for authentication of entit...

H04W 12/04   Key management, e.g. using ...

H04W 12/10   Integrity

Systems and methods for ephemeral shared data set management and communication protection

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

24 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for ephemeral shared data set management and communication protection

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

24 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links