Browser session storage as storage for private key in public-key encryption schema

US 10,579,542 B2
Filed: 11/20/2017
Issued: 03/03/2020
Est. Priority Date: 05/10/2017
Status: Active Grant

First Claim

Patent Images

1. A non-transitory computer-readable memory adapted for use by a client browser to browse an encrypted web content hosted on a server;

the computer-readable memory used to direct a computer to perform the steps of;

prompting a user of a client browser to provide a private key upon initiating a browser session;

receiving the private key in a program language data encryption library in response to a user providing the private key and storing the private key in a local storage;

after the user initiates the browser session, receiving an encrypted symmetric key from the server hosting the encrypted web content;

decrypting the encrypted symmetric key in the program language data encryption library using the private key;

receiving the encrypted web content from the server;

decrypting the encrypted web content by the program language data encryption library using the decrypted symmetric key and storing the decrypted web content to the local storage of the client browser;

presenting the decrypted web content in the client browser; and

deleting the local storage upon closing of the browser session.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An encryption system, method, and computer software program product provides encrypted transmission of data between a server and a web browser application on a client computing device. The system includes an Internet browser; a JavaScript data encryption library; a public key encryption algorithm; a server; and a public private key pair of the user. The JavaScript library loads in user'"'"'s browser and configured with symmetric and asymmetric encryption libraries and codes. Server sends an encrypted key data to the browser/JavaScript application. The user may then provide their private key and the JavaScript library decrypts the encrypted key data and obtains a symmetric key used to encrypt the data the server transmits to the browser during a session. With the server transmitting data in encrypted form, the browser is configured to decrypt the received data using the JavaScript data encryption library and the private key of the user.

15 Citations

10 Claims

1. A non-transitory computer-readable memory adapted for use by a client browser to browse an encrypted web content hosted on a server;
- the computer-readable memory used to direct a computer to perform the steps of;
  
  prompting a user of a client browser to provide a private key upon initiating a browser session;
  
  receiving the private key in a program language data encryption library in response to a user providing the private key and storing the private key in a local storage;
  
  after the user initiates the browser session, receiving an encrypted symmetric key from the server hosting the encrypted web content;
  
  decrypting the encrypted symmetric key in the program language data encryption library using the private key;
  
  receiving the encrypted web content from the server;
  
  decrypting the encrypted web content by the program language data encryption library using the decrypted symmetric key and storing the decrypted web content to the local storage of the client browser;
  
  presenting the decrypted web content in the client browser; and
  
  deleting the local storage upon closing of the browser session.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The non-transitory computer-readable memory of claim 1, further comprising:
    - encrypting a user entered data using the program language data encryption library.
  - 3. The non-transitory computer-readable memory of claim 2, further comprising:
    - transmitting the encrypted user entered data to the server.
  - 4. The non-transitory computer-readable memory of claim 1, wherein the local storage comprises:
    - one or more of a browser local storage;
      
      a window storage;
      
      a LocalStorage;
      
      a SessionStorage; and
      
      a program language variable.
  - 5. The non-transitory computer-readable memory of claim 1, wherein the program language data encryption library is a JavaScript data encryption library.

6. A computerized system to browse encrypted web content hosted on a server, the system comprising:
- a computer having a user interface and an internet browser; and
  
  a program product comprising machine-readable program code for causing, when executed, the computer to perform the following process steps;
  
  prompting a user of a client browser to provide a private key upon initiating a browser session;
  
  receiving the private key in a program language data encryption library in response to a user providing the private key and storing the private key in a local storage;
  
  after the user initiates the browser session, receiving an encrypted symmetric key from the server hosting the encrypted web content;
  
  decrypting the encrypted symmetric key in the program language data encryption library using the private key;
  
  receiving the encrypted web content from the server;
  
  decrypting the encrypted web content by the program language data encryption library using the decrypted symmetric key and storing the decrypted web content to the local storage of the client browser;
  
  presenting the decrypted web content in the client browser; and
  
  automatically deleting the local storage upon closing of the browser session.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The computerized system of claim 6, further comprising:
    - encrypting a user entered data using the program language data encryption library.
  - 8. The computerized system of claim 7, further comprising:
    - transmitting the encrypted user entered data to the server.
  - 9. The computerized system of claim 6, wherein the local storage comprises:
    - one or more of a browser local storage;
      
      a window storage;
      
      a LocalStorage;
      
      a SessionStorage; and
      
      a program language variable.
  - 10. The computerized system of claim 6, wherein the program language data encryption library is a JavaScript data encryption library.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
RevBits, LLC
Original Assignee
RevBits, LLC
Inventors
Celik, Mucteba
Primary Examiner(s)
Lwin, Maung T

Application Number

US15/818,127
Publication Number

US 20180329833A1
Time in Patent Office

834 Days
Field of Search

None
US Class Current
CPC Class Codes

G06F 12/1408   by using cryptography for d...

G06F 21/602   Providing cryptographic fac...

G06F 2212/1052   Security improvement

H04L 63/0435   wherein the sending and rec...

H04L 63/0442   wherein the sending and rec...

H04L 63/045   wherein the sending and rec...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/168   above the transport layer

Browser session storage as storage for private key in public-key encryption schema

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

15 Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Browser session storage as storage for private key in public-key encryption schema

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

15 Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links