Secure session capability using public-key cryptography without access to the private key

US 10,594,496 B2
Filed: 06/26/2018
Issued: 03/17/2020
Est. Priority Date: 04/08/2014
Status: Active Grant

First Claim

Patent Images

1. A non-transitory computer-readable storage medium that stores instructions that, when executed by a hardware processor of a first server, causes the hardware processor to perform operations for establishing a secure session with a client device, the operations comprising:

receiving, from the client device, a Client Hello message that includes a first random value;

in response to the received Client Hello message, transmitting a Server Hello message to the client device that includes a second random value;

transmitting, to the client device, a Server Certificate message that includes one or more digital certificates;

transmitting, to the client device, a Server Hello Done message;

receiving, from the client device, a Client Key Exchange message that includes an encrypted premaster secret, wherein a private key is not accessible from the first server to decrypt the encrypted premaster secret;

transmitting the encrypted premaster secret, the first random value, and the second random value to a different second server that has access to the private key to decrypt the encrypted premaster secret to generate a decrypted premaster secret;

receiving, from the second server, a master secret that was generated using a function that takes as input at least in part the decrypted premaster secret, the first random value, and the second random value;

receiving, from the client device, a first Change Cipher Spec message;

receiving, from the client device, a first Finished message;

generating, using the received master secret, a set of one or more session keys to be used in the secure session for encrypting and decrypting communication between the client device and the first server;

transmitting to the client device, a second Change Cipher Spec message; and

transmitting, to the client device, a second Finished message.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A server establishes a secure session with a client device where a private key used in the handshake when establishing the secure session is stored in a different server. During the handshake procedure, the server receives a premaster secret that has been encrypted using a public key bound with a domain for which the client device is attempting to establish a secure session with. The server transmits the encrypted premaster secret to the different server for decryption along with other information necessary to compute a master secret. The different server decrypts the encrypted premaster secret, generates the master secret, and transmits the master secret to the server. The server receives the master secret and continues with the handshake procedure including generating one or more session keys that are used in the secure session for encrypting and decrypting communication between the client device and the server.

36 Citations

View as Search Results

22 Claims

1. A non-transitory computer-readable storage medium that stores instructions that, when executed by a hardware processor of a first server, causes the hardware processor to perform operations for establishing a secure session with a client device, the operations comprising:
- receiving, from the client device, a Client Hello message that includes a first random value;
  
  in response to the received Client Hello message, transmitting a Server Hello message to the client device that includes a second random value;
  
  transmitting, to the client device, a Server Certificate message that includes one or more digital certificates;
  
  transmitting, to the client device, a Server Hello Done message;
  
  receiving, from the client device, a Client Key Exchange message that includes an encrypted premaster secret, wherein a private key is not accessible from the first server to decrypt the encrypted premaster secret;
  
  transmitting the encrypted premaster secret, the first random value, and the second random value to a different second server that has access to the private key to decrypt the encrypted premaster secret to generate a decrypted premaster secret;
  
  receiving, from the second server, a master secret that was generated using a function that takes as input at least in part the decrypted premaster secret, the first random value, and the second random value;
  
  receiving, from the client device, a first Change Cipher Spec message;
  
  receiving, from the client device, a first Finished message;
  
  generating, using the received master secret, a set of one or more session keys to be used in the secure session for encrypting and decrypting communication between the client device and the first server;
  
  transmitting to the client device, a second Change Cipher Spec message; and
  
  transmitting, to the client device, a second Finished message.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The non-transitory computer-readable storage medium of claim 1, wherein the first server and the second server are owned or operated by different entities.
  - 3. The non-transitory computer-readable storage medium of claim 1, wherein the master secret is received over a secure session between the first server and the second server.
  - 4. The non-transitory computer-readable storage medium of claim 3, the operations further comprising:
    - as part of establishing the secure session between the first server and the second server, transmitting, to the second server, a client Certificate message that includes a digital certificate of the first server.
  - 5. The non-transitory computer-readable storage medium of claim 1, the operations further comprising:
    - after transmitting the second Finished message to the client device, receiving from the client device a request for a resource over the secure session, wherein the request is encrypted;
      
      decrypting, using the set of session keys, the request for the resource;
      
      transmitting the request for the resource to a third server;
      
      receiving the resource from the third server in response to the request;
      
      generating an encrypted response that includes the retrieved resource, wherein the encrypted response is encrypted with the set of session keys; and
      
      transmitting the encrypted response to the client device.
  - 6. The non-transitory computer-readable storage medium of claim 5, wherein the second server and the third server are the same server.
  - 7. The non-transitory computer-readable storage medium of claim 1, the operations further comprising:
    - transmitting, to the second server, an indication of a domain for which the client device is attempting to establish the secure session that is to be used by the second server to identify the private key.

8. A non-transitory computer-readable storage medium that stores instructions that, when executed by a hardware processor of a first server, causes the hardware processor to perform operations for establishing a secure session with a client device, the operations comprising:
- receiving a message from the client device that initiates a handshake procedure to establish a secure session between the client device and the first server;
  
  negotiating a set of cryptographic parameters between the client device and the first server for the secure session, wherein negotiating the set of cryptographic parameters includes the first server receiving an encrypted premaster secret from the client device, wherein the first server does not have access to a private key to decrypt the encrypted premaster secret;
  
  transmitting at least some of the negotiated set of cryptographic parameters to a second server different from the first server, wherein the transmitted at least some of the negotiated set of cryptographic parameters includes the encrypted premaster secret and a plurality of random values exchanged between the client device and the first server;
  
  receiving, from the second server, a master secret that has been generated using at least the plurality of exchanged random values and the encrypted premaster secret;
  
  generating, using at least the master secret, a set of one or more session keys to be used in the secure session for encrypting and decrypting communication between the client device and the first server; and
  
  completing the handshake procedure with the client device such that the set of session keys will be used during the secure session for encrypting and decrypting communication between the client device and the first server.
- View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
- - 9. The non-transitory computer-readable storage medium of claim 8, wherein the transmitted at least some of the negotiated set of cryptographic parameters further includes a first random value selected by the client device and a second random value selected by the first server.
  - 10. The non-transitory computer-readable storage medium of claim 8, wherein the first server and the second server are owned or operated by different entities.
  - 11. The non-transitory computer-readable storage medium of claim 8, wherein the master secret is received over a secure session between the first server and the second server.
  - 12. The non-transitory computer-readable storage medium of claim 11, the operations further comprising:
    - as part of establishing the secure session between the first server and the second server, transmitting, to the second server, a client Certificate message that includes a digital certificate of the first server.
  - 13. The non-transitory computer-readable storage medium of claim 8, the operations further comprising:
    - after completing the handshake procedure, receiving from the client device over the secure session a request for a resource, wherein the request is encrypted;
      
      decrypting, using the set of session keys, the request for the resource;
      
      transmitting the request for the resource to a third server;
      
      receiving the resource from the third server in response to the request;
      
      generating an encrypted response that includes the retrieved resource, wherein the encrypted response is encrypted with the set of session keys; and
      
      transmitting the encrypted response to the client device.
  - 14. The non-transitory computer-readable storage medium of claim 13, wherein the second server and the third server are the same server.
  - 15. The non-transitory computer-readable storage medium of claim 8, the operations further comprising:
    - transmitting, to the second server, an indication of a domain for which the client device is attempting to establish the secure session that is to be used by the second server to identify the private key.

16. An apparatus comprising:
- a first server including a set of one or more hardware processors and a set of one or more non-transitory computer-readable storage mediums storing instructions, that when executed by the set of hardware processors, cause the set of hardware processors to perform the following operations;
  
  receive, from the client device, a Client Hello message that includes a first random value;
  
  in response to the received Client Hello message, transmit a Server Hello message to the client device that includes a second random value;
  
  transmit, to the client device, a Server Certificate message that includes one or more digital certificates;
  
  transmit, to the client device, a Server Hello Done message;
  
  receive, from the client device, a Client Key Exchange message that includes an encrypted premaster secret, a private key is not accessible from the first server to decrypt the encrypted premaster secret;
  
  transmit the encrypted premaster secret, the first random value, and the second random value to a different second server that has access to the private key to decrypt the encrypted premaster secret to generate a decrypted premaster secret;
  
  receive, from the second server, a master secret that was generated using a function that takes as input at least in part the decrypted premaster secret, the first random value, and the second random value;
  
  receive, from the client device, a first Change Cipher Spec message;
  
  receive, from the client device, a first Finished message;
  
  generate, using the received master secret, a set of one or more session keys to be used in the secure session for encrypting and decrypting communication between the client device and the first server;
  
  transmit to the client device, a second Change Cipher Spec message; and
  
  transmit, to the client device, a second Finished message.
- View Dependent Claims (17, 18, 19, 20, 21, 22)
- - 17. The apparatus of claim 16, wherein the first server and the second server are owned or operated by different entities.
  - 18. The apparatus of claim 16, wherein the master secret is received over a secure session between the first server and the second server.
  - 19. The apparatus of claim 18, wherein the set of non-transitory computer-readable storage mediums further stores instructions, that when executed by the set of processors, cause the set of processors to perform the following operations:
    - as part of the establishment of the secure session between the first server and the second server, transmit, to the second server, a client Certificate message that includes a digital certificate of the first server.
  - 20. The apparatus of claim 16, wherein the set of non-transitory computer-readable storage mediums further stores instructions, that when executed by the set of processors, cause the set of processors to perform the following operations:
    - after transmission of the second Finished message to the client device, receive from the client device a request for a resource over the secure session, wherein the request is encrypted;
      
      decrypt, using the set of session keys, the request for the resource;
      
      transmit the request for the resource to a third server;
      
      receive the resource from the third server in response to the request;
      
      generate an encrypted response that includes the retrieved resource, wherein the encrypted response is encrypted with the set of session keys; and
      
      transmit the encrypted response to the client device.
  - 21. The apparatus of claim 20, wherein the second server and the third server are the same server.
  - 22. The apparatus of claim 16, wherein the set of non-transitory computer-readable storage mediums further stores instructions, that when executed by the set of processors, cause the set of processors to perform the following operations:
    - transmit, to the second server, an indication of a domain for which the client device is attempting to establish the secure session that is to be used by the second server to identify the private key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
CloudFlare Incorporated
Original Assignee
CloudFlare Incorporated
Inventors
Pahl, Sebastien Andreas Henry, Tourne, Matthieu Philippe Francois, Sikora, Piotr, Bejjani, Ray Raymond, Knecht, Dane Orion, Prince, Matthew Browning, Graham-Cumming, John, Holloway, Lee Hahn, Sullivan, Nicholas Thomas, Strasheim, Albertus
Primary Examiner(s)
Chai, Longbit

Application Number

US16/019,109
Publication Number

US 20190140843A1
Time in Patent Office

630 Days
Field of Search

713173
US Class Current
CPC Class Codes

G06F 21/33   using certificates

H04L 63/0428   wherein the data content is...

H04L 63/0485   Networking architectures fo...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/0823   using certificates cryptogr...

H04L 63/0869   for achieving mutual authen...

H04L 63/164   at the network layer

H04L 63/166   at the transport layer

H04L 63/205   involving negotiation or de...

H04L 67/01   Protocols

H04L 67/141   Setup of application sessio...

H04L 9/083   involving central third par...

H04L 9/0841   involving Diffie-Hellman or...

H04L 9/0844   with user authentication or...

H04L 9/14   using a plurality of keys o...

H04L 9/3013   involving the discrete loga...

H04L 9/3247   involving digital signatures

H04L 9/3263   involving certificates, e.g...

Secure session capability using public-key cryptography without access to the private key

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

36 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Secure session capability using public-key cryptography without access to the private key

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

36 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links