End to end encryption

US 10,659,474 B1
Filed: 01/24/2019
Issued: 05/19/2020
Est. Priority Date: 04/15/2016
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

determining a public signing key (B) of a communication partner device by decoding data encoded within the image;

receiving a message at a computing device;

verifying, based on the public signing key of the communication partner device, whether the message is from the communication partner device;

providing an output including the message and an indication of the communication partner device if the message is verified to be from the communication partner device;

providing an output indicating an error if the message is not verified to be from the communication partner device;

generating, at the computing device, a private key (a) of the computing device;

computing a public signing key (A) of the computing device, the public signing key of the computing device being computed according to an equation;

A=g{circumflex over (

)}a mod p, wherein p is a prime number that exceeds a threshold, and g is a primitive root modulo p;

computing a shared secret (s) of the computing device and the communication partner device according to an equation;

s=B{circumflex over (

)}a mod p;

decrypting the received message using the shared secret;

encrypting a second message using the shared secret; and

transmitting the second message to the communication partner device.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods for end to end encryption are provided. In example embodiments, a computer accesses an image including a geometric shape. The computer determines that the accessed image includes a candidate shape inside the geometric shape. The computer determines, using the candidate shape, an orientation of the geometric shape. The computer determines a public key of a communication partner device by decoding, based on the determined orientation, data encoded within the geometric shape. The computer receives a message. The computer verifies, based on the public key of the communication partner device, whether the message is from the communication partner device. The computer provides an output including the message and an indication of the communication partner device if the message is verified to be from the communication partner device. The computer provides an output indicating an error if the message is not verified to be from the communication partner device.

30 Citations

View as Search Results

20 Claims

1. A method comprising:
- determining a public signing key (B) of a communication partner device by decoding data encoded within the image;
  
  receiving a message at a computing device;
  
  verifying, based on the public signing key of the communication partner device, whether the message is from the communication partner device;
  
  providing an output including the message and an indication of the communication partner device if the message is verified to be from the communication partner device;
  
  providing an output indicating an error if the message is not verified to be from the communication partner device;
  
  generating, at the computing device, a private key (a) of the computing device;
  
  computing a public signing key (A) of the computing device, the public signing key of the computing device being computed according to an equation;
  
  A=g{circumflex over (
  
  )}a mod p, wherein p is a prime number that exceeds a threshold, and g is a primitive root modulo p;
  
  computing a shared secret (s) of the computing device and the communication partner device according to an equation;
  
  s=B{circumflex over (
  
  )}a mod p;
  
  decrypting the received message using the shared secret;
  
  encrypting a second message using the shared secret; and
  
  transmitting the second message to the communication partner device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, wherein p, g, A, and B are publicly accessible values, and wherein the private key (a) of the computing device is a secret value stored securely at the computing device.
  - 3. The method of claim 1, further comprising:
    - periodically modifying a value of the private key (a) of the computing device after a passage of a predetermined time period or after sending a predetermined number of messages;
      
      re-computing the public signing key (A) of the computing device based on the modified value of the private key (a) of the computing device;
      
      notifying the communication partner device of the re-computed value of the public signing key (A) of the computing device; and
      
      re-computing the shared secret (s) of the computing device and the communication partner device based on the modified value of the private key (a) of the computing device.
  - 4. The method of claim 1, further comprising:
    - receiving a notification that the public signing key (B) of the communication partner device has changed; and
      
      re-computing the shared secret(s) of the computing device and the communication partner device based on the changed value of the public signing key (B) of the communication partner device.
  - 5. The method of claim 1, further comprising capturing the image via a camera of the computing device.
  - 6. The method of claim 1, further comprising receiving the image via a web browser, a social networking application, or a messaging service.
  - 7. The method of claim 1, further comprising:
    - determining the image includes a geometric shape;
      
      determining a candidate shape is inside the geometric shape;
      
      determining, using the candidate shape, an orientation of the geometric shape, wherein determining that the candidate shape is inside the geometric shape comprises;
      
      detecting a shape within the geometric shape,comparing the detected shape with a set of reference shapes to determine a similarity score, anddetermining that the similarity score exceeds a threshold to determine that the candidate shape is inside the geometric shape.
  - 8. The method of claim 1, wherein the geometric shape comprises a rectangle with rounded corners, and wherein determining the orientation of the geometric shape comprises:
    - determining an upward direction of the candidate shape; and
      
      setting an upward direction of the geometric shape based on the upward direction of the candidate shape and based on a direction of at least one side of the rectangle.
  - 9. The method of claim 1, wherein the set upward direction of the geometric shape is perpendicular or parallel to the at least one side of the rectangle.
  - 10. The method of claim 9, wherein a ray corresponding to the set upward direction of the geometric shape and a ray corresponding to the determined upward direction of the candidate shape make an angle of less than 45 degrees.

11. A system comprising:
- hardware processing circuitry;
  
  a hardware memory storing instructions that when executed, configure hardware processing circuitry to perform operations comprising;
  
  determining a public signing key (B) of a communication partner device by decoding, data encoded within the image;
  
  receiving a message at a computing device;
  
  verifying, based on the public signing key of the communication partner device, whether the message is from the communication partner device;
  
  providing an output including the message and an indication of the communication partner device if the message is verified to be from the communication partner device;
  
  providing an output indicating an error if the message is not verified to be from the communication partner device;
  
  generating, at the computing device, a private key (a) of the computing device;
  
  computing a public signing key (A) of the computing device, the public signing key of the computing device being computed according to an equation;
  
  A=g{circumflex over (
  
  )}a mod p, wherein p is a prime number that exceeds a threshold, and g is a primitive root modulo p;
  
  computing a shared secret (s) of the computing device and the communication partner device according to an equation;
  
  s=B{circumflex over (
  
  )}a mod p;
  
  decrypting the received message using the shared secret;
  
  encrypting a second message using the shared secret; and
  
  transmitting the second message to the communication partner device.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
- - 12. The system of claim 11, wherein p, g, A, and B are publicly accessible values, and wherein the private key (a) of the computing device is a secret value stored securely at the computing device.
  - 13. The system of claim 11, further comprising:
    - periodically modifying a value of the private key (a) of the computing device after a passage of a predetermined time period or after sending a predetermined number of messages;
      
      re-computing the public signing key (A) of the computing device based on the modified value of the private key (a) of the computing device;
      
      notifying the communication partner device of the re-computed value of the public signing key (A) of the computing device; and
      
      re-computing the shared secret (s) of the computing device and the communication partner device based on the modified value of the private key (a) of the computing device.
  - 14. The system of claim 11, further comprising:
    - receiving a notification that the public signing key (B) of the communication partner device has changed; and
      
      re-computing the shared secret (s) of the computing device and the communication partner device based on the changed value of the public signing key (B) of the communication partner device.
  - 15. The system of claim 11, the operations further comprising capturing the image via a camera of the computing device.
  - 16. The system of claim 11, the operations further comprising receiving the image via a web browser, a social networking application, or a messaging service.
  - 17. The system of claim 11, the operations further comprising:
    - determining the image includes a geometric shape;
      
      determining a candidate shape is inside the geometric shape;
      
      determining, using the candidate shape, an orientation of the geometric shape, wherein determining that the candidate shape is inside the geometric shape comprises;
      
      detecting a shape within the geometric shape,comparing the detected shape with a set of reference shapes to determine a similarity score, anddetermining that the similarity score exceeds a threshold to determine that the candidate shape is inside the geometric shape.
  - 18. The system of claim 17, wherein the geometric shape comprises a rectangle with rounded corners, and wherein determining the orientation of the geometric shape comprises:
    - determining an upward direction of the candidate shape; and
      
      setting an upward direction of the geometric shape based on the upward direction of the candidate shape and based on a direction of at least one side of the rectangle.
  - 19. The system of claim 18, wherein a ray corresponding to the set upward direction of the geometric shape and a ray corresponding to the determined upward direction of the candidate shape make an angle of less than 45 degrees.

20. A non-transitory computer readable medium comprising instructions that when executed configure hardware processing circuitry to perform operations comprising:
- determining a public signing key (B) of a communication partner device by decoding, data encoded within the image;
  
  receiving a message at a computing device;
  
  verifying, based on the public signing key of the communication partner device, whether the message is from the communication partner device;
  
  providing an output including the message and an indication of the communication partner device if the message is verified to be from the communication partner device;
  
  providing an output indicating an error if the message is not verified to be from the communication partner device;
  
  generating, at the computing device, a private key (a) of the computing device;
  
  computing a public signing key (A) of the computing device, the public signing key of the computing device being computed according to an equation;
  
  A=g{circumflex over (
  
  )}a mod p, wherein p is a prime number that exceeds a threshold, and g is a primitive root modulo p;
  
  computing a shared secret (s) of the computing device and the communication partner device according to an equation;
  
  s=B{circumflex over (
  
  )}a mod p;
  
  decrypting the received message using the shared secret;
  
  encrypting a second message using the shared secret; and
  
  transmitting the second message to the communication partner device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Snap, Inc.
Original Assignee
Snap, Inc.
Inventors
Sankuratripati, Subhash
Primary Examiner(s)
Nipa, Wasika
Assistant Examiner(s)
Ambaye, Samuel

Application Number

US16/256,639
Time in Patent Office

481 Days
Field of Search

713171
US Class Current
CPC Class Codes

H04L 63/0442   wherein the sending and rec...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/123   received data contents, e.g...

H04L 9/0838   Key agreement, i.e. key est...

H04L 9/0891   Revocation or update of sec...

H04W 12/033   of the user plane, e.g. use...

End to end encryption

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

30 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

End to end encryption

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

30 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links