Security breach management

US 20020106085A1
Filed: 01/05/2001
Published: 08/08/2002
Est. Priority Date: 01/05/2001
Status: Abandoned Application

First Claim

Patent Images

1. A method for handling a breach in security, the method comprising the steps of:

prior to the breach, a first party sending to a second party data that identifies a plurality of public keys, including a current public key that corresponds to a current private key;

prior to the breach, the second party using said current public key and the first party using the current private key to exchange electronic messages securely;

in response to the breach, performing the steps of the first party invalidating said current private key;

the first party sending a message to said second party to instruct said second party to invalidate said current public key, and to establish another public key in said plurality of public keys as a new current public key;

after said second party receives said message, said second party using said new current public key and said first party using a corresponding new current private key to exchange electronic messages securely.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques for handling a breach in security are disclosed. According to one technique, prior to the breach, a first party sends to a second party data that identifies a plurality of public keys, including a current public key that corresponds to a current private key. The second party uses the current public key and the first party uses the current private key to exchange electronic messages securely. Other keys, including a session key, may also be used to ensure the security of the exchange. According to one technique, digital signatures are attached to every outgoing message during the secure exchange, and verified on every incoming message. In response to a breach involving the current private key, (1) the first party invalidates the current private key, (2) the first party sends a message to the second party to instruct the second party to invalidate the current public key, and to establish another public key in the plurality of public keys as a new current public key. After the second party receives the message, the second party uses the new current public key and the first party uses a corresponding new current private key to exchange electronic messages securely.

Citations

14 Claims

1. A method for handling a breach in security, the method comprising the steps of:
- prior to the breach, a first party sending to a second party data that identifies a plurality of public keys, including a current public key that corresponds to a current private key;
  
  prior to the breach, the second party using said current public key and the first party using the current private key to exchange electronic messages securely;
  
  in response to the breach, performing the steps of the first party invalidating said current private key;
  
  the first party sending a message to said second party to instruct said second party to invalidate said current public key, and to establish another public key in said plurality of public keys as a new current public key;
  
  after said second party receives said message, said second party using said new current public key and said first party using a corresponding new current private key to exchange electronic messages securely.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1 wherein:
    - the step of, prior to the breach, a first party sending to a second party data that identifies a plurality of public keys includes the first party sending to the second party a plurality of public keys for use in decoding digital signatures of the first party;
      
      the plurality of public keys includes said current public key for digital signatures currently being used by the first party, and one or more other public keys for future use; and
      
      the step of the second party using said current public key and the first party using the current private key to exchange electronic messages securely includes the step of the second party using said current public key to decode digital signatures received from said first party, and the first party using the current private key to generate digital signatures sent to said second party.
  - 3. The method of claim 1 wherein the step of a first party sending to a second party data that identifies a plurality of public keys is performed by said first party sending to said second party certificates that include said plurality of public keys, wherein said certificates are encrypted by a certificate authority using a private encryption key.
  - 4. The method of claim 1 further comprising the steps of:
    - establishing an order for the plurality of public keys; and
      
      communicating said order to said second party;
      
      wherein the message instructs said second party to invalidate said current public key, and to establish another public key in said plurality of public keys as a new current public key by instructing said second party to move to the public key of said plurality of public keys that is next in said order after said current public key.
  - 5. The method of claim 1 further comprising the steps of:
    - prior to the breach, the second party sending to the first party data that identifies a second public key that is associated with a second private key maintained by said second party; and
      
      wherein, in addition to said public key, the second party also uses said second private key to exchange electronic messages securely with said first party;
      
      wherein, in addition to said current private key, the first party also uses said second public key to exchange electronic messages securely with said second party;
      
      in response to theft of the second private key, the second party obtains a certificate from a certificate authority for a third public key associated with a third private key, the second party sending the certificate to the first party.
  - 6. The method of claim 1 wherein:
    - said second party is one of a plurality of partners of said first party;
      
      prior to the breach, the first party sends to each partner of said plurality of partners data that identifies said plurality of public keys;
      
      prior to said breach, each partner of said plurality of partners uses said current public key for secure communications with said first party; and
      
      in response to said breach, said first party sends a message to each partner of said plurality of partners that are currently connected to said first party, wherein said message instructs said partner to invalidate said current public key, and to establish another public key in said plurality of public keys as a new current public key.

7. A method for conducting a secure exchange of electronic information, the method comprising the steps of:
- a first party sending to a second party a first message that is encrypted using a first public encryption key, the first message containing a session key;
  
  said second party using a first private decryption key to decrypt said first message and extract said session key;
  
  establishing a secure session between said first party and said second party using said session key, wherein all messages communicated between said parties during said session are encrypted using said session key;
  
  said first party signing each message sent to said second party in said secure session using digital signatures generated using a first private digital signature key, wherein said first private digital signature key corresponds to a first public digital signature key;
  
  said second party signing each message sent to said first party in said secure session using digital signatures generated using a second private digital signature key, wherein the second private digital signature key corresponds to a second public digital signature key;
  
  said first party verifying that each message received during said secure session is authentic by applying said second public digital signature key to digital signatures received by said first party during said secure session; and
  
  said second party verifying that each message received during said secure session is authentic by applying said first public digital signature key to digital signatures received by said second party during said secure session.

8. A system for handling a breach in security, the system comprising:
- a first computer system associated with a first party;
  
  a second computer system associated with a second party;
  
  a network operatively connection said first computer system to said second computer system, wherein access to said network is not exclusively controlled by said first party or said second party;
  
  wherein said first computer system is configured to, prior to said breach, send to said second computer system data that identifies a plurality of public keys, including a current public key that corresponds to a current private key;
  
  wherein the first and second computer systems are configured to exchange electronic messages securely, prior to said breach, in a session during which said second computer uses said current public key and the first computer system uses the current private key;
  
  wherein the first and second computers are configured to respond to the breach by performing the following steps;
  
  the first computer system invalidates said current private key;
  
  the first computer system sends a message to said second computer system to instruct said second computer system to invalidate said current public key, and to establish another public key in said plurality of public keys as a new current public key;
  
  the second computer system invalidates said current public key and establishes the other public key as the new current public key;
  
  wherein, after said second computer system receives said message, said second computer system uses said new current public key and said first computer system uses a corresponding new current private key to exchange electronic messages securely.
- View Dependent Claims (9, 10, 11, 12, 13)
- - 9. The system of claim 8 wherein:
    - the plurality of public keys are public keys for use in decoding digital signatures of the first party;
      
      the plurality of public keys includes said current public key for digital signatures currently being used by the party, and one or more other public keys for future use; and
      
      the second computer system uses said current public key to decode digital signatures received from said first computer system, and the first computer system uses the current private key to generate digital signatures sent to said second computer system.
  - 10. The system of claim 8 wherein the data that identifies a plurality of public keys includes certificates that include said plurality of public keys, wherein said certificates are encrypted by a certificate authority using a private encryption key.
  - 11. The system of claim 8 wherein:
    - the plurality of public keys are assigned an order; and
      
      the order is communicated to said second computer system;
      
      wherein the message instructs said second computer system to invalidate said current public key, and to establish another public key in said plurality of public keys as a new current public key by instructing said second computer system to move to the public key of said plurality of public keys that is next in said order after said current public key.
  - 12. The system of claim 8 wherein:
    - prior to the breach, the second computer system sends to the first computer system data that identifies a second public key that is associated with a second private key maintained by said second computer system; and
      
      wherein, in addition to said public key, the second computer system also uses said second private key to exchange electronic messages securely with said first computer system;
      
      wherein, in addition to said current private key, the first computer system also uses said second public key to exchange electronic messages securely with said second computer system;
      
      in response to theft of the second private key, the second computer system obtains a certificate from a certificate authority for a third public key associated with a third private key, the second computer system sends the certificate to the first computer system.
  - 13. The system of claim 8 wherein:
    - said second party is one of a plurality of partners of said first party;
      
      prior to the breach, the first computer system sends to computer systems of each partner of said plurality of partners data that identifies said plurality of public keys;
      
      prior to said breach, the computer systems of each partner of said plurality of partners uses said current public key for secure communications with said first computer system; and
      
      in response to said breach, said first computer system sends a message to the computer systems of each partner of said plurality of partners that are currently connected to said first computer system, wherein said message instructs said computer system to invalidate said current public key, and to establish another public key in said plurality of public keys as a new current public key.

14. A system for conducting a secure exchange of electronic information, the system comprising:
- a first computer system configured to send to a second computer system a first message that is encrypted using a first public encryption key, the first message containing a session key;
  
  said second computer system configured to use a first private decryption key to decrypt said first message and extract said session key;
  
  wherein said first and second computer systems establish a secure session using said session key, wherein all messages communicated between said first and second computer systems during said session are encrypted using said session key;
  
  said first computer system signing each message sent to said second computer system in said secure session using digital signatures generated using a first private digital signature key, wherein said first private digital signature key corresponds to a first public digital signature key;
  
  said second computer system signing each message sent to said first computer system in said secure session using digital signatures generated using a second private digital signature key, wherein the second private digital signature key corresponds to a second public digital signature key;
  
  said first computer system verifying that each message received during said secure session is authentic by applying said second public digital signature key to digital signatures received by said first computer system during said secure session; and
  
  said second computer system verifying that each message received during said secure session is authentic by applying said first public digital signature key to digital signatures received by said second computer system during said secure session.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Viquity Corp.
Original Assignee
Viquity Corp.
Inventors
Ghatare, Sanjay, Jain, Sandeep, Thakur, Sudheer, Jeu, Kevin Darryl

Application Number

US09/755,851
Publication Number

US 20020106085A1
Time in Patent Office

Days
Field of Search
US Class Current

380/277
CPC Class Codes

H04L 9/14   using a plurality of keys o...

H04L 9/3247   involving digital signatures

H04L 9/3263   involving certificates, e.g...

Security breach management

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

14 Claims

Specification

Solutions

Use Cases

Quick Links

Security breach management

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

14 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links