Method and system for controlled distribution of application code and content data within a computer network
First Claim
1. A method for configuring a semiconductor chip, the method comprising:
- selecting a private cryptographic key;
selecting a public cryptographic key, wherein the public cryptographic key and the private cryptographic key are not related by a cryptographic key pair relationship; and
embedding the private cryptographic key and the public cryptographic key in a read-only memory on the semiconductor chip.
1 Assignment
0 Petitions
Accused Products
Abstract
A secure communication methodology is presented. The client device is configured to download application code and/or content data from a server operated by a service provider. Embedded within the client is a client private key, a client serial number, and a copy of a server public key. The client forms a request, which includes the client serial number, encrypts the request with the server public key, and sends the download request to the server. The server decrypts the request with the server'"'"'s private key and authenticates the client. The received client serial number is used to search for a client public key that corresponds to the embedded client private key. The server encrypts its response, which includes the requested information, with the client public key of the requesting client, and only the private key in the requesting client can be used to decrypt the information downloaded from the server.
168 Citations
39 Claims
-
1. A method for configuring a semiconductor chip, the method comprising:
-
selecting a private cryptographic key;
selecting a public cryptographic key, wherein the public cryptographic key and the private cryptographic key are not related by a cryptographic key pair relationship; and
embedding the private cryptographic key and the public cryptographic key in a read-only memory on the semiconductor chip. - View Dependent Claims (2, 3, 4, 5)
-
-
6. An article of manufacture comprising:
-
a first read-only memory structure containing an embedded private cryptographic key; and
a second read-only memory structure containing an embedded public cryptographic key, wherein the public cryptographic key and the private cryptographic key are not related by a cryptographic key pair relationship. - View Dependent Claims (7, 8, 9)
-
-
10. A method for secure communication between a client and a server in a data processing system, the method comprising:
-
generating a client message at the client;
retrieving an embedded server public key from a read-only memory structure in an article of manufacture in the client;
encrypting the client message with the embedded server public key; and
sending the client message to the server. - View Dependent Claims (11, 12, 14, 15, 17, 18, 20)
-
-
13. An apparatus for secure communication between a client and a server in a data processing system, the apparatus comprising:
-
means for generating a client message at the client;
means for retrieving an embedded server public key from a read-only memory structure in an article of manufacture in the client;
means for encrypting the client message with the embedded server public key; and
means for sending the client message to the server.
-
-
16. A computer program product in a computer-readable medium for use in a data processing system for secure communication between a client and a server, the computer program product comprising:
-
instructions for generating a client message at the client;
instructions for retrieving an embedded server public key from a read-only memory structure in an article of manufacture in the client;
instructions for encrypting the client message with the embedded server public key; and
instructions for sending the client message to the server.
-
-
19. A method for secure communication between a client and a server in a data processing system, the method comprising:
-
generating a server message at the server;
retrieving information that was requested by the client;
storing the retrieved information in the server message;
retrieving a client public key, wherein the client public key corresponds to an embedded client private key in a read-only memory structure in an article of manufacture in the client;
encrypting the server message with the client public key; and
sending the server message to the client.
-
-
21. An apparatus for secure communication between a client and a server in a data processing system, the apparatus comprising:
-
means for generating a server message at the server;
means for retrieving information that was requested by the client;
means for storing the retrieved information in the server message;
means for retrieving a client public key, wherein the client public key corresponds to an embedded client private key in a read-only memory structure in an article of manufacture in the client;
means for encrypting the server message with the client public key; and
means for sending the server message to the client. - View Dependent Claims (22, 24, 26, 28, 30)
-
-
23. A computer program product in a computer-readable medium for use in a data processing system for secure communication between a client and a server, the computer program product comprising:
-
instructions for generating a server message at the server;
instructions for retrieving information that was requested by the client;
instructions for storing the retrieved information in the server message;
instructions for retrieving a client public key, wherein the client public key corresponds to an embedded client private key in a read-only memory structure in an article of manufacture in the client;
instructions for encrypting the server message with the client public key; and
instructions for sending the server message to the client.
-
-
25. A method for secure communication between a client and a server in a data processing system, the method comprising:
-
receiving a client message from the client;
retrieving a server private key;
decrypting the client message with the server private key;
retrieving a client serial number from the decrypted client message; and
retrieving a client public key that is associatively stored with the retrieved client serial number, wherein the client public key corresponds to an embedded client private key in a read-only memory structure in an article of manufacture in the client.
-
-
27. An apparatus for secure communication between a client and a server in a data processing system, the apparatus comprising:
-
means for receiving a client message from the client;
means for retrieving a server private key;
means for decrypting the client message with the server private key;
means for retrieving a client serial number from the decrypted client message; and
means for retrieving a client public key that is associatively stored with the retrieved client serial number, wherein the client public key corresponds to an embedded client private key in a read-only memory structure in an article of manufacture in the client.
-
-
29. A computer program product in a computer-readable medium for use in a data processing system for secure communication between a client and a server, the computer program product comprising:
-
instructions for receiving a client message from the client;
instructions for retrieving a server private key;
instructions for decrypting the client message with the server private key;
instructions for retrieving a client serial number from the decrypted client message; and
instructions for retrieving a client public key that is associatively stored with the retrieved client serial number, wherein the client public key corresponds to an embedded client private key in a read-only memory structure in an article of manufacture in the client.
-
-
31. A method for secure communication between a client and a server in a data processing system, the method comprising:
-
receiving a server message from the server;
retrieving an embedded client private key from a read-only memory structure in an article of manufacture in the client; and
decrypting the server message with the embedded client private key. - View Dependent Claims (32, 33, 35, 36, 38, 39)
-
-
34. An apparatus for secure communication between a client and a server in a data processing system, the apparatus comprising:
-
means for receiving a server message from the server;
means for retrieving an embedded client private key from a read-only memory structure in an article of manufacture in the client; and
means for decrypting the server message with the embedded client private key.
-
-
37. A computer program product in a computer-readable medium for use in a data processing system for secure communication between a client and a server, the computer program product comprising:
-
instructions for receiving a server message from the server;
instructions for retrieving an embedded client private key from a read-only memory structure in an article of manufacture in the client; and
instructions for decrypting the server message with the embedded client private key.
-
Specification