System and method for conducting a secure response communication session
First Claim
1. A computer program product for use in conjunction with a computer system having a server and a client, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer program mechanism, comprising:
- a program module that directs the computer system and/or components thereof including at least one or the client or server, to function in a specified manner to provide message communications, the message communications occurring in a computer system hardware architecture neutral and operating system neutral and network transport protocol neutral manner for conducting a secure response session, the program module including instructions for;
A. extracting, by a Client who is establishing a secure response session to a Entity in order to respond to a message from the Entity, the Entity'"'"'s public key and matching destination address of the Entity from a trusted source or storage means;
B. extracting, by the Client, the Client'"'"'s public and private key and certificate chain from a trusted source or storage means;
C. using the extracted client public and private key and certificate chain information along with the previously extracted Entity destination address to create a secure session with the Entity using a secure session protocol;
D. sending, by the Client, a first Data message after any session setup messages, that contains a Resource Tag that was included in the message received from the Entity to which this client initiated session is a response;
E. setting up, by the Entity, the session setup portion of the secure session protocol; and
F. verifying, by the Entity, the Client'"'"'s certificate chain and the Resource Tag that is received in the first Data message from the Client.
1 Assignment
0 Petitions
Accused Products
Abstract
System, method, signal, operating model, and computer program for electronic messaging. Systems and method for providing security for communication of electronic messages, interactive sessions, software downloads, software upgrades, and other content from a source to a receiving device as well as signals used for such communications. Systems, methods, signals, device architectures, data formats, and computer program structures for providing authentication, integrity, confidentiality, non-repudiation, replay protection, and other security properties while minimizing the network bandwidth, computational resources, and manual user interactions required to install, enable, deploy and utilize these security properties. System, device, method, computer program, and computer program product for searching and selecting data and control elements in message procedural/data sets for automatic and complete portrayal of message to maintain message intent. System, device, method, computer program, and computer program product for adapting content for sensory and physically challenged persons using embedded semantic elements in a procedurally based message file.
-
Citations
22 Claims
-
1. A computer program product for use in conjunction with a computer system having a server and a client, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer program mechanism, comprising:
- a program module that directs the computer system and/or components thereof including at least one or the client or server, to function in a specified manner to provide message communications, the message communications occurring in a computer system hardware architecture neutral and operating system neutral and network transport protocol neutral manner for conducting a secure response session, the program module including instructions for;
A. extracting, by a Client who is establishing a secure response session to a Entity in order to respond to a message from the Entity, the Entity'"'"'s public key and matching destination address of the Entity from a trusted source or storage means;
B. extracting, by the Client, the Client'"'"'s public and private key and certificate chain from a trusted source or storage means;
C. using the extracted client public and private key and certificate chain information along with the previously extracted Entity destination address to create a secure session with the Entity using a secure session protocol;
D. sending, by the Client, a first Data message after any session setup messages, that contains a Resource Tag that was included in the message received from the Entity to which this client initiated session is a response;
E. setting up, by the Entity, the session setup portion of the secure session protocol; and
F. verifying, by the Entity, the Client'"'"'s certificate chain and the Resource Tag that is received in the first Data message from the Client.
- a program module that directs the computer system and/or components thereof including at least one or the client or server, to function in a specified manner to provide message communications, the message communications occurring in a computer system hardware architecture neutral and operating system neutral and network transport protocol neutral manner for conducting a secure response session, the program module including instructions for;
-
2. A hardware architecture neutral and operating system neutral and network transport neutral method for secure response session using less software code and network bandwidth than conventional systems, said method comprising the steps of:
-
A. extracting, by a Client who is establishing a secure response session to a Entity in order to respond to a message from the Entity, the Entity'"'"'s public key and matching destination address of the Entity from a trusted source or storage means;
B. extracting, by the Client, the Client'"'"'s public and private key and certificate chain from a trusted source or storage means;
C. using the extracted client public and private key and certificate chain information along with the previously extracted Entity destination address to create a secure session with the Entity using a secure session protocol;
D. sending, by the Client, a first Data message after any session setup messages, that contains a Resource Tag that was included in the message received from the Entity to which this client initiated session is a response;
E. setting up, by the Entity, the session setup portion of the secure session protocol; and
F. verifying, by the Entity, the Client'"'"'s certificate chain and the Resource Tag that is received in the first Data message from the Client. - View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 17, 18, 19, 20, 21)
-
-
16. A method for conducting a secure response session from a Client that is establishing a secure response session to an Entity in order to respond to a message from the Entity, said method comprising the steps of:
- extracting, by the Client, information including the Entity'"'"'s public key and destination address and Client'"'"'s public and private key and certificate chain from one or more trusted source;
using, by the Client, the extracted information to create a secure session with the Entity using a secure session protocol; and
sending, by the Client, a first data message that contains a resource tag that was included in the message received from the Entity to which this Client initiated session is a response.
- extracting, by the Client, information including the Entity'"'"'s public key and destination address and Client'"'"'s public and private key and certificate chain from one or more trusted source;
-
22. A computer program product for use in conjunction with a computer system, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer program mechanism, comprising:
- a program module that directs the computer system and/or components thereof, to function in a specified manner to conduct a secure response session from a Client that is establishing a secure response session to an Entity in order to respond to a message from the Entity and occurring in a computer system hardware architecture neutral and operating system neutral and network transport protocol neutral manner for conducting a secure response session, the program module including instructions for;
extracting, by the Client, information including the Entity'"'"'s public key and destination address and Client'"'"'s public and private key and certificate chain from one or more trusted source;
using, by the Client, the extracted information to create a secure session with the Entity using a secure session protocol; and
sending, by the Client, a first data message that contains a resource tag that was included in the message received from the Entity to which this Client initiated session is a response.
- a program module that directs the computer system and/or components thereof, to function in a specified manner to conduct a secure response session from a Client that is establishing a secure response session to an Entity in order to respond to a message from the Entity and occurring in a computer system hardware architecture neutral and operating system neutral and network transport protocol neutral manner for conducting a secure response session, the program module including instructions for;
Specification