System, method and computer product for delivery and receipt of S/MIME encrypted data

US 20040019780A1
Filed: 03/06/2003
Published: 01/29/2004
Est. Priority Date: 07/23/2002
Status: Abandoned Application

First Claim

Patent Images

1. A system for exchanging S/MIME compliant communications electronically comprising:

(a) at least one network-connected device for communicating with one or more remote devices via a communication network, said network-connected device including;

(b) a browser linked to the network-connected device;

(c) an encryption/decryption facility linked to the browser so as to enable PKI transactions to be conducted in the browser; and

(d) an S/MIME facility linked to the browser and the encryption/decryption facility that enables the network-connected device to exchange S/MIME compliant communications with remote network-connected devices via the browser in cooperation with the encryption/decryption facility.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system for encrypting and decrypting S/MIME messages using a browser in either a web or wireless device for transmission to or from a web server on the Internet connected to an email server. The S/MIME encryption and decryption is conducted using a standard web browser on a personal computer or a mini browser on a wireless device such that email transmitted to the web or wireless browser from the web server can be completed and encrypted and signed by the user of the browser with such encrypted and signed data can be sent back to the web server. A method for delivering and using private keys in a browser and to ensure that such keys are destroyed after use is also provided. A method of transmitting encrypted S/MIME compliant messages to a web or wireless browser and decrypting and verifying such messages using the browser on the wireless device is also disclosed. A method for authenticating the sender/user of the browser, and a method for verifying and retrieving the certificates of the intended recipient of such messages in accordance with the public key infrastructure.

Citations

12 Claims

1. A system for exchanging S/MIME compliant communications electronically comprising:
- (a) at least one network-connected device for communicating with one or more remote devices via a communication network, said network-connected device including;
  
  (b) a browser linked to the network-connected device;
  
  (c) an encryption/decryption facility linked to the browser so as to enable PKI transactions to be conducted in the browser; and
  
  (d) an S/MIME facility linked to the browser and the encryption/decryption facility that enables the network-connected device to exchange S/MIME compliant communications with remote network-connected devices via the browser in cooperation with the encryption/decryption facility.
- View Dependent Claims (2, 3, 4, 5)
- - 2. A system for exchanging S/MIME communication electronically as claimed in claim 1, wherein the system also comprises:
    - (a) a key storage means for storing a plurality of keys, each key being useable by an associated user in a public key infrastructure to encrypt and decrypt data; and
      
      (b) a user authentication means for determining whether a prospective user of a key in the plurality of keys is the associated user for the key;
      
      wherein the encryption/decryption facility is linked to the key storage means and the user authentication means such that the encryption/decryption facility encrypts and decrypts data using the plurality of keys when the user authentication means authenticates a user of the network-connected device.
  - 3. A system as claimed in claim 2, wherein the system further comprises an email server, and wherein the encryption/decryption facility and the S/MIME facility enable S/MIME compatible messages to be exchanged between the network-connected device and the email server.
  - 4. A system as claimed in claim 3, wherein the user authentication means communicates with a Certificate Authority to authenticate the prospective user.
  - 5. A system as claimed in claim 4, wherein the user authentication means includes a roaming key server that authenticates the sender of an S/MIME compliant communication and transmits the sender'"'"'s private key and certificate to the network-connected device via the remote server.

6. A computer product operable on a network-connected device for enabling S/MIME compliant communications between the network-connected device and remote devices via a communication network, the computer product comprising:
- (a) a browser;
  
  (b) an encryption/decryption facility linked to the browser so as to enable PKI transactions to be conducted in the browser; and
  
  (c) an S/MIME facility linked to the browser and the encryption/decryption facility that enables the network-connected device to exchange S/MIME compliant communications with the remote device via the browser in cooperation with the encryption/decryption facility.
- View Dependent Claims (7, 8, 9, 10)
- - 7. A computer product as claimed in claim 6, the computer product further comprising:
    - (a) a key storage means for storing a plurality of keys, each key being useable by an associated user in a public key infrastructure to encrypt and decrypt data; and
      
      (b) a user authentication means for determining whether a prospective user of a key in the plurality of keys is the associated user for the key;
      
      wherein the encryption/decryption facility is linked to the key storage means and the user authentication means such that the encryption/decryption facility encrypts and decrypts data using the plurality of keys when the user authentication means authenticates a user of the network-connected device.
  - 8. A computer product as claimed in claim 7, wherein the S/MIME facility is an S/MIME browser extension.
  - 9. A computer product as claimed in claim 8, wherein the S/MIME facility enables encryption and signature of electronic messages and attachments.
  - 10. A computer product as claimed in claim 9, wherein the S/MIME facility is provided such that security of cryptographic operations in the computer product is maintained.

11. A method of sending S/MIME compliant communications electronically comprising:
- (a) providing an encryption/decryption facility and an S/MIME facility, linked to a browser, loaded on a network-connected device associated with a sender;
  
  (b) authenticating the sender with a remote server by means of a user authentication means linked to the network-connected device;
  
  (c) the sender requesting an S/MIME compliant communication with a recipient from the remote server;
  
  (d) the remote server communicating the recipient'"'"'s private key and certificate to the S/MIME facility;
  
  (e) the network-connected device contacting a Certificate Authority to verify the recipient'"'"'s public key and certificate, by means of the encryption/decryption facility; and
  
  (f) creating an S/MIME compliant communication by signing and encrypting a communication in the browser using the private key of the sender and the public key of the recipient, by means of the encryption/decryption facility and the S/MIME facility.

12. A method of retrieving and deciphering S/MIME compliant communications electronically comprising:
- (a) providing an encryption/decryption facility and an S/MIME facility, linked to a browser, loaded on a network-connected device;
  
  (b) requesting the retrieval of an S/MIME compliant communication from the network-connected device;
  
  (c) Authenticating a recipient associated with the network-connected device with a remote server;
  
  (d) The remote server communicating the sender'"'"'s private key and certificate to the S/MIME facility;
  
  (e) The remote server sending the requested S/MIME compliant communication to the network-connected device;
  
  (f) The encryption/decryption facility authenticating the recipient'"'"'s private key and certificate against the private key and certificate stored to a key/certificate store accessible from the network-connected device whereby upon authentication thereof the private key and certificate are released to the S/MIME facility, thereby enabling the S/MIME compliant communication to be deciphered in the browser.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
ECHOWORX Corporation
Original Assignee
ECHOWORX Corporation
Inventors
Roberts, Michael, Ivanov, Viatcheslav, Waugh, Donald

Application Number

US10/379,528
Publication Number

US 20040019780A1
Time in Patent Office

Days
Field of Search
US Class Current

713/152
CPC Class Codes

H04L 51/00   User-to-user messaging in p...

H04L 63/0428   wherein the data content is...

H04L 63/168   above the transport layer

H04L 69/08   Protocols for interworking;...

System, method and computer product for delivery and receipt of S/MIME encrypted data

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

System, method and computer product for delivery and receipt of S/MIME encrypted data

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links