System and method for secure electronic communication in a partially keyless environment
First Claim
1. A method comprising:
- intercepting an unsecured message from a sender;
searching for a digital identity corresponding to a recipient of said unsecured message;
when said digital identity is found, encrypting said unsecured message using a public key for said recipient from said digital identity to create a secure message; and
transmitting said secure message to said recipient;
wherein said server transparently transmits said secure message to a recipient without initial access to a certification authority.
3 Assignments
0 Petitions
Accused Products
Abstract
This present invention provides users with secure transparent electronic communication, allowing them to send and receive encrypted and/or signed messages with little or no user involvement. In various embodiments, the present invention provides a user with e-mail security via automated hierarchical techniques for transparently sending and receiving secure messages, and lowers the burden on administrators. Such a system can also manage cryptographic keys and certificates for the users, and creates such keys and certificates for the users when necessary. A server according to the present invention can intercept unsecured messages from a user, automatically transform those messages into secured messages, and transmit those secure messages to the intended recipients. The server can also automatically transform messages after the recipient sends a digital identity to the server and downloads the software necessary for transforming the secured messages back into readable messages (i.e., from ciphertext into plaintext). The server can further intercept an unsecured message from a user, search for a digital identity of the intended recipient, secure the unsecured message upon finding such a digital identity, and transparently send the secured message to the intended recipient.
260 Citations
11 Claims
-
1. A method comprising:
-
intercepting an unsecured message from a sender;
searching for a digital identity corresponding to a recipient of said unsecured message;
when said digital identity is found, encrypting said unsecured message using a public key for said recipient from said digital identity to create a secure message; and
transmitting said secure message to said recipient;
wherein said server transparently transmits said secure message to a recipient without initial access to a certification authority. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method comprising:
-
intercepting a first message from a sender;
sending a second message to a recipient containing information on how to receive said first message;
receiving a response from said recipient requesting a computer program containing security functionality;
sending said computer program to said recipient;
receiving a digital identity from said recipient;
encrypting said first message into a secure message using a public key for said recipient from said digital identity; and
transmitting said secure message to said recipient.
-
-
8. A method comprising:
-
intercepting an unsecured message from a sender;
automatically creating a secure path between a secure server of said sender and said recipient; and
transmitting said secure message to said recipient over said secure path. - View Dependent Claims (9, 10)
-
-
11. A system comprising:
-
a server, further comprising;
a message receive module for receiving an unsecured message from a sender;
a certificate search module for searching for a digital identity corresponding to a recipient of said unsecured message;
a crypto module for encrypting said unsecured message using a public key for said recipient from said digital identity to create a secure message, when said digital identity is found; and
a messages transmit module for transmitting said secure message to said recipient;
wherein said server transparently transmits said secure message to a recipient without initial access to a certification authority.
-
Specification