METHOD AND APPARATUS FOR PRIVATE MESSAGING AMONG USERS SUPPORTED BY INDEPENDENT AND INTEROPERATING COURIERS
First Claim
Patent Images
1. A system for providing private messaging among multiple users, comprising:
- a packet network;
one or more private messaging agents coupled to the packet network, wherein the private messaging agents handle private messages and corresponding access restrictions messages;
one or more trusted couriers coupled to the packet network and operable to relay the private messages and corresponding access restrictions messages between the private messaging agents, wherein the one or more trusted couriers operate to convey private messages independently from corresponding access restrictions messages.
1 Assignment
0 Petitions
Accused Products
Abstract
A private messaging system including multiple interoperating, yet potentially competing, trusted couriers. A method and apparatus are provided for the purpose of distributing a trusted courier such that foreground and background messages are handled independently by separate components.
17 Citations
28 Claims
-
1. A system for providing private messaging among multiple users, comprising:
-
a packet network;
one or more private messaging agents coupled to the packet network, wherein the private messaging agents handle private messages and corresponding access restrictions messages;
one or more trusted couriers coupled to the packet network and operable to relay the private messages and corresponding access restrictions messages between the private messaging agents, wherein the one or more trusted couriers operate to convey private messages independently from corresponding access restrictions messages. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A trusted courier comprising:
-
a foreground element operable to transfer private messages to external agents; and
a background element operable to transfer access restrictions messages to external agents. - View Dependent Claims (11, 12, 13)
-
-
14. A method of providing private messaging services comprising:
-
sending an Invitation to Register to a prospective user of the private messaging service;
registering a user by establishing an account and agent with key materials for the prospective user;
routing the key material and access restrictions associated with each private message between registered users through the background element of one or more trusted couriers separately from the private messages; and
routing the private messages between registered users through the foreground element of one or more trusted couriers, separately from the content keys and access restrictions. - View Dependent Claims (15, 16, 17, 18)
-
-
19. A private messaging system for routing a message between a first agent and a second agent, the system comprising:
-
a first courier having a trust relationship with the first agent;
a second courier having a trust relationship with the second agent and with the first courier;
wherein the first courier is operable to receive a message identifying the second agent as a recipient from the first agent, determine that the second agent has a trust relationship with the second courier, and send the message to the second courier using the trust relationship between the first courier and the second courier; and
wherein the second courier is operable to relay the message to the second agent using the trust relationship between the second courier and the second agent. - View Dependent Claims (20, 21, 22, 23)
-
-
24. A method for routing a private message between a sending agent and a recipient agent, the method comprising:
-
providing a first agent;
providing a second agent;
providing a first courier having knowledge of a number of agents, including the first agent, that are registered with the first courier;
providing a second courier having knowledge of a number of agents, including the second agent, that are registered with the second courier;
providing a private message from the first agent to the first courier, the private message comprising a header and a message ID, wherein the private message header identifies a recipient address of the second agent, and wherein the content is encrypted using a content encryption key (CEK);
signing and encrypting the private message with a first message signing key used by the first agent for messages to the first courier;
sending the signed private message in one or more parts, the signed private message addressed to the first courier, the message comprising the header, message ID, the encrypted content of the private message, and the CEK used to encrypt the content of the private message;
in the first courier, decrypting and validating the private message header using the first message signing key known to the first courier, wherein the private message content remain encrypted by the CEK;
identifying the second courier from the recipient address in the decrypted first message header;
for the at least one registered recipient address in the decrypted message header, reconstructing the message;
signing and encrypting the reconstructed message using a second message signing key used by the first courier for messages to the second courier;
sending the signed and encrypted reconstructed message in one or more parts to the second courier, the signed and encrypted reconstructed message comprising the header, message ID, the encrypted content of the private message, and the CEK used to encrypt the content of the private message;
in the second courier, decrypting and validating the private message header using the second message signing key known to the second courier, wherein the private message content remain encrypted by the CEK;
identifying the recipient address in the decrypted message header;
signing and encrypting the private message with a third message signing key used by the second agent for messages to the second agent;
sending the signed private message in one or more parts to the second agent the message comprising the header, message ID, the encrypted content of the private message, and the CEK used to encrypt the content of the private message;
decrypting the signed private message in the second agent using the third message signing key; and
decrypting the encrypted content in the second agent using the CEK. - View Dependent Claims (25, 26, 27, 28)
-
Specification