Session key distribution methods using a hierarchy of key servers
First Claim
1. A method of facilitating secure communication between first and second devices, the method comprising:
- automatically identifying a common key server potentially accessible by both the first and second devices; and
obtaining a secure private key from the common key server, for use in encrypting communications between the first and second devices.
0 Assignments
0 Petitions
Accused Products
Abstract
Methods, apparatuses, media and signals for facilitating secure communication between a first device and a second device are disclosed. One method includes automatically identifying a common key server potentially accessible by both the first and second devices, and obtaining a secure private key from the common key server, for use in encrypting communications between the first and second devices. Identifying may include identifying as the common key server, a key server at an intersection of a first communication path defined between a first key server having a previously established relationship with the first device and a master key server, and a second communication path defined between a second key server having a previously established relationship with the second device and the master key server. Obtaining may include obtaining a plurality of private keys and blending the keys to produce a final private session key.
157 Citations
109 Claims
-
1. A method of facilitating secure communication between first and second devices, the method comprising:
-
automatically identifying a common key server potentially accessible by both the first and second devices; and
obtaining a secure private key from the common key server, for use in encrypting communications between the first and second devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 46, 47, 48)
-
-
44. (canceled).
-
45. (canceled).
-
49. An apparatus for facilitating secure communication between first and second devices, the apparatus comprising:
-
a processor circuit capable of communication with a network, the processor circuit configured to identify a common key server potentially accessible by both the first and second devices;
wherein the processor circuit is configured to obtain a secure private key from the common key server, for use in encrypting communications between the first and second devices. - View Dependent Claims (50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 87, 88, 89, 90, 91)
-
-
92. An apparatus for facilitating secure communication between first and second devices, the apparatus comprising:
-
means for identifying a common key server potentially accessible by both the first and second devices; and
means for obtaining a secure private key from the common key server, for use in encrypting communications between the first and second devices.
-
-
93. A method of facilitating secure communications between first and second devices, the method comprising:
-
receiving, at an intermediate key server, a request message from one of the first and second devices requesting a private key; and
relaying the request message to a common key server potentially accessible by both the first and second devices. - View Dependent Claims (94, 97, 98, 99)
-
-
95. (canceled).
-
96. (canceled).
-
100. An apparatus for facilitating secure communications between first and second devices, the apparatus comprising:
-
an intermediate key server comprising a processor circuit configured to receive a request message from one of the first and second devices requesting a private key;
wherein the processor circuit is configured to relay the request message to a common key server potentially accessible by both the first and second devices.
-
-
101. An apparatus for facilitating secure communications between first and second devices, the apparatus comprising:
-
an intermediate key server comprising;
means for receiving a request message from one of the first and second devices requesting a private key; and
means for relaying the request message to a common key server potentially accessible by both the first and second devices.
-
-
102. A method of facilitating secure communications between first and second devices, the method comprising:
-
receiving, at a common key server potentially accessible by both the first and second devices, request messages from first and second intermediate servers interposed between the common key server and the first and second devices respectively, requesting a private key; and
generating and transmitting the private key to the first and second intermediate servers in response to the request messages, for relay to the first and second devices. - View Dependent Claims (105, 106, 107)
-
-
103. (canceled).
-
104. (canceled).
-
108. An apparatus for facilitating secure communications between first and second devices, the apparatus comprising:
-
a common key server potentially accessible by both the first and second devices, the common key server comprising a processor circuit configured to receive request messages from first and second intermediate servers interposed between the common key server and the first and second devices respectively, requesting a private key;
wherein the processor circuit is configured to generate and transmit the private key to the first and second intermediate servers in response to the request messages, for relay to the first and second devices.
-
-
109. An apparatus for facilitating secure communications between first and second devices, the apparatus comprising:
-
a common key server potentially accessible by both the first and second devices, the common key server comprising;
means for receiving request messages from first and second intermediate servers interposed between the common key server and the first and second devices respectively, requesting a private key; and
means for generating and transmitting the private key to the first and second intermediate servers in response to the request messages, for relay to the first and second devices.
-
Specification