Peer-to-peer security authentication protocol

US 20080301435A1
Filed: 05/29/2007
Published: 12/04/2008
Est. Priority Date: 05/29/2007
Status: Active Grant

First Claim

Patent Images

1. A method of computer security, comprising:

receiving at a first node a salt that was transmitted by a second node; and

using the received salt to decrypt encrypted data.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A salt transmitted by a second node is received at a first node. The received salt is used to decrypt encrypted data. Optionally, authorization to access a service provided by the second node is received by the first node. In some cases the service includes access to one or more files.

Citations

27 Claims

1. A method of computer security, comprising:
- receiving at a first node a salt that was transmitted by a second node; and
  
  using the received salt to decrypt encrypted data.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 2. The method of claim 1 further comprising receiving authorization to access a service provided by the second node.
  - 3. The method of claim 2 wherein the service includes access to one or more files.
  - 4. The method of claim 1 further comprising sending a user identifier.
  - 5. The method of claim 1 further comprising using additional data to decrypt the encrypted data.
  - 6. The method of claim 5 wherein the additional data is a password.
  - 7. The method of claim 1 wherein the encrypted data is received from the second node.
  - 8. The method of claim 1 wherein the encrypted data is used to compute a session key.
  - 9. The method of claim 1 wherein the encrypted data is received from the second node and is used to compute a session key.
  - 10. The method of claim 1 wherein the salt is received directly or indirectly from a third node.
  - 11. The method of claim 10 wherein the third node is a user directory.
  - 12. The method of claim 1 wherein the encrypted data is received directly or indirectly from a third node.
  - 13. The method of claim 12 wherein the third node is a user directory.
  - 14. The method of claim 1 further comprising generating a peer challenge.
  - 15. The method of claim 1 further comprising establishing a session with the second node.

16. A method of computer security, comprising:
- obtaining at a first node a salt; and
  
  sending the salt and encrypted data to a second node.
- View Dependent Claims (17, 18, 19, 20, 21, 22, 23)
- - 17. The method of claim 16 further comprising granting authorization to access a service provided by the first node.
  - 18. The method of claim 16 further comprising receiving a user identifier.
  - 19. The method of claim 16 further comprising receiving a peer challenge.
  - 20. The method of claim 19 further comprising generating a response to the peer challenge.
  - 21. The method of claim 16 further comprising receiving the salt from a third node.
  - 22. The method of claim 16 further comprising receiving the encrypted data from a third node.
  - 23. The method of claim 16 further comprising establishing a session with the second node.

24. A system for computer security, including:
- a processor; and
  
  a memory coupled with the processor, wherein the memory is configured to provide the processor with instructions which when executed cause the processor to;
  
  receive at a first node a salt that was transmitted by a second node; and
  
  use the received salt to decrypt encrypted data.

25. A system for computer security, including:
- a processor; and
  
  a memory coupled with the processor, wherein the memory is configured to provide the processor with instructions which when executed cause the processor to;
  
  obtain at a first node a salt; and
  
  send the salt and encrypted data to a second node.

26. A computer program product for computer security, the computer program product being embodied in a computer readable medium and comprising computer instructions for:
- receiving at a first node a salt that was transmitted by a second node; and
  
  using the received salt to decrypt encrypted data.

27. A computer program product for authenticating a client to a server, the computer program product being embodied in a computer readable medium and comprising computer instructions for:
- obtaining at a first node a salt; and
  
  sending the salt and encrypted data to a second node.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Apple Inc.
Original Assignee
Apple Inc.
Inventors
Simon, Steven Neil

Granted Patent

US 8,156,332 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/155
CPC Class Codes

H04L 9/3226 using a predetermined code,...

H04L 9/3271 using challenge-response

Peer-to-peer security authentication protocol

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

27 Claims

Specification

Solutions

Use Cases

Quick Links

Peer-to-peer security authentication protocol

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

27 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links