METHOD AND SYSTEM FOR CONTROLLED DISTRIBUTION OF APPLICATION CODE AND CONTENT DATA WITHIN A COMPUTER NETWORK
0 Assignments
0 Petitions
Accused Products
Abstract
A secure communication methodology is presented. The client device is configured to download application code and/or content data from a server operated by a service provider. Embedded within the client is a client private key, a client serial number, and a copy of a server public key. The client forms a request, which includes the client serial number, encrypts the request with the server public key, and sends the download request to the server. The server decrypts the request with the server'"'"'s private key and authenticates the client. The received client serial number is used to search for a client public key that corresponds to the embedded client private key. The server encrypts its response, which includes the requested information, with the client public key of the requesting client, and only the private key in the requesting client can be used to decrypt the information downloaded from the server.
-
Citations
32 Claims
-
1-18. -18. (canceled)
-
19. A method for secure communication between a client and a server in a data processing system, the method comprising:
-
generating a first server message at the server, the first server message including application code encrypted with a server private key and authenticable with a server public key, wherein the application code includes a program that performs a download using symmetric keys; retrieving information that was requested by the client; storing the retrieved information in the a second server message encrypted with the symmetric keys; sending the first server message to the client; authenticating the first server message at the client using the server public key; and executing the program at the client to download the second server message from the server.
-
-
21-30. -30. (canceled)
-
31. A method for secure communication between a client and a server in a data processing system, the method comprising:
-
receiving a first server message from the server at the client, the first server message including first application code encrypted with a server private key, wherein the first application code includes a program that performs a download using symmetric keys; authenticating the first application code with a server public key; and executing the program at the client to download a second server message from the server, the second server message including second application code requested by the client, wherein the first application code is small relative to the second application code.
-
-
32-39. -39. (canceled)
Specification