SECURITY MEASURES FOR COUNTERING UNAUTHORIZED DECRYPTION
First Claim
Patent Images
1. A method of managing a plurality of electronic messages, said method comprising:
- receiving an electronic message and a session key, said electronic message encrypted with said session key, said session key encrypted with a passphrase;
receiving a request to access said electronic message;
receiving a candidate passphrase;
arranging an attempt to decrypt said session key with said passphrase;
determining that said attempt has resulted in a failure;
incrementing a count of failed decryption attempts;
determining that said count of failed decryption attempts exceeds a predetermined limit for decryption attempts; and
restricting access to said electronic message.
4 Assignments
0 Petitions
Accused Products
Abstract
After a predetermined limit for decryption attempts has been exceeded by a user attempting to decrypt an encrypted electronic message or attempting to decrypt a encrypted electronic certificate associated with an electronic message, access to the electronic message may be restricted.
-
Citations
25 Claims
-
1. A method of managing a plurality of electronic messages, said method comprising:
-
receiving an electronic message and a session key, said electronic message encrypted with said session key, said session key encrypted with a passphrase; receiving a request to access said electronic message; receiving a candidate passphrase; arranging an attempt to decrypt said session key with said passphrase; determining that said attempt has resulted in a failure; incrementing a count of failed decryption attempts; determining that said count of failed decryption attempts exceeds a predetermined limit for decryption attempts; and restricting access to said electronic message. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. A mobile communication device comprising:
a processor adapted to; receive an electronic message and a session key, said electronic message encrypted with said session key, said session key encrypted with a passphrase; receive a request to access said electronic message; receive a candidate passphrase; arrange an attempt to decrypt said session key with said candidate passphrase; determine that said attempt has resulted in a failure; increment a count of failed decryption attempts; determine that said count of failed decryption attempts exceeds a predetermined limit for decryption attempts; and restrict access to said electronic message.
-
24. A computer-readable medium containing computer-executable instructions that, when performed by a processor in a mobile communication device, cause said processor to:
-
receive an electronic message and a session key, said electronic message encrypted with said session key, said session key encrypted with a passphrase; receive a request to access said electronic message; receive a candidate passphrase; arrange an attempt to decrypt said session key with said candidate passphrase; determine that said attempt has resulted in a failure; increment a count of failed decryption attempts; determine that said count of failed decryption attempts exceeds a predetermined limit for decryption attempts; and restrict access to said electronic message.
-
-
25. A method of managing a plurality of electronic messages, the method comprising:
-
receiving an electronic message, an electronic certificate and a session key, said electronic certificate encrypted with said session key, said session key encrypted with a passphrase; receiving a request to access said electronic certificate; receiving a candidate passphrase; arranging an attempt to decrypt said session key with said candidate passphrase; determining that said attempt has resulted in a failure; incrementing a count of failed decryption attempts; determining that said count of failed decryption attempts exceeds a predetermined limit for decryption attempts; and restricting access to said electronic message.
-
Specification