SOFTWARE BASED MULTI-CHANNEL POLYMORPHIC DATA OBFUSCATION

US 20100257354A1
Filed: 09/08/2008
Published: 10/07/2010
Est. Priority Date: 09/07/2007
Status: Active Grant

First Claim

Patent Images

1. A secure communication network comprising:

at least one client device communicatively connectable to a host server to communicate data between the client device and the host server;

the host server comprising;

a means associated with the host server for polymorphically generating and embedding a plurality of obfuscation data and program code into a source code for a data entry form; and

a means associated with the host server for transmitting the source code for the data entry form to the client device; and

the client device comprising;

a means associated with the client device for establishing a communications connection with the host device;

a means associated with the client device for interpreting the obfuscation data embedded in the data entry form source code to generate an interactive data entry page including a plurality of interactive data entry fields and a virtual keypad, the interactive data entry page rendered on a display of the client device; and

a means associated with the client device for interpreting and executing the program code embedded in the data entry form source code to obfuscate data entered in at least one of the interactive data entry fields using a first user interface device of the client device and transmute data entered in at least one of the interactive data entry fields using a second user interface device.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system for providing secure communication between a server and a remote client utilizing a polymorphic software platform. In various embodiments, the system provides mixed mode data entry, meaningless field entries and randomly generated false entries interpolated into the real entries for providing a secure system of communication such that a third party has no repeatable method of decoding the information transmitted.

128 Citations

View as Search Results

24 Claims

1. A secure communication network comprising:
- at least one client device communicatively connectable to a host server to communicate data between the client device and the host server;
  
  the host server comprising;
  
  a means associated with the host server for polymorphically generating and embedding a plurality of obfuscation data and program code into a source code for a data entry form; and
  
  a means associated with the host server for transmitting the source code for the data entry form to the client device; and
  
  the client device comprising;
  
  a means associated with the client device for establishing a communications connection with the host device;
  
  a means associated with the client device for interpreting the obfuscation data embedded in the data entry form source code to generate an interactive data entry page including a plurality of interactive data entry fields and a virtual keypad, the interactive data entry page rendered on a display of the client device; and
  
  a means associated with the client device for interpreting and executing the program code embedded in the data entry form source code to obfuscate data entered in at least one of the interactive data entry fields using a first user interface device of the client device and transmute data entered in at least one of the interactive data entry fields using a second user interface device.
- View Dependent Claims (2, 3, 5, 6, 7, 8, 9, 11)
- - 2. The network of claim 1, wherein the first user interface comprises a physical keyboard and the second user interface device comprises a computer mouse.
  - 3. The network of claim 1 further comprising:
    - a means associated with the host server for generating a transmuted character map, storing the transmuted character map in a database of the host server, and embedding the transmuted character map into the source code of the data entry form; and
      
      a means associated with the host server for assigning the transmuted character map to the virtual keypad.
  - 5. The network of claim 1 further comprising a means associated with the host server for generating a plurality of random form element ID tags, storing the random form element ID tags in a database of the host server, and embedding the random form ID tags in the source code of the data entry form.
  - 6. The network of claim 1 further comprising a means associated with the host server for generating a plurality of decoy form elements and embedding the decoy form elements into the source code of the data entry form.
  - 7. The network of claim 1 further comprising a means associated with the host server for generating random names for image file names and locations stored on an electronic mass storage device of the host server, and embedding random image file names and locations in the source code of the data entry form.
  - 8. The network of claim 1 further comprising a means associated with the host server for generating a random salt for POST data hashing, storing the random salt in a database of the host server, and embedding the random salt in the source code of the data entry form.
  - 9. The network of claim 1 further comprising:
    - a means associated with the host server for generating a random robot prevention image string and storing the random prevention image string in a database of the host server; and
      
      a means associated with the host server for generating a random name for the robot prevention image and embedding the random name for the robot prevention image in the source code of the data entry form.
  - 11. The network of claim 1 further comprising a communications router structured and operable to route the data between the client device and the host server, wherein:
    - the host server comprises a web server;
      
      the communication router comprises the Internet; and
      
      the means associated with the client device for establishing a communications connection with the host device, interpreting the obfuscation data embedded in the data entry form source code to generate an interactive data entry page, and interpreting and executing the program code embedded in the data entry form source code to obfuscate data entered in at least one of the interactive data entry fields using a first user interface device of the client device and transmute data entered in at least one of the interactive data entry fields using a second user interface device comprises a web browser program stored on an electronic storage device of the client device and executed by a processor of the client device.

4. (canceled)

10. (canceled)

12. A method for providing secure communication within a communications network, said method comprising:
- establishing a communications connection between a client device and a host device of the communications network;
  
  polymorphically generating and embedding a plurality of obfuscation data and program code into a source code for a data entry form at the host server;
  
  transmitting the source code for the data entry form to the client device; and
  
  executing an interface program stored on the client device to;
  
  interpret the obfuscation data embedded in the data entry form source code and generate an interactive data entry page rendered on a display of the client device utilizing the obfuscation data, the interactive data entry page including a plurality of interactive data entry fields and a virtual keypad; and
  
  interpret and execute the program code embedded in the data entry form source code to obfuscate data entered in at least one of the interactive data entry fields using a first user interface device of the client device and transmute data entered in at least one of the interactive data entry fields using a second user interface device.
- View Dependent Claims (13, 15, 16, 17, 18, 19, 21, 22, 23)
- - 13. The method of claim 12, wherein polymorphically generating and embedding a plurality of obfuscation data and program code into a source code for a data entry form comprises;
    - generating a transmuted character map, storing the transmuted character map in a database of the host server, and embedding the transmuted character map into the source code of the data entry form; and
      
      assigning the transmuted character map to the virtual keypad.
  - 15. The method of claim 12, wherein generating and embedding a plurality of obfuscation data and program code into a source code for a data entry form comprises generating a plurality of random form element ID tags, storing the random form element ID tags in a database of the host server, and embedding the random form ID tags in the source code of the data entry form.
  - 16. The method of claim 12, wherein generating and embedding a plurality of obfuscation data and program code into a source code for a data entry form comprises generating a plurality of decoy form elements and embedding the decoy form elements into the source code of the data entry form.
  - 17. The method of claim 12, wherein generating and embedding a plurality of obfuscation data and program code into a source code for a data entry form comprises a means associated with the host server for generating random names for image file names and locations stored on an electronic mass storage device of the host server, and embedding random image file names and locations in the source code of the data entry form.
  - 18. The method of claim 12, wherein generating and embedding a plurality of obfuscation data and program code into a source code for a data entry form comprises generating a random salt for POST data hashing, storing the random salt in a database of the host server, and embedding the random salt in the source code of the data entry form.
  - 19. The method of claim 12, wherein generating and embedding a plurality of obfuscation data and program code into a source code for a data entry form comprises:
    - generating a random robot prevention image string and storing the random prevention image string in a database of the host server; and
      
      generating a random name for the robot prevention image and embedding the random name for the robot prevention image in the source code of the data entry form.
  - 21. The method of claim 12, wherein the communications network includes a communications router structured and operable to route the data between the client device and the host server, and wherein the host server comprises a web server, the communication router comprises the Internet, and wherein executing a interface program stored on the client device comprises executing a web browser program stored on the client device.
  - 22. The method of claim 12, wherein executing the interface program further comprises executing the program code embedded in the data entry from source code to:
    - concatenate the data entered using the first and second user interface devices;
      
      apply a random salt to the concatenated data, the random salt generated at the host server and embedded in the data entry from source code;
      
      hash the salted data; and
      
      pass the hashed data to the host server.
  - 23. The method of claim 22 further comprising:
    - decrypting the hashed data at the host server;
      
      comparing the decrypted data to user credential data stored in an electronic mass storage database of the host device;
      
      authenticating a user of the client device based on the data comparison; and
      
      deleting the decrypted data from a memory device of the host server upon completion of comparing the decrypted data to user credential data.

14. (canceled)

20. (canceled)

24. (canceled)

Specification

Resources

Litigation Campaign Assessment

Current Assignee
RAM International Corporation
Original Assignee
Dis-Ent LLC
Inventors
Johnston, Richard Fendall, Pierce, Dean, Strauss, William J.

Granted Patent

US 8,495,358 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/153
CPC Class Codes

G06F 21/6209   to a single file or object,...

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

SOFTWARE BASED MULTI-CHANNEL POLYMORPHIC DATA OBFUSCATION

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

128 Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

SOFTWARE BASED MULTI-CHANNEL POLYMORPHIC DATA OBFUSCATION

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

128 Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links