Secure Communication Using Asymmetric Cryptography and Light-Weight Certificates

US 20110022835A1
Filed: 07/27/2010
Published: 01/27/2011
Est. Priority Date: 07/27/2009
Status: Abandoned Application

First Claim

Patent Images

1. A system for facilitating secure data communication from a server to a client device of an individual using a data communications channel, the system comprising:

a database that stores a plurality of encryption keys in a storage arrangement, wherein at least one stored encryption key is uniquely and privately associated with the individual;

a processor, in data communication with the database, configured(i) to receive a message, created by the server in response to a request by a client device purporting to be that of the individual,(ii) to retrieve from the database the encryption key that is uniquely and privately associated with the individual, and(iii) to encrypt the message using the retrieved encryption key to form an encrypted message that only the client device of the individual is capable of decrypting; and

a communications gateway, in data communication with the data communications channel, the processor, and the server, the gateway configured(i) to transmit, to the server, messages that are received from the data communications channel for delivery to the server,(ii) to transmit, to the processor, the message created by the server in response to the request by the client device purporting to be that of the individual, and(iii) to transmit the encrypted message to the data communications channel for delivery to the client device purporting to be that of the individual.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Encrypted communications between servers and client devices over an unsecured channel, such as the Internet, without using a public key infrastructure are disclosed. Messages to a client device are encrypted using an encryption key of an authorized individual, regardless of the identity of the user of the client device. Encryption is performed by a system that does not expose encryption keys to the client device or the server, thereby preventing man-in-the-middle attacks against the encryption key. Secure communications are combined with a two-factor protocol for authenticating the identity of an individual. An individual authenticates by generating a cipher using a light-weight certificate that has a shared secret but no other information identifying the individual. Separately, a server generates the same cipher using the shared secret, thereby authenticating the individual'"'"'s identity to a relying party.

Citations

27 Claims

1. A system for facilitating secure data communication from a server to a client device of an individual using a data communications channel, the system comprising:
- a database that stores a plurality of encryption keys in a storage arrangement, wherein at least one stored encryption key is uniquely and privately associated with the individual;
  
  a processor, in data communication with the database, configured(i) to receive a message, created by the server in response to a request by a client device purporting to be that of the individual,(ii) to retrieve from the database the encryption key that is uniquely and privately associated with the individual, and(iii) to encrypt the message using the retrieved encryption key to form an encrypted message that only the client device of the individual is capable of decrypting; and
  
  a communications gateway, in data communication with the data communications channel, the processor, and the server, the gateway configured(i) to transmit, to the server, messages that are received from the data communications channel for delivery to the server,(ii) to transmit, to the processor, the message created by the server in response to the request by the client device purporting to be that of the individual, and(iii) to transmit the encrypted message to the data communications channel for delivery to the client device purporting to be that of the individual.
- View Dependent Claims (2, 3, 4)
- - 2. The system of claim 1, wherein the client device purporting to be that of the individual is the client device of the individual, and is therefore capable of decrypting the encrypted message.
  - 3. The system of claim 1, wherein the client device purporting to be that of the individual is not the client device of the individual, and is therefore incapable of decrypting the encrypted message.
  - 4. The system of claim 1, wherein the encryption keys are exposed only to the processor.

5. A method of facilitating secure data communication from a server to a client of an individual over a data communications channel, the method comprising:
- receiving a message, created by the server in response to a request by a client device purporting to be that of the individual;
  
  encrypting the message to form an encrypted message that only the client device of the individual is capable of decrypting, wherein encrypting provides to the contents of the response message a layer of encryption in addition to any layer of encryption present in the request by the client device purporting to be that of the individual; and
  
  transmitting the encrypted message to the data communications channel for delivery to the client device purporting to be that of the individual.
- View Dependent Claims (6, 7, 8)
- - 6. The method of claim 5, wherein the client device purporting to be that of the individual is the client device of the individual, and is therefore capable of decrypting the encrypted message.
  - 7. The method of claim 5, wherein the client device purporting to be that of the individual is not the client device of the individual, and is therefore incapable of decrypting the encrypted message.
  - 8. The method of claim 5, wherein encrypting the contents of the response message includes retrieving the encryption key from a database of encryption keys, wherein the encryption key is not exposed to the server or to the client device purporting to be that of the individual.

9. A method of efficiently managing, by an authentication service, a certificate life cycle in the course of authentication of an individual, the method comprising:
- in a first computer process, creating a secret number;
  
  in a second computer process,(i) creating a light-weight certificate, such certificate containing the secret number but lacking data associating the certificate with the individual,(ii) privately associating the light-weight certificate with the individual, and(iii) storing such private association in a non-volatile storage arrangement accessible only to the authentication service;
  
  transmitting the light-weight certificate to the individual, so that only the individual and the authentication service possess the secret number; and
  
  in a third computer process, on receipt of invalidity data indicative of invalidity of the certificate, revoking the certificate by discarding the stored, private association.
- View Dependent Claims (10, 11, 12)
- - 10. The method of claim 9, wherein transmitting the certificate includes transmitting using an encrypted communication link.
  - 11. The method of claim 9, wherein the invalidity data are received because a given length of time has elapsed since the light-weight certificate was transmitted to the individual.
  - 12. The method of claim 9, wherein the invalidity data are received because a person other than the individual has obtained unauthorized access to the light-weight certificate.

13. A method of determining, by an authentication service, whether to approve a potential transaction between an individual and a relying party, the method comprising:
- in a first computer process, receiving data from the relying party, the data including a first cipher generated by a token facility that is under control of the individual, wherein a light-weight certificate is stored in the token facility, the light-weight certificate including a secret shared only by the token facility and the authentication service, the first cipher being a given mathematical function of the shared secret;
  
  in a second computer process, retrieving the shared secret from a local storage arrangement and applying the given mathematical function to the shared secret to produce a second cipher; and
  
  in a third computer process, determining that the potential transaction is not approved if the first cipher is not equal to the second cipher.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21)
- - 14. The method of claim 13, wherein the light-weight certificate is stored in a smartcard, and wherein the smartcard produces the first cipher by applying the given mathematical function to the shared secret.
  - 15. The method of claim 14, wherein the smartcard is housed within an electronic device, and wherein the individual may cause the smartcard to produce the first cipher only after providing, to the electronic device, biometric information of the individual.
  - 16. The method of claim 14, wherein the smartcard is housed within an electronic device, and wherein the individual may cause the smartcard to produce the first cipher only after providing, to the electronic device, a password of the individual.
  - 17. The method of claim 13, wherein the first cipher is produced by a virtual smartcard under control of the individual.
  - 18. The method of claim 13, wherein the data include a credit account number, a transaction amount, and a merchant identifier, the method further comprising:
    - in a fourth computer process, debiting the transaction amount from a credit account associated with the credit account number and crediting the transaction amount to a merchant account associated with the merchant identifier.
  - 19. The method of claim 13, wherein the given mathematical function comprises a pseudo-random number generator and the shared secret comprises a seed number for the pseudo-random number generator.
  - 20. The method of claim 13, wherein the shared secret comprises an indexed list of ciphers, the data include a given index, and the given mathematical function comprises selecting the cipher having the given index in the list of ciphers.
  - 21. The method of claim 20, wherein the index is a sequence number that is strictly larger than any sequence number received by the authentication service in relation to a previous potential transaction to which the individual was a party.

22. A method for granting an electronic device access to a digital certificate stored in a hardware security module, the method comprising:
- in a first computer process, transmitting an unlock request to an authentication service, the unlock request including a sequence number;
  
  in a second computer process, receiving from the authentication service a response containing a first cipher generated by applying a given mathematical function to both the sequence number and a secret shared only by the authentication service and the hardware security module; and
  
  in a third computer process, providing the first cipher and the sequence number to the hardware security module, the hardware security module(i) applying the given mathematical function to the sequence number and the shared secret to produce a second cipher, and(ii) refusing to grant the electronic device access to the digital certificate if the first cipher and the second cipher are not identical.
- View Dependent Claims (23, 24)
- - 23. The method of claim 22, wherein the hardware security module grants the electronic device access to the digital certificate only after receiving biometric information of the individual.
  - 24. The method of claim 22, wherein the hardware security module grants the electronic device access to the digital certificate only after receiving a password of the individual.

25. A communications gateway for facilitating secure data communication between a client and a server over a data communications channel, the gateway comprising:
- a first data path for receiving a client request message from the client and forwarding the client request message to the server;
  
  a second data path having an input for receiving a response message from the server, the response message being responsive to the client request message;
  
  a processor, coupled to the second data path, for encrypting the contents of the response message using an encryption key to form an encrypted message, the encryption key being uniquely and privately associated with a decryption key stored for use by the client, so as to provide to the contents of the response message a layer of encryption in addition to any layer of encryption present in the client request message;
  
  wherein the second data path includes an output for transmitting the encrypted message to the client over the data communications channel.
- View Dependent Claims (26, 27)
- - 26. The gateway of claim 25, further comprising a storage system, coupled to the processor, containing a database of encryption keys, such storage system being accessible using network data communications only to the processor.
  - 27. The gateway of claim 26, wherein the storage system and the server are coupled to an administrative control system for exercise of common control over the database of encryption keys and the server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
InferSpect, LLC
Original Assignee
Suridx, Inc.
Inventors
Schibuk, Norman

Application Number

US12/844,355
Publication Number

US 20110022835A1
Time in Patent Office

Days
Field of Search
US Class Current

713/153
CPC Class Codes

G06Q 20/382   insuring higher security of...

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 9/3226   using a predetermined code,...

H04L 9/3234   involving additional secure...

H04L 9/3263   involving certificates, e.g...

Secure Communication Using Asymmetric Cryptography and Light-Weight Certificates

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

Citations

27 Claims

Specification

Solutions

Use Cases

Quick Links

Secure Communication Using Asymmetric Cryptography and Light-Weight Certificates

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

27 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links