LOW-LATENCY PEER SESSION ESTABLISHMENT

US 20110093710A1
Filed: 10/21/2009
Published: 04/21/2011
Est. Priority Date: 10/21/2009
Status: Active Grant

First Claim

Patent Images

1. A method of establishing a communication session by a source device having a processor and a source private key with a target device having a target public certificate, the method comprising:

executing on the processor instructions configured to;

generate a source session key;

transmit to the target device a session invite comprising a source address and the source session key, the session invite encrypted using the target public certificate; and

upon receiving from the target device a session acceptance comprising a target address and a target session key;

decrypt the session acceptance using the source private key;

generate a session key using the source session key and the target session key; and

initiate the communication session with the target device at the target address, the communication session encrypted using the session key.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A source device and a target device may endeavor to form a secure communication session whereby encrypted messages may be transmitted over an untrusted network, such as the internet. However, the exchange of many messages in the establishment of the communication session may involve considerable latency and computational resources, particularly in scenarios featuring many communication sessions (e.g., peer-to-peer communication sessions.) Techniques for initiating a communication session may be devised that enables the initiation of a communication session with only two exchanged messages, or even with a single message transmitted from the source device to the target device. Some embodiments of these techniques may also permit the inclusion of advantageous security features, such as authentication via public certificate to detect man-in-the-middle attacks and the inclusion of nonces to detect replay attacks, without increasing the number of messages involved in the initiation of the communication session.

Citations

20 Claims

1. A method of establishing a communication session by a source device having a processor and a source private key with a target device having a target public certificate, the method comprising:
- executing on the processor instructions configured to;
  
  generate a source session key;
  
  transmit to the target device a session invite comprising a source address and the source session key, the session invite encrypted using the target public certificate; and
  
  upon receiving from the target device a session acceptance comprising a target address and a target session key;
  
  decrypt the session acceptance using the source private key;
  
  generate a session key using the source session key and the target session key; and
  
  initiate the communication session with the target device at the target address, the communication session encrypted using the session key.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, the source device and the target device represented in a deployable computing environment hosted by a computing environment host.
  - 3. The method of claim 1:
    - the source session key comprising a first randomly generated key;
      
      the target session key comprising a second randomly generated key; and
      
      the session key comprising a symmetric random session key generated using the first randomly generated key and the second randomly generated key.
  - 4. The method of claim 1:
    - generating the session key comprising;
      
      generating a session key set comprising at least two session keys, respective session keys generated using the source session key and the target session key and different from the other session keys in the session key set;
      
      initiating the communication session comprising;
      
      initiating the communication session with the target device at the target address, the communication session encrypted using a first session key; and
      
      the method comprising;
      
      after initiating the communication session;
      
      selecting a second session key from the session key set, andencrypting the communication session using the second session key.
  - 5. The method of claim 1:
    - the source device operated by a source user;
      
      the target device operated by a target user;
      
      the session acceptance comprising a target user authenticator, andinitiating the communication session comprising;
      
      verifying the target user using the target user authenticator, andupon verifying the target user, initiating the communication session with the target device, the communication session encrypted using the session key.
  - 6. The method of claim 1:
    - the source device comprising a certificate cache;
      
      the instructions configured to;
      
      upon obtaining the target public certificate of the target device, store the target public certificate in the certificate cache, andestablish a subsequent communication session with the target device by retrieving the target public certificate from the certificate cache.
  - 7. The method of claim 1:
    - the source device accessible at least two candidate source addresses; and
      
      the session invite comprising the at least two candidate source addresses.
  - 8. The method of claim 1:
    - the session acceptance comprising at least two candidate target addresses, andinitiating the communication session with the target device comprising;
      
      selecting at least one target address among the at least two candidate target addresses, andinitiating the communication session with the target device at least one selected target address, the communication session encrypted using the session key.
  - 9. The method of claim 1:
    - the session acceptance comprising a candidate target address different from the target address of the target device to which the source device sends the session invitation; and
      
      initiating the communication session comprising;
      
      initiating the communication session with the target device at the candidate target address, the communication session encrypted using the session key.
  - 10. The method of claim 1:
    - the instructions configured to generate a source nonce, andthe session invite comprising the source nonce.
  - 11. The method of claim 1:
    - the session acceptance comprising a target nonce; and
      
      initiating the communication session comprising;
      
      verifying the target nonce, andupon verifying the target nonce, initiating the communication session with the target device, the communication session encrypted using the session key.

12. A method of establishing a communication session by a target device having a processor and a target private key with a source device having a source public certificate, the method comprising:
- executing on the processor instructions configured to;
  
  upon receiving from the source device a session invite comprising a source session key;
  
  decrypt the session invite using the target private key;
  
  generate a target session key comprising a target session key;
  
  generate a session key using the source session key and the target session key; and
  
  transmit to the source device a session acceptance comprising a target address and the target session key, the session acceptance encrypted using the source public certificate; and
  
  upon receiving from the source device an initiation of a communication session, initiate the communication session with the source device at the source address, the communication session encrypted using the session key.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
- - 13. The method of claim 12:
    - the source device operated by a source user;
      
      the target device operated by a target user;
      
      the session invite comprising a source user authenticator, andthe instructions configured to, upon receiving the session invite;
      
      verify the target user using the target user authenticator, andverifying the target user, transmit to the source device the session acceptance.
  - 14. The method of claim 12:
    - the session invite comprising at least two candidate source addresses;
      
      the instructions configured to, upon receiving the session invite;
      
      select at least one source address of the at least two candidate source addresses, andtransmit the session acceptance to the source device at least one selected source address; and
      
      the communication session initiated by the source device from at least one source address.
  - 15. The method of claim 12:
    - the session invitation comprising a candidate source address different from the source address of the source device from which the source device sends the session invitation; and
      
      initiating the communication session comprising;
      
      initiating the communication session with the source device at the candidate source address, the communication session encrypted using the session key.
  - 16. The method of claim 12:
    - the target device accessible at least two candidate target addresses;
      
      the session acceptance comprising the at least two candidate target addresses; and
      
      the communication session initiated by the source device to at least one candidate target address.
  - 17. The method of claim 12:
    - the session invite comprising a source nonce; and
      
      the instructions configured to, upon receiving the session invite;
      
      verify the source nonce, andupon verifying the source nonce, transmit the session acceptance to the source device.
  - 18. The method of claim 12:
    - the instructions configured to generate a target nonce, andthe session acceptance comprising the target nonce.
  - 19. The method of claim 12, comprising:
    - initiate the communication session with the source device at the source address, the communication session encrypted using the session key.

20. A computer-readable storage medium comprising instructions that, when executed on a processor of a source device operated by a source user and comprising a certificate cache and a source private key and having at least one source address, represented in a deployable computing environment hosted by a computing environment host and also representing a target device operated by a target user and having at least one target address, the source device having access to a certificate server comprising at least one public certificate including a target public certificate identifying the target device, establish a communication session with the target device by:
- obtaining the target public certificate of the target device from the certificate server;
  
  storing the target public certificate in the certificate cache;
  
  generating a source session key;
  
  generating a source nonce;
  
  transmitting to the target device a session invite comprising the at least one source address, the source session key, and the source nonce, the session invite encrypted using the target public certificate;
  
  upon receiving from the target device a session acceptance comprising at least one candidate target address, a target session key, a target nonce, and a target user authenticator;
  
  decrypting the session acceptance using the source private key;
  
  verifying the target nonce;
  
  verifying the target user using the target user authenticator; and
  
  upon verifying the target user and the target nonce;
  
  selecting at least one target address among the at least two candidate target addresses,generating a session key using the source session key and the target session key, andinitiating the communication session with the target device at a selected target address, the communication session encrypted using the session key; and
  
  establishing a subsequent communication session with the target device by retrieving the target public certificate from the certificate cache.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
STEERE, DAVID, GALVIN, TOM

Granted Patent

US 8,458,776 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/169
CPC Class Codes

H04L 2209/42   Anonymization, e.g. involvi...

H04L 2209/80   Wireless

H04L 63/061   for key exchange, e.g. in p...

H04L 63/166   at the transport layer

H04L 67/104   Peer-to-peer [P2P] networks

H04L 9/0844   with user authentication or...

H04L 9/3263   involving certificates, e.g...

H04L 9/3273   for mutual authentication n...

LOW-LATENCY PEER SESSION ESTABLISHMENT

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

LOW-LATENCY PEER SESSION ESTABLISHMENT

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links