METHODS AND SYSTEMS FOR PROVIDING AND CONTROLLING CRYPTOGRAPHICALLY SECURE COMMUNICATIONS ACROSS UNSECURED NETWORKS BETWEEN A SECURE VIRTUAL TERMINAL AND A REMOTE SYSTEM
First Claim
1. A method for securely connecting a client computer having a secure boot device to a remote server over a communications network, the method comprising:
- booting a client computer from a trusted set of processing modules stored in the secure boot device;
verifying the contents of the trusted set of processing modules prior to execution of these processing modules;
providing authentication information from data stored upon the secure boot device to an authentication server to establish a secure connection to the remote server;
establishing the secure connection with the remote server using encryption keys stored on the secure boot device; and
transferring data between the client computer and the remote server over the secure connection to perform transactions initiated by a user of the client computer;
wherein the remote server utilizes encryption keys associated with a unique ID from the secure boot device.
9 Assignments
0 Petitions
Accused Products
Abstract
Methods and systems for securely connecting a client computer having a secure boot device to a remote server over a communications network are disclosed. One method includes booting a client computer from a trusted set of processing modules stored in the secure boot device, verifying the contents of the trusted set of processing modules prior to execution of these processing modules, and providing authentication information from data stored upon the secure boot device to an authentication server to establish a secure connection to the remote server. The method also includes establishing the secure connection with the remote server using encryption keys stored on the secure boot device, and transferring data between the client computer and the remote server over the secure connection to perform transactions initiated by a user of the client computer. In the disclosed method, the remote server utilizes encryption keys associated with a unique ID from the secure boot device.
93 Citations
22 Claims
-
1. A method for securely connecting a client computer having a secure boot device to a remote server over a communications network, the method comprising:
-
booting a client computer from a trusted set of processing modules stored in the secure boot device; verifying the contents of the trusted set of processing modules prior to execution of these processing modules; providing authentication information from data stored upon the secure boot device to an authentication server to establish a secure connection to the remote server; establishing the secure connection with the remote server using encryption keys stored on the secure boot device; and transferring data between the client computer and the remote server over the secure connection to perform transactions initiated by a user of the client computer; wherein the remote server utilizes encryption keys associated with a unique ID from the secure boot device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A secure connection system comprising:
-
a client computer having a secure boot device connected thereto; a remote server communicatively connected to the client computer via a communications network; a trusted set of processing modules stored in the secure boot device that, when executed on the client computer, cause the client computer to; boot from the trusted set of processing modules; verify the contents of the trusted set of processing modules prior to execution of those modules; establish a secure connection with the remote server using encryption keys stored on the secure boot device; and transfer data between the client computer and the remote server of the secure connection to perform transactions initiated by a user of the client computer; wherein the remote server utilizes encryption keys associated with a unique identifier from the secure boot device. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A computer storage medium comprising computer-executable instructions stored in a memory and including a trusted set of processing modules which, when executed, cause a computing system to:
-
boot from the trusted set of processing modules; verify the contents of the trusted set of processing modules prior to execution of those modules; establish a secure connection with a remote server using encryption keys stored on the secure boot device; and transfer data between the client computer and the remote server of the secure connection to perform transactions initiated by a user of the client computer; wherein the remote server utilizes encryption keys associated with a unique identifier from the secure boot device.
-
Specification