SYSTEMS AND METHODS FOR SECURE COMMUNICATIONS USING AN OPEN PEER PROTOCOL

US 20130080768A1
Filed: 02/09/2012
Published: 03/28/2013
Est. Priority Date: 09/26/2011
Status: Abandoned Application

First Claim

Patent Images

1. A method for proving the identity of an owner of a Key within a Key-space, said method comprising:

providing a Key owner with a one-time use value;

receiving from the Key owner a first package, said first package including the one-time use value and a digital signature of exclusively the one-time use value;

receiving from the Key owner a second package, said second package including a public key that corresponds to a previously generated private key, and a digital signature of the public key;

computing a hash value of the second package and comparing said hash value with a previously obtained Key to verify authenticity; and

inputting the one-time use value, the public key, and the digital signature of the one-time use value into a signature-verifying algorithm to verify authenticity, wherein the message to be verified that is input into the signature-verifying algorithm consists of the one-time use value.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A cryptographic system and method for providing secure peer to peer communications over a network. The invention includes systems and methods for generating unique keys in a key-space, using a third party authentication system to provide identities for owners of those keys, proving the ownership of the keys, using a distributed database for establishing any kind of secure communication between two or more parties, and using the ownership of the keys in the key-space to establish secure communications

Citations

22 Claims

1. A method for proving the identity of an owner of a Key within a Key-space, said method comprising:
- providing a Key owner with a one-time use value;
  
  receiving from the Key owner a first package, said first package including the one-time use value and a digital signature of exclusively the one-time use value;
  
  receiving from the Key owner a second package, said second package including a public key that corresponds to a previously generated private key, and a digital signature of the public key;
  
  computing a hash value of the second package and comparing said hash value with a previously obtained Key to verify authenticity; and
  
  inputting the one-time use value, the public key, and the digital signature of the one-time use value into a signature-verifying algorithm to verify authenticity, wherein the message to be verified that is input into the signature-verifying algorithm consists of the one-time use value.
- View Dependent Claims (2, 3, 4)
- - 2. The method of claim 1, wherein the digital signature of the one-time use value is generated by the Key owner signing the one-time use value using the previously generated private key.
  - 3. The method of claim 1, wherein the second package further comprises random salt, and wherein the digital signature of the public key is generated by the Key owner signing the public key with the random salt using the previously generated private key.
  - 4. The method of claim 3, further comprising inputting the public key with the random salt, the public key, and the digital signature of the public key with the random salt into a signature-verifying algorithm to verify authenticity.

5. A system for proving the identity of an owner of a Key within a Key-space, said system comprising:
- a computing device that includes;
  
  a providing module that provides a Key owner with a one-time use value;
  
  a first package receiving module that receives from the Key owner a first package, said first package including the one-time use value and a digital signature of exclusively the one-time use value;
  
  a second package receiving module that receives from the Key owner a second package, said second package including a public key that corresponds to a previously generated private key, and a digital signature of the public key;
  
  a hash value computing and comparison module that computes, via a computer processor, a hash value of the second package and compares said hash value with a previously obtained Key to verify authenticity; and
  
  a first package signature-verifying module that inputs the one-time use value, public key, and the digital signature of the one-time use value into a signature-verifying algorithm to verify authenticity, wherein the message to be verified that is input into the signature-verifying algorithm consists of the one-time use value.
- View Dependent Claims (6, 7, 8)
- - 6. The system of claim 5, wherein the digital signature of the one-time use value is generated by the Key owner signing the one-time use value using the previously generated private key.
  - 7. The system of claim 5, wherein the second package further comprises random salt, and wherein the digital signature of the public key is generated by the Key owner signing the public key with the random salt using the previously generated private key.
  - 8. The system of claim 7, further comprising a second package signature-verifying module that inputs the public key with the random salt, the public key, and the digital signature of the public key with the random salt into a signature-verifying algorithm to verify authenticity.

9. A method for providing identity proof of a Key owner through an authentication service, said method comprising:
- receiving proof of Key owner authentication from at least one of the Key owner and the authentication service;
  
  receiving a first package from the Key owner, said first package including a publicly available identifier associated with the authentication service, a Key associated with the owner, and a digital signature of exclusively the publicly available identifier and the Key;
  
  using a signing algorithm to sign the first package using a certificate, thereby generating a digital signature of the first package; and
  
  providing a second package to the Key owner, said second package including the first package and the digital signature of the first package.
- View Dependent Claims (10, 11, 12, 13, 14, 15)
- - 10. The method of claim 9, wherein the digital signature of the publicly available identifier and the Key is generated by the Key owner signing the publicly available identifier and the Key using a previously generated private key.
  - 11. The method of claim 9, further comprising computing a hash value of the second package and storing said hash value.
  - 12. The method of claim 9, further comprising:
    - providing the Key owner with a one-time use value;
      
      receiving from the Key owner a third package, said third package including the one-time use value and a digital signature of exclusively the one-time use value;
      
      receiving from the Key owner a fourth package, said fourth package including a public key that corresponds to a previously generated private key, and a digital signature of the public key;
      
      receiving from the Key owner the second package;
      
      computing a hash value of the fourth package and comparing said hash value with a previously obtained Key to verify authenticity;
      
      inputting the one-time use value, the public key, and the digital signature of the one-time use value into a signature-verifying algorithm to verify authenticity; and
      
      inputting the second package and the public key into a signature-verifying algorithm to verify authenticity.
  - 13. The method of claim 12, wherein the digital signature of the one-time use value is generated by the Key owner signing the one-time use value with the previously generated private key.
  - 14. The method of claim 12, wherein the fourth package further comprises random salt, and wherein the digital signature of the public key is generated by the Key owner signing the public key with the random salt using the previously generated private key.
  - 15. The method of claim 14, further comprising inputting the public key with the random salt, the public key, and the digital signature of the public key with the random salt into a signature-verifying algorithm to verify authenticity.

16. A system for providing identity proof of a Key owner through an authentication service, said system comprising:
- a computing device that includes;
  
  an authentication receiving module that receives proof of Key owner authentication from at least one of the Key owner and the authentication service;
  
  a first package receiving module that receives a first package from the Key owner, said first package including a publicly available identifier associated with the authentication service, a Key associated with the Key owner, and a digital signature of exclusively the publicly available identifier and the Key;
  
  a digital signature module that uses a signing algorithm to sign the first package via a computer processor using a certificate, thereby generating a digital signature of the first package; and
  
  a second package providing module that provides a second package to the Key owner, said second package including the first package and the digital signature of the first package.
- View Dependent Claims (17, 18, 19, 20, 21, 22)
- - 17. The system of claim 16, wherein the digital signature of the publicly available identifier and the Key is generated by the Key owner signing the publicly available identifier and the Key using a previously generated private key.
  - 18. The system of claim 16, further comprising a hash value computing and storage module that computes the hash value of the second package and stores said hash value.
  - 19. The system of claim 16, further comprising:
    - a value providing module that provides the Key owner with a one-time use value;
      
      a third package receiving module that receives from the Key owner a third package, said third package including the one-time use value and a digital signature of exclusively the one-time use value;
      
      a fourth package receiving module that receives from the Key owner a fourth package, said fourth package including a public key that corresponds to a previously generated private key, and a digital signature of the public key;
      
      a second package receiving module that receives from the Key owner the second package;
      
      a hash value computing and comparison module that computes the hash value of the fourth package and compares said hash value with a previously obtained Key to verify authenticity;
      
      a package signature-verifying module that inputs the one-time use value, the public key, and the digital signature of the one-time use value into a signature-verifying algorithm to verify authenticity; and
      
      a package signature-verifying module that inputs the second package and the public key into a signature-verifying algorithm to verify authenticity.
  - 20. The system of claim 19, wherein the digital signature of the one-time use value is generated by the Key owner signing the one-time use value with the previously generated private key.
  - 21. The system of claim 19, wherein the fourth package further comprises random salt, and wherein the digital signature of the public key is generated by the Key owner signing the public key with the random salt using the previously generated private key.
  - 22. The system of claim 21, further comprising a package signature-verifying module that inputs the public key with the random salt, the public key, and the digital signature of the public key with the random salt into a signature-verifying algorithm to verify authenticity.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Erik Lagerway, Trent Johnsen
Original Assignee
Erik Lagerway, Trent Johnsen
Inventors
Lagerway, Erik, Johnsen, Trent

Application Number

US13/369,356
Publication Number

US 20130080768A1
Time in Patent Office

Days
Field of Search
US Class Current

713/155
CPC Class Codes

H04L 9/321   involving a third party or ...

H04L 9/3228   One-time or temporary data,...

H04L 9/3247   involving digital signatures

H04L 9/3271   using challenge-response

SYSTEMS AND METHODS FOR SECURE COMMUNICATIONS USING AN OPEN PEER PROTOCOL

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

SYSTEMS AND METHODS FOR SECURE COMMUNICATIONS USING AN OPEN PEER PROTOCOL

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links