METHOD FOR SECURE COMMUNICATION USING ASYMMETRIC & SYMMETRIC ENCRYPTION OVER INSECURE COMMUNICATIONS

US 20150326547A1
Filed: 05/09/2014
Published: 11/12/2015
Est. Priority Date: 05/09/2014
Status: Active Grant

First Claim

Patent Images

1. A method of encrypting a set of data with a first computing device, the method comprising:

a) generating a symmetric key;

b) encrypting the set of data with the symmetric key, thereby converting the set of data into a set of symmetrically encrypted data; and

c) encrypting the symmetric key and a portion of the symmetrically encrypted data with a public key of an asymmetric key pair, thereby converting the symmetric key into an asymmetrically encrypted symmetric key, thereby converting the portion of the symmetrically encrypted data into a portion of doubly encrypted data, and thereby generating a total set of encrypted data, the total set of encrypted data comprising the asymmetrically encrypted symmetric key, the portion of doubly encrypted data, and a remainder of symmetrically encrypted data.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Data may be protected using a combination of symmetric and asymmetric cryptography. A symmetric key may be generated and the data may be encrypted with the symmetric key. The symmetric key and a only a portion of the symmetrically encrypted data may then be encrypted with an asymmetric public key. The entire set of encrypted data, including the asymmetrically encrypted symmetric key, the doubly encrypted portion of data, and the remainder of the symmetrically encrypted data may then be sent to a remote device using insecure communications.

40 Citations

View as Search Results

18 Claims

1. A method of encrypting a set of data with a first computing device, the method comprising:
- a) generating a symmetric key;
  
  b) encrypting the set of data with the symmetric key, thereby converting the set of data into a set of symmetrically encrypted data; and
  
  c) encrypting the symmetric key and a portion of the symmetrically encrypted data with a public key of an asymmetric key pair, thereby converting the symmetric key into an asymmetrically encrypted symmetric key, thereby converting the portion of the symmetrically encrypted data into a portion of doubly encrypted data, and thereby generating a total set of encrypted data, the total set of encrypted data comprising the asymmetrically encrypted symmetric key, the portion of doubly encrypted data, and a remainder of symmetrically encrypted data.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, further comprising:
    - d) sending the total set of encrypted data over a network to a second computing device using an insecure channel.
  - 3. The method of claim 2, further comprising decrypting the total set of encrypted data with the second computing device, wherein said decrypting comprises:
    - e) decrypting the asymmetrically encrypted symmetric key and the portion of doubly encrypted data with a private key of the asymmetric key pair, thereby converting the asymmetrically encrypted symmetric key into a decrypted symmetric key, thereby converting the portion of doubly encrypted data into a partially decrypted symmetrically encrypted portion of data;
      
      f) decrypting the partially decrypted symmetrically encrypted portion of data and the remainder of symmetrically encrypted data with the symmetric key.
  - 4. The method of claim 3, further comprising, before c), e), and f):
    - g) generating the asymmetric key pair with the second computing device; and
      
      h) sending the public key over a network to the first computing device from the second computing device.
  - 5. The method of claim 1, further comprising, before b):
    - i) adding salt to the set of data.
  - 6. The method of claim 5, wherein said adding the salt in i) includes adding the salt to the portion of data that becomes the doubly encrypted portion.
  - 7. The method of claim 1, wherein the asymmetric key pair is an RSA key pair.
  - 8. The method of claim 1, further comprising:
    - performing a plurality of repetitions of a), b), and c) on a new set of data with each said repetition,wherein said generating the symmetric key in a) includes generating a unique single use symmetric key with each said repetition,wherein said encrypting with the public key in c) includes encrypting with the same public key with each said repetition.
  - 9. The method of claim 1, further comprising:
    - performing a plurality of repetitions of a), b), and c) on a new set of data with each said repetition,wherein the new set of data in each said repetition includes at least a portion of common data that is common across each said new set of data,wherein at least part of the common portion becomes the doubly encrypted portion of each said repetition.

10. A system comprising:
- a processor,a memory,instructions embodied in the memory and executable by the processor to perform a method of encrypting a set of data, the method comprising;
  
  a) generating a symmetric key;
  
  b) encrypting the set of data with the symmetric key, thereby converting the set of data into a set of symmetrically encrypted data; and
  
  c) encrypting the symmetric key and a portion of the symmetrically encrypted data with a public key of an asymmetric key pair, thereby converting the symmetric key into an asymmetrically encrypted symmetric key, thereby converting the portion of the symmetrically encrypted data into a portion of doubly encrypted data, and thereby generating a total set of encrypted data, the total set of encrypted data comprising the asymmetrically encrypted symmetric key, the portion of doubly encrypted data, and a remainder of symmetrically encrypted data.
- View Dependent Claims (11, 12)
- - 11. The system of claim 10, wherein the method further comprises:
    - d) sending the total set of encrypted data over a network to a second computing device using an insecure channel
  - 12. The system of claim 10, wherein the method further comprises:
    - performing a plurality of repetitions of a), b), and c) on a new set of data with each said repetition,wherein the new set of data in each said repetition includes at least a portion of common data that is common across each said new set of data,wherein at least part of the common portion becomes the doubly encrypted portion of each said repetition.

13. A non-transitory computer readable medium having processor-executable instructions embodied therein, wherein execution of the instructions by a processor causes the processor to perform a method of encrypting a set of data, the method comprising:
- a) generating a symmetric key;
  
  b) encrypting the set of data with the symmetric key, thereby converting the set of data into a set of symmetrically encrypted data; and
  
  c) encrypting the symmetric key and a portion of the symmetrically encrypted data with a public key of an asymmetric key pair, thereby converting the symmetric key into an asymmetrically encrypted symmetric key, thereby converting the portion of the symmetrically encrypted data into a portion of doubly encrypted data, and thereby generating a total set of encrypted data, the total set of encrypted data comprising the asymmetrically encrypted symmetric key, the portion of doubly encrypted data, and a remainder of symmetrically encrypted data.

14. A method of decrypting a total set of encrypted data with a second computing device, the total set of encrypted data comprising an asymmetrically encrypted symmetric key, a portion of doubly encrypted data, and a remainder of symmetrically encrypted data, the method comprising:
- e) decrypting the asymmetrically encrypted symmetric key and the portion of doubly encrypted data with a private key of an asymmetric key pair, thereby converting the asymmetrically encrypted symmetric key into a decrypted symmetric key, thereby converting the portion of doubly encrypted data into a partially decrypted symmetrically encrypted portion of data; and
  
  f) decrypting the partially decrypted symmetrically encrypted portion of data and the remainder of symmetrically encrypted data with the symmetric key.
- View Dependent Claims (15, 16)
- - 15. The method of claim 14, further comprising, before c), e) and f):
    - g) generating the asymmetric key pair with the second computing device; and
      
      h) sending the public key over a network to a first computing device from the second computing device.
  - 16. The method of claim 14, further comprising:
    - performing a plurality of repetitions of e) and f) on a new total set of encrypted data with each said repetition,wherein the new total set of encrypted data in each said repetition includes at least a portion of common data that is common across each new total set when in unencrypted form,wherein at least part of the common portion corresponds to the doubly encrypted portion of each said repetition.

17. A system comprising:
- a processor,a memory,instructions embodied in the memory and executable by the processor to perform a method of decrypting a total set of encrypted data, the total set of encrypted data comprising an asymmetrically encrypted symmetric key, a portion of doubly encrypted data, and a remainder of symmetrically encrypted data, the method comprising;
  
  e) decrypting the asymmetrically encrypted symmetric key and the portion of doubly encrypted data with a private key of an asymmetric key pair, thereby converting the asymmetrically encrypted symmetric key into a decrypted symmetric key, thereby converting the portion of doubly encrypted data into a partially decrypted symmetrically encrypted portion of data; and
  
  f) decrypting the partially decrypted symmetrically encrypted portion of data and the remainder of symmetrically encrypted data with the symmetric key.

18. A non-transitory computer readable medium having processor-executable instructions embodied therein, wherein execution of the instructions by a processor causes the processor to perform a method of decrypting a total set of encrypted data, the total set of encrypted data comprising an asymmetrically encrypted symmetric key, a portion of doubly encrypted data, and a remainder of symmetrically encrypted data, the method comprising:
- e) decrypting the asymmetrically encrypted symmetric key and the portion of doubly encrypted data with a private key of an asymmetric key pair, thereby converting the asymmetrically encrypted symmetric key into a decrypted symmetric key, thereby converting the portion of doubly encrypted data into a partially decrypted symmetrically encrypted portion of data; and
  
  f) decrypting the partially decrypted symmetrically encrypted portion of data and the remainder of symmetrically encrypted data with the symmetric key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Sony Interactive Entertainment Inc. (Sony Group Corp.)
Original Assignee
Sony Computer Entertainment Incorporated (Sony Group Corp.)
Inventors
Carlson, Jay Alan

Granted Patent

US 9,819,656 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

H04L 2463/062   applying encryption of the ...

H04L 63/0435   wherein the sending and rec...

H04L 63/0442   wherein the sending and rec...

H04L 63/045   wherein the sending and rec...

H04L 63/061   for key exchange, e.g. in p...

H04L 9/0825   using asymmetric-key encryp...

METHOD FOR SECURE COMMUNICATION USING ASYMMETRIC & SYMMETRIC ENCRYPTION OVER INSECURE COMMUNICATIONS

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

40 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD FOR SECURE COMMUNICATION USING ASYMMETRIC & SYMMETRIC ENCRYPTION OVER INSECURE COMMUNICATIONS

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

40 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links