Internationally regulated system for one to one cryptographic communications with national sovereignty without key escrow
First Claim
1. A method for controlling an encryption system, the method comprising:
- providing at least one agency public key to at least one decrypting agency entity respectively and to each of a first plurality of subscriber entities and to each of a second plurality of regulator entities and providing at least one corresponding agency private key to said at least one decrypting agency entity respectively;
providing an ID, a public key and a corresponding private key for each of the first plurality of subscriber entities and each of the second plurality of regulator entities;
for each subscriber entity and for each regulator entity, employing at least one agency public key to encrypt the entity'"'"'s private key; and
for each individual subscriber entity and for each individual regulator entity, generating a certificate attesting, for all other entities, to the individual entity'"'"'s status, ID, public key and encrypted private key.
5 Assignments
0 Petitions
Accused Products
Abstract
An encryption method and apparatus for generating an encrypted message which is controllably decryptable, comprising providing at least one agency public key to at least one decrypting agency entity respectively and to each of a first plurality of subscriber entities and to each of a second plurality of regulator entities, providing an ID, a public key and a private key for each of the first plurality of subscribers and each of the second plurality of regulators, for each subscriber entity and for each regulator entity, employing at least one agency public key to encrypt the entity'"'"'s private key and for each individual subscriber entity and for each individual regulator entity, generating a certificate attesting, for all other entities, to the individual entity'"'"'s status, ID, public key and encrypted private key.
97 Citations
20 Claims
-
1. A method for controlling an encryption system, the method comprising:
-
providing at least one agency public key to at least one decrypting agency entity respectively and to each of a first plurality of subscriber entities and to each of a second plurality of regulator entities and providing at least one corresponding agency private key to said at least one decrypting agency entity respectively; providing an ID, a public key and a corresponding private key for each of the first plurality of subscriber entities and each of the second plurality of regulator entities; for each subscriber entity and for each regulator entity, employing at least one agency public key to encrypt the entity'"'"'s private key; and for each individual subscriber entity and for each individual regulator entity, generating a certificate attesting, for all other entities, to the individual entity'"'"'s status, ID, public key and encrypted private key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An encrypted transmission system comprising:
-
an agency having a private key and a corresponding public key; a multiplicity of subscriber modules each having private key, wherein each two subscriber modules from among said multiplicity of subscriber modules includes first and second subscriber modules characterized in that said first subscriber module conveys to said second subscriber module only encrypted communications which include private keys of said first and second subscriber modules encrypted with the agency'"'"'s public key. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. An encrypted transmission method comprising:
-
providing an agency with a private key and a corresponding public key; providing a multiplicity of subscriber modules each having a private key; and for each first and second subscriber modules from among said multiplicity of subscriber modules, conveying from said first subscriber module to said second subscriber module only encrypted communications which include private keys of said first and second subscriber modules encrypted with the agency'"'"'s public key.
-
-
20. Apparatus for controlling an encryption system including a first plurality of subscriber entities each having an ID, a public key and a private key, the apparatus comprising:
-
a second plurality of regulator entities each having an ID, a public key and a private key; and at least one decrypting agency entity having at least one agency public key respectively which is provided to each of the first plurality of subscriber entities and to each of the second plurality of regulator entities, wherein each subscriber entity and each regulator entity includes a private key encrypter employing at least one agency public key to encrypt the entity'"'"'s private key; and wherein said apparatus also comprises a certificate generator which, for each individual subscriber entity and for each individual regulator entity, generates a certificate attesting, for all other entities, to the individual entity'"'"'s status, ID, public key and encrypted private key.
-
Specification