Encryption and decryption system and method with content analysis provision
First Claim
1. A computer based encryption and decryption system comprising:
- means for providing content analysis having means for determining whether digital input information that includes at least a part of one of a file, document and a body of a message is encrypted using a cryptographic key and for generating a decryption request to decrypt the encrypted digital input information prior to applying content analysis to facilitate content analysis within encrypted digital input information; and
means, responsive to the decryption request and the digital input information, for decrypting the encrypted digital input information prior to commence of the content analysis using a private decryption key of a public key pair, apart from within the content to facilitate controlled content analysis wherein content analysis includes performing virus detection to facilitate eradication of a detected virus, wherein decrypting is done without using decryption executables contained in a header corresponding to the digital input information, if a header is present.
4 Assignments
0 Petitions
Accused Products
Abstract
A computer based encryption and decryption system and method provides content analysis through a content inspection mechanism, such as detection of a computer virus using a virus detection algorithm based on determining whether digital input information is encrypted. The content inspection mechanism analyzes decrypted content for such things as virus patterns, keywords, unknown program format, or any other content based criteria. The system generates a decryption request to decrypt encrypted digital input information prior to applying content analysis, such as virus detection. In response to the decryption request, the system decrypts the encrypted information prior to content analysis such as virus detection and applies a content analysis application, such as a virus detection algorithm, to the decrypted data If desired, when the decryption requires access to cryptographic keys which the decryptor does not have immediate access to, keys may be acquired from a controlled key repository through use of key release agent methods.
261 Citations
39 Claims
-
1. A computer based encryption and decryption system comprising:
-
means for providing content analysis having means for determining whether digital input information that includes at least a part of one of a file, document and a body of a message is encrypted using a cryptographic key and for generating a decryption request to decrypt the encrypted digital input information prior to applying content analysis to facilitate content analysis within encrypted digital input information; and
means, responsive to the decryption request and the digital input information, for decrypting the encrypted digital input information prior to commence of the content analysis using a private decryption key of a public key pair, apart from within the content to facilitate controlled content analysis wherein content analysis includes performing virus detection to facilitate eradication of a detected virus, wherein decrypting is done without using decryption executables contained in a header corresponding to the digital input information, if a header is present. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer based encryption and decryption system comprising:
-
means for determining whether digital input information that includes at least one of a file, document and at least part of a body of a message is encrypted using a cryptographic key and for generating a content analysis request, means, responsive to the means for determining, for decrypting detected encrypted digital input information using a private decryption key of a public key pair, apart from within the content to facilitate controlled content analysis; and
means, responsive to the content analysis request, for applying content analysis to the decrypted digital input information wherein content analysis includes performing virus detection to facilitate eradication of a detected virus, wherein decrypting is done without using decryption executables contained in a header corresponding to the digital input information, if a header is present. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. An encryption and decryption method comprising:
-
providing content analysis by determining whether digital input information that includes at least one of a file, document and at least part of a body of a message is encrypted and generating a decryption request to a decryptor to decrypt the encrypted digital input information prior to applying content analysis to facilitate content analysis within the encrypted digital input information; and
decrypting the encrypted digital input information prior to completion of the content analysis wherein content analysis includes performing virus detection to facilitate eradication of a detected virus, wherein decrypting is done without using decryption executables contained in a header corresponding to the digital input information, if a header is present. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
-
25. A computer based encryption and decryption method comprising:
-
determining whether digital input information that includes at least one of a file, document and at least part of a body of a message is encrypted;
generating a content analysis request based on the determination;
decrypting detected encrypted digital input information, wherein decrypting is done without using decryption executables contained in a header corresponding to the digital input information, if a header is present; and
applying content analysis to the decrypted digital input information wherein content analysis includes performing virus detection to facilitate eradication of a detected virus. - View Dependent Claims (26, 27, 28, 29, 30, 31, 32)
-
-
33. A storage medium comprising:
-
a program executable by a computing mechanism that facilitates the following steps;
determining whether digital input information that includes at least one of a file, document and at least part of a body of a message is encrypted;
generating a request from the group of at least a content analysis request and a decryption request, based on the determination;
decrypting detected encrypted digital input information based on the generated request, wherein decrypting is done without using decryption executables contained in a header corresponding to the digital input information, if a header is present; and
applying content analysis to the decrypted digital input information prior to allowing use of the decrypted digital input information wherein content analysis includes performing virus detection to facilitate eradication of a detected virus. - View Dependent Claims (34, 35, 36)
-
-
37. A computer based encryption and decryption system comprising:
-
means for providing content analysis having means for determining whether digital input information that includes at least a part of one of a file, document and a body of a message is encrypted using a cryptographic key and for generating a decryption request to decrypt the encrypted digital input information prior to applying content analysis to facilitate content analysis within encrypted digital input information; and
means, responsive to the decryption request and the digital input information, for decrypting the encrypted digital input information prior to commence of the content analysis using a private decryption key of a public key pair, apart from within the content to facilitate controlled content analysis wherein the private decryption key is accessed from a repository containing stored private decryption keys of a number of different users. - View Dependent Claims (38, 39)
-
Specification