Non-repudiation of e-mail messages

US 6,904,521 B1
Filed: 02/16/2001
Issued: 06/07/2005
Est. Priority Date: 02/16/2001
Status: Expired due to Term

First Claim

Patent Images

1. A method of assuring that a message sent to a recipient was requested for opening by the recipient, the method comprising:

encrypting a message using a session key to produce an encrypted message;

encrypting the session key using a public key to produce an encrypted session key;

generating a transaction identifier;

encrypting the transaction identifier to provide an encrypted transaction identifier;

sending, by the sender, the encrypted session key and the transaction identifier to an arbiter;

sending, by the sender, the encrypted message and the encrypted transaction identifier to the recipient;

generating a request for the encrypted session key based on a decrypted transaction identifier;

signing the decrypted transaction identifier;

transmitting the request to the arbiter, wherein said transmitting the request comprises sending the signed decrypted transaction identifier to the arbiter; and

generating, by the arbiter, evidence that the request for the encrypted session key was received.

View all claims

9 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A technique, and system(s) implementing the technique, allow an encrypted message to be sent directly to a recipient, and when the recipient opens the message, the recipient'"'"'s system sends a request to an arbiter server to retrieve decryption information to decrypt the message. When the arbiter server receives the request for the decryption information, the arbiter server generates evidence of the request and sends the decryption information to the recipient. In this way, an evidentiary trail, that cannot be repudiated, can be used to establish that the recipient received and attempted to open the message.

215 Citations

46 Claims

1. A method of assuring that a message sent to a recipient was requested for opening by the recipient, the method comprising:
- encrypting a message using a session key to produce an encrypted message;
  
  encrypting the session key using a public key to produce an encrypted session key;
  
  generating a transaction identifier;
  
  encrypting the transaction identifier to provide an encrypted transaction identifier;
  
  sending, by the sender, the encrypted session key and the transaction identifier to an arbiter;
  
  sending, by the sender, the encrypted message and the encrypted transaction identifier to the recipient;
  
  generating a request for the encrypted session key based on a decrypted transaction identifier;
  
  signing the decrypted transaction identifier;
  
  transmitting the request to the arbiter, wherein said transmitting the request comprises sending the signed decrypted transaction identifier to the arbiter; and
  
  generating, by the arbiter, evidence that the request for the encrypted session key was received.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1 wherein the request comprises the transaction identifier and said generating evidence comprises logging that the transaction identifier was received.
  - 3. The method of claim 1 wherein the request comprises the transaction identifier in unencrypted form such that the arbiter does not perform any cryptographic operations to extract the transaction identifier from the request.
  - 4. The method of claim 1 wherein the arbiter does not receive the encrypted message delivered from the sender to the recipient.
  - 5. The method of claim 1 further comprising notifying, by the arbiter, the sender of the request.
  - 6. The method of claim 5 wherein said notifying comprises sending an e-mail to the sender.

7. A system to assure that a message was requested for opening, comprising:
- a sender to send encrypted decoding information and an encrypted message;
  
  an arbiter to store the encrypted decoding information; and
  
  a recipient to receive the encrypted message, request the encrypted decoding information, decrypt the encrypted decoding information and decrypt the encrypted message using the decrypted decoding information;
  
  wherein the arbiter, in response to receiving the request, generates evidence that the request was received, and wherein the sender also sends a transaction identifier to the arbiter, the sender also sending an encrypted transaction identifier to the recipient, the transaction identifier being associated with the encrypted decoding information, the arbiter storing the associated transaction identifier and the encrypted decoding information, wherein the recipient decrypts the transaction identifier, signs the decrypted transaction identifier, and requests the decoding information using the transaction identifier, wherein said requesting the decoding information comprises sending the signed decrypted transaction identifier to the arbiter, and the arbiter returns the encrypted decoding information associated with that transaction identifier to the recipient.

8. A method of operating a recipient'"'"'s messaging system to assure that a message sent to a recipient was requested for opening by the recipient, the method comprising:
- receiving an encrypted message that was encrypted using a session key;
  
  receiving an encrypted transaction identifier associated with the encrypted message;
  
  decrypting the transaction identifier;
  
  generating a request for the encrypted session key based on the decrypted transaction identifier;
  
  signing the decrypted transaction identifier;
  
  transmitting the request to an arbiter, wherein said transmitting the request comprises sending the signed decrypted transaction identifier to the arbiter;
  
  receiving the encrypted session key;
  
  decrypting the encrypted session key to provide a decrypted session key; and
  
  decrypting the encrypted message using the decrypted session key.

9. A method of operating a sender'"'"'s messaging system to assure that a message sent to a recipient was requested for opening by the recipient, the method comprising:
- encrypting a message using a session key to provide an encrypted message;
  
  encrypting the session key to provide an encrypted session key;
  
  generating a transaction identifier;
  
  encrypting the transaction identifier to provide an encrypted transaction identifier;
  
  sending the encrypted transaction identifier and the encrypted session key to an arbiter server;
  
  sending the encrypted message and the encrypted session key to a recipient; and
  
  receiving a notification, from the arbiter, in response to a request from the recipient for the encrypted session key based on the decrypted transaction identifier, wherein the recipient signs the decrypted transaction identifier and transmits the request comprising sending the signed decrypted transaction identifier to the arbiter.

10. A method of operating a messaging system on an arbiter server to assure that a message sent to a recipient was requested for opening by the recipient, the method comprising:
- receiving a transaction identifier and an associated encrypted session key;
  
  receiving a request, from recipient, to send the encrypted session key to that recipient, the request comprising the transaction identifier, wherein the recipient has decrypted the transaction identifier and signed the decrypted transaction identifier, and wherein the recipient transmitting the request comprises sending the signed decrypted transaction identifier to the arbiter;
  
  returning, in response to the request, the encrypted session key associated with the transaction identifier in the request; and
  
  generating evidence that the request to send the encrypted session key was received.

11. A recipient'"'"'s messaging system comprising:
- a memory operable to store instructions and data;
  
  a processor operable to execute the instructions stored in the memory to perform the steps of;
  
  storing an encrypted message that was received from a sender;
  
  decrypt decrypting an encrypted transaction identifier to provide a decrypted transaction identifier;
  
  generate generating a request for an encrypted session key based on the transaction identifier;
  
  transmitting the request to an arbiter, wherein said transmitting the request comprises sending the signed decrypted transaction identifier to the arbiter;
  
  receiving the encrypted session key;
  
  decrypting the encrypted session key to provide a decrypted session key; and
  
  decrypting the encrypted message using the decrypted session key.

12. A sender'"'"'s messaging system comprising:
- a memory operable to store instructions and data;
  
  a processor operable to execute the instructions stored in the memory to perform the steps of;
  
  encrypting a message using a session key to provide an encrypted message;
  
  encrypting the session key to provide an encrypted session key;
  
  generating a transaction identifier;
  
  encrypting the transaction identifier to provide an encrypted transaction identifier;
  
  transmitting the transaction identifier and the encrypted session key to an arbiter server;
  
  transmitting the encrypted message, the encrypted transaction identifier and the encrypted session key to a recipient; and
  
  receiving a notification, from the arbiter, in response to a request from the recipient for the encrypted session key based on the transaction identifier, wherein the recipient has decrypted the encrypted transaction identifier, signed the decrypted transaction identifier, and transmitted the request comprising the signed decrypted transaction identifier to the arbiter.

13. An arbiter comprising:
- a memory operable to store instructions and data;
  
  a processor operable to execute the instructions stored in the memory to perform the steps of;
  
  receiving a transaction identifier and an encrypted session key; and
  
  receiving a request, from at least one recipient, to send the encrypted session key to that recipient, the request comprising the transaction identifier associated with that recipient, wherein the recipient has decrypted the transaction identifier, signed the decrypted transaction identifier, and transmitted the request comprises sending the signed decrypted transaction identifier to the arbiter.
- View Dependent Claims (14, 15)
- - 14. The arbiter of claim 13 further comprising:
    - one or more instructions to return, in response to the request, the encrypted session key associated with the transaction identifier in the request.
  - 15. The arbiter of claim 13 further comprising:
    - one or more instructions to generate evidence that the request to send the encrypted session key was received by matching stored transaction identifiers with the transaction identifier from the request and logging that the request was received.

16. An article of manufacture comprising a computer usable medium having computer readable program code embodied therein for assuring that a message sent to a recipient was received by the recipient, comprising instructions to:
- encrypt a message using a session key to produce an encrypted message;
  
  encrypt the session key using a public key to produce an encrypted session key;
  
  generate a transaction identifier;
  
  encrypt the transaction identifier to provide an encrypted transaction identifier;
  
  send the encrypted session key and the transaction identifier to an arbiter;
  
  send the encrypted message and the encrypted transaction identifier to a recipient;
  
  generate a request for the encrypted session key based on a decrypted transaction identifier;
  
  sign the decrypted transaction identifier;
  
  transmit the request to the arbiter, wherein said transmitting the request comprises sending the signed decrypted transaction identifier to the arbiter; and
  
  generate, by the arbiter, evidence that a request for the encrypted session key was received.
- View Dependent Claims (17)
- - 17. The article of manufacture of claim 16 further comprising instructions to notify the sender that the request was received.

18. An article of manufacture comprising a computer usable medium having computer readable program code embodied therein for operating a recipient computer system to assure a sender that a message sent to the recipient was received by the recipient, comprising instructions to:
- decrypt an encrypted transaction identifier to provide a decrypted transaction identifier;
  
  generate a request for an encrypted session key based on a decrypted transaction identifier;
  
  sign the decrypted transaction identifier;
  
  transmit the request to an arbiter, wherein said transmitting the request comprises sending the signed decrypted transaction identifier to the arbiter;
  
  receive the encrypted session key;
  
  decrypt the encrypted session key to provide a decrypted session key; and
  
  decrypt the encrypted message using the decrypted session key.

19. An article of manufacture comprising a computer usable medium having computer readable program code embodied therein for operating a sender'"'"'s computer system to assure the sender that a message sent to a recipient was received by the recipient, comprising instructions to:
- encrypt a message using a session key to provide an encrypted message;
  
  encrypt the session key to provide an encrypted session key;
  
  generate a transaction identifier;
  
  encrypt the transaction identifier to provide an encrypted transaction identifier;
  
  send the encrypted transaction identifier and the encrypted session key to an arbiter server;
  
  send the encrypted message and the encrypted session key to a recipient; and
  
  receive a notification, from the arbiter, in response to a request from the recipient for the encrypted session key based on the decrypted transaction identifier, wherein the recipient signs the decrypted transaction identifier and transmits the request comprising sending the signed decrypted transaction identifier to the arbiter.

20. An article of manufacture comprising a computer usable medium having computer readable program code embodied therein for operating an arbiter computer system to assure the sender that a message sent to a recipient was received by the recipient, comprising instructions to:
- receive a transaction identifier and an encrypted session key; and
  
  receive a request, from at least one recipient, to send the encrypted session key to that recipient, the request comprising the transaction identifier associated with that recipient, wherein the recipient has decrypted the transaction identifier and signed the decrypted transaction identifier, and wherein the recipient transmitting the request comprises sending the signed decrypted transaction identifier to the arbiter.
- View Dependent Claims (21, 22)
- - 21. The article of manufacture of claim 20 further comprising one or more instructions to return, in response to the request, the encrypted session key associated with the transaction identifier in the request to the recipient.
  - 22. The article of manufacture of claim 20 further comprising one or more instructions to generate evidence that the request to send the encrypted session key was received.

23. A method of assuring that a message sent to a recipient was requested for opening by the recipient, the method comprising:
- encrypting a message using a session key to produce an encrypted message;
  
  encrypting the session key using a public key to produce an encrypted session key;
  
  generating a transaction identifier;
  
  encrypting the transaction identifier to provide an encrypted transaction identifier;
  
  sending, by the sender, the encrypted session key and the transaction identifier to an arbiter;
  
  sending, by the sender, the encrypted message and the encrypted transaction identifier to the recipient;
  
  generating a request for the encrypted session key based on the transaction identifier;
  
  transmitting the request to the arbiter, wherein the request is repeatedly transmitted for a predetermined period of time by the recipient until the encrypted session key is received; and
  
  generating, by the arbiter, evidence that the request for the encrypted session key was received.

24. A method of assuring that a message sent to a recipient was requested for opening by the recipient, the method comprising:
- encrypting a message using a session key to produce an encrypted message;
  
  encrypting the session key using a public key to produce an encrypted session key;
  
  generating a transaction identifier;
  
  encrypting the transaction identifier to provide an encrypted transaction identifier;
  
  sending, by the sender, the encrypted session key and the transaction identifier to an arbiter;
  
  sending, by the sender, the encrypted message and the encrypted transaction identifier to the recipient;
  
  generating a request for the encrypted session key based on the transaction identifier, wherein said generating the request comprises;
  
  decrypting, using the recipient'"'"'s private key, the transaction identifier from the encrypted transaction identifier to provide a decrypted transaction identifier, signing the decrypted transaction identifier and a nonce associated with that recipient, and sending the signed decrypted transaction identifier and the nonce to the arbiter;
  
  sending the request to the arbiter; and
  
  generating, by the arbiter, evidence that the request for the encrypted session key was received.

25. A system to assure that a message was requested for opening, comprising:
- a sender to send encrypted decoding information and an encrypted message;
  
  an arbiter to store the encrypted decoding information; and
  
  a recipient to receive the encrypted message, request the encrypted decoding information, decrypt the encrypted decoding information and decrypt the encrypted message using the decrypted decoding information;
  
  wherein the arbiter, in response to receiving the request, generates evidence that the request was received, and wherein the sender also sends a transaction identifier to the arbiter, the sender also sending an encrypted transaction identifier to the recipient, the transaction identifier being associated with the encrypted decoding information, the arbiter storing the associated transaction identifier and the encrypted decoding information, wherein the recipient decrypts the transaction identifier and requests the decoding information using the transaction identifier, and the arbiter returns the encrypted decoding information associated with that transaction identifier to the recipient, wherein the decoding information is repeatedly requested for a predetermined period of time by the recipient until the encrypted decoding information is received.

26. A system to assure that a message was requested for opening, comprising:
- a sender to send encrypted decoding information and an encrypted message;
  
  an arbiter to store the encrypted decoding information; and
  
  a recipient to receive the encrypted message, request the encrypted decoding information, decrypt the encrypted decoding information and decrypt the encrypted message using the decrypted decoding information;
  
  wherein the arbiter, in response to receiving the request, generates evidence that the request was received, and wherein the sender also sends a transaction identifier to the arbiter, the sender also sending an encrypted transaction identifier to the recipient, the transaction identifier being associated with the encrypted decoding information, the arbiter storing the associated transaction identifier and the encrypted decoding information, wherein the recipient decrypts the transaction identifier and requests the decoding information using the transaction identifier, and the arbiter returns the encrypted decoding information associated with that transaction identifier to the recipient, wherein the request is generated by;
  
  decrypting, using the recipient'"'"'s private key, the transaction identifier from the encrypted transaction identifier to provide a decrypted transaction identifier;
  
  signing the decrypted transaction identifier and a nonce associated with that recipient; and
  
  sending the signed decrypted transaction identifier and the nonce to the arbiter.

27. A method of operating a recipient'"'"'s messaging system to assure that a message sent to a recipient was requested for opening by the recipient, the method comprising:
- receiving an encrypted message that was encrypted using a session key;
  
  receiving an encrypted transaction identifier associated with the encrypted message;
  
  decrypting the transaction identifier;
  
  generating a request for the encrypted session key based on the transaction identifier;
  
  transmitting the request to an arbiter, wherein the request is repeatedly transmitted for a predetermined period of time by the recipient until the encrypted session key is received;
  
  receiving the encrypted session key;
  
  decrypting the encrypted session key to provide a decrypted session key; and
  
  decrypting the encrypted message using the decrypted session key.

28. A method of operating a recipient'"'"'s messaging system to assure that a message sent to a recipient was requested for opening by the recipient, the method comprising:
- receiving an encrypted message that was encrypted using a session key;
  
  receiving an encrypted transaction identifier associated with the encrypted message;
  
  decrypting the transaction identifier;
  
  generating a request for the encrypted session key based on the transaction identifier, wherein said generating the request comprises;
  
  decrypting, using the recipient'"'"'s private key, the transaction identifier from the encrypted transaction identifier to provide a decrypted transaction identifier, signing the decrypted transaction identifier and a nonce associated with that recipient, and sending the signed decrypted transaction identifier and the nonce to the arbiter;
  
  sending the request to an arbiter;
  
  receiving the encrypted session key;
  
  decrypting the encrypted session key to provide a decrypted session key; and
  
  decrypting the encrypted message using the decrypted session key.

29. A method of operating a sender'"'"'s messaging system to assure that a message sent to a recipient was requested for opening by the recipient, the method comprising:
- encrypting a message using a session key to provide an encrypted message;
  
  encrypting the session key to provide an encrypted session key;
  
  generating a transaction identifier;
  
  encrypting the transaction identifier to provide an encrypted transaction identifier;
  
  sending the encrypted transaction identifier and the encrypted session key to an arbiter server;
  
  sending the encrypted message and the encrypted session key to a recipient; and
  
  receiving a notification, from the arbiter, in response to a request from the recipient for the encrypted session key based on the transaction identifier, wherein the request is repeatedly transmitted for a predetermined period of time by the recipient until the encrypted session key is received.

30. A method of operating a sender'"'"'s messaging system to assure that a message sent to a recipient was requested for opening by the recipient, the method comprising:
- encrypting a message using a session key to provide an encrypted message;
  
  encrypting the session key to provide an encrypted session key;
  
  generating a transaction identifier;
  
  encrypting the transaction identifier to provide an encrypted transaction identifier;
  
  sending the encrypted transaction identifier and the encrypted session key to an arbiter server;
  
  sending the encrypted message and the encrypted session key to a recipient; and
  
  receiving a notification, from the arbiter, in response to a request from the recipient for the encrypted session key based on the transaction identifier, wherein the recipient generates the request by;
  
  decrypting, using the recipient'"'"'s private key, the transaction identifier from the encrypted transaction identifier to provide a decrypted transaction identifier;
  
  signing the decrypted transaction identifier and a nonce associated with that recipient; and
  
  sending the signed decrypted transaction identifier and the nonce to the arbiter.

31. A method of operating a messaging system on an arbiter server to assure that a message sent to a recipient was requested for opening by the recipient, the method comprising:
- receiving a transaction identifier and an associated encrypted session key;
  
  receiving a request, from a recipient, to send the encrypted session key to that recipient, the request comprising the transaction identifier, wherein the request is repeatedly transmitted for a predetermined period of time by the recipient until the encrypted session key is received;
  
  returning, in response to the request, the encrypted session key associated with the transaction identifier in the request; and
  
  generating evidence that the request to send the encrypted session key was received.

32. A method of operating a messaging system on an arbiter server to assure that a message sent to a recipient was requested for opening by the recipient, the method comprising:
- receiving a transaction identifier and an associated encrypted session key;
  
  receiving a request, from a recipient, to send the encrypted session key to that recipient, the request comprising the transaction identifier, wherein the recipient generates the request by;
  
  decrypting, using the recipient'"'"'s private key, the transaction identifier from the encrypted transaction identifier to provide a decrypted transaction identifier, signing the decrypted transaction identifier and a nonce associated with that recipient, and sending the signed decrypted transaction identifier and the nonce to the arbiter;
  
  returning, in response to the request, the encrypted session key associated with the transaction identifier in the request; and
  
  generating evidence that the request to send the encrypted session key was received.

33. A recipient'"'"'s messaging system comprising:
- a memory operable to store instructions and data;
  
  a processor operable to execute the instructions stored in the memory to perform the steps of;
  
  storing an encrypted message that was received from a sender;
  
  decrypting an encrypted transaction identifier to provide a decrypted transaction identifier;
  
  generating a request for an encrypted session key based on the transaction identifier;
  
  transmitting the request to an arbiter, wherein the request is repeatedly transmitted for a predetermined period of time by the recipient until the encrypted session key is received;
  
  receiving the encrypted session key;
  
  decrypting the encrypted session key to provide a decrypted session key; and
  
  decrypting the encrypted message using the decrypted session key.

34. A recipient'"'"'s messaging system comprising:
- a memory operable to store instructions and data;
  
  a processor operable to execute the instructions stored in the memory to perform the steps of;
  
  storing an encrypted message that was received from a sender;
  
  decrypting an encrypted transaction identifier to provide a decrypted transaction identifier;
  
  generating a request for an encrypted session key based on the transaction identifier, wherein said generating the request comprises;
  
  decrypting, using the recipient'"'"'s private key, the transaction identifier from the encrypted transaction identifier to provide a decrypted transaction identifier, signing the decrypted transaction identifier and a nonce associated with that recipient, and sending the signed decrypted transaction identifier and the nonce to the arbiter;
  
  transmitting the request to an arbiter;
  
  receiving the encrypted session key;
  
  decrypting the encrypted session key to provide a decrypted session key; and
  
  decrypting the encrypted message using the decrypted session key.

35. A sender'"'"'s messaging system comprising:
- a memory operable to store instructions and data;
  
  a processor operable to execute the instructions stored in the memory to perform the steps of;
  
  encrypting a message using a session key to provide an encrypted message;
  
  encrypting the session key to provide an encrypted session key;
  
  generating a transaction identifier;
  
  encrypting the transaction identifier to provide an encrypted transaction identifier;
  
  transmitting the transaction identifier and the encrypted session key to an arbiter server;
  
  transmitting the encrypted message, the encrypted transaction identifier and the encrypted session key to a recipient; and
  
  receiving a notification, from the arbiter, in response to a request from the recipient for the encrypted session key based on the transaction identifier wherein the recipient repeatedly transmits the request for a predetermined period of time until the encrypted session key is received.

36. A sender'"'"'s messaging system comprising:
- a memory operable to store instructions and data;
  
  a processor operable to execute the instructions stored in the memory to perform the steps of;
  
  encrypting a message using a session key to provide an encrypted message;
  
  encrypting the session key to provide an encrypted session key;
  
  generating a transaction identifier;
  
  encrypting the transaction identifier to provide an encrypted transaction identifier;
  
  transmitting the transaction identifier and the encrypted session key to an arbiter server;
  
  transmitting the encrypted message, the encrypted transaction identifier and the encrypted session key to a recipient; and
  
  receiving a notification, from the arbiter, in response to a request from the recipient for the encrypted session key based on the transaction identifier wherein the recipient generates the request by;
  
  decrypting, using the recipient'"'"'s private key, the transaction identifier from the encrypted transaction identifier to provide a decrypted transaction identifier;
  
  signing the decrypted transaction identifier and a nonce associated with that recipient; and
  
  sending the signed decrypted transaction identifier and the nonce to the arbiter.

37. An arbiter comprising:
- a memory operable to store instructions and data;
  
  a processor operable to execute the instructions stored in the memory to perform the steps of;
  
  receiving a transaction identifier and an encrypted session key; and
  
  receiving a request, from at least one recipient, to send the encrypted session key to that recipient, the request comprising the transaction identifier associated with that recipient, wherein the recipient repeatedly transmits the request for a predetermined period of time until the encrypted session key is received.

38. An arbiter comprising:
- a memory operable to store instructions and data;
  
  a processor operable to execute the instructions stored in the memory to perform the steps of;
  
  receiving a transaction identifier and an encrypted session key; and
  
  receiving a request, from at least one recipient, to send the encrypted session key to that recipient, the request comprising the transaction identifier associated with that recipient, wherein the request generates the request by;
  
  decrypting, using the recipient'"'"'s private key, the transaction identifier from the encrypted transaction identifier to provide a decrypted transaction identifier;
  
  signing the decrypted transaction identifier and a nonce associated with that recipient; and
  
  sending the signed decrypted transaction identifier and the nonce to the arbiter.

39. An article of manufacture comprising a computer usable medium having computer readable program code embodied therein for assuring that a message sent to a recipient was received by the recipient, comprising instructions to:
- encrypt a message using a session key to produce an encrypted message;
  
  encrypt the session key using a public key to produce an encrypted session key;
  
  generate a transaction identifier;
  
  encrypt the transaction identifier to provide an encrypted transaction identifier;
  
  send the encrypted session key and the transaction identifier to an arbiter;
  
  send the encrypted message and the encrypted transaction identifier to a recipient;
  
  generate a request for the encrypted session key based on the transaction identifier;
  
  transmit the request to the arbiter, wherein the request is repeatedly transmitted for a predetermined period of time by the recipient until the encrypted session key is received; and
  
  generate, by the arbiter, evidence that a request for the encrypted session key was received.

40. An article of manufacture comprising a computer usable medium having computer readable program code embodied therein for assuring that a message sent to a recipient was received by the recipient, comprising instructions to:
- encrypt a message using a session key to produce an encrypted message;
  
  encrypt the session key using a public key to produce an encrypted session key;
  
  generate a transaction identifier;
  
  encrypt the transaction identifier to provide an encrypted transaction identifier;
  
  send the encrypted session key and the transaction identifier to an arbiter;
  
  send the encrypted message and the encrypted transaction identifier to a recipient;
  
  generate a request for the encrypted session key based on the transaction identifier, wherein said generating the request comprises;
  
  decrypting, using the recipient'"'"'s private key, the transaction identifier from the encrypted transaction identifier to provide a decrypted transaction identifier, signing the decrypted transaction identifier and a nonce associated with that recipient, and sending the signed decrypted transaction identifier and the nonce to the arbiter;
  
  send the request to the arbiter; and
  
  generate, by the arbiter, evidence that a request for the encrypted session key was received.

41. An article of manufacture comprising a computer usable medium having computer readable program code embodied therein for operating a recipient computer system to assure a sender that a message sent to the recipient was received by the recipient, comprising instructions to:
- decrypt an encrypted transaction identifier to provide a decrypted transaction identifier;
  
  generate a request for an encrypted session key based on the transaction identifier;
  
  transmit the request to an arbiter, wherein the request is repeatedly transmitted for a predetermined period of time by the recipient until the encrypted session key is received;
  
  receive the encrypted session key;
  
  decrypt the encrypted session key to provide a decrypted session key; and
  
  decrypt the encrypted message using the decrypted session key.

42. An article of manufacture comprising a computer usable medium having computer readable program code embodied therein for operating a recipient computer system to assure a sender that a message sent to the recipient was received by the recipient, comprising instructions to:
- decrypt an encrypted transaction identifier to provide a decrypted transaction identifier;
  
  generate a request for an encrypted session key based on the transaction identifier, wherein said generating the request comprises;
  
  decrypting, using the recipient'"'"'s private key, the transaction identifier from the encrypted transaction identifier to provide a decrypted transaction identifier, signing the decrypted transaction identifier and a nonce associated with that recipient, and sending the signed decrypted transaction identifier and the nonce to the arbiter;
  
  transmit the request to an arbiter;
  
  receive the encrypted session key;
  
  decrypt the encrypted session key to provide a decrypted session key; and
  
  decrypt the encrypted message using the decrypted session key.

43. An article of manufacture comprising a computer usable medium having computer readable program code embodied therein for operating a sender'"'"'s computer system to assure the sender that a message sent to a recipient was received by the recipient, comprising instructions to:
- encrypt a message using a session key to provide an encrypted message;
  
  encrypt the session key to provide an encrypted session key;
  
  generate a transaction identifier;
  
  encrypt the transaction identifier to provide an encrypted transaction identifier;
  
  send the encrypted transaction identifier and the encrypted session key to an arbiter server;
  
  send the encrypted message and the encrypted session key to a recipient; and
  
  receive a notification, from the arbiter, in response to a request from the recipient for the encrypted session key based on the transaction identifier, wherein the request is repeatedly transmitted for a predetermined period of time by the recipient until the encrypted session key is received.

44. An article of manufacture comprising a computer usable medium having computer readable program code embodied therein for operating a sender'"'"'s computer system to assure the sender that a message sent to a recipient was received by the recipient, comprising instructions to:
- encrypt a message using a session key to provide an encrypted message;
  
  encrypt the session key to provide an encrypted session key;
  
  generate a transaction identifier;
  
  encrypt the transaction identifier to provide an encrypted transaction identifier;
  
  send the encrypted transaction identifier and the encrypted session key to an arbiter server;
  
  send the encrypted message and the encrypted session key to a recipient; and
  
  receive a notification, from the arbiter, in response to a request from the recipient for the encrypted session key based on the transaction identifier, wherein the recipient generates the request by;
  
  decrypting, using the recipient'"'"'s private key, the transaction identifier from the encrypted transaction identifier to provide a decrypted transaction identifier;
  
  signing the decrypted transaction identifier and a nonce associated with that recipient; and
  
  sending the signed decrypted transaction identifier and the nonce to the arbiter.

45. An article of manufacture comprising a computer usable medium having computer readable program code embodied therein for operating an arbiter computer system to assure the sender that a message sent to a recipient was received by the recipient, comprising instructions to:
- receive a transaction identifier and an encrypted session key; and
  
  receive a request, from a recipient, to send the encrypted session key to that recipient, the request comprising the transaction identifier, wherein the request is repeatedly transmitted for a predetermined period of time by the recipient until the encrypted session key is received.

46. An article of manufacture comprising a computer usable medium having computer readable program code embodied therein for operating an arbiter computer system to assure the sender that a message sent to a recipient was received by the recipient, comprising instructions to:
- receive a transaction identifier and an encrypted session key; and
  
  receive a request, from a recipient, to send the encrypted session key to that recipient, the request comprising the transaction identifier, wherein the recipient generates the request by;
  
  decrypting, using the recipient'"'"'s private key, the transaction identifier from the encrypted transaction identifier to provide a decrypted transaction identifier, signing the decrypted transaction identifier and a nonce associated with that recipient, and sending the signed decrypted transaction identifier and the nonce to the arbiter;
  
  returning, in response to the request, the encrypted session key associated with the transaction identifier in the request.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
McAfee, LLC
Original Assignee
Networks Associates Technology, Inc. (McAfee, LLC)
Inventors
Jivsov, Andrey
Primary Examiner(s)
Smithers, Matthew

Application Number

US09/784,967
Time in Patent Office

1,572 Days
Field of Search

713/155, 713/156, 713/168, 713/170, 713/176, 713/177, 380/255, 380/257
US Class Current

713/155
CPC Class Codes

G06F 2221/2101   Auditing as a secondary aspect

H04L 51/23   Reliability checks, e.g. ac...

H04L 63/045   wherein the sending and rec...

H04L 63/12   Applying verification of th...

Non-repudiation of e-mail messages

First Claim

9 Assignments

0 Petitions

Accused Products

Abstract

215 Citations

46 Claims

Specification

Solutions

Use Cases

Quick Links

Non-repudiation of e-mail messages

First Claim

9 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

215 Citations

46 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links