Message identification with confidentiality, integrity, and source authentication
First Claim
1. A method for securely encoding and transmitting a message by an originating device to one of a plurality of recipient devices, said message being associated with a particular one of a plurality of applications running on the originating device, the method comprising the steps of:
- (a) determining a device identifier for the originating device, and an application identifier for each of the plurality of applications thereby forming a plurality of device-identifier/application identifier pairs;
(b) associating a secret value with each device identifier/application-identifier pair;
(c) wherein each said secret value is known to the originating device and to one of the recipient devices;
(d) generating a message value by a first process, using the device identifier, a particular application identifier and an application value, said application value indexing said message;
(e) combining the message value with said secret value associated with the particular application identifier to establish a corresponding secret message value;
(f) applying the secret message value and the message to an encoding process to form a secure message block; and
(g) combining the device identifier, the application identifier, the application value and the secure message block, to form a secure message for transmission, said secure message being decodable, dependent upon the device identifier, the particular application identifier and the application value which are outside the received secure message block, by said recipient device to which said secret value associated with the particular application identifier is known, said recipient device thereby recovering the message, the device identifier, the particular application identifier and the application value.
0 Assignments
0 Petitions
Accused Products
Abstract
A method for securely encoding and transmitting a message by an originating device to one of a plurality of recipient devices, said message being associated with a particular one of a plurality of application running on the originating device. Transmission is generated by using a device identifier, an application identifier and an application value, of a message value; combining the message value with one or more first secret values, said secret values being known substantially only to the originating device and one or more intended recipient device of the message, to establish a secret message value; applying the secret message value and the message to an encoding process to form a secure message block, and combining an address with a device identifier, the application identifier, the application value and the secure message block, to form a secure message for transmission which is decodable by the one or more of said intended recipient devices which thereby recover the message, the address, the device identifier, the application identifier and the application value.
-
Citations
14 Claims
-
1. A method for securely encoding and transmitting a message by an originating device to one of a plurality of recipient devices, said message being associated with a particular one of a plurality of applications running on the originating device, the method comprising the steps of:
-
(a) determining a device identifier for the originating device, and an application identifier for each of the plurality of applications thereby forming a plurality of device-identifier/application identifier pairs; (b) associating a secret value with each device identifier/application-identifier pair; (c) wherein each said secret value is known to the originating device and to one of the recipient devices; (d) generating a message value by a first process, using the device identifier, a particular application identifier and an application value, said application value indexing said message; (e) combining the message value with said secret value associated with the particular application identifier to establish a corresponding secret message value; (f) applying the secret message value and the message to an encoding process to form a secure message block; and (g) combining the device identifier, the application identifier, the application value and the secure message block, to form a secure message for transmission, said secure message being decodable, dependent upon the device identifier, the particular application identifier and the application value which are outside the received secure message block, by said recipient device to which said secret value associated with the particular application identifier is known, said recipient device thereby recovering the message, the device identifier, the particular application identifier and the application value. - View Dependent Claims (2, 3)
-
-
4. A method for reception of a securely transmitted message by a recipient device, the recipient device being one of a plurality of recipient devices adapted to receive a message from an originating device, said message being associated with a particular one of a plurality of applications running on the originating device, the method comprising the steps of:
-
(i) extracting one or more of a device identifier, an application identifier and an application value from a received secure message having a secure message block, said one or more of the device identifier, the application identifier, and the application value being outside the secure message block, said application value indexing said message; (j) generating by a first process using the device identifier, the application identifier and the application value a message value; (k) generating, according to a second process using the device identifier and the application identifier a secret value known only to the originating device and the recipient device; (l) combining the message value with the secret value, to establish a secret message value; (m) extracting a secure message block from the received secure message; and (n) applying the secret message value and the secure message block to a decoding process to form the securely transmitted message, this message having been securely transmitted by the originating device. - View Dependent Claims (5)
-
-
6. An originating device for securely encoding and transmitting a message to one of a plurality of recipient devices, the message being associated with a particular one of a plurality of applications running on the originating device, the originating device comprising:
-
(a) means for determining a device identifier for the originating device, and an application identifier for each of the plurality of applications thereby forming a plurality of device-identifier/application identifier pairs; (b) means for associating a secret value with each device-identifier/application-identifier pair; (c) wherein each said secret value is known to the originating device and to one of the recipient devices; (d) means for generating a message value by a first process, using the device identifier, a particular said application identifier and an application value said application value indexing said message; (e) means for combining the message value with a said secret value associated with the particular application identifier to establish a corresponding secret message value; (f) means for applying the secret message value and the message to an encoding process to form a secure message block; and (g) means for combining the device identifier the particular application identifier the application value and the secure message block to form a secure message for transmission, said secure message being decodable, dependent upon the device identifier the particular application identifier and the application value which are outside the received secure message block, by a said recipient device to which said secret value associated with the particular application identifier is known, said recipient device thereby recovering the message, the device identifier, the particular application identifier and the application value. - View Dependent Claims (7)
-
-
8. A computer program product including a computer readable medium having recorded thereon a computer program for directing an originating device to securely encode and transmit a secure message to one of a plurality of recipient devices, said message being associated with a particular one of a plurality of applications running on the originating device, the program comprising:
-
(a) code for determining a device identifier for the originating device and an application identifier for each of the plurality of applications thereby forming a plurality of device-identifier/application identifier pairs; (b) code for associating a secret value with each device-identifier/application-identifier pair, (c) wherein each said secret value is known to the originating device and to a said one of the recipient devices; (d) code for generating a message value by a first process, using the device identifier, a particular said application identifier and an application value said application value indexing said message; (e) code for combining the message value with said secret value associated with the particular application identifier to establish a corresponding secret message value; (f) code for applying the secret message value and the message to an encoding process to form a secure message block; and (g) code for combining the device identifier the particular application identifier the application value and the secure message block to form a secure message for transmission, said secure message being decodable, dependent upon the device identifier the particular application identifier and the application value which are outside the received secure message block, by said recipient device to which said secret value associated with the particular application identifier is known, said recipient device thereby recovering the message, the device identifier, the particular application identifier and the application value. - View Dependent Claims (9)
-
-
10. A recipient device for reception of a securely transmitted message, the recipient device being one of a plurality of recipient devices adapted to receive a message from an originating device, said message being associated with a particular one of a plurality of applications running on the originating device, the recipient device comprising:
-
(i) means for extracting one or more of a device identifier, an application identifier and an application value from a received secure message having a secure message block, said one or more of the device identifier, the application identifier, and the application value being outside the secure message block, said application value indexing said message; (j) means for generating by a first process using the device identifier, the application identifier and the application value a message value; (k) means for generating, according to a second process using the device identifier and the application identifier a secret value known only to the originating device and the recipient device; (l) means for combining the message value with the secret value, to establish a secret message value; (m) means for extracting a secure message block from the received secure message; and (n) means for applying the secret message value and the secure message block to a decoding process to form the securely transmitted message, this message having been securely transmitted by the originating device.
-
-
11. A computer program product including a computer readable medium having recorded thereon a computer program for directing a recipient device to process a received secure message, the recipient device being one of a plurality of recipient devices adapted to receive a message from an originating device, said message being associated with a particular one of a plurality of applications running on the originating device, the program comprising;
-
(i) code for extracting one or more of a device identifier, an application identifier and an application value from a received secure message having a secure message block, said one or more of the device identifier, the application identifier, and the application value being outside the secure message block, said application value indexing said message; (j) code for generating by a first process using the device identifier, the application identifier and the application value a message value; (k) code for generating, according to a second process using the device identifier and the application identifier a secret value known only to the originating device and the recipient device; (l) code for combining the message value with the secret value, to establish a secret message value; (m) code for extracting a secure message block from the received secure message; and (n) code for applying the secret message value and the secure message block to a decoding process to form the securely transmitted message, this message having been securely transmitted by the originating device.
-
-
12. A system providing secure communications, the system comprising an originating device and one or more receiving devices, wherein:
-
said originating device is adapted for securely encoding and transmitting a message to one of a plurality of recipient devices, the message being associated with a particular one of a plurality of applications running on the originating device, the originating device comprising; (a) means for determining a device identifier for the originating device, and an application identifier for each of the plurality of applications thereby forming a plurality of device-identifier/application identifier pairs; (b) means for associating a secret value with each device-identifier/application-identifier pair; (c) wherein each said secret value is known to the originating device and to one of the recipient devices; (d) means for generating a message value by a first process, using the device identifier, a particular said application identifier and an application value, said application value indexing said message; (e) means for combining the message value with a secret value associated with the particular application identifier to establish a corresponding secret message value; (f) means for applying the secret message value and the message to an encoding process to form a secure message block; and (g) means for combining the device identifier, the particular application identifier, the application value and the secure message block to form a secure message for transmission, said secure message being decodable, dependent upon the device identifier, the particular application identifier and the application value which are outside the received secure message block, by said recipient device to which said secret value associated with the particular application identifier is known, said recipient device thereby recovering the message, the device identifier, the particular application identifier and the application value; and
wherein;said recipient device is adapted for reception of a securely transmitted message, the recipient device being one of the plurality of recipient devices adapted to receive a message from the originating device, said message being associated with a particular one of a plurality of applications running on the originating device, the recipient device comprising; (h) means for extracting one or more of a device identifier, an application identifier and an application value from a received secure message having a secure message block, said one or more of the device identifier, the application identifier, and the application value being outside the secure message block; (i) means for generating by a first process using the device identifier, the application identifier and the application value a message value; (j) means for generating, according to a second process using the device identifier and the application identifier a secret value known only to the originating device and the recipient device; (k) means for combining the message value with the secret value, to establish a secret message value; (l) means for extracting a secure message block from the received secure message; and (m) means for applying the secret message value and the secure message block to a decoding process to form the securely transmitted message, this message having been securely transmitted by the originating device. - View Dependent Claims (13, 14)
-
Specification