Data processing system and method for maintaining secure data blocks
First Claim
1. A method for protecting the security of a cookie stored within a data processing system, said method comprising:
- storing a encryption key pair having a private key and a public key in a protected storage device within said data processing system;
in response to the receipt of a cookie generated by an application from a remote server, encrypting said cookie with said public key;
storing said encrypted cookie in a non-protected storage device within said data processing system;
in response to an access request for said encrypted cookie by a browser program executing within said data processing system, decrypting said encrypted cookie with said private key; and
sending said decrypted cookie to said browser program.
3 Assignments
0 Petitions
Accused Products
Abstract
A data processing system and method are disclosed for maintaining a secure data block within the system. A block of data is established within the system. The block of data is associated with a particular user and a particular application. A hardware master key pair is established for the system. The hardware master key pair includes a master private key and a master public key. The hardware master key pair is associated with the system for which it was established so that the master private key is known to only that system. The block of data is encrypted utilizing the master public key. The master private key is required to decrypt the encrypted block of data. This data processing system is the only system capable of decrypting the encrypted block of data.
26 Citations
14 Claims
-
1. A method for protecting the security of a cookie stored within a data processing system, said method comprising:
-
storing a encryption key pair having a private key and a public key in a protected storage device within said data processing system; in response to the receipt of a cookie generated by an application from a remote server, encrypting said cookie with said public key; storing said encrypted cookie in a non-protected storage device within said data processing system; in response to an access request for said encrypted cookie by a browser program executing within said data processing system, decrypting said encrypted cookie with said private key; and sending said decrypted cookie to said browser program. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A data processing system capable of protecting the security of a cookie stored within said data processing system, said data processing comprising:
-
a protected storage device for storing a encryption key pair having a private key and a public key in a protected storage device within said data processing system; means for utilizing said public key to encrypt said cookie, in response to the receipt of a cookie generated by an application from a remote server; a non-protected storage device within said data processing system for storing encrypted cookie; means for utilizing said private key to decrypt said encrypted cookie, in response to an access request for said encrypted cookie by a browser program executing within said data processing system; and means for sending said decrypted cookie to said browser program. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
Specification
-
- Resources
-
Current AssigneeLenovo PC International Limited (Lenovo Group Ltd.)
-
Original AssigneeLenovo Singapore Pte Limited (Lenovo Group Ltd.)
-
InventorsCromer, Daryl Carvis, Locker, Howard, Ward, James Peter, Trotter, Andy Lloyd
-
Primary Examiner(s)Vu, Kim
-
Assistant Examiner(s)TRUONG, THANHNGA B
-
Application NumberUS09/281,852Time in Patent Office2,827 DaysField of Search713/151, 713/200, 713/201, 713/165, 713/167, 709/203, 709/225, 709/229, 380/277, 380/255, 707 9- 10, 726/3US Class Current713/151CPC Class CodesG06F 21/6263 during internet communicati...Y10S 707/99939 Privileged access
