System and method for document distribution

US 7,356,688 B1
Filed: 12/21/1999
Issued: 04/08/2008
Est. Priority Date: 04/06/1999
Status: Expired due to Fees

First Claim

Patent Images

1. A method for encrypting an original document for distribution to a selected recipient chosen from a plurality of possible recipients, comprising the steps of:

generating a session key based on a random number privately maintained only by the owner, including an encryptor, of the original document;

encrypting the original document with the session key to create an encrypted document;

generating a proxy key based on a public key corresponding to the selected recipient, wherein the proxy key may be published without compromising its security, and wherein the proxy key, when applied to a document encrypted for a recipient, is used to transform the document into a document encrypted for another recipient without decrypting the message in the process; and

applying the proxy key to the encrypted document to transform the encrypted document into a transformed document, wherein the transformation may occur in a trusted environment without compromising its security, wherein the transformation may occur in an untrusted environment without compromising its security, and wherein the encrypted document remains in an encrypted state while being transformed into the transformed document and is not decrypted to the original document and re-encrypted at any point during the transformation.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods for transferring among key holders in encoding and cryptographic systems the right to decode and decrypt messages in a way that does not explicitly reveal decoding and decrypting keys used and the original messages. Such methods are more secure and more efficient than typical re-encoding and re-encryption schemes, and are useful in developing such applications as document distribution and long-term file protection.

Citations

22 Claims

1. A method for encrypting an original document for distribution to a selected recipient chosen from a plurality of possible recipients, comprising the steps of:
- generating a session key based on a random number privately maintained only by the owner, including an encryptor, of the original document;
  
  encrypting the original document with the session key to create an encrypted document;
  
  generating a proxy key based on a public key corresponding to the selected recipient, wherein the proxy key may be published without compromising its security, and wherein the proxy key, when applied to a document encrypted for a recipient, is used to transform the document into a document encrypted for another recipient without decrypting the message in the process; and
  
  applying the proxy key to the encrypted document to transform the encrypted document into a transformed document, wherein the transformation may occur in a trusted environment without compromising its security, wherein the transformation may occur in an untrusted environment without compromising its security, and wherein the encrypted document remains in an encrypted state while being transformed into the transformed document and is not decrypted to the original document and re-encrypted at any point during the transformation.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method of claim 1, further comprising the step of transmitting the transformed document to the selected recipient.
  - 3. The method of claim 1, further comprising the steps of:
    - recovering the session key from the transformed document; and
      
      decrypting the transformed document with the session key to recover the original document.
  - 4. The method of claim 3, wherein the recovering step is performed by applying a private key corresponding to the selected recipient.
  - 5. The method of claim 1, wherein the encrypting step is performed with a combination of a symmetric private-key encryption scheme and an asymmetric public-key encryption scheme.
  - 6. The method of claim 5, wherein the asymmetric public-key encryption scheme is based on the ElGamal cryptosystem.
  - 7. The method of claim 5, wherein the encrypted document comprises a first portion representative of the original document encrypted via the symmetric private-key encryption scheme using the session key, and a second portion representative of the session key encrypted using an owner'"'"'s private key according to the asymmetric public-key encryption scheme.
  - 8. The method of claim 1, wherein the original document is distributed to the selected recipient through at least one additional intermediate grantor by repeating the following steps for each additional intermediate grantor:
    - generating a new proxy key based on the intermediate grantor'"'"'s public key; and
      
      transforming the encrypted document with the new proxy key to create a transformed document customized for the intermediate grantor.
  - 9. The method of claim 1, wherein the encrypted document has been encrypted with a Cramer-Shoup encryption scheme.
  - 10. The method of claim 5, wherein the encrypted document comprises a first portion representative of the original document encrypted via the symmetric private-key encryption scheme using the session key, and a second portion representative of the session key encrypted using an owner'"'"'s private key according to the asymmetric public-key encryption scheme.
  - 11. The method of claim 1, wherein the encrypted document has been encrypted with a modified ElGamal encryption scheme.
  - 12. The method of claim 1, wherein the steps of generating a session key, encrypting the original document, generating a proxy key, and transforming the encrypted document are performed by the grantor.

13. A system operable to encrypt an original document for distribution to a selected recipient chosen from a plurality of possible recipients, comprising:
- a session key generation system that generates a session key based on a random number privately maintained only by the owner, including an encryptor, of the original document;
  
  an encryption system that encrypts the original document with the session key to create an encrypted document;
  
  a proxy key generation system that generates a proxy key based on a public key corresponding to the selected recipient, wherein the proxy key may be published without compromising its security, and wherein the proxy key, when applied to a document encrypted for a recipient, is used to transform the document into a document encrypted for another recipient without decrypting the message in the process; and
  
  a transformation system that applies the proxy key to the encrypted document to transform the encrypted document into a transformed document, wherein the transformation may occur in a trusted environment without compromising its security, wherein the transformation may occur in an untrusted environment without compromising its security, and wherein the encrypted document remains in an encrypted state while being transformed into the transformed document and is not decrypted to the original document and re-encrypted at any point during the transformation.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 14. The system of claim 13, further comprising a transmitting system that transmits the transformed document to the selected recipient.
  - 15. The system of claim 13, further comprising:
    - a recovering system that recovers the session key from the transformed document; and
      
      a decrypting system that decrypts the transformed document with the session key to recover the original document.
  - 16. The system of claim 13, wherein the recovery of the session key is performed by applying a private key corresponding to the selected recipient.
  - 17. The system of claim 13, wherein the encryption is performed with a combination of a symmetric private-key encryption scheme and an asymmetric public-key encryption scheme.
  - 18. The system of claim 17, wherein the asymmetric public-key encryption scheme is based on the ElGamal cryptosystem.
  - 19. The system of claim 17, wherein the encrypted document comprises a first portion representative of the original document encrypted via the symmetric private-key encryption scheme using the session key, and a second portion representative of the session key encrypted using an owner'"'"'s private key according to the asymmetric public-key encryption scheme.
  - 20. The system of claim 13, wherein the original document is distributed to the selected recipient through at least one additional intermediate grantor by using the proxy key generation system to generate a new proxy key based on the intermediate grantor'"'"'s public key, and using the transformation system to transform the encrypted document with the new proxy key to create a transformed document customized for the intermediate grantor.
  - 21. The system of claim 13, wherein the encrypted document has been encrypted with a Cramer-Shoup encryption scheme.
  - 22. The system of claim 13, wherein the encrypted document has been encrypted with a modified ElGamal encryption scheme.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
ContentGuard Holdings, Inc. (Pendrell Corporation)
Original Assignee
ContentGuard Holdings, Inc. (Pendrell Corporation)
Inventors
Wang, Xin
Primary Examiner(s)
Vu; Kim
Assistant Examiner(s)
Dada; Beemnet W

Application Number

US09/469,726
Time in Patent Office

3,031 Days
Field of Search

713/165, 713/171, 713200-201, 713/150, 713/153, 713/167, 713/168, 209/225, 209/228, 380277-278, 380281-286, 380 28- 30, 380/228, 380/259, 380/268, 380/44, 380/280, 380/45, 726 2- 5, 726 26- 30
US Class Current

713/153
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/60   Digital content management,...

H04L 2209/76   Proxy, i.e. using intermedi...

H04L 9/083   involving central third par...

H04L 9/3013   involving the discrete loga...

H04L 9/302   involving the integer facto...

System and method for document distribution

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for document distribution

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links