Session key distribution methods using a hierarchy of key servers
First Claim
1. A method of facilitating secure communication between first and second devices, the method comprising:
- automatically identifying a common key server potentially accessible by both the first and second devices, wherein identifying comprises transmitting identifications of key servers from one of the first and second devices to the other of the first and second devices; and
obtaining a secure private key from the common key server, for use in encrypting communications between the first and second devices.
0 Assignments
0 Petitions
Accused Products
Abstract
Methods, apparatuses, media and signals for facilitating secure communication between a first device and a second device are disclosed. One method includes automatically identifying a common key server potentially accessible by both the first and second devices, and obtaining a secure private key from the common key server, for use in encrypting communications between the first and second devices. Identifying may include identifying as the common key server, a key server at an intersection of a first communication path defined between a first key server having a previously established relationship with the first device and a master key server, and a second communication path defined between a second key server having a previously established relationship with the second device and the master key server. Obtaining may include obtaining a plurality of private keys and blending the keys to produce a final private session key.
36 Citations
94 Claims
-
1. A method of facilitating secure communication between first and second devices, the method comprising:
-
automatically identifying a common key server potentially accessible by both the first and second devices, wherein identifying comprises transmitting identifications of key servers from one of the first and second devices to the other of the first and second devices; and obtaining a secure private key from the common key server, for use in encrypting communications between the first and second devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42)
-
-
43. A computer-readable medium storing code segments for directing a processor circuit to;
-
automatically identify a common key server potentially accessible by both first and second devices, comprising transmitting identifications of key servers from one of the first and second devices to the other of the first and second devices; and obtain a secure private key from the common key server, for use in encrypting communications between the first and second devices.
-
-
44. An apparatus for facilitating secure communication between first and second devices, the apparatus comprising:
-
a processor circuit capable of communication with a network, the processor circuit configured to identify a common key server potentially accessible by both the first and second devices, wherein the processor circuit is configured to transmit identifications of key servers from one of the first and second devices to the other of the first and second devices; wherein the processor circuit is configured to obtain a secure private key from the common key server, for use in encrypting communications between the first and second devices. - View Dependent Claims (45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84, 85)
-
-
86. An apparatus for facilitating secure communication between first and second devices, the apparatus comprising:
-
means for identifying a common key server potentially accessible by both the first and second devices, wherein the means for identifying comprises means for transmitting identifications of key servers from one of the first and second devices to the other of the first and second devices; and means for obtaining a secure private key from the common key server, for use in encrypting communications between the first and second devices.
-
-
87. A method of facilitating secure communications between first and second devices, the method comprising:
-
receiving, at an intermediate key server, a request message from one of the first and second devices requesting a private key; relaying the request message to a common key server potentially accessible by both the first and second devices; receiving the private key from the common key server at the intermediate key server; and relaying the private key for receipt by the one of the first and second devices via a secure communications channel.
-
-
88. A computer-readable medium storing code segments for directing a processor circuit to:
-
receive, at an intermediate key server, a request message from one of a first device and a second device requesting a private key; relay the request message to a common key server potentially accessible by both the first and second devices; receive the private key from the common key server at the intermediate key server; and relay the private key for receipt by the one of the first and second devices via a secure communications channel.
-
-
89. An apparatus for facilitating secure communications between first and second devices, the apparatus comprising:
-
an intermediate key server comprising a processor circuit configured to receive a request message from one of the first and second devices requesting a private key; wherein the processor circuit is configured to; relay the request message to a common key server potentially accessible by both the first and second devices; receive the private key from the common key server; and relay the private key for receipt by the one of the first and second devices via a secure communications channel.
-
-
90. An apparatus for facilitating secure communications between first and second devices, the apparatus comprising:
an intermediate key server comprising; means for receiving a request message from one of the first and second devices requesting a private key; means for relaying the request message to a common key server potentially accessible by both the first and second devices; means for receiving the private key from the common key server; and means for relaying the private key for receipt by the one of the first and second devices via a secure communications channel.
-
91. A method of facilitating secure communications between first and second devices, the method comprising:
-
receiving, at a common key server potentially accessible by both the first and second devices, request messages from first and second intermediate servers interposed between the common key server and the first and second devices respectively, requesting a private key; and generating and transmitting the private key to the first and second intermediate servers in response to the request messages, for relay to the first and second devices via a secure communications channel.
-
-
92. A computer-readable medium storing code segments for directing a processor circuit to:
-
receive, at a common key server potentially accessible by both first and second devices, request messages from first and second intermediate servers interposed between the common key server and the first and second devices respectively, requesting a private key; and generate and transmit the private key to the first and second intermediate servers in response to the request messages, for relay to the first and second devices via a secure communications channel.
-
-
93. An apparatus for facilitating secure communications between first and second devices, the apparatus comprising:
-
a common key server potentially accessible by both the first and second devices, the common key server comprising a processor circuit configured to receive request messages from first and second intermediate servers interposed between the common key server and the first and second devices respectively, requesting a private key; wherein the processor circuit is configured to generate and transmit the private key to the first and second intermediate servers in response to the request messages, for relay to the first and second devices via a secure communications channel.
-
-
94. An apparatus for facilitating secure communications between first and second devices, the apparatus comprising:
a common key server potentially accessible by both the first and second devices, the common key server comprising; means for receiving request messages from first and second intermediate servers interposed between the common key server and the first and second devices respectively, requesting a private key; and means for generating and transmitting the private key to the first and second intermediate servers in response to the request messages, for relay to the first and second devices via a secure communications channel.
Specification