Methods and systems for encrypting, transmitting, and storing electronic information and files
First Claim
Patent Images
1. A method comprising:
- receiving a request for a file and receiving a user and device key, wherein the request identifies a user and a client device that sent the request and the user and device key;
generating a session key that is unique for the user, device, and session;
creating a session-key-encrypted file by encrypting the file using the session key;
creating an encrypted message by encrypting the session-key-encrypted file and the session key together using the user and device key; and
transmitting the encrypted message to the client device, wherein the client device decrypts the encrypted message, stores the session-key-encrypted file, stores the session key, and restricts access to the session key such that the session key is only provided to the user on the client device, wherein, after the session and communication to the client device has ended, the session-key-encrypted file and the session key are only available for use by the user on the client device.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and systems for securely requesting, retrieving, sending, and storing files. One aspect involves receiving a request for a file from a client device that identifies a user and the client device, encrypting the file using a session key based at least in part on the user and the client device, and transmitting the encrypted file to the client device. Other aspects of the invention include storing the encrypted file on the client device in encrypted form such that the file may only be decrypted or accessed by the particular user on that particular client device.
80 Citations
11 Claims
-
1. A method comprising:
-
receiving a request for a file and receiving a user and device key, wherein the request identifies a user and a client device that sent the request and the user and device key; generating a session key that is unique for the user, device, and session; creating a session-key-encrypted file by encrypting the file using the session key; creating an encrypted message by encrypting the session-key-encrypted file and the session key together using the user and device key; and transmitting the encrypted message to the client device, wherein the client device decrypts the encrypted message, stores the session-key-encrypted file, stores the session key, and restricts access to the session key such that the session key is only provided to the user on the client device, wherein, after the session and communication to the client device has ended, the session-key-encrypted file and the session key are only available for use by the user on the client device. - View Dependent Claims (2, 3, 4)
-
-
5. A method comprising:
-
sending a request for a file and sending a user and device key from a client device to a server wherein a user is using the client device; receiving the file from the server, wherein the file is encrypted in an encrypted message, wherein the encrypted message was encrypted using the user and device key; decrypting the encrypted message to retrieve a session-key-encrypted file and a session key unique for the user, device, and session, the session-key-encrypted file comprising the requested file that was encrypted by the server using the session key; and storing the session-key-encrypted file and the session key on the client device, and restricting access to the session key such that the session key is only provided to the user on the client device, wherein, after the session and communication to the client device has ended, the session-key-encrypted file and the session key are only available for use by the user on the client device. - View Dependent Claims (6)
-
-
7. A computer readable storage medium having program code stored thereon and executable by a device, comprising:
-
program code for receiving a request for a file and receiving a user and device key, wherein the request identifies a user and a client device that sent the request and the user and device key; program code for generating a session key that is unique for the user, device, and session; program code for creating a session-key-encrypted file by encrypting the file using the session key; program code for creating an encrypted message by encrypting the session-key-encrypted file and the session key together using the user and device key; and program code for transmitting the encrypted message to the client device, wherein the client device decrypts the encrypted message and stores the session-key-encrypted file, stores the session key, and restricts access to the session key such that the session key is only provided to the user on the client device, wherein, after the session and communication to the client device has ended, the session-key-encrypted file and the session key are only available for use by the user on the client device. - View Dependent Claims (8, 9, 10)
-
-
11. A computer readable storage medium having program code stored thereon and executable by a device, comprising:
-
program code for sending a request for a file and sending a user and device key from a client device to a server, wherein a user is using the client device; program code for receiving the file from the server, wherein the file is encrypted in an encrypted message, wherein the encrypted message was encrypted using the user and device key; program code for decrypting the encrypted message to retrieve a session-key-encrypted file and a session key unique for the user, device, and session, the session-key-encrypted file comprising the requested file that was encrypted by the server using the session key; and program code for storing the session-key-encrypted file and the session key on the client device, and restricting access to the session key such that the session key is only provided to the user on the client device, wherein, after the session and communication to the client device has ended, the session-key-encrypted file and the session key are only available for use by the user on the client device.
-
Specification