Method for offloading encryption and decryption of a message received at a message server to remote end devices
First Claim
1. A method for offloading message encryption and message decryption from a message server to an encrypting end device and a decrypting end device that are remote from the message server, the method comprising:
- the message server establishing a secure communication path between the message server and the encrypting end device;
the message server receiving, from the encrypting end device via the secure communication path between the message server and the encrypting end device, a cryptographic context usable by the encrypting end device to encrypt a message and the message server responsively storing the cryptographic context;
the message server receiving an encrypted message from the encrypting end device via a communication path between the message server and the encrypting end device, but other than the secure communication path between the message server and the encrypting end device, and the message server responsively storing the encrypted message, wherein the encrypting end device creates the encrypted message by encrypting a message with the cryptographic context;
the message server receiving a request for the message server to transmit the encrypted message to the decrypting end device; and
in response to receiving the request, the message server transmitting the cryptographic context and the encrypted message to the decrypting end device for decryption of the encrypted message by the decrypting end device, wherein transmitting the cryptographic context to the decrypting end device occurs via a secure communication path established between the message server and the decrypting end device.
6 Assignments
0 Petitions
Accused Products
Abstract
A method for offloading encryption and decryption of a message received at a message server to one or more end devices that are remote from the message server. An encrypting end device remote from the message server encrypts a message using cryptographic context and transmits the cryptographic context and encrypted message to the message server for storage at the message server. The message server stores the encrypted message as received without decrypting the message. The message server sends the stored cryptographic context and the encrypted message to a decrypting end device in response to the decrypting end device sending a request for the message server to transmit the encrypted message to the decrypting end device. The decrypting end device uses the cryptographic context to decrypt the encrypted message and then presents the decrypted message to a user of the decrypting end device.
24 Citations
19 Claims
-
1. A method for offloading message encryption and message decryption from a message server to an encrypting end device and a decrypting end device that are remote from the message server, the method comprising:
-
the message server establishing a secure communication path between the message server and the encrypting end device; the message server receiving, from the encrypting end device via the secure communication path between the message server and the encrypting end device, a cryptographic context usable by the encrypting end device to encrypt a message and the message server responsively storing the cryptographic context; the message server receiving an encrypted message from the encrypting end device via a communication path between the message server and the encrypting end device, but other than the secure communication path between the message server and the encrypting end device, and the message server responsively storing the encrypted message, wherein the encrypting end device creates the encrypted message by encrypting a message with the cryptographic context; the message server receiving a request for the message server to transmit the encrypted message to the decrypting end device; and in response to receiving the request, the message server transmitting the cryptographic context and the encrypted message to the decrypting end device for decryption of the encrypted message by the decrypting end device, wherein transmitting the cryptographic context to the decrypting end device occurs via a secure communication path established between the message server and the decrypting end device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A method for offloading message encryption and message decryption from a message server to an encrypting end device and a decrypting end device that are remote from the message server, the method comprising:
-
the message server establishing a secure communication path on a packet-network between the message server and the encrypting end device; the message server receiving, from the encrypting end device via the secure communication path on the packet-network between the message server and the encrypting end device, a cryptographic context useable by the encrypting end device to encrypt a message and the message server responsively storing the cryptographic context, wherein the message server and the encrypting end device are coupled to the packet-network; the message server receiving an encrypted message from the encrypting end device via a path on the packet-network between the message server and the encrypting end device, but other than the secure communication path on the packet-network between the message server and the encrypting end device, and the message server responsively storing the encrypted message, wherein the encrypting end device creates the encrypted message by encrypting a message with the cryptographic context, and wherein storing the encrypted message includes storing the encrypted message as encrypted by the encrypting end device; the message server receiving, from the decrypting end device via the packet-network, a request for the message server to transmit the encrypted message to the decrypting end device, wherein the decrypting end device is coupled to the packet-network; and in response to receiving the request, the message server transmitting the cryptographic context and the encrypted message to the decrypting end device for decryption of the encrypted message by the decrypting end device, wherein transmitting the cryptographic context to the decrypting end device occurs via a secure communication path established on the packet-network between the message server and the decrypting end device. - View Dependent Claims (16)
-
-
17. A method for offloading message encryption and message decryption from a message server to an encrypting end device and a decrypting end device that are remote from the message server, the method comprising:
-
the message server negotiating with an encrypting end device to establish a first secure communication path, the first secure communication path being between the message server and the encrypting end device; the message server receiving, from the encrypting end device via the first secure communication path between the message server and the encrypting end device, a cryptographic context useable by the encrypting end device to encrypt a message, and the message server responsively storing the cryptographic context; the message server receiving an encrypted message from the encrypting end device via a communication path between the message server and the encrypting end device, but other than the first secure communication path between the message server and the encrypting end device, and the message server responsively storing the encrypted message, wherein the encrypting end device creates the encrypted message by encrypting a message with the cryptographic context; the message server negotiating with a decrypting end device to establish a second secure communication path, the second secure communication path being between the message server and the decrypting end device; the message server receiving a request for the message server to transmit the encrypted message to the decrypting end device; and in response to receiving the request for the message server to transmit the encrypted message to the decrypting end device, the message server transmitting the cryptographic context to the decrypting end device via the second secure communication path and transmitting the encrypted message to the decrypting end device for decryption of the encrypted message by the decrypting end device. - View Dependent Claims (19)
-
-
18. A method for offloading message encryption and message decryption from a message server to an encrypting end device and a decrypting end device that are remote from the message server, the method comprising:
-
the message server establishing a secure communication path between the message server and the encrypting end device; the message server receiving, from the encrypting end device via the secure communication path between the message server and the encrypting end device, a cryptographic context useable by the encrypting end device to encrypt a message in real-time as the message is being created, and the message server responsively storing the cryptographic context; the message server receiving an encrypted message from the encrypting end device via a communication path between the message server and the encrypting end device, but other than the secure communication path between the message server and the encrypting end device, and the message server responsively storing the encrypted message, wherein the encrypting end device creates the encrypted message by encrypting a message with the cryptographic context; the message server receiving a request for the message server to transmit the encrypted message to the decrypting end device; and in response to receiving the request, the message server transmitting the cryptographic context and the encrypted message to the decrypting end device, for decryption of the encrypted message by the decrypting end device, wherein transmitting the cryptographic context to the decrypting end device occurs via a secure communication path established between the message server and the decrypting end device.
-
Specification