System and method for securing data
First Claim
1. In an electronic messaging system operable to send and receive electronic messages over a wired local area network and also operable to redirect electronic messages over a wireless network to a wireless device, a method of encrypting electronic messages comprising:
- an enterprise server receiving an electronic message from an electronic messaging server, wherein the electronic message is protected by a first encryption algorithm and addressed to a message recipient in the wired local area network, the message recipient having an associated wireless device operable in the wireless network, the enterprise server having wireless device identification information of the associated wireless device stored therein for use in communicating with the wireless device using a higher-level connection with a wireless gateway that provides an interface with the wireless network;
determining that the electronic message is to be transported across the wireless network to the wireless device; and
the enterprise server retrieving a public key from a public key look-up database that is associated with the wireless device and also generating a random session key,wherein in response to determining that the electronic message is to be transported across the wireless network to the wireless device, the method further comprises the enterprise server;
converting the protected electronic message to a data structure recognizable by the wireless device;
using the random session key to encrypt the data structure with a second encryption algorithm and using the public key to encrypt the random session key, the second encryption algorithm being a stronger security method than the first encryption algorithm;
encapsulating the encrypted data structure and the encrypted random session key into one or more data packets along with the wireless identification information; and
transmitting the data packets over the higher-level connection to the gateway,wherein the transmitted encapsulated data structure is protected with first encryption algorithm and encrypted with the second encryption algorithm.
8 Assignments
0 Petitions
Accused Products
Abstract
In accordance with the teachings described herein, systems and methods are provided for securing data for transmission to a wireless device. The disclosed systems and methods may include an electronic messaging system used to send and receive data over a first network and also used to forward data to a wireless device operable in a second network. The electronic messaging system may receive an electronic message encrypted with a first encryption algorithm and addressed to a message recipient in the first network, the message recipient having an associated wireless device operable in the second network. The electronic messaging system may determine that the electronic message is to be transported across the second network to the wireless device, and in response to determining that the electronic message is to be transported across the second network, encrypt the electronic message using a second encryption algorithm and transmit the encrypted message over the second network to the wireless device, with the second encryption algorithm being a stronger encryption algorithm than the first encryption algorithm.
83 Citations
12 Claims
-
1. In an electronic messaging system operable to send and receive electronic messages over a wired local area network and also operable to redirect electronic messages over a wireless network to a wireless device, a method of encrypting electronic messages comprising:
-
an enterprise server receiving an electronic message from an electronic messaging server, wherein the electronic message is protected by a first encryption algorithm and addressed to a message recipient in the wired local area network, the message recipient having an associated wireless device operable in the wireless network, the enterprise server having wireless device identification information of the associated wireless device stored therein for use in communicating with the wireless device using a higher-level connection with a wireless gateway that provides an interface with the wireless network; determining that the electronic message is to be transported across the wireless network to the wireless device; and the enterprise server retrieving a public key from a public key look-up database that is associated with the wireless device and also generating a random session key, wherein in response to determining that the electronic message is to be transported across the wireless network to the wireless device, the method further comprises the enterprise server; converting the protected electronic message to a data structure recognizable by the wireless device; using the random session key to encrypt the data structure with a second encryption algorithm and using the public key to encrypt the random session key, the second encryption algorithm being a stronger security method than the first encryption algorithm; encapsulating the encrypted data structure and the encrypted random session key into one or more data packets along with the wireless identification information; and transmitting the data packets over the higher-level connection to the gateway, wherein the transmitted encapsulated data structure is protected with first encryption algorithm and encrypted with the second encryption algorithm. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. In an electronic messaging system having an electronic messaging server that is operable to send and receive data over a wired local area network (wired-LAN) and over a wired wide area network (wired-WAN), wherein the electronic messaging server and the wired-LAN are isolated from the wired-WAN by a firewall, a system for securing data for transmission to a wireless device, comprising:
-
a public key look-up database for storing public encryption keys associated with a plurality of wireless devices; an enterprise server operable to forward electronic messages from the electronic messaging server over a wireless network to the wireless device, the wireless network being less secure when compared to transmissions within the wired-LAN; the enterprise server being further operable to; receive an electronic message from the electronic messaging system that is protected by a first encryption algorithm and addressed to a message recipient in the wired local area network, the message recipient having an associated wireless device operable in the wireless network, the enterprise server having wireless device identification information of the associated wireless device stored therein for use in communicating with the wireless device using a higher-level connection with a wireless gateway that provides an interface with the wireless network; determine that the electronic message is to be transported across the wireless network to the wireless device; and retrieve a public key from a public key look-up database that is associated with the wireless device and generate a random session key, wherein in response to a determination that the electronic message is to be transported across the wireless network to the wireless device, the enterprise server is further operable to; convert the protected electronic message to a data structure recognizable by the wireless device; using the random session key to encrypt the data structure with a second encryption algorithm and use the public key to encrypt the random session key, the second encryption algorithm being a stronger security method than the first encryption algorithm; encapsulate the encrypted data structure and the encrypted random session key into one or more data packets along with the wireless identification information; and forward the data packets for transmission over the higher-level connection to the gateway, wherein the transmitted encapsulated data structure is protected with the first encryption algorithm and encrypted with the second encryption algorithm. - View Dependent Claims (10, 11, 12)
-
Specification