Receiving encrypted emails via a web-based email system

US 8,352,742 B2
Filed: 07/19/2005
Issued: 01/08/2013
Est. Priority Date: 07/19/2005
Status: Active Grant

First Claim

Patent Images

1. A system, comprising:

a) a public key infrastructure email account website hosted on one or more computers in a network, wherein the public key infrastructure email account website is dedicated to creating a public key infrastructure email account and is configured to;

i) receive a public key infrastructure email account request from a user, wherein the public key infrastructure email account request is the only interaction required by the user to create the public key infrastructure email account;

ii) generate and send a certificate signing request to a certificate authority which does not interact with the user, wherein the certificate authority automatically trusts one or more certificate signing requests from the public key infrastructure email account website and wherein the certificate authority is hosted on the one or more computers hosting the public key infrastructure email account website;

iii) receive and install a certificate issued and signed by the certificate authority;

iv) create the public key infrastructure email account configured to access one or more cryptographic functions to securely receive and transmit mail, wherein the public key infrastructure email account is accessible to a first email website displayed on a client computer communicatively coupled to the network and wherein the client computer is not relied on to store or recall public key infrastructure keys;

b) an email server communicatively coupled to the network and the public key infrastructure email account website and configured to encrypt and decrypt email received and transmitted between the first email website and a second email website, using the certificate and a public key for the user.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides systems and methods for allowing an Email User to create a Public Key Infrastructure (PKI) Email Account and thereafter to digitally sign, send, verify and receive PKI encrypted emails over a computer network, such as the Internet. The systems and methods preferably include a Web-based Email System and a Certificate Authority that coordinate their actions to make the process of creating, maintaining and using the PKI Account as easy as possible for the Email User. In a preferred embodiment, a Keystore System may also be used to enhance the management and use of digital keypairs.

33 Citations

View as Search Results

16 Claims

1. A system, comprising:
- a) a public key infrastructure email account website hosted on one or more computers in a network, wherein the public key infrastructure email account website is dedicated to creating a public key infrastructure email account and is configured to;
  
  i) receive a public key infrastructure email account request from a user, wherein the public key infrastructure email account request is the only interaction required by the user to create the public key infrastructure email account;
  
  ii) generate and send a certificate signing request to a certificate authority which does not interact with the user, wherein the certificate authority automatically trusts one or more certificate signing requests from the public key infrastructure email account website and wherein the certificate authority is hosted on the one or more computers hosting the public key infrastructure email account website;
  
  iii) receive and install a certificate issued and signed by the certificate authority;
  
  iv) create the public key infrastructure email account configured to access one or more cryptographic functions to securely receive and transmit mail, wherein the public key infrastructure email account is accessible to a first email website displayed on a client computer communicatively coupled to the network and wherein the client computer is not relied on to store or recall public key infrastructure keys;
  
  b) an email server communicatively coupled to the network and the public key infrastructure email account website and configured to encrypt and decrypt email received and transmitted between the first email website and a second email website, using the certificate and a public key for the user.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The system of claim 1, further comprising a keystore system, wherein the keystore system and the certificate authority are integrated, and share hardware resources, with the public key infrastructure email account website.
  - 3. The system of claim 1, wherein the public key infrastructure email account website is able to decrypt one or more emails received for the user.
  - 4. The system of claim 1, further comprising a keystore system for storing one or more keypairs for the user.
  - 5. The system of claim 4, wherein the keystore system is able to decrypt one or more emails received for the user.
  - 6. The system of claim 1, wherein the public key infrastructure email account website comprises an integrated keystore system for storing one or more keypairs for the user and wherein the public key infrastructure email account website may be accessed by the user from any computer that has access to the Internet.
  - 7. The system of claim 6, wherein the keystore system is able to decrypt one or more emails received for the user.
  - 8. The system of claim 1, further comprising a keystore system accessible by a plurality of email systems.
  - 9. The system of claim 1, wherein the certificate authority and the email server are designed to exchange information without using the user as an intermediary during the exchange of the information.

10. A method comprising the steps of:
- a) hosting a public key infrastructure email account website on one or more computers in a network, wherein the public key infrastructure email account website is dedicated to creating a public key infrastructure email account and is configured to;
  
  i) receive a public key infrastructure email account request from a user, wherein the public key infrastructure email account request is the only interaction required by the user to create the public key infrastructure email account;
  
  ii) generate and send a certificate signing request to a certificate authority which does not interact with the user, wherein the certificate authority automatically trusts one or more certificate signing requests from the public key infrastructure email account website and wherein the certificate authority is hosted on the one or more computers hosting the public key infrastructure email account website;
  
  iii) receive and install a certificate issued and signed by the certificate authority;
  
  iv) create the public key infrastructure email account configured to access one or more cryptographic functions to securely receive and transmit mail, wherein the public key infrastructure email account is accessible to an email website displayed on a client computer communicatively coupled to the network and wherein the client computer is not relied on to store or recall public key infrastructure keys;
  
  b) generating a private key for the user, without interaction from the user, on an email server wherein the email server and the certificate authority are integrated, and share hardware and software resourcesc) receiving an encrypted email directed to the user;
  
  d) decrypting the encrypted email using the private key; and
  
  e) displaying the decrypted email on the client computer.
- View Dependent Claims (11, 12, 13)
- - 11. The method of claim 10, further comprising the step of retrieving the private key from a keystore system.
  - 12. The method of claim 11, wherein data stored in the keystore system is accessible to a plurality of web-based email systems via the network.
  - 13. The method of claim 10, wherein the private key never leaves the public key infrastructure email account website.

14. A method comprising the steps of:
- a) hosting a public key infrastructure email account website on one or more computers in a network, wherein the public key infrastructure email account website is dedicated to creating a public key infrastructure email account and is configured to;
  
  i) receive a public key infrastructure email account request from a user, wherein the public key infrastructure email account request is the only interaction required by the user to create the public key infrastructure email account;
  
  ii) generate and send a certificate signing request to a certificate authority which does not interact with the user, wherein the certificate authority automatically trusts one or more certificate signing requests from the public key infrastructure email account website and wherein the certificate authority is hosted on the one or more computers hosting the public key infrastructure email account website;
  
  iii) receive and install a certificate issued and signed by the certificate authority;
  
  iv) create a public key infrastructure account comprising a public key and a private key for the user, wherein the public key infrastructure account is configured to access one or more cryptographic functions, without transmitting one or more public key infrastructure digital keys through the network, to securely receive and transmit mail, wherein the public key infrastructure account is accessible to a first email website displayed on a client computer, or any computer connected to the Internet, and wherein the client computer is not relied on to store or recall public key infrastructure keys;
  
  b) storing the public key in a data storage on one or more computers in the network;
  
  c) receiving a request from a desktop email client or a second email website to encrypt an email and send the email to the user;
  
  d) encrypting the email using the public key;
  
  e) decrypting the email using the private key; and
  
  f) sending and displaying, on the client computer, the decrypted email.
- View Dependent Claims (15, 16)
- - 15. The method of claim 14, wherein the first email website includes an integrated keystore system for storing the private key.
  - 16. The method of claim 14, wherein the second email website includes an integrated keystore System for storing the public key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Go Daddy Operating Company LLC (GoDaddy, Inc.)
Original Assignee
Go Daddy Operating Company LLC (GoDaddy, Inc.)
Inventors
Thayer, Wayne, Owen, Brad
Primary Examiner(s)
Chea, Philip
Assistant Examiner(s)
David, Dorianne Alvarado

Application Number

US11/184,519
Publication Number

US 20070022292A1
Time in Patent Office

2,730 Days
Field of Search

None
US Class Current

713/176
CPC Class Codes

H04L 51/00   User-to-user messaging in p...

H04L 63/0428   wherein the data content is...

H04L 63/0823   using certificates cryptogr...

Receiving encrypted emails via a web-based email system

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

33 Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Receiving encrypted emails via a web-based email system

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

33 Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links