Differential client-side encryption of information originating from a client

US 9,009,462 B2
Filed: 12/11/2013
Issued: 04/14/2015
Est. Priority Date: 09/30/2011
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving a public key allocated by a service provider for use by an entity, wherein the service provider maintains a private key paired to the public key;

determining, by a processor of a first computing device, an interactive program including the public key;

providing the interactive program for an end user, wherein the interactive program is configured to enable a processor of a second computing device to encrypt data using the public key, wherein the second computing device is controlled by the end user;

receiving encrypted data from the second computing device, across a first network,wherein the processor of the second computing device encrypted the encrypted data using the public key;

forwarding the encrypted data to the service provider, across a second network, wherein the service provider is configured to determine the private key and decrypt the encrypted data, andthe first computing device lacks access to the unencrypted data; and

receiving, from the service provider, a processing result related to the decryption of the encrypted data.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method may include allocating a number of public keys, where each respective public key is allocated to a respective entity of a number of entities; storing a number of private keys, where each respective private corresponds to a respective public key; storing one or more decryption algorithms, where each respective decryption algorithm is configured to decrypt data previously encrypted using at least one encryption algorithm of the encryption algorithms. Each respective encryption algorithm may be configured to encrypt data using at least one public key. Each respective decryption algorithm may be configured to decrypt data using at least one private key. The method may include receiving encrypted data, where the encrypted data is encrypted using a first public key and a first encryption algorithm, and the encrypted data is provided over a network.

12 Citations

20 Claims

1. A method comprising:
- receiving a public key allocated by a service provider for use by an entity, wherein the service provider maintains a private key paired to the public key;
  
  determining, by a processor of a first computing device, an interactive program including the public key;
  
  providing the interactive program for an end user, wherein the interactive program is configured to enable a processor of a second computing device to encrypt data using the public key, wherein the second computing device is controlled by the end user;
  
  receiving encrypted data from the second computing device, across a first network,wherein the processor of the second computing device encrypted the encrypted data using the public key;
  
  forwarding the encrypted data to the service provider, across a second network, wherein the service provider is configured to determine the private key and decrypt the encrypted data, andthe first computing device lacks access to the unencrypted data; and
  
  receiving, from the service provider, a processing result related to the decryption of the encrypted data.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, whereinthe interactive program is a mobile computing device application;
    - andthe second computing device is a mobile computing device, wherein the mobile computing device application is configurable to install upon the processor of the second computing device.
  - 3. The method of claim 1, wherein the interactive program contains instructions that, when executed, cause the processor of the second computing device to encrypt data using the public key.
  - 4. The method of claim 3, wherein the interactive program contains instructions that, when executed, further cause the processor of the second computing device to download an encryption subprogram from one of the entity and the service provider.
  - 5. The method of claim 1, wherein the interactive program comprises instructions capable of being rendered within an Internet browser application.
  - 6. The method of claim 1, further comprising providing result information to the second computing device, wherein the result information is configured for presentation upon a display of the second computing device.
  - 7. The method of claim 2, wherein the mobile computing device application is affiliated with an online vendor offering goods and/or services.
  - 8. The method of claim 2, wherein the mobile computing device application is affiliated with a health care system.
  - 9. The method of claim 2, wherein the mobile computing device application is affiliated with a law enforcement system.
  - 10. The method of claim 1, wherein the public key is unique to the entity.
  - 11. The method of claim 1, wherein the result is provided to a mobile account of a user of the second computing device.

12. A method comprising:
- receiving one or more encryption algorithms and a public key, wherein the one or more encryption algorithms are configured to encrypt data using the public key to obtain encrypted data, wherein the encrypted data is configured to be decrypted using a private key paired with the public key, andthe one or more encryption algorithms and the public key are provided by a service provider over a network, whereinthe service provider allocated the public key for use by an entity, andthe service provider stores the private key;
  
  generating, by a processor of a first computing device, a mobile device application including the one or more encryption algorithms and the public key;
  
  providing the mobile device application for download over the network;
  
  receiving encrypted data, wherein the data is encrypted by the one or more encryption algorithms and the public key by a processor of a mobile computing device, wherein the mobile device application is installed upon the mobile computing device;
  
  forwarding the encrypted data to a second computing device, wherein the second computing device is controlled by the service provider, and the service provider is configured todecrypt the encrypted data to obtain decrypted data, andmanage processing of the decrypted data to obtain a processing result; and
  
  receiving, from the second computing device, the processing result.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
- - 13. The method of claim 12, further comprising:
    - generating, by a processor of a third computing device, result information, wherein the result information is based upon the processing result; and
      
      providing, via the network, the result information to the mobile device application executing on the mobile computing device.
  - 14. The method of claim 13, wherein the first computing device is the third computing device.
  - 15. The method of claim 12, further comprising:
    - providing, to the second computing device, an indication of a processing type, wherein the processing type is associated with the encrypted data, andthe service provider manages processing of the decrypted data based upon the processing type.
  - 16. The method of claim 12, wherein the mobile computing device application is affiliated with an online vendor offering goods and/or services.
  - 17. The method of claim 12 wherein the mobile computing device application is affiliated with a health care system.
  - 18. The method of claim 12, wherein the mobile computing device application is affiliated with a law enforcement system.
  - 19. The method of claim 12, wherein the public key is unique to the entity.
  - 20. The method of claim 12, wherein the result is provided to a mobile account of a user of the second computing device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
PayPal, Inc. (PayPal Holdings, Inc.)
Original Assignee
eBay Inc.
Inventors
Manges, Daniel
Primary Examiner(s)
Dinh, Minh

Application Number

US14/103,038
Publication Number

US 20140101436A1
Time in Patent Office

489 Days
Field of Search

None
US Class Current

713/153
CPC Class Codes

H04L 63/0428   wherein the data content is...

H04L 63/0435   wherein the sending and rec...

H04L 63/0442   wherein the sending and rec...

H04L 63/0471   applying encryption by an i...

H04L 63/06   for supporting key manageme...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/205   involving negotiation or de...

H04L 67/34   involving the movement of s...

H04L 9/0816   Key establishment, i.e. cry...

H04L 9/14   using a plurality of keys o...

Differential client-side encryption of information originating from a client

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

12 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Differential client-side encryption of information originating from a client

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

12 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links