Method for strongly encrypting .ZIP files

US 9,098,721 B2
Filed: 06/05/2012
Issued: 08/04/2015
Est. Priority Date: 07/16/2003
Status: Active Grant

First Claim

Patent Images

1. A method of placing data in a .ZIP file format data container on a computer, said method including:

receiving a data file at an application on a computer, wherein said data file has been retrieved from an electronic computer data storage by said application;

compressing said data file to form a compressed data file using said application before encrypting said data file;

encrypting said compressed data file to form an encrypted data file, wherein said encrypting uses symmetric encryption using a symmetric key having a symmetric key bit length selected by a user, wherein said symmetric key bit length is one of a plurality of available symmetric key bit lengths that are selectable by said user using said application;

placing said encrypted data file in a data container using said application on said computer,wherein said data container is constructed in accordance with the .ZIP file format,wherein said data container includes an electronic indication that said encrypted data file is encrypted,wherein said data container includes a second electronic indication that said encrypted data file was encrypted with an encryption method using said symmetric key bit length selected by said user,wherein said data container includes an electronic extra field, wherein said extra field includes an electronic indication of the symmetric key bit length of the symmetric key selected by said user that was employed in encrypting said encrypted data file;

storing said data container constructed in accordance with the .ZIP file format; and

setting a flag in a decryption header of the encrypted file in the data container indicating that both a password and recipient list are required to decrypt the file and that a random number used to generate the symmetric key is encrypted twice by two separate keys.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides a method of integrating existing strong encryption methods into the processing of a .ZIP file to provide a highly secure data container which provides flexibility in the use of symmetric and asymmetric encryption technology. The present invention adapts the well established .ZIP file format to support higher levels of security and multiple methods of data encryption and key management, thereby producing a highly secure and flexible digital container for electronically storing and transferring confidential data.

284 Citations

18 Claims

1. A method of placing data in a .ZIP file format data container on a computer, said method including:
- receiving a data file at an application on a computer, wherein said data file has been retrieved from an electronic computer data storage by said application;
  
  compressing said data file to form a compressed data file using said application before encrypting said data file;
  
  encrypting said compressed data file to form an encrypted data file, wherein said encrypting uses symmetric encryption using a symmetric key having a symmetric key bit length selected by a user, wherein said symmetric key bit length is one of a plurality of available symmetric key bit lengths that are selectable by said user using said application;
  
  placing said encrypted data file in a data container using said application on said computer,wherein said data container is constructed in accordance with the .ZIP file format,wherein said data container includes an electronic indication that said encrypted data file is encrypted,wherein said data container includes a second electronic indication that said encrypted data file was encrypted with an encryption method using said symmetric key bit length selected by said user,wherein said data container includes an electronic extra field, wherein said extra field includes an electronic indication of the symmetric key bit length of the symmetric key selected by said user that was employed in encrypting said encrypted data file;
  
  storing said data container constructed in accordance with the .ZIP file format; and
  
  setting a flag in a decryption header of the encrypted file in the data container indicating that both a password and recipient list are required to decrypt the file and that a random number used to generate the symmetric key is encrypted twice by two separate keys.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 17)
- - 2. The method of claim 1 wherein said symmetric key bit length has a length of at least 192 bits.
  - 3. The method of claim 1 wherein said symmetric key bit length has a length of at least 256 bits.
  - 4. The method of claim 1 wherein said encrypting employs an Advanced Encryption Standard (AES)-type encryption algorithm.
  - 5. The method of claim 1 wherein said encrypting employs a Triple Data Encryption Standard (3DES)-type encryption algorithm.
  - 6. The method of claim 1 wherein said compressing employs a Lempel-Ziv (LZ)-type data compression algorithm.
  - 7. The method of claim 1 wherein said compressing employs a Deflate-type data compression algorithm.
  - 8. The method of claim 1 wherein said compressing employs a Burrows-Wheeler Transform (BWT)-type data compression algorithm.
  - 17. The method of claim 1 wherein said symmetric key bit length has a length of at least 128 bits.

9. A system for placing data in a .ZIP file format data container on a computer, said system including:
- an electronic computer data storage;
  
  a processor executing computer instructions implementing an application, said application configured to;
  
  receive a data file, wherein said data file has been retrieved from said electronic computer data storage by said application;
  
  compress said data file to form a compressed data file before encrypting said data file;
  
  encrypt said compressed data file to form an encrypted data file, wherein said encrypting uses symmetric encryption using a symmetric key having a symmetric key bit length selected by a user, wherein said symmetric key bit length is one of a plurality of available symmetric key bit lengths that are selectable by said user using said application;
  
  place said encrypted data file in a data container,wherein said data container is constructed in accordance with the .ZIP file format,wherein said data container includes an electronic indication that said encrypted data file is encrypted,wherein said data container includes a second electronic indication that said encrypted data file was encrypted with an encryption method using said symmetric key bit length selected by said user,wherein said data container includes an electronic extra field, wherein said extra field includes an electronic indication of the symmetric key bit length of the symmetric key selected by said user that was employed in encrypting said encrypted data file;
  
  store said data container constructed in accordance with the .ZIP file format in said electronic computer data storage; and
  
  set a flag in a decryption header of the encrypted file in the data container indicating that both a password and recipient list are required to decrypt the file and that a random number used to generate the symmetric key is encrypted twice by two separate keys.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 18)
- - 10. The system of claim 9 wherein said symmetric key bit length has a length of at least 192 bits.
  - 11. The system of claim 9 wherein said symmetric key bit length has a length of at least 256 bits.
  - 12. The system of claim 9 wherein said encrypting employs an Advanced Encryption Standard (AES)-type encryption algorithm.
  - 13. The system of claim 9 wherein said encrypting employs a Triple Data Encryption Standard (3DES)-type encryption algorithm.
  - 14. The system of claim 9 wherein said compressing employs a Lempel-Ziv (LZ)-type data compression algorithm.
  - 15. The system of claim 9 wherein said compressing employs a Deflate-type data compression algorithm.
  - 16. The system of claim 9 wherein said compressing employs a Burrows-Wheeler Transform (BWT)-type data compression algorithm.
  - 18. The system of claim 9 wherein said symmetric key bit length has a length of at least 128 bits.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
PKWARE, Inc. (PKW Holdings, Inc.)
Original Assignee
PKWARE, Inc. (PKW Holdings, Inc.)
Inventors
Peterson, James C.
Primary Examiner(s)
Dinh, Minh

Application Number

US13/489,011
Publication Number

US 20120284536A1
Time in Patent Office

1,155 Days
Field of Search

None
US Class Current

1/1
CPC Class Codes

G06F 16/1744   using compression, e.g. spa...

G06F 21/6209   to a single file or object,...

G06F 21/6218   to a system of files or obj...

G06F 2221/2107   File encryption

G06F 2221/2153   Using hardware token as a s...

H04L 2209/30   Compression, e.g. Merkle-Da...

H04L 9/0819   Key transport or distributi...

H04L 9/088   Usage controlling of secret...

Method for strongly encrypting .ZIP files

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

284 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Method for strongly encrypting .ZIP files

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

284 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links