Security measures for countering unauthorized decryption
First Claim
Patent Images
1. A method of managing a plurality of electronic messages, the method comprising:
- receiving, at an electronic communication device, an electronic message and a session key, the electronic message encrypted with the session key, the session key being encrypted with an encryption passphrase;
receiving a request to access the electronic message;
receiving a candidate passphrase;
arranging an attempt to decrypt the session key with the candidate passphrase;
incrementing a count of failed decryption attempts responsive to determining that the attempt has resulted in a failure; and
locking the electronic communication device in response to determining that the count of failed decryption attempts exceeds a limit, wherein the locked electronic communication device can be unlocked responsive to successful authentication of a device unlocking passphrase, the device unlocking passphrase being different from the encryption passphrase.
4 Assignments
0 Petitions
Accused Products
Abstract
After a predetermined limit for decryption attempts has been exceeded by a user attempting to decrypt an encrypted electronic message or attempting to decrypt a encrypted electronic certificate associated with an electronic message, access to the electronic message may be restricted.
38 Citations
25 Claims
-
1. A method of managing a plurality of electronic messages, the method comprising:
-
receiving, at an electronic communication device, an electronic message and a session key, the electronic message encrypted with the session key, the session key being encrypted with an encryption passphrase; receiving a request to access the electronic message; receiving a candidate passphrase; arranging an attempt to decrypt the session key with the candidate passphrase; incrementing a count of failed decryption attempts responsive to determining that the attempt has resulted in a failure; and locking the electronic communication device in response to determining that the count of failed decryption attempts exceeds a limit, wherein the locked electronic communication device can be unlocked responsive to successful authentication of a device unlocking passphrase, the device unlocking passphrase being different from the encryption passphrase. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. An electronic communication device comprising:
a processor adapted to; receive an electronic message and a session key, the electronic message encrypted with the session key, the session key being encrypted with an encryption passphrase; receive a request to access the electronic message; receive a candidate passphrase; arrange an attempt to decrypt the session key with the candidate passphrase; increment a count of failed decryption attempts responsive to determining that the attempt has resulted in a failure; and lock the electronic communication device in response to determining that the count of failed decryption attempts exceeds a limit, wherein the locked electronic communication device can be unlocked responsive to successful authentication of a device unlocking passphrase, the device unlocking passphrase being different from the encryption passphrase. - View Dependent Claims (16)
-
17. A non-transitory computer-readable storage device containing computer-executable instructions that, when performed by a processor in an electronic communication device, cause the processor to:
-
receive an electronic message and a session key, the electronic message encrypted with the session key, the session key being encrypted with a passphrase; receive a request to access the electronic message; receive a candidate passphrase; arrange an attempt to decrypt the session key with the candidate passphrase; increment a count of failed decryption attempts responsive to determining that the attempt has resulted in a failure; lock the electronic communication device in response to determining that the count of failed decryption attempts exceeds a limit, wherein the locked electronic communication device can be unlocked responsive to successful authentication of a device unlocking passphrase, the device unlocking passphrase being different from the encryption passphrase. - View Dependent Claims (18)
-
-
19. A method of managing a plurality of electronic messages, the method comprising:
-
receiving an electronic message, an electronic certificate and a session key, the electronic certificate encrypted with the session key, the session key being encrypted with an encryption passphrase; receiving a request to access the electronic certificate; receiving a candidate passphrase; arranging an attempt to decrypt the session key with the candidate passphrase; incrementing a count of failed decryption attempts responsive to determining that the attempt has resulted in a failure; and locking the electronic communication device in response to determining that the count of failed decryption attempts exceeds a limit, wherein the locked electronic communication device can be unlocked responsive to successful authentication of a device unlocking passphrase, the device unlocking passphrase being different from the encryption passphrase. - View Dependent Claims (20, 21, 22, 23, 24, 25)
-
Specification