Intelligent electronic cryptographic cloud computing system

US 9,306,946 B1
Filed: 08/21/2012
Issued: 04/05/2016
Est. Priority Date: 08/21/2012
Status: Active Grant

First Claim

Patent Images

1. An intelligent electronic cryptographic cloud computing system comprising:

a. a computing cloud comprising one or more data storages, one or more processers, and an enterprise server with a server processor and a server data storage, wherein the computing cloud is configured to provide at least one service with shared hardware and software resources;

b. a plurality of intelligent electronic devices in communication with the computing cloud; and

c. a plurality of intelligent electronic cryptographic modules programmed to selectively receive and encrypt a first non-encrypted response from the enterprise server, receive and transmit a second non-encrypted response from the enterprise server prior to transmitting each non-encrypted response to the least one intelligent electronic device or client devices and programmed to selectively receive and encrypt a first non-encrypted response from the at least one intelligent electronic device, receive and transmit a second non-encrypted response from the at least one intelligent electronic device prior to transmitting each non-encrypted response to the computing cloud, wherein each intelligent electronic cryptographic module comprises;

i. a secure enclosure;

ii. at least one power supply;

iii. a first processor disposed within the secure enclosure, in communication with at least one first data storage in the computing cloud, wherein the at least one first data storage comprises;

1. a cryptographic application programming interface, programmed to;

a. authenticate between the enterprise server in the computing cloud and the intelligent electronic cryptographic module providing a secure interface for the at least one intelligent electronic device to the computing cloud;

b. decrypt encrypted messages from the enterprise server and transmit decrypted messages from the enterprise server to the at least one intelligent electronic device; and

c. receive non-encrypted communication with the at least one intelligent electronic device, encrypt non-encrypted communications and transmit encrypted responses to the enterprise server;

iv. a first cryptography chip disposed within the secure enclosure for decrypting messages from the enterprise server in the computing cloud and passing that message to the at least one intelligent electronic device, and encrypting responses from the at least one intelligent electronic device for transmission to the enterprise server in the computing cloud, wherein the first cryptography chip is in communication with the first processor;

v. at least one server-side port in the intelligent electronic cryptographic module for;

1. receiving a member of the group consisting of;

at least one encrypted message, at least one non-encrypted message, or combinations thereof, from the enterprise server in the computing cloud;

2. transmitting a member of the group consisting of;

at least one encrypted response, at least one non-encrypted response, or combinations thereof to the enterprise server in the computing cloud; and

3. at least one non-encrypted port in the intelligent electronic cryptographic module for;

a. transmitting at least one decrypted message, the at least one non-encrypted message or combinations thereof from the intelligent electronic cryptographic module to the at least one intelligent electronic device; and

b. receiving at least one non-encrypted response from the at least one intelligent electronic device; and

wherein the at least one server-side port, the at least one non-encrypted port, or combinations thereof are adapted to engage at least two industry standard protocols simultaneously; and

vi. wherein the at least one data storage in the computing cloud comprises computer instructions for instructing the processor to;

1. perform as a soft remote terminal unit;

2. select at least one protocol module for communication with the at least one intelligent electronic device, the enterprise server in the computing cloud, or combinations thereof;

3. select at least one appropriate telemetry method for transmitting and receiving messages using at least one selected protocol module;

4. at least once authenticate that the enterprise server in the computing cloud is authorized to transmit to the intelligent electronic cryptographic module forming an authenticated enterprise server in the computing cloud;

5. at least once authenticating that the intelligent electronic cryptographic module is authorized to transmit to the enterprise server in the computing cloud;

6. receive at least one encrypted message from the authenticated enterprise server in the computing cloud;

7. decrypt at least one encrypted message transmitted from the authenticated enterprise server in the computing cloud using the intelligent electronic cryptographic module, forming at least one decrypted message;

8. transmit at least one decrypted message to the at least one intelligent electronic device;

9. receive at least one non-encrypted response from the at least one intelligent electronic device;

10. encrypt at least one non-encrypted response from the at least one intelligent electronic device using the intelligent electronic cryptographic module, forming at least one encrypted response;

or11. transmit at least one encrypted response to the enterprise server in the computing cloud.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An intelligent electronic cryptographic cloud computing system can include a computing cloud. The computing cloud can include one or more data storages and one or more processers, one of which is an enterprise server. The computing cloud can be configured to provide at least one service with shared hardware and software resources.

39 Citations

View as Search Results

16 Claims

1. An intelligent electronic cryptographic cloud computing system comprising:
- a. a computing cloud comprising one or more data storages, one or more processers, and an enterprise server with a server processor and a server data storage, wherein the computing cloud is configured to provide at least one service with shared hardware and software resources;
  
  b. a plurality of intelligent electronic devices in communication with the computing cloud; and
  
  c. a plurality of intelligent electronic cryptographic modules programmed to selectively receive and encrypt a first non-encrypted response from the enterprise server, receive and transmit a second non-encrypted response from the enterprise server prior to transmitting each non-encrypted response to the least one intelligent electronic device or client devices and programmed to selectively receive and encrypt a first non-encrypted response from the at least one intelligent electronic device, receive and transmit a second non-encrypted response from the at least one intelligent electronic device prior to transmitting each non-encrypted response to the computing cloud, wherein each intelligent electronic cryptographic module comprises;
  
  i. a secure enclosure;
  
  ii. at least one power supply;
  
  iii. a first processor disposed within the secure enclosure, in communication with at least one first data storage in the computing cloud, wherein the at least one first data storage comprises;
  
  1. a cryptographic application programming interface, programmed to;
  
  a. authenticate between the enterprise server in the computing cloud and the intelligent electronic cryptographic module providing a secure interface for the at least one intelligent electronic device to the computing cloud;
  
  b. decrypt encrypted messages from the enterprise server and transmit decrypted messages from the enterprise server to the at least one intelligent electronic device; and
  
  c. receive non-encrypted communication with the at least one intelligent electronic device, encrypt non-encrypted communications and transmit encrypted responses to the enterprise server;
  
  iv. a first cryptography chip disposed within the secure enclosure for decrypting messages from the enterprise server in the computing cloud and passing that message to the at least one intelligent electronic device, and encrypting responses from the at least one intelligent electronic device for transmission to the enterprise server in the computing cloud, wherein the first cryptography chip is in communication with the first processor;
  
  v. at least one server-side port in the intelligent electronic cryptographic module for;
  
  1. receiving a member of the group consisting of;
  
  at least one encrypted message, at least one non-encrypted message, or combinations thereof, from the enterprise server in the computing cloud;
  
  2. transmitting a member of the group consisting of;
  
  at least one encrypted response, at least one non-encrypted response, or combinations thereof to the enterprise server in the computing cloud; and
  
  3. at least one non-encrypted port in the intelligent electronic cryptographic module for;
  
  a. transmitting at least one decrypted message, the at least one non-encrypted message or combinations thereof from the intelligent electronic cryptographic module to the at least one intelligent electronic device; and
  
  b. receiving at least one non-encrypted response from the at least one intelligent electronic device; and
  
  wherein the at least one server-side port, the at least one non-encrypted port, or combinations thereof are adapted to engage at least two industry standard protocols simultaneously; and
  
  vi. wherein the at least one data storage in the computing cloud comprises computer instructions for instructing the processor to;
  
  1. perform as a soft remote terminal unit;
  
  2. select at least one protocol module for communication with the at least one intelligent electronic device, the enterprise server in the computing cloud, or combinations thereof;
  
  3. select at least one appropriate telemetry method for transmitting and receiving messages using at least one selected protocol module;
  
  4. at least once authenticate that the enterprise server in the computing cloud is authorized to transmit to the intelligent electronic cryptographic module forming an authenticated enterprise server in the computing cloud;
  
  5. at least once authenticating that the intelligent electronic cryptographic module is authorized to transmit to the enterprise server in the computing cloud;
  
  6. receive at least one encrypted message from the authenticated enterprise server in the computing cloud;
  
  7. decrypt at least one encrypted message transmitted from the authenticated enterprise server in the computing cloud using the intelligent electronic cryptographic module, forming at least one decrypted message;
  
  8. transmit at least one decrypted message to the at least one intelligent electronic device;
  
  9. receive at least one non-encrypted response from the at least one intelligent electronic device;
  
  10. encrypt at least one non-encrypted response from the at least one intelligent electronic device using the intelligent electronic cryptographic module, forming at least one encrypted response;
  
  or11. transmit at least one encrypted response to the enterprise server in the computing cloud.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The intelligent electronic cryptographic cloud computing system of claim 1, wherein the first cryptography chip is disposed within a first data storage of the intelligent electronic cryptographic module.
  - 3. The intelligent electronic cryptographic cloud computing system of claim 1, wherein the enterprise server in the computing cloud comprises a server processor, a server telemetry interface, a server port for receiving a second removable data storage device, wherein the second removable data storage device comprises a second cryptography chip, and further wherein the server processor is in communication with a server data storage in the computing cloud and the server data storage in the computing cloud comprises a server protocol module and a server connection module.
  - 4. The intelligent electronic cryptographic cloud computing system of claim 1, wherein the at least one encrypted message, the at least one non-encrypted message, or combinations thereof comprise at least one reconfiguration command for configuring the at least one intelligent electronic device, the intelligent electronic cryptographic module, the enterprise server in the computing cloud, or combinations thereof.
  - 5. The intelligent electronic cryptographic cloud computing system of claim 1, further comprising a telemetry interface in communication with the first processor and the enterprise server in the computing cloud.
  - 6. The intelligent electronic cryptographic cloud computing system of claim 1, wherein the first data storage of the intelligent electronic cryptographic module comprises removable memory, non-removable memory, flash memory, or combinations thereof.
  - 7. The intelligent electronic cryptographic cloud computing system of claim 1, wherein the at least one power supply of the intelligent electronic cryptographic module comprises a direct current source, an alternating current source, at least one rechargeable power source, at least one replaceable power source, at least one renewable power source, or combinations thereof.
  - 8. The intelligent electronic cryptographic cloud computing system of claim 1, wherein the first cryptography chip of the intelligent electronic cryptographic module comprises at least one encryption algorithm, at least one decryption algorithm, cryptographic tamper resistant memory, at least one key resident in the cryptographic tamper resistant memory, a random number generator, at least one certificate for digital signatures, an authentication module, or combinations thereof.
  - 9. The intelligent electronic cryptographic cloud computing system of claim 3, wherein the enterprise server in the computing cloud further comprises computer instructions for instructing the server processor to online configure the at least one intelligent electronic device.
  - 10. The intelligent electronic cryptographic cloud computing system of claim 1, wherein the first data storage of the intelligent electronic cryptographic module further comprises computer instructions for instructing the first processor to embed a first digital signature in the enterprise server in the computing cloud, embed a second digital signature in the intelligent electronic cryptographic module, and transmit and validate the first digital signature, the second digital signature, or combinations thereof, prior to encrypting non-encrypted responses, decrypting encrypted messages, transmitting encrypted responses, or transmitting decrypted messages.
  - 11. The intelligent electronic cryptographic cloud computing system of claim 1, further comprising means for wirelessly transmitting messages and responses between the at least one intelligent electronic device and the enterprise server in the computing cloud.
  - 12. The intelligent electronic cryptographic cloud computing system of claim 1, wherein the at least one server-side port, the at least one non-encrypted port, or combinations thereof is an interface adapted to engage a serial port, a cellular modem, a standard modem, a wire line modem, a satellite network, a Transfer Connection Protocol/Internet Protocol, an Ethernet, a radio network, a fiber-optic network, or combinations thereof.
  - 13. The intelligent electronic cryptographic cloud computing system of claim 1, wherein the at least two industry standard protocols are selected from the group consisting of:
    - a MODBUS, a DNP3.0, a BSAP™
      
      , a Megaco/H.248 protocol, simple message transfer protocol (SMTP), a short message service (SMS) protocol, a multimedia message service (MMS) protocol, an enhanced message service (EMS) protocol, a media gateway control protocol (MGCP), a SIP protocol, a H.323 protocol, an ISDN protocol, a PSTN protocol, and combinations thereof.
  - 14. The intelligent electronic cryptographic cloud computing system of claim 1, wherein encrypting and decrypting functions of the first cryptography chip are selectively activated and deactivated.
  - 15. The intelligent electronic cryptographic cloud computing system of claim 1, wherein the intelligent electronic cryptographic module further comprises computer instructions for instructing the first processor to:
    - receive at least one public exchange key from the enterprise server in the computing cloud;
      
      derive at least one session key;
      
      encrypt the at least one session key using the at least one public exchange key, forming at least one encrypted session key;
      
      transmit the at least one encrypted session key to the online configurable enterprise server in the computing cloud; and
      
      wherein the at least one encrypted session key is used to encrypt messages and responses transmitted between the enterprise server in the computing cloud and the intelligent electronic cryptographic module.
  - 16. The intelligent electronic cryptographic cloud computing system of claim 1, wherein the intelligent electronic cryptographic module further comprises computer instructions for instructing the first processor to:
    - derive at least one public exchange key and at least one private exchange key;
      
      transmit the at least one public exchange key to the enterprise server in the computing cloud;
      
      receive at least one encrypted session key from the enterprise server in the computing cloud;
      
      decrypt the at least one encrypted session key using the at least one private key;
      
      wherein the at least one encrypted session key is used to encrypt messages and responses transmitted between the enterprise server in the computing cloud and the intelligent electronic cryptographic module.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
DJ Osburn Management LLC
Original Assignee
DJ Inventions, LLC
Inventors
Osburn, Douglas C.
Primary Examiner(s)
Revak, Christopher

Application Number

US13/590,297
Time in Patent Office

1,323 Days
Field of Search

None
US Class Current

1/1
CPC Class Codes

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

H04L 67/10   in which an application is ...

Y04S 40/20   Information technology spec...

Intelligent electronic cryptographic cloud computing system

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

39 Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Intelligent electronic cryptographic cloud computing system

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

39 Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links