Telecommunication method for securely exchanging data

US 9,344,410 B1
Filed: 10/31/2014
Issued: 05/17/2016
Est. Priority Date: 10/31/2014
Status: Active Grant

First Claim

Patent Images

1. A telecommunication method of securely exchanging unencrypted data between a telecommunications device and a first server computer system via a digital cellular wireless telecommunications network, wherein the telecommunications device is a battery powered mobile end user telecommunications device, wherein the method comprises:

encrypting the unencrypted data using a first encryption algorithm into first encrypted data by the telecommunications device;

sending the first encrypted data to a second server computer system via a first network connection of the digital cellular wireless telecommunications network by the telecommunications device;

storing the first encrypted data by the second server computer system;

sending an order request to the first server computer system via a second network connection of the digital cellular wireless telecommunications network by the telecommunications device;

sending a data publishing request to publish the unencrypted data to the second server computer system via the first network connection by the telecommunications device;

generating a cryptographic key pair by the second server computer system in response to the data publishing request, wherein the cryptographic key pair comprises a public key and a private key;

sending the first encrypted data, the public key, and the private key to the telecommunications device in response to the data publishing request via the first network connection by the second server computer system;

decrypting the first encrypted data into the unencrypted data by the telecommunications device;

encrypting the unencrypted data into second encrypted data using the public key by the telecommunications device;

sending the second encrypted data to the second server computer system via the first network connection by the telecommunications device;

generating a web service for providing the second encrypted data via an URL by the second server computer system;

sending the URL to the telecommunications device via the first network connection by the second server computer system;

sending the URL and the private key to the first server computer system via the second network connection by the telecommunications device;

requesting the second encrypted data from the second server computer system by the first server computer system using a wired network connection to access the web service at the URL;

sending the second encrypted data to the first server computer system by the second server computer system using the wired network connection in response to the request of the second encrypted data by the second server computer system;

decrypting the second encrypted data by the first server computer system into the unencrypted data using the private key; and

combining the order request with the unencrypted data by the first server computer system.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention provides for a telecommunication method of securely exchanging unencrypted data between a telecommunications device and a first server computer system via a digital cellular wireless telecommunications network, wherein the telecommunications device is a battery powered mobile end user telecommunications device, wherein the method comprises the steps of: encrypting the unencrypted data using a first encryption algorithm into first encrypted data, sending the first encrypted data to a second server computer system via a first network connection of the digital cellular wireless telecommunications network, storing the first encrypted data by the second server computer system, sending an order request to the first server computer system via a second network connection of the digital cellular wireless telecommunications network by the telecommunications device, sending a data publishing request to the second server computer system, generating a cryptographic key pair, sending the first encrypted data, the public key, and the private key to the telecommunications device, decrypting the first encrypted data into the unencrypted data, encrypting the unencrypted data into second encrypted data using the public key, sending the second encrypted data to the second, generating a web service for providing the second encrypted data via an URL, sending the URL to the telecommunications device, sending the URL and the private key, requesting the second encrypted data from the second server computer system, sending the second encrypted data to the first server computer system by the second server computer system using the wired network connection, decrypting the second encrypted data by the first server computer system into the unencrypted data, and combining the order request with the unencrypted data.

8 Citations

View as Search Results

15 Claims

1. A telecommunication method of securely exchanging unencrypted data between a telecommunications device and a first server computer system via a digital cellular wireless telecommunications network, wherein the telecommunications device is a battery powered mobile end user telecommunications device, wherein the method comprises:
- encrypting the unencrypted data using a first encryption algorithm into first encrypted data by the telecommunications device;
  
  sending the first encrypted data to a second server computer system via a first network connection of the digital cellular wireless telecommunications network by the telecommunications device;
  
  storing the first encrypted data by the second server computer system;
  
  sending an order request to the first server computer system via a second network connection of the digital cellular wireless telecommunications network by the telecommunications device;
  
  sending a data publishing request to publish the unencrypted data to the second server computer system via the first network connection by the telecommunications device;
  
  generating a cryptographic key pair by the second server computer system in response to the data publishing request, wherein the cryptographic key pair comprises a public key and a private key;
  
  sending the first encrypted data, the public key, and the private key to the telecommunications device in response to the data publishing request via the first network connection by the second server computer system;
  
  decrypting the first encrypted data into the unencrypted data by the telecommunications device;
  
  encrypting the unencrypted data into second encrypted data using the public key by the telecommunications device;
  
  sending the second encrypted data to the second server computer system via the first network connection by the telecommunications device;
  
  generating a web service for providing the second encrypted data via an URL by the second server computer system;
  
  sending the URL to the telecommunications device via the first network connection by the second server computer system;
  
  sending the URL and the private key to the first server computer system via the second network connection by the telecommunications device;
  
  requesting the second encrypted data from the second server computer system by the first server computer system using a wired network connection to access the web service at the URL;
  
  sending the second encrypted data to the first server computer system by the second server computer system using the wired network connection in response to the request of the second encrypted data by the second server computer system;
  
  decrypting the second encrypted data by the first server computer system into the unencrypted data using the private key; and
  
  combining the order request with the unencrypted data by the first server computer system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The method of claim 1, wherein the web service becomes inoperative after a predetermined duration.
  - 3. The method of claim 1, wherein the method further comprises of deleting any one of the following after combining the order request with the unencrypted data by the first server computer system:
    - the unencrypted data, the second encrypted data, the URL, and the private key, and combinations thereof.
  - 4. The method of claim 1, wherein the first server computer system is prevented from storing the unencrypted data after combining the order request by a security application, wherein reception of the second encrypted data by the second server computer system from the first server computer system using the wired network connection to access the web service at the URL is performed by the security application, wherein the decrypting the second encrypted data by the first server computer system into the unencrypted data using the private key is performed by the security application.
  - 5. The method of claim 4, wherein the reception of the order request from the telecommunications device to the first server computer system via the wired network connection is performed by the security application.
  - 6. The method of claim 1, wherein the method further comprises sending a data request from the first server computer system to the telecommunications device via the first network connection in response to the order request, wherein the method further comprises redacting the unencrypted data in accordance with the data request before encrypting the unencrypted data into the second encrypted data.
  - 7. The method of claim 1, wherein the unencrypted data comprises payment data.
  - 8. The method of claim 1, wherein the unencrypted data comprises payment address data.
  - 9. The method of claim 1, wherein the second server computer system is a cloud storage server.
  - 10. The method of claim 1, wherein the first server computer system is an online shop.
  - 11. The method of claim 1, wherein the method further comprises deleting the second encrypted data from the telecommunications device after sending the second encrypted data to the second server computer system via the first network connection.
  - 12. The method of claim 1, wherein the method further comprises deleting the unencrypted data from the telecommunications device after encrypting the unencrypted data into the second encrypted data using the public key.
  - 13. The method of claim 1, wherein the method further comprises of deleting the unencrypted data from the telecommunications device after encrypting the unencrypted data into the first encrypted data.
  - 14. The method of claim 1, wherein the method further comprises deleting the first encrypted data from the telecommunications device after sending the first encrypted data to the second server computer system.

15. A second server computer system for exchanging unencrypted data between a telecommunications device and a first server computer system via a digital cellular wireless telecommunications network, wherein the telecommunications device is a battery powered mobile end user telecommunications device, wherein the second server computer system comprises:
- a memory for storing machine executable instructions and a processor for executing the machine executable instructions,wherein execution of the machine executable instructions causes the processor to;
  
  receive first encrypted data via a first network connection of the digital cellular wireless telecommunications network from the telecommunications device;
  
  store the first encrypted data;
  
  receive a data publishing request to publish the unencrypted data via the first network connection from the telecommunications device;
  
  generate a cryptographic key pair by the second server computer system in response to the data publishing request, wherein the cryptographic key pair comprises a public key and a private key;
  
  sending the first encrypted data, the public key, and the private key to the telecommunications device in response to the data publishing request via the first network connection;
  
  receiving second encrypted data from the second server computer system via the first network connection from the communications device;
  
  generating a web service for providing the second encrypted data via an URL;
  
  sending the URL to the telecommunications device via the first network connection;
  
  receiving a request for the second encrypted data from the second server computer system from the first server computer system using a wired network connection to access the web service at the URL; and
  
  sending the second encrypted data to the first server computer system using the wired network connection in response to the request of the second encrypted data by the second server computer system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
SAP SE
Original Assignee
SAP SE
Inventors
Lin, Wei
Primary Examiner(s)
Rahman, Shawnchoy

Application Number

US14/529,182
Publication Number

US 20160127326A1
Time in Patent Office

564 Days
Field of Search
US Class Current

1/1
CPC Class Codes

H04L 2463/102   applying security measure f...

H04L 63/0428   wherein the data content is...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/168   above the transport layer

H04W 12/033   of the user plane, e.g. use...

H04W 12/04   Key management, e.g. using ...

Telecommunication method for securely exchanging data

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

8 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Telecommunication method for securely exchanging data

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

8 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links