Server verification of secure electronic messages

US 9,398,023 B2
Filed: 07/27/2015
Issued: 07/19/2016
Est. Priority Date: 08/10/2004
Status: Active Grant

First Claim

Patent Images

1. A non-transitory computer readable medium having stored thereon instructions which, when executed by a processor comprised in a server, result in:

receiving a digitally signed message comprising at least a first message part and a second message part, the first message part immediately preceding the second message part in the message;

removing the first message part from the message;

sending, to a mobile device, the message comprising the second message part and with the first message part removed;

applying a hashing function to the first message part;

after applying the hashing function to the first message part, determining a hash context of the hashing function associated with the first message part; and

sending the hash context of the hashing function associated with the first message part to the mobile device, wherein the hash context of the hash function associated with the first message part is usable by the mobile device as a starting context for hashing the second message part at the mobile device.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods for processing encoded messages within a wireless communications system are disclosed. A server within the wireless communications system determines whether the size of an encoded message is too large for a wireless communications device. If the message is too large, the server removes part of the message and sends an abbreviated message to the wireless device, together with additional information relating to processing of the encoded message, such as, for example, hash context values, that assist the wireless communications device in verifying the abbreviated message.

132 Citations

17 Claims

1. A non-transitory computer readable medium having stored thereon instructions which, when executed by a processor comprised in a server, result in:
- receiving a digitally signed message comprising at least a first message part and a second message part, the first message part immediately preceding the second message part in the message;
  
  removing the first message part from the message;
  
  sending, to a mobile device, the message comprising the second message part and with the first message part removed;
  
  applying a hashing function to the first message part;
  
  after applying the hashing function to the first message part, determining a hash context of the hashing function associated with the first message part; and
  
  sending the hash context of the hashing function associated with the first message part to the mobile device, wherein the hash context of the hash function associated with the first message part is usable by the mobile device as a starting context for hashing the second message part at the mobile device.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The non-transitory computer readable medium of claim 1, wherein the message comprises a third message part immediately preceding the first message part in the message, and wherein the instructions, when executed by the processor at the server, further result in:
    - applying the hashing function to the third message part;
      
      after applying the hashing function to the third message part, determining a hash context of the hashing function associated with the third message part; and
      
      sending the hash context of the hashing function associated with the third message part with the hash context of the hashing function associated with the first message part to the mobile device, wherein the hash context of the hashing function associated with the third message part is usable by the mobile device for comparison with a device-computed hash context for the third message part,wherein the first message part is used by the mobile device as a starting context for hashing the second message part at the mobile device after determining that the hash context of the hashing function associated with the third message part matches the device-computed hash context for the third message part.
  - 3. The non-transitory computer readable medium of claim 2, wherein the hash context of the hashing function associated with the third message part and the hash context of the hashing function associated with the first message part are sent with the message to the mobile device, in place of the first message part.
  - 4. The non-transitory computer readable medium of claim 2, wherein the message comprises a digital signature, and wherein the hashing function applied to the third message part is identical to a hashing function used to generate the digital signature.
  - 5. The non-transitory computer readable medium of claim 1, wherein the instructions, when executed by the processor at the server, further result in:
    - determining a size of the digitally signed message received;
      
      if the size is not above a threshold, sending the message to the mobile device without removing the first message part; and
      
      if the size is above the threshold, removing the first message part, sending the message comprising the second message part and with the first message part removed to the mobile device, applying the hashing function to the first message part, determining the hash context and sending the hash context to the mobile device.
  - 6. The non-transitory computer readable medium of claim 1, wherein the message comprises an attachment, and wherein the first message part comprises the attachment.
  - 7. The non-transitory computer readable medium of claim 1, wherein the message comprises a digital signature, and wherein the hashing function applied to the first message part is identical to a hashing function used to generate the digital signature.

8. A non-transitory computer readable medium having stored thereon instructions which, when executed by a processor comprised in a mobile device, result in:
- receiving, from a server, a message comprising at least a second message part and a digital signature, wherein a first message part that immediately preceded the second message part in the message as received by the server has been removed from the message by the server;
  
  receiving a hash context of a hashing function associated with the first message part;
  
  hashing the second message part of the message using the hash context of the hashing function associated with the first message part as a starting context for hashing the second message part; and
  
  verifying the digital signature after hashing the second message part of the message.
- View Dependent Claims (9, 10, 11, 12)
- - 9. The non-transitory computer readable medium of claim 8, wherein the message comprises a third message part, and wherein the instructions, when executed by the processor comprised in the mobile device, further result in:
    - receiving, from the server, a hash context of the hashing function associated with the third message part with the hash context of the hashing function associated with the first message part;
      
      hashing the third message part;
      
      computing a device-computed hash context for the third message part after hashing the third message part;
      
      comparing the hash context of the hashing function associated with the third message part with the device-computed hash context for the third message part; and
      
      performing hashing of the second message part of the message and verifying the digital signature, after determining that the hash context of the hashing function associated with the third message part matches the device-computed hash context for the third message part.
  - 10. The non-transitory computer readable medium of claim 9, wherein the third message part immediately preceded the first message part in the message as received by the server, and wherein the hash context of the hashing function associated with the third message part and the hash context of the hashing function associated with the first message part are received with the message at the mobile device, in place of the first message part.
  - 11. The non-transitory computer readable medium of claim 9, wherein the hashing function applied to the third message part is identical to a hashing function used to generate the digital signature.
  - 12. The non-transitory computer readable medium of claim 8, wherein the second message part is hashed using a hashing function identical to a hashing function used to generate the digital signature.

13. A mobile device comprising:
- a processor;
  
  memory coupled to the processor, the memory to store data required for decrypting encrypted messages;
  
  a wireless network communication interface coupled to the processor, the wireless network communication interface operative to receive a message from a server, the message comprising at least a second message part and a digital signature, wherein a first message part that immediately preceded the second message part in the message as received by the server has been removed from the message by the server, and operative to receive from the server a hash context of a hashing function associated with the first message part,wherein the processor is operative to hash the second message part using the hash context as a starting context for hashing the second message part, and the processor is operative to verify the digital signature after hashing the second message part.
- View Dependent Claims (14, 15, 16, 17)
- - 14. The mobile device of claim 13, wherein the message comprises a third message part, the wireless network communication interface is operative to receive from the server a hash context of the hashing function associated with the third message part, and the processor is operative to:
    - hash the third message part;
      
      compute a device-computed hash context for the third message part after hashing the third message part;
      
      compare the hash context of the hashing function associated with the third message part received from the server with the device-computed hash context for the third message part; and
      
      perform hashing of the second message part and verifying the digital signature after determining that the hash context of the hashing function associated with the third message part received from the server matches the device-computed hash context for the third message part.
  - 15. The mobile device of claim 14, wherein the third message part immediately preceded the first message part in the message as received by the server, and wherein the hash context of the hashing function associated with the third message part and the hash context of the hashing function associated with the first message part are received with the message at the mobile device, in place of the first message part.
  - 16. The mobile device of claim 14, wherein the hashing function applied to the third message part is identical to a hashing function used to generate the digital signature.
  - 17. The mobile device of claim 13, wherein the second message part is hashed using a hashing function identical to a hashing function used to generate the digital signature.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Malikie Innovations Limited (Key Patent Innovations Limited)
Original Assignee
Blackberry Limited
Inventors
Brown, Michael K., Brown, Michael S., Adams, Neil P., Kirkup, Michael G., Little, Herbert A.
Primary Examiner(s)
Hailu, Teshome

Application Number

US14/809,854
Publication Number

US 20150334120A1
Time in Patent Office

358 Days
Field of Search

713/170
US Class Current

1/1
CPC Class Codes

H04L 2209/80   Wireless network architectu...

H04L 51/063   Content adaptation, e.g. re...

H04L 51/58   Message adaptation for wire...

H04L 63/12   Applying verification of th...

H04L 9/12   Transmitting and receiving ...

H04L 9/321   involving a third party or ...

H04L 9/3236   using cryptographic hash fu...

H04L 9/3247   involving digital signatures

H04L 9/3268   using certificate validatio...

H04W 12/106   Packet or message integrity

Server verification of secure electronic messages

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

132 Citations

17 Claims

Specification

Use Cases

Quick Links

Others

Server verification of secure electronic messages

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

132 Citations

17 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others