Electronic data communication system with encryption for electronic messages
First Claim
1. A network server comprising:
- a data store operable to store encrypted electronic messages for a recipient comprising i) encrypted message data corresponding to a message for the recipient encrypted by a symmetric encryption algorithm using a session key and ii) encrypted session key data corresponding to the session key encrypted by an asymmetric encryption algorithm using a public key of the recipient;
a network interface operable to receive data from and transmit data to remote network devices; and
a processor operable, following receipt of a request to access an encrypted electronic message, to extract said encrypted session key data from the requested electronic message and forward the extracted encrypted session key data but not the requested encrypted electronic message to a remote network device.
0 Assignments
0 Petitions
Accused Products
Abstract
There is described an electronic data communication system in which encrypted mail messages for a recipient are sent in two parts: message data encrypted by a symmetric encryption algorithm using a session key and session key data encrypted by an asymmetric encryption algorithm using a public key associated with the recipient. If the recipient uses a webmail service to access the encrypted electronic mail message, the encrypted session key data is sent to a trusted third party server which has access to the private key of the user. The trusted third party server decrypts the encrypted session key using the private key of the user, and then sends the decrypted session key to a remote network device for decryption of the encrypted message.
44 Citations
7 Claims
-
1. A network server comprising:
-
a data store operable to store encrypted electronic messages for a recipient comprising i) encrypted message data corresponding to a message for the recipient encrypted by a symmetric encryption algorithm using a session key and ii) encrypted session key data corresponding to the session key encrypted by an asymmetric encryption algorithm using a public key of the recipient; a network interface operable to receive data from and transmit data to remote network devices; and a processor operable, following receipt of a request to access an encrypted electronic message, to extract said encrypted session key data from the requested electronic message and forward the extracted encrypted session key data but not the requested encrypted electronic message to a remote network device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification