Enhanced security when sending asynchronous messages

US 9,942,203 B2
Filed: 03/30/2015
Issued: 04/10/2018
Est. Priority Date: 03/30/2015
Status: Expired due to Fees

First Claim

Patent Images

1. A computer system for increasing security when sending a plurality of messages over a network connection, comprising:

one or more processors, one or more computer-readable memories, one or more computer-readable tangible storage medium, and program instructions stored on at least one of the one or more tangible storage medium for execution by at least one of the one or more processors via at least one of the one or more memories, wherein the computer system is capable of performing a method comprising;

receiving, within a client device, the plurality of messages asynchronously from an application thread running on the client device;

enqueuing the received plurality of messages in a staging queue within the client device, wherein the staging queue has an amount of memory assigned to the staging queue;

determining that the plurality of messages in the staging queue satisfies a batch threshold value, wherein the batch threshold value is based on the amount of memory assigned to the staging queue;

determining a new security key with a message destination based on determining that the plurality of messages on the staging queue satisfies the batch threshold value;

encrypting the enqueued plurality of messages based on the determined new security key, wherein encrypting the plurality of messages based on the determined new security key comprises encrypting each message within the plurality of messages based on the determined new security key; and

sending the encrypted plurality of messages as a batch from the client device to the message destination over the network connection, wherein a subsequent plurality of messages is encrypted using a different security key.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

According to one exemplary embodiment, a method for increasing security when sending a plurality of messages over a network connection is provided. The method may include determining if the plurality of messages on a staging queue satisfies a batch threshold value. The method may also include determining a security key with a message destination based on determining that the plurality of messages on the staging queue satisfies the batch threshold value. The method may then include encrypting the plurality of messages based on the determined security key. The method may further include sending the encrypted plurality of messages to the message destination over the network connection.

13 Citations

7 Claims

1. A computer system for increasing security when sending a plurality of messages over a network connection, comprising:
- one or more processors, one or more computer-readable memories, one or more computer-readable tangible storage medium, and program instructions stored on at least one of the one or more tangible storage medium for execution by at least one of the one or more processors via at least one of the one or more memories, wherein the computer system is capable of performing a method comprising;
  
  receiving, within a client device, the plurality of messages asynchronously from an application thread running on the client device;
  
  enqueuing the received plurality of messages in a staging queue within the client device, wherein the staging queue has an amount of memory assigned to the staging queue;
  
  determining that the plurality of messages in the staging queue satisfies a batch threshold value, wherein the batch threshold value is based on the amount of memory assigned to the staging queue;
  
  determining a new security key with a message destination based on determining that the plurality of messages on the staging queue satisfies the batch threshold value;
  
  encrypting the enqueued plurality of messages based on the determined new security key, wherein encrypting the plurality of messages based on the determined new security key comprises encrypting each message within the plurality of messages based on the determined new security key; and
  
  sending the encrypted plurality of messages as a batch from the client device to the message destination over the network connection, wherein a subsequent plurality of messages is encrypted using a different security key.
- View Dependent Claims (2, 3, 4)
- - 2. The computer system of claim 1, wherein message destination comprises a destination queue or a destination application.
  - 3. The computer system of claim 1, wherein the determined security key is a Secure Socket Layer (SSL) key or a Transport Layer Security (TSL) key.
  - 4. The computer system of claim 1, wherein sending the plurality of messages comprises sending each message within the plurality of messages in immediate succession.

5. A computer program product for increasing security when sending a plurality of messages over a network connection, comprising:
- one or more non-transitory computer-readable storage medium and program instructions stored on at least one of the one or more tangible storage medium, the program instructions executable by a processor, the program instructions comprising;
  
  program instructions to receive, within a client device, the plurality of messages asynchronously from an application thread running on the client device;
  
  program instructions to enqueue the received plurality of messages in a staging queue within the client device, wherein the staging queue has an amount of memory assigned to the staging queue;
  
  program instructions to determine that the plurality of messages in the staging queue satisfies a batch threshold value, wherein the batch threshold value is based on the amount of memory assigned to the staging queue;
  
  program instructions to determine a new security key with a message destination based on determining that the plurality of messages on the staging queue satisfies the batch threshold value;
  
  program instructions to encrypt the enqueued plurality of messages based on the determined new security key, wherein encrypting the plurality of messages based on the determined new security key comprises encrypting each message within the plurality of messages based on the determined new security key; and
  
  program instructions to send the encrypted plurality of messages as a batch from the client device to the message destination over the network connection, wherein a subsequent plurality of messages is encrypted using a different security key.
- View Dependent Claims (6, 7)
- - 6. The computer program product of claim 5, wherein message destination comprises a destination queue or a destination application.
  - 7. The computer program product of claim 5, wherein sending the plurality of messages comprises sending each message within the plurality of messages in immediate succession.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Hopkins, Graham D., Quigly, Timothy J., Saker, Luke D. C., Stirling, Craig H., White, Matthew B.
Primary Examiner(s)
Waliullah, Mohammed

Application Number

US14/672,927
Publication Number

US 20160294782A1
Time in Patent Office

1,107 Days
Field of Search
US Class Current
CPC Class Codes

H04L 49/90   Buffering arrangements

H04L 51/212   using filtering or selectiv...

H04L 63/0428   wherein the data content is...

H04L 63/06   for supporting key manageme...

H04L 63/166   at the transport layer

H04L 63/168   above the transport layer

Enhanced security when sending asynchronous messages

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

13 Citations

7 Claims

Specification

Solutions

Use Cases

Quick Links

Enhanced security when sending asynchronous messages

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

13 Citations

7 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links