Methods of exchanging secure messages
First Claim
1. A method for receiving a secure message pertaining to an electronic transaction conducted over an electronic network having a server and a portable electronic authorization device, comprising:
- Receiving at said portable electronic authorization device first digital data, said first digital data representing said secure message; and
Searching for a share secret from a share secret table in said portable electronic authorization device;
If said share secret is found, decrypt said first digital data;
otherwise compute said share secret in said portable electronic authorization device.
6 Assignments
0 Petitions
Accused Products
Abstract
The invention enables a registered PEAD user to exchange a secure message with another registered PEAD user by using the user ID and the user public key information in the server. The sender can retrieve the public key information from the server 1201 using the receiver'"'"'s user ID as an index; then the sender can derive the shared secret using the receiver'"'"'s public key. The sender then can encrypt the message with the shared secret and send it over to a server with the other PEAD user'"'"'s (receiver'"'"'s) ID appended with the sender'"'"'s user ID over the wireless network and/or Internet. The server then stores the message and forwards the message to the receiver once the receiver'"'"'s PEAD is polling for messages. (It is understood in the art that the server can push the messages to the receiver'"'"'s PEAD).
The receiving PEAD user can use the sender'"'"'s PEAD user ID and sender'"'"'s public key information to derive the shared secret to decrypt a received secure message. Once a shared secret is computed or established by protocol between two users, that shared secret can be saved in the PEAD for future communication encryption/decryption usage.
127 Citations
17 Claims
-
1. A method for receiving a secure message pertaining to an electronic transaction conducted over an electronic network having a server and a portable electronic authorization device, comprising:
-
Receiving at said portable electronic authorization device first digital data, said first digital data representing said secure message; and
Searching for a share secret from a share secret table in said portable electronic authorization device;
If said share secret is found, decrypt said first digital data;
otherwise compute said share secret in said portable electronic authorization device.
-
-
2. A method for transmitting a secure message pertaining to an electronic transaction conducted over an electronic network having a server and a portable electronic authorization device, comprising:
-
Searching for a share secret from a share secret table in said portable electronic authorization device;
If said share secret is found, encrypt first digital data;
otherwise compute said share secret in said portable electronic authorization device.Transmitting from said portable electronic authorization device said encrypted first digital data, said encrypted first digital data representing said secure message.
-
-
3. A method for receiving a secure message and approving the transaction pertaining to an electronic transaction conducted over a network having a server and a portable electronic authorization device, comprising:
-
Receiving at said portable electronic authorization device first digital data, said first digital data representing said secure message; and
Searching for a share secret from a share secret table in said portable electronic authorization device;
If said share secret is found, decrypt said first digital data;
otherwise compute said share secret in said portable electronic authorization device;
If a user approve said secure message, by pressing a button, generate a second digital data with a user information and a digital signature generated by said portable electronic authorization device;
Transmitting said second digital data to said electronic transaction system.
-
-
4. A method for transmitting a secure message and approving the transaction pertaining to an electronic transaction conducted over an electronic network having a server and a portable electronic authorization device, comprising:
-
If a user approve first digital data, by pressing a button, generate a digital data including a user information and a digital signature generated by said portable electronic authorization device;
Searching for a share secret from a share secret table in said portable electronic authorization device;
Transmitting at said portable electronic authorization device said encrypted second digital data, said encrypted second digital data representing said secure message. - View Dependent Claims (9)
-
-
5. A method of exchanging secured messages between first and second registered PEAD users over the internet and a server comprising the steps of obtaining public key information using the receiver'"'"'s user ID as an index;
-
deriving a shared secret using the receiver'"'"'s public key'"'"';
the sender then encrypting a message with the shared secret and sending it with the receiver'"'"'s ID appended with the user'"'"'s ID;
then the receiving PEAD user using the sender'"'"'s user ID and sender'"'"'s public key information to derive the shared secret. - View Dependent Claims (6, 7, 8, 10, 11, 12, 13, 14, 15, 16, 17)
-
Specification