System and method for processing attachments to messages sent to a mobile device
First Claim
1. A method of processing attachments to messages sent to a mobile device, the method comprising:
- after a message to be sent to the mobile device is received by one or more remote servers, receiving data associated with the message at the mobile device from the one or more remote servers;
wherein the message comprises a plurality of encrypted attachments;
wherein each encrypted attachment has been encrypted using a different one of a plurality of session keys, and each session key has been encrypted with a further encryption key such that the session key is decryptable with the further encryption key that resides on the mobile device and is not available to the remote server;
wherein the one or more remote servers are configured to initially withhold transmission of each attachment to the mobile device, and are configured to subsequently transmit an identified attachment to the mobile device if a request for the identified encrypted attachment is received; and
wherein the data received at the mobile device comprises data identifying an attachment structure for the message that identifies each of the plurality of attachments by a filename, and further comprises at least one encrypted session key; and
outputting the attachment structure at the mobile device.
4 Assignments
0 Petitions
Accused Products
Abstract
A system and method for processing attachments to messages sent to a mobile device is described herein. Embodiments described herein apply to encrypted messages comprising multiple message parts, in which different encryption keys (e.g. session keys) have been used to encrypt the different message parts. In at least one example embodiment, the encrypted session keys for every message content part comprising an attachment is received at the mobile device. In one embodiment, all of the encrypted session keys are stored together in a main message header. The mobile device may then decrypt the encrypted session key associated with a user requested attachment, and transmits the decrypted session key to one or more remote servers in an attachment request for use in decrypting the requested attachment. Data associated with the requested attachment, in decrypted form, is returned to the mobile device.
106 Citations
23 Claims
-
1. A method of processing attachments to messages sent to a mobile device, the method comprising:
-
after a message to be sent to the mobile device is received by one or more remote servers, receiving data associated with the message at the mobile device from the one or more remote servers; wherein the message comprises a plurality of encrypted attachments; wherein each encrypted attachment has been encrypted using a different one of a plurality of session keys, and each session key has been encrypted with a further encryption key such that the session key is decryptable with the further encryption key that resides on the mobile device and is not available to the remote server; wherein the one or more remote servers are configured to initially withhold transmission of each attachment to the mobile device, and are configured to subsequently transmit an identified attachment to the mobile device if a request for the identified encrypted attachment is received; and wherein the data received at the mobile device comprises data identifying an attachment structure for the message that identifies each of the plurality of attachments by a filename, and further comprises at least one encrypted session key; and outputting the attachment structure at the mobile device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A non-transitory computer-readable medium comprising instructions executable on a processor of a mobile device, wherein the processor is configured to implement a method of processing attachments to messages sent to the mobile device, the method comprising:
- after a message to be sent to the mobile device is received by one or more remote servers, receiving data associated with the message at the mobile device from the one or more remote servers;
wherein the message comprises a plurality of encrypted attachments;
wherein each encrypted attachment has been encrypted using a different one of a plurality of session keys, and each session key has been encrypted with a further encryption key such that the session key is decryptable with the further encryption key that resides on the mobile device and is not available to the remote server;
wherein the one or more remote servers are configured to initially withhold transmission of each attachment to the mobile device, and are configured to subsequently transmit an identified attachment to the mobile device if a request for the identified encrypted attachment is received; and
wherein the data received at the mobile device comprises data identifying an attachment structure for the message that identifies each of the plurality of attachments by a filename, and further comprises at least one encrypted session key; and
outputting the attachment structure at the mobile device.
- after a message to be sent to the mobile device is received by one or more remote servers, receiving data associated with the message at the mobile device from the one or more remote servers;
-
16. A mobile device configured to implement a method of processing attachments to messages sent to the mobile device, the mobile device comprising at least a processor and a memory, wherein the processor is configured to:
-
after a message to be sent to the mobile device is received by one or more remote servers, receive data associated with the message at the mobile device from the one or more remote servers; wherein the message comprises a plurality of encrypted attachments; wherein each encrypted attachment has been encrypted using a different one of a plurality of session keys, and each session key has been encrypted with a further encryption key such that the session key is decryptable with the further encryption key that resides on the mobile device and is not available to the remote server; wherein the one or more remote servers are configured to initially withhold transmission of each attachment to the mobile device, and are configured to subsequently transmit an identified attachment to the mobile device if a request for the identified encrypted attachment is received; and wherein the data received at the mobile device comprises data identifying an attachment structure for the message that identifies each of the plurality of attachments by a filename, and further comprises at least one encrypted session key; and output the attachment structure at the mobile device.
-
-
17. A system for processing attachments to messages, the system comprising:
-
a mobile device comprising at least a processor and a memory; wherein one or more remote servers are configured to transmit data associated with a message to the mobile device; wherein the processor is configured to; after a message to be sent to the mobile device is received by one or more remote servers, receive data associated with the message at the mobile device from the one or more remote servers; wherein the message comprises a plurality of encrypted attachments; wherein each encrypted attachment has been encrypted using a different one of a plurality of session keys, and each session key has been encrypted with a further encryption key such that the session key is decryptable with the further encryption key that resides on the mobile device and is not available to the remote server; wherein the one or more remote servers are configured to initially withhold transmission of each attachment to the mobile device, and are configured to subsequently transmit an identified attachment to the mobile device if a request for the identified encrypted attachment is received; and wherein the data received at the mobile device comprises data identifying an attachment structure for the message that identifies each of the plurality of attachments by a filename, and further comprises at least one encrypted session key; and output the attachment structure at the mobile device. - View Dependent Claims (18, 19, 20, 21, 22, 23)
-
Specification