System and method for processing encoded messages for exchange with a mobile data communication device

US 8,527,767 B2
Filed: 11/01/2010
Issued: 09/03/2013
Est. Priority Date: 06/12/2001
Status: Expired due to Term

First Claim

Patent Images

1. A method for processing an encrypted message at a host system before the encrypted message is transmitted to a communication device, the method comprising:

receiving the encrypted message at the host system, the encrypted message comprising an encrypted message portion and at least one encrypted session key;

extracting, from the encrypted message, a selected one of the at least one encrypted session key, wherein the selected encrypted session key is associated with the communication device;

transmitting a message comprising the selected encrypted session key to the communication device;

receiving a decrypted session key from the communication device, wherein the selected encrypted session key was decrypted at the communication device to obtain the decrypted session key;

decrypting the encrypted message portion at the host system using the decrypted session key to generate a decrypted message portion;

processing the decrypted message portion;

after processing the decrypted message portion, re-encrypting the decrypted message portion at the host system to generate a re-encrypted message; and

transmitting the re-encrypted message to the communication device.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method are provided for pre-processing encrypted and/or signed messages at a host system before the message is transmitted to a wireless mobile communication device. The message is received at the host system from a message sender. There is a determination as to whether any of the message receivers has a corresponding wireless mobile communication device. For each message receiver that has a corresponding wireless mobile communication device, the message is processed so as to modify the message with respect to one or more encryption and/or authentication aspects. The processed message is transmitted to a wireless mobile communication device that corresponds to the first message receiver. The system and method may include post-processing messages sent from a wireless mobile communications device to a host system. Authentication and/or encryption message processing is performed upon the message. The processed message may then be sent through the host system to one or more receivers.

134 Citations

19 Claims

1. A method for processing an encrypted message at a host system before the encrypted message is transmitted to a communication device, the method comprising:
- receiving the encrypted message at the host system, the encrypted message comprising an encrypted message portion and at least one encrypted session key;
  
  extracting, from the encrypted message, a selected one of the at least one encrypted session key, wherein the selected encrypted session key is associated with the communication device;
  
  transmitting a message comprising the selected encrypted session key to the communication device;
  
  receiving a decrypted session key from the communication device, wherein the selected encrypted session key was decrypted at the communication device to obtain the decrypted session key;
  
  decrypting the encrypted message portion at the host system using the decrypted session key to generate a decrypted message portion;
  
  processing the decrypted message portion;
  
  after processing the decrypted message portion, re-encrypting the decrypted message portion at the host system to generate a re-encrypted message; and
  
  transmitting the re-encrypted message to the communication device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, wherein the encrypted message portion comprises a message that was signed and then encrypted, wherein the encrypted message portion comprises an encrypted digital signature, and wherein the processing comprises decrypting the encrypted digital signature to generate a decrypted digital signature.
  - 3. The method of claim 2, further comprising verifying the decrypted digital signature at the host system.
  - 4. The method of claim 3, further comprising modifying the decrypted message portion to comprise an indication that the decrypted message portion had been signed.
  - 5. The method of claim 3, further comprising modifying the decrypted message portion to comprise an indication of whether the decrypted digital signature was verified.
  - 6. The method of claim 1, wherein the encrypted message comprises a message that was encrypted and then signed, wherein the encrypted message comprises a non-encrypted digital signature, and wherein the processing comprises verifying the decrypted digital signature at the host system.
  - 7. The method of claim 6, further comprising modifying the decrypted message portion to comprise an indication that the decrypted message portion had been signed.
  - 8. The method of claim 6, further comprising modifying the decrypted message portion to comprise an indication of whether the decrypted digital signature was verified.
  - 9. The method of claim 1, wherein the communication device is a mobile device.

10. A system for processing an encrypted message before the encrypted message is transmitted to a communication device, the system comprising:
- a memory; and
  
  a processor, the processor configured to;
  
  receive the encrypted message at the system, the encrypted message comprising an encrypted message portion and at least one encrypted session key;
  
  extract, from the encrypted message, a selected one of the at least one encrypted session key, wherein the selected encrypted session key is associated with the communication device;
  
  transmit a message comprising the selected encrypted session key to the communication device;
  
  receive a decrypted session key from the communication device, wherein the selected encrypted session key was decrypted at the communication device to obtain the decrypted session key;
  
  decrypt the encrypted message portion at the system using the decrypted session key to generate a decrypted message portion;
  
  process the decrypted message portion;
  
  after processing the decrypted message portion, re-encrypt the decrypted message portion at the system to generate a re-encrypted message; and
  
  transmit the re-encrypted message to the communication device.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. The system of claim 10, wherein the encrypted message portion comprises a message that was signed and then encrypted, wherein the encrypted message comprises an encrypted digital signature, and wherein processing the decrypted message portion comprises decrypting the encrypted digital signature to generate a decrypted digital signature.
  - 12. The system of claim 11, wherein the processor is further configured to verify the decrypted digital signature at the host system.
  - 13. The system of claim 12, wherein the processor is further configured to modify the decrypted message portion to comprise an indication that the decrypted message had been signed.
  - 14. The system of claim 12, wherein the processor is further configured to modify the decrypted message portion to comprise an indication of whether the decrypted digital signature was verified.
  - 15. The system of claim 10, wherein the encrypted message comprises a message that was encrypted and then signed, and wherein the encrypted message comprises a non-encrypted digital signature, and wherein processing the decrypted message portion comprises verifying the decrypted digital signature at the host system.
  - 16. The system of claim 15, wherein the processor is further configured to modify the decrypted message portion to comprise an indication that the decrypted message portion had been signed.
  - 17. The system of claim 15, wherein the processor is further configured to modify the decrypted message portion to comprise an indication of whether the decrypted digital signature was verified.
  - 18. The system of claim 10, wherein the communication device is a mobile device.

19. A non-transitory computer readable medium storing instructions executable by a processor of a mobile device, the instructions when executed for carrying out a method for processing an encrypted message at a host system before the encrypted message is transmitted to a communication device, the method comprising:
- receiving the encrypted message at the host system, the encrypted message comprising an encrypted message portion and at least one encrypted session key;
  
  extracting, from the encrypted message, a selected one of the at least one encrypted session key, wherein the selected encrypted session key is associated with the communication device;
  
  transmitting a message comprising the selected encrypted session key to the communication device;
  
  receiving a decrypted session key from the communication device, wherein the selected encrypted session key was decrypted at the communication device to obtain the decrypted session key;
  
  decrypting the encrypted message portion at the host system using the decrypted session key to generate a decrypted message portion;
  
  processing the decrypted message portion;
  
  after processing the decrypted message portion, re-encrypting the decrypted message portion at the host system to generate a re-encrypted message; and
  
  transmitting the re-encrypted message to the communication device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Malikie Innovations Limited (Key Patent Innovations Limited)
Original Assignee
Blackberry Limited
Inventors
Brown, Michael Stephen, Adams, Neil Patrick, Brown, Michael Kenneth, Kirkup, Michael Grant, Little, Herbert Anthony
Primary Examiner(s)
Parthasarathy, Pramila

Application Number

US12/916,929
Publication Number

US 20110231646A1
Time in Patent Office

1,037 Days
Field of Search

None
US Class Current

713/170
CPC Class Codes

G06Q 10/107   Computer-aided management o...

H04L 12/189   in combination with wireles...

H04L 51/066   Format adaptation, e.g. for...

H04L 51/58   Message adaptation for wire...

H04L 63/0428   wherein the data content is...

H04L 63/0442   wherein the sending and rec...

H04L 63/062   for key distribution, e.g. ...

H04L 63/0823   using certificates cryptogr...

H04L 63/101   Access control lists [ACL]

H04L 63/126   the source of the received ...

H04L 67/04   specially adapted for termi...

H04L 67/565   Conversion or adaptation of...

H04L 67/5651   Reducing the amount or size...

H04L 69/329   in the application layer [O...

H04L 9/3247   involving digital signatures

H04W 12/02   Protecting privacy or anony...

H04W 12/033   of the user plane, e.g. use...

H04W 12/04   Key management, e.g. using ...

H04W 12/06   Authentication

H04W 24/02   Arrangements for optimising...

H04W 4/16 : Communication-related suppl...

H04W 40/02 : Communication route or path...

View All

System and method for processing encoded messages for exchange with a mobile data communication device

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

134 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for processing encoded messages for exchange with a mobile data communication device

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

134 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links