System, apparatus and method for encryption and decryption of data transmitted over a network
First Claim
1. A method comprising:
- receiving input text at an intermediate module from a client device;
processing said input text at the intermediate module to obtain processed text, wherein said processing comprises including a bait in said processed text;
transmitting the processed text to the server, wherein the server is adapted to transform text received from the client device by applying at least one of a plurality of transformations;
upon request, receiving at said intermediate module transformed processed text from the server, said server having applied at least one of said plurality of transformations to said processed text to obtain said transformed processed text; and
determining by said intermediate module at least one of said transformations applied by said server based on a comparison between the bait in the processed text and the bait in the transformed processed text.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and system for securing data transmitted between a client device and a server by obtaining input text at an intermediate module, processing the input text to obtain processed text, and transmitting the processed text to the server. According to one embodiment of the invention, the intermediate module may add excess information (referred to herein as bait) to encrypted user data in known locations. Such bait may be used when processed user data is received at the intermediate module in order to infer the kind of transformation applied to processed user data. Non-limiting examples of transformations for which bait may be used are application of a certain character encoding scheme and HTML tag elimination.
-
Citations
16 Claims
-
1. A method comprising:
-
receiving input text at an intermediate module from a client device; processing said input text at the intermediate module to obtain processed text, wherein said processing comprises including a bait in said processed text; transmitting the processed text to the server, wherein the server is adapted to transform text received from the client device by applying at least one of a plurality of transformations; upon request, receiving at said intermediate module transformed processed text from the server, said server having applied at least one of said plurality of transformations to said processed text to obtain said transformed processed text; and determining by said intermediate module at least one of said transformations applied by said server based on a comparison between the bait in the processed text and the bait in the transformed processed text. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system for securing data transmitted between a client device and a server, wherein the server is adapted to transform text received from said client device by applying at least one of a plurality of transformations, said system comprising:
-
a memory; and a controller, the controller configured to; receive input text; process said input text to obtain processed text by including a bait in said processed text; transmit the processed text to the server; upon request, receive transformed processed text from the server, said server having applied at least one of said plurality of transformations to said processed text to obtain said transformed processed text; and determine at least one of said transformations applied by said server based on a comparison between the bait in the processed text and the bait in the transformed processed text. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
Specification