Methods for managing user information and devices thereof

US 9,036,822 B1
Filed: 02/15/2012
Issued: 05/19/2015
Est. Priority Date: 02/15/2012
Status: Active Grant

First Claim

Patent Images

1. A method for managing user information, the method comprising:

obtaining, by an application manager computing device, interposed between a client computing device and a server, at least one part of at least one cryptographic key comprising one or more parts, from a request by the client computing device for a user session, wherein a session state comprising location information for each of the one or more parts of the at least one cryptographic key is allocated during the user session;

retrieving, by the application manager computing device, at least one other part of the at least one cryptographic key based on the location information when the at least one cryptographic key is incomplete;

encrypting or decrypting, by the application manager computing device, user information with the at least one cryptographic key, wherein the same at least one cryptographic key is used between the application manager computing device and the client computing device during the user session;

authenticating, by the application manager computing device, the request based on the encryption or decryption of the user information; and

deleting, by the application manager computing device, the at least one cryptographic key only after completion of the user session.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, non-transitory computer readable medium and application manager computing device comprises obtaining at least one cryptographic key from a request by a client computing device for a user session. User information corresponding to a user is encrypted or decrypted using the cryptographic key. The request is authenticated based on encryption or decryption of the user information. The cryptographic key is deleted after the completion or termination of the user session.

83 Citations

21 Claims

1. A method for managing user information, the method comprising:
- obtaining, by an application manager computing device, interposed between a client computing device and a server, at least one part of at least one cryptographic key comprising one or more parts, from a request by the client computing device for a user session, wherein a session state comprising location information for each of the one or more parts of the at least one cryptographic key is allocated during the user session;
  
  retrieving, by the application manager computing device, at least one other part of the at least one cryptographic key based on the location information when the at least one cryptographic key is incomplete;
  
  encrypting or decrypting, by the application manager computing device, user information with the at least one cryptographic key, wherein the same at least one cryptographic key is used between the application manager computing device and the client computing device during the user session;
  
  authenticating, by the application manager computing device, the request based on the encryption or decryption of the user information; and
  
  deleting, by the application manager computing device, the at least one cryptographic key only after completion of the user session.
- View Dependent Claims (2, 3, 4, 5, 6, 19)
- - 2. The method as set forth in claim 1 further comprising:
    - creating, by the application manager computing device, the at least one cryptographic key and session identification information for the user session;
      
      storing, by the application manager computing device, the at least one cryptographic key in the client computing device; and
      
      caching, by the application manager computing device, the at least one cryptographic key and the session identification information during the request processing until the completion of the user session.
  - 3. The method as set forth in claim 2 wherein the storing further comprises:
    - splitting by the application manager computing device the at least one cryptographic key into the one or more parts and storing at least one part in the client computing device.
  - 4. The method as set forth in claim 2 wherein the creating further comprises:
    - creating, by the application manager computing device, the at least one cryptographic key for securing user information during the user session.
  - 5. The method as set forth in claim 1 further comprising:
    - creating, by the application manager computing device, a second cryptographic key after a predetermined time period within the user session.
  - 6. The method as set forth in claim 1 further comprising:
    - obtaining by the application manager computing device, the at least one part of the at least one cryptographic key from the client computing device and other parts of the at least one cryptographic key from one or more other locations.
  - 19. The method of claim 1, wherein the session state is based on a hash of the at least one cryptographic key.

7. A non-transitory computer readable medium having stored thereon instructions for managing user information comprising machine executable code which when executed by at least one processor, causes the processor to perform steps comprising:
- obtaining at least one part of at least one cryptographic key comprising one or more parts, from a request by a client computing device for a user session, wherein a session state comprising location information for each of the one or more parts of the at least one cryptographic key is allocated during the user session;
  
  retrieving at least one other part of the at least one cryptographic key based on the location information when the at least one cryptographic key is incomplete;
  
  encrypting or decrypting user information, stored on a server, with the at least one cryptographic key, wherein the same at least one cryptographic key is used between an application manager computing device and the client computing device during the user session;
  
  authenticating the request based on the encryption or decryption of the user information; and
  
  deleting the at least one cryptographic key only after completion of the user session.
- View Dependent Claims (8, 9, 10, 11, 12, 20)
- - 8. The medium as set forth in claim 7 further having stored thereon instructions that when executed by the processor cause the processor to perform steps further comprising:
    - creating the at least one cryptographic key and session identification information for the user session;
      
      storing the at least one cryptographic key at the client computing device; and
      
      caching the at least one cryptographic key and the session identification information during the request processing until the completion of the user session.
  - 9. The medium as set forth in claim 8 further having stored thereon instructions for the storing that when executed by the processor cause the processor to perform steps further comprising:
    - splitting the at least one cryptographic key into the one or more parts and storing at least one part in the client computing device.
  - 10. The medium as set forth in claim 8 further having stored thereon instructions for the creating that when executed by the processor cause the processor to perform steps further comprising:
    - creating the at least one cryptographic key for securing user information during the user session.
  - 11. The medium as set forth in claim 7 further having stored thereon instructions that when executed by the processor cause the processor to perform steps further comprising:
    - creating a second cryptographic key after a predetermined time period within the user session.
  - 12. The medium as set forth in claim 7 further having stored thereon instructions that when executed by the processor cause the processor to perform steps further comprising:
    - obtaining the at least one part of the at least one cryptographic key from the client computing device and other parts of the at least one cryptographic key from one or more other locations.
  - 20. The medium of claim 7, wherein the session state is based on a hash of the at least one cryptographic key.

13. An application manager computing device to manage user information, the device comprising:
- one or more processors;
  
  configurable logic; and
  
  a memory, the configurable logic and the memory coupled to the one or more processors, at least one of the configurable logic configured to implement or the one or more processors configured to be capable of executing programmed instructions comprising and stored in the memory to;
  
  obtain at least one part of at least one cryptographic key comprising one or more parts, from a request by a client computing device for a user session, wherein a session state comprising location information for each of the one or more parts of the at least one cryptographic key is allocated during the user session;
  
  retrieve at least one other part of the at least one cryptographic key based on the location information when the at least one cryptographic key is incomplete;
  
  encrypt or decrypting user information with the at least one cryptographic key, wherein the same at least one cryptographic key is used between the application manager computing device and the client computing device during the user session;
  
  authenticate the request based on the encryption or decryption of the user information; and
  
  delete the at least one cryptographic key only after completion of the user session.
- View Dependent Claims (14, 15, 16, 17, 18, 21)
- - 14. The device as set forth in claim 13 wherein the at least one of the configurable logic is further configured to implement or the one or more processors are further configured to be capable of executing programmed instructions comprising and stored in the memory to:
    - create the at least one cryptographic key and a session identification information for the user session;
      
      store the at least one cryptographic key at the client computing device; and
      
      cache the at least one cryptographic key and the session identification information during the request processing until the completion of the user session.
  - 15. The device as set forth in claim 14, wherein the at least one of the configurable logic is further configured to implement or the one or more processors are further configured to be capable of executing programmed instructions for the storing comprising and stored in the memory to:
    - split the at least one cryptographic key into the one or more parts and store at least one part in the client computing device.
  - 16. The device as set forth in claim 13 wherein the at least one of the configurable logic is further configured to implement or the one or more processors are further configured to be capable of executing programmed instructions comprising and stored in the memory to:
    - create the at least one cryptographic key for securing user information during the user session.
  - 17. The device as set forth in claim 13 wherein the at least one of the configurable logic is further configured to implement or the one or more processors are further configured to be capable of executing programmed instructions comprising and stored in the memory to:
    - create a second cryptographic key after a predetermined time period within the user session.
  - 18. The device as set forth in claim 13 wherein the at least one of the configurable logic is further configured to implement or the one or more processors are further configured to be capable of executing programmed instructions comprising and stored in the memory to:
    - the at least one part of the at least one cryptographic key from the client computing device and other parts of the at least one cryptographic key from one or more other locations.
  - 21. The device of claim 13, wherein the session state is based on a hash of the at least one cryptographic key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
F5 Networks, Inc. (F5 Incorporated)
Original Assignee
F5 Networks, Inc. (F5 Incorporated)
Inventors
Jain, Amit, Zhou, Dennis, Hughes, John Robert
Primary Examiner(s)
Okeke, Izunna

Application Number

US13/397,290
Time in Patent Office

1,189 Days
Field of Search
US Class Current

380/286
CPC Class Codes

H04L 9/14   using a plurality of keys o...

H04L 9/321   involving a third party or ...

H04L 9/3228   One-time or temporary data,...

Methods for managing user information and devices thereof

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

83 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Methods for managing user information and devices thereof

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

83 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links