Secure session capability using public-key cryptography without access to the private key

Invention Grant

US09385864B2 Secure session capability using public-key cryptography without access to the private key 有权

Please log in to see more content

Patent Title: Secure session capability using public-key cryptography without access to the private key
Application No.: US14630585

Application Date: 2015-02-24
Publication No.: US09385864B2

Publication Date: 2016-07-05
Inventor: Sébastien Andreas Henry Pahl , Matthieu Philippe François Tourne , Piotr Sikora , Ray Raymond Bejjani , Dane Orion Knecht , Matthew Browning Prince , John Graham-Cumming , Lee Hahn Holloway , Nicholas Thomas Sullivan , Albertus Strasheim
Applicant: CloudFlare, Inc.
Applicant Address: US CA San Francisco
Assignee: CLOUDFLARE, INC.
Current Assignee: CLOUDFLARE, INC.
Current Assignee Address: US CA San Francisco
Agency: Nicholson De Vos Webster & Elliott LLP
Main IPC: H04L29/06
IPC: H04L29/06 ; H04L9/08 ; H04L9/32

Secure session capability using public-key cryptography without access to the private key

Abstract:

A server establishes a secure session with a client device where a private key used in the handshake when establishing the secure session is stored in a different server. During the handshake procedure, the server proxies messages to/from the different server including a set of signed cryptographic parameters signed using the private key on the different server. The different server generates the master secret, and generates and transmits the session keys to the server that are to be used in the secure session for encrypting and decrypting communication between the client device and the server.

Public/Granted literature

US20160013935A1 SECURE SESSION CAPABILITY USING PUBLIC-KEY CRYPTOGRAPHY WITHOUT ACCESS TO THE PRIVATE KEY Public/Granted day:2016-01-14

Information query

Espacenet