公开(公告)号：US20240356738A1

公开(公告)日：2024-10-24

申请号：US18305039

申请日：2023-04-21

Applicant: JPMORGAN CHASE BANK, N.A.

Inventor： Omar AMER ,  Charles LIM ,  Marco PISTOIA ,  Andrew LANG ,  Vas RAJAN ,  Kaushik CHAKRABORTY ,  Saqib MALIK

IPC: H04L9/08

CPC classification number: H04L9/0827 ,  H04L9/085 ,  H04L9/0858

Abstract: Systems and methods for bridging gaps in cryptographic secret distribution using line-of-sight-secured networks are disclosed. In one embodiment, a system may include: a first physical location providing a cryptographic secret; a second physical location comprising a space-based vehicle transceiver that receives the cryptographic secret from the first physical location over a secure communication channel; a space-based vehicle that receives the cryptographic secret from the second physical location over a first line-of-sight communication channel; and a third physical location that receives the cryptographic secret from the space-based vehicle over a second line-of-sight communication channel, encrypts data with the cryptographic secret, and communicates the encrypted data to the first physical location over a communication network; wherein the first physical location receives the encrypted data and decrypts the encrypted data using the cryptographic secret.

公开(公告)号：US20250047651A1

公开(公告)日：2025-02-06

申请号：US18362595

申请日：2023-07-31

Applicant: JPMORGAN CHASE BANK, N.A.

Inventor： Omar AMER ,  Jefferson CHU ,  John S. COMBS ,  Andrew LANG ,  Charles LIM ,  Marco PISTOIA ,  Vas RAJAN ,  Ray VOSS

IPC: H04L9/40 ,  H04L9/08 ,  H04L9/14

Abstract: A method may include: receiving, by a webserver computer program, shared key material shared with a client application; receiving from a browser, a request for a secure connection; establishing a session with the browser over a first secure connection; establishing a shared secret key with the browser, wherein the browser creates a browser secret key encrypted with the shared secret key, encrypts the browser secret key with the shared secret key, and provides the browser secret key encrypted with the shared secret key and session information the client application over a second secure connection that is protected with the shared key material; decrypting the browser secret key encrypted with the shared secret key using the shared secret key; identifying the session with the browser from the session information; and establishing, end-to-end encryption on top of the second secure connection using the browser secret key or a derivation thereof.

公开(公告)号：US20240356741A1

公开(公告)日：2024-10-24

申请号：US18304892

申请日：2023-04-21

Applicant: JPMORGAN CHASE BANK, N.A.

Inventor： Omar AMER ,  Charles LIM ,  Marco PISTOIA ,  Andrew LANG ,  Vas RAJAN ,  Kaushik CHAKRABORTY ,  Saqib MALIK

IPC: H04L9/08 ,  H04L9/40

CPC classification number: H04L9/0855 ,  H04L63/166

Abstract: Systems and methods for secure cryptographic secret distribution are disclosed. In one embodiment, a method for secure cryptographic secret distribution may include: (1) receiving, at a key relay station, a cryptographic secret from a webserver over a first communication network; (2) storing, by the key relay station, the cryptographic secret; (3) authenticating, by the key relay station, an end user via an end user electronic device; and (4) securely communicating, by the key relay station, the cryptographic secret to the end user electronic device. The end user electronic device is configured to store the cryptographic secret in secure storage on the end user electronic device, to encrypt data with the cryptographic secret, and to communicate the encrypted data to the webserver over a second communication network.

公开(公告)号：US20240291640A1

公开(公告)日：2024-08-29

申请号：US18174768

申请日：2023-02-27

Applicant: JPMORGAN CHASE BANK, N.A.

Inventor： Omar AMER ,  John S. COMBS ,  Albert HUANG ,  Andrew LANG ,  Charles LIM ,  Marco PISTOIA

IPC: H04L9/08 ,  H04B10/70

CPC classification number: H04L9/0852 ,  H04B10/70 ,  H04L9/0819 ,  H04L9/085 ,  H04L9/0891

Abstract: Systems and methods for quantum key distribution (QKD) secured vault-based application-to-application communication are disclosed. A method may include: receiving, at a vault application at a first facility, a request for a shared quantum key for communication of a secret in a vault at the first facility to an application at a second facility; distilling, by quantum devices at the first and the second facility and over a quantum communication channel, a shared quantum key using a QKD protocol; receiving, by an encryptor at the first facility, the secret; encrypting, by the encryptor at the first facility, the secret with the shared quantum key, communicating, the encrypted secret to the second facility over a communication network; decrypting, by an encryptor at the second facility, the encrypted secret with the shared quantum key; and receiving, by the application at the second facility, the secret from the encryptor at the second facility.