System and method for wiping encrypted data on a device having file-level content protection
US-9237016-B2 · Jan 12, 2016 · US
Digital security bubble
US10038677B1 · US · B1
| Field | Value |
|---|---|
| Publication number | US-10038677-B1 |
| Application number | US-201715496187-A |
| Country | US |
| Kind code | B1 |
| Filing date | Apr 25, 2017 |
| Priority date | Jul 16, 2012 |
| Publication date | Jul 31, 2018 |
| Grant date | Jul 31, 2018 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A digital security bubble encapsulation is disclosed. A public key and a device identifier of at least one recipient is requested from a first server. A message containing one or more components is encrypted using a symmetric key. The symmetric key is encrypted with a public key received in response to the request. The encrypted message, the encrypted symmetric key, and the device identifier are encapsulated in a digital security bubble encapsulation. The digital security bubble encapsulation is transmitted to a second server.
First claim
Opening claim text (preview).
What is claimed is: 1. A system, comprising: a processor configured to: receive, at a first device, an encrypted encapsulation from a sender, wherein the encrypted encapsulation includes an encrypted communication, an encrypted first key, and a first identifier; determine whether the first device is permitted to access the encrypted encapsulation by comparing the first identifier received in the encrypted encapsulation with a second identifier related to one or more components of the first device; decrypt the encrypted first key using at least a second key when the first identifier matches the second identifier; decrypt the encrypted communication using the first key to produce a decrypted communication; and provide the decrypted communication to a recipient; a memory coupled to the processor and configured to provide the processor with instructions. 2. They system of claim 1 , wherein the first key is a symmetric key. 3. The system of claim 1 , wherein the second key is a private key of the recipient. 4. The system of claim 1 , wherein the encrypted encapsulation includes a plurality of recipients. 5. The system of claim 4 , wherein the encrypted encapsulation includes a plurality of first keys encrypted, in part, with a second key associated with each of the plurality of recipients. 6. The system of claim 1 , wherein the encrypted encapsulation includes at least one communication control option. 7. The system of claim 6 , wherein the at least one communication control option includes a time-to-live value for the communication. 8. The system of claim 7 , wherein the processor is further configured to: delete the decrypted communication when the time-to-live value expires. 9. A method, comprising: receiving, at a first device, an encrypted encapsulation from a second device, wherein the encrypted encapsulation includes an encrypted communication, an encrypted first key, and a first identifier; determining, at the first device, whether the first device is permitted to access the encrypted encapsulation by comparing the first identifier received in the encrypted encapsulation with a second identifier related to one or more components of the first device; decrypting, by the first device, the encrypted first key using at least a second key when the first identifier matches the second identifier; decrypting, by the first device, the encrypted communication using the first key to produce a decrypted communication; and providing, by the first device, the decrypted communication to a user of the first device. 10. The method of claim 9 , wherein the first key is a symmetric key. 11. The method of claim 9 , wherein the second key is a private key of the user. 12. The method of claim 9 , wherein the encrypted encapsulation includes a plurality of recipients. 13. The method of claim 12 , wherein the encrypted encapsulation includes a plurality of first keys encrypted, in part, with a second key associated with each of the plurality of recipients. 14. The method of claim 9 , further comprising: deleting, by the first device, the decrypted communication when a time-to-live value associated with the decrypted communication. 15. A non-transitory computer-readable medium comprising instructions that when, executed by at least one processor, perform the steps of: receiving, at a first device, an encrypted encapsulation from a second device, wherein the encrypted encapsulation includes an encrypted communication, an encrypted first key, and a first identifier; determining whether the first device is permitted to access the encrypted encapsulation by comparing the first identifier received in the encrypted encapsulation with a second identifier related to one or more components of the first device; decrypting the encrypted first key using at least a second key when the first identifier matches the second identifier; decrypting the encrypted communication using the first key to produce a decrypted communication; and providing the decrypted communication to a user of the first device. 16. The non-transitory computer-readable medium of claim 15 , wherein the first key is a symmetric key. 17. The non-transitory computer-readable medium of claim 15 , wherein the second key is a private key of the user. 18. The non-transitory computer-readable medium of claim 15 , wherein the encrypted encapsulation includes a plurality of recipients. 19. The non-transitory computer-readable medium of claim 18 , wherein the encrypted encapsulation includes a plurality of first keys encrypted, in part, with a second key associated with each of the plurality of recipients. 20. The non-transitory computer-readable medium of claim 15 , further comprising instructions for: deleting the decrypted communication when a time-to-live value expires.
Assignees
Inventors
Classifications
output devices, e.g. displays or monitors · CPC title
Several contacts: gestures triggering a specific function, e.g. scrolling, zooming, right-click, when the user establishes several contacts with the surface simultaneously; e.g. using several fingers or a combination of fingers and pen · CPC title
by partitioning the display area of the touch-screen or the surface of the digitising tablet into independently controllable areas, e.g. virtual keyboards or menus · CPC title
based on specific properties of the displayed interaction object or a metaphor-based environment, e.g. interaction with desktop elements like windows or icons, or assisted by a cursor's changing behaviour or appearance · CPC title
using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10038677B1 cover?
- A digital security bubble encapsulation is disclosed. A public key and a device identifier of at least one recipient is requested from a first server. A message containing one or more components is encrypted using a symmetric key. The symmetric key is encrypted with a public key received in response to the request. The encrypted message, the encrypted symmetric key, and the device identifier ar…
- Who is the assignee on this patent?
- Wickr Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/061. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Jul 31 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (B1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 12 related publications on this page (citations in our corpus or others sharing the same primary CPC).