Invention Grant
- Patent Title: Secure session capability using public-key cryptography without access to the private key
-
Application No.: US17036988Application Date: 2020-09-29
-
Publication No.: US11546309B2Publication Date: 2023-01-03
- Inventor: Sébastien Andreas Henry Pahl , Matthieu Philippe François Tourne , Piotr Sikora , Ray Raymond Bejjani , Dane Orion Knecht , Matthew Browning Prince , John Graham-Cumming , Lee Hahn Holloway , Albertus Strasheim
- Applicant: Cloudflare, Inc.
- Applicant Address: US CA San Francisco
- Assignee: Cloudflare, Inc.
- Current Assignee: Cloudflare, Inc.
- Current Assignee Address: US CA San Francisco
- Agency: Nicholson De Vos Webster & Elliott LLP
- Main IPC: H04L29/06
- IPC: H04L29/06 ; H04L9/40 ; G06F21/33 ; H04L9/08 ; H04L9/32
Abstract:
A first server receives a set of cryptographic parameters from a second server. The set of cryptographic parameters is received from the second server as part of a secure session establishment between a client device and the second server. The first server accesses a private key that is not stored on the second server. The first server signs the set of cryptographic parameters using the private key. The first server transmits the signed set of cryptographic parameters to the second server. The first server receives, from the second server, a request to generate a premaster secret using a value generated by the second server that is included in the request and generates the premaster secret. The first server transmits the premaster secret to the second server for use in the secure session establishment between the client device and the second server.
Public/Granted literature
- US20210014204A1 SECURE SESSION CAPABILITY USING PUBLIC-KEY CRYPTOGRAPHY WITHOUT ACCESS TO THE PRIVATE KEY Public/Granted day:2021-01-14
Information query
