US2015089220A1PendingUtilityA1

Technique For Bypassing an IP PBX

51
Assignee: PATEL DIPENPriority: Oct 31, 2009Filed: Sep 24, 2013Published: Mar 26, 2015
Est. expiryOct 31, 2029(~3.3 yrs left)· nominal 20-yr term from priority
H04L 65/1053H04L 63/0428H04L 9/0841H04W 12/082H04W 12/0431G06F 12/1408H04L 63/0442H04L 65/1069H04L 63/061H04L 63/062H04W 12/04H04L 63/101H04L 9/14H04L 9/3252H04L 2209/24H04L 9/321
51
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

The invention includes methods and systems for establishing communication between a first device and a second device. The first device forming a data packet and appending the data packet with a unique secure hash of the second device's public key. Next, the first device authenticating with a server. Next, the first device sending the appended data packet with the unique secure hash of the second device's public key to the server with the server storing it in memory. Next, the second device connecting and identifying itself to the server. Next, the second device authenticating with the server. Next, having positively confirmed the second device's identity, the server delivering all data packets with the unique secure hash of the second device's public key to the second device. Finally, the second device decrypting the data packets using the second device's private key.

Claims

exact text as granted — not AI-modified
What is claimed is: 
     
         1 . A method for establishing communication between a first device and a second device, comprising:
 using a first device, sending an initiation request to a server, the initiation request for initiating a connection with the second device;   receiving, from the server, responsive to the initiation request, an address of a proxy;   sending a message to the second device, the message including the address of the proxy; and   connecting with the second device, at the address of the proxy.   
     
     
         2 . The method of  claim 1 , wherein the message sent to the second device is encrypted by the first device with the second device's public key forming a data packet, the data packet comprising the encrypted message and the second device's public key. 
     
     
         3 . The method of  claim 2 , wherein the first device appends the data packet with a unique secure hash of the second device's public key. 
     
     
         4 . The method of  claim 3 , wherein the first device sends the appended data packet with the unique secure hash of the second device's public key to the server. 
     
     
         5 . The method of  claim 4 , wherein the server receives the appended data packet with the unique secure hash of the second device's public key and stores it in memory. 
     
     
         6 . The method of  claim 5 , wherein the second device connects to the server and, using the unique secure hash of the second device's public key to determine that the data packet should be delivered to the second device, the server delivers the data packet to the second device. 
     
     
         7 . The method of  claim 6 , wherein the second device uses the second device's private key to decrypt the data packet to read the message, the message including the address of the proxy. 
     
     
         8 . The method of  claim 2 , wherein the first device appends the data packet with the second device's complete public certificate. 
     
     
         9 . The method of  claim 1 , wherein the address of the second device is not revealed to the first device or the server. 
     
     
         10 . A method establishing communication between a first device and a second device, comprising:
 the first device forming a data packet;   the first device appending the data packet with a unique secure hash of the second device's public key;   the first device authenticating with a server;   the first device sending the appended data packet with the unique secure hash of the second device's public key to the server;   the server receiving the appended data packet with the unique secure hash of the second device's public key and storing it in memory;   the second device connecting and identifying itself to the server;   the second device authenticating with the server;   having positively confirmed the second device's identity, the server delivering all data packets with the unique secure hash of the second device's public key to the second device; and   the second device decrypting the data packets using the second device's private key.   
     
     
         11 . The method of  claim 10 , wherein the data packet comprises encrypted data and the second device's public key. 
     
     
         12 . The method of  claim 11 , wherein the data is encrypted with the second device's public key. 
     
     
         13 . The method of  claim 10 , wherein the server challenges the respective device to sign a unique NONCE, chosen by the server, with the respective device's private key. 
     
     
         14 . The method of  claim 10 , wherein the server uses the respective device's public key to validate the signature of the NONCE as coming from the respective device's private key. 
     
     
         15 . The method of  claim 10 , wherein the memory is located within the server. 
     
     
         16 . The method of  claim 10 , wherein the second device identifies itself to the server by providing the unique secure hash of second device's public key. 
     
     
         17 . The method of  claim 10 , wherein the secure hash of the device's public key is based on a cryptographically solid one-way hash. 
     
     
         18 . The method of  claim 17 , wherein the secure hash of the devices' public key has a file size of about 32 Bytes. 
     
     
         19 . The method of  claim 10 , wherein the data includes an address of a proxy. 
     
     
         20 . The method of  claim 19 , wherein the first and second device connect with each other at the address of the proxy. 
     
     
         21 . The method of  claim 10 , wherein the address of the second device is not revealed to the first device or the server. 
     
     
         22 . The method of  claim 10 , wherein the communication is a voice communication. 
     
     
         23 . The method of  claim 10 , wherein, the communication is a packet-based communication such as video or text. 
     
     
         24 . The method of  claim 10 , wherein the first device appends the second device's public certificate to the data packet. 
     
     
         25 . The method of  claim 10 , wherein the first device appends a subset of the second device's public certificate sufficient to identify the second device uniquely to the data packet. 
     
     
         26 . A system for establishing communication between a first device and a second device comprising:
 the first device;   the second device;   a server; and   a proxy;   wherein, in operation,
 the first device sends an initiation request to the server; 
 the server, responsive to the initiation request, provides an address of the proxy; 
 the first device sends a message to the second device, the message including the address of the proxy; and 
   the first device and the second device form a communication path by each connecting to the proxy at the address of the proxy.   
     
     
         27 . The system of  claim 26 , wherein the message sent to the second device is encrypted by the first device with the second device's public key forming a data packet, the data packet comprising the encrypted message and the second device's public key. 
     
     
         28 . The system of  claim 26 , wherein the first device appends the data packet with a unique secure hash of the second device's public key. 
     
     
         29 . The system of  claim 27 , wherein the first device sends the appended data packet with the unique secure hash of the second device's public key to the server. 
     
     
         30 . The system of  claim 28 , wherein the server receives the appended data packet with the unique secure hash of the second device's public key and stores it in memory. 
     
     
         31 . The system of  claim 29 , wherein the second device connects to the server and, using the unique secure hash of the second device's public key to determine that the data packet should be delivered to the second device, the server delivers the data packet to the second device. 
     
     
         32 . The system of  claim 30 , wherein the second device uses the second device's private key to decrypt the data packet to read the message, the message including the address of the proxy. 
     
     
         33 . The system of  claim 25 , wherein the address of the second device is not revealed to the first device or the server.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.