Technique For Bypassing an IP PBX
Abstract
The invention includes methods and systems for establishing communication between a first device and a second device. The first device forming a data packet and appending the data packet with a unique secure hash of the second device's public key. Next, the first device authenticating with a server. Next, the first device sending the appended data packet with the unique secure hash of the second device's public key to the server with the server storing it in memory. Next, the second device connecting and identifying itself to the server. Next, the second device authenticating with the server. Next, having positively confirmed the second device's identity, the server delivering all data packets with the unique secure hash of the second device's public key to the second device. Finally, the second device decrypting the data packets using the second device's private key.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1 . A method for establishing communication between a first device and a second device, comprising:
using a first device, sending an initiation request to a server, the initiation request for initiating a connection with the second device; receiving, from the server, responsive to the initiation request, an address of a proxy; sending a message to the second device, the message including the address of the proxy; and connecting with the second device, at the address of the proxy.
2 . The method of claim 1 , wherein the message sent to the second device is encrypted by the first device with the second device's public key forming a data packet, the data packet comprising the encrypted message and the second device's public key.
3 . The method of claim 2 , wherein the first device appends the data packet with a unique secure hash of the second device's public key.
4 . The method of claim 3 , wherein the first device sends the appended data packet with the unique secure hash of the second device's public key to the server.
5 . The method of claim 4 , wherein the server receives the appended data packet with the unique secure hash of the second device's public key and stores it in memory.
6 . The method of claim 5 , wherein the second device connects to the server and, using the unique secure hash of the second device's public key to determine that the data packet should be delivered to the second device, the server delivers the data packet to the second device.
7 . The method of claim 6 , wherein the second device uses the second device's private key to decrypt the data packet to read the message, the message including the address of the proxy.
8 . The method of claim 2 , wherein the first device appends the data packet with the second device's complete public certificate.
9 . The method of claim 1 , wherein the address of the second device is not revealed to the first device or the server.
10 . A method establishing communication between a first device and a second device, comprising:
the first device forming a data packet; the first device appending the data packet with a unique secure hash of the second device's public key; the first device authenticating with a server; the first device sending the appended data packet with the unique secure hash of the second device's public key to the server; the server receiving the appended data packet with the unique secure hash of the second device's public key and storing it in memory; the second device connecting and identifying itself to the server; the second device authenticating with the server; having positively confirmed the second device's identity, the server delivering all data packets with the unique secure hash of the second device's public key to the second device; and the second device decrypting the data packets using the second device's private key.
11 . The method of claim 10 , wherein the data packet comprises encrypted data and the second device's public key.
12 . The method of claim 11 , wherein the data is encrypted with the second device's public key.
13 . The method of claim 10 , wherein the server challenges the respective device to sign a unique NONCE, chosen by the server, with the respective device's private key.
14 . The method of claim 10 , wherein the server uses the respective device's public key to validate the signature of the NONCE as coming from the respective device's private key.
15 . The method of claim 10 , wherein the memory is located within the server.
16 . The method of claim 10 , wherein the second device identifies itself to the server by providing the unique secure hash of second device's public key.
17 . The method of claim 10 , wherein the secure hash of the device's public key is based on a cryptographically solid one-way hash.
18 . The method of claim 17 , wherein the secure hash of the devices' public key has a file size of about 32 Bytes.
19 . The method of claim 10 , wherein the data includes an address of a proxy.
20 . The method of claim 19 , wherein the first and second device connect with each other at the address of the proxy.
21 . The method of claim 10 , wherein the address of the second device is not revealed to the first device or the server.
22 . The method of claim 10 , wherein the communication is a voice communication.
23 . The method of claim 10 , wherein, the communication is a packet-based communication such as video or text.
24 . The method of claim 10 , wherein the first device appends the second device's public certificate to the data packet.
25 . The method of claim 10 , wherein the first device appends a subset of the second device's public certificate sufficient to identify the second device uniquely to the data packet.
26 . A system for establishing communication between a first device and a second device comprising:
the first device; the second device; a server; and a proxy; wherein, in operation,
the first device sends an initiation request to the server;
the server, responsive to the initiation request, provides an address of the proxy;
the first device sends a message to the second device, the message including the address of the proxy; and
the first device and the second device form a communication path by each connecting to the proxy at the address of the proxy.
27 . The system of claim 26 , wherein the message sent to the second device is encrypted by the first device with the second device's public key forming a data packet, the data packet comprising the encrypted message and the second device's public key.
28 . The system of claim 26 , wherein the first device appends the data packet with a unique secure hash of the second device's public key.
29 . The system of claim 27 , wherein the first device sends the appended data packet with the unique secure hash of the second device's public key to the server.
30 . The system of claim 28 , wherein the server receives the appended data packet with the unique secure hash of the second device's public key and stores it in memory.
31 . The system of claim 29 , wherein the second device connects to the server and, using the unique secure hash of the second device's public key to determine that the data packet should be delivered to the second device, the server delivers the data packet to the second device.
32 . The system of claim 30 , wherein the second device uses the second device's private key to decrypt the data packet to read the message, the message including the address of the proxy.
33 . The system of claim 25 , wherein the address of the second device is not revealed to the first device or the server.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.