| US 7,580,521 B1 | ||
| Identity-based-encryption system with hidden public key attributes | ||
| Terence Spies, Palo Alto, Calif. (US); Rishi R. Kacker, Menlo Park, Calif. (US); Guido Appenzeller, Menlo Park, Calif. (US); and Matthew J. Pauker, Menlo Park, Calif. (US) | ||
| Assigned to Voltage Security, Inc., Palo Alto, Calif. (US) | ||
| Filed on Jun. 25, 2003, as Appl. No. 10/606,432. | ||
| Int. Cl. H04L 9/00 (2006.01) | ||
| U.S. Cl. 380—44 [380/281; 380/282; 380/284] | 28 Claims |
| 3. A method for using multi-layer identity-based encryption (IBE) to securely convey a message containing message data over
a communications network from a sender to a recipient, comprising:
at the sender, encrypting the message using at least two layers of IBE encryption by using an inner layer of message encryption
having an associated inner-layer IBE public key to encrypt the message data and by using an outer layer of message encryption
having an associated outer-layer IBE public key to encrypt the inner-layer IBE public key;
sending the encrypted message to the recipient; and
at the recipient, decrypting the encrypted message using an outer-layer IBE private key corresponding to the outer-layer IBE
public key and using an inner-layer IBE private key corresponding to the inner layer IBE public key, wherein using the outer
layer of message encryption to encrypt the inner-layer IBE public key comprises encrypting the inner-layer IBE public key
with a symmetric key and encrypting the symmetric key with the outer-layer IBE public key.
|