Patents Assigned to Dashlane SAS
  • Patent number: 10904004
    Abstract: Examples of the present disclosure describe systems and methods relating to user-session management in a zero-knowledge environment. When a user authenticates with a computing service to begin a session, a credential-cipher key is used to encrypt the user's authentication credentials, thereby generating session-resume data. The computing service stores the credential-cipher key, such that it is not retained by the user's computing device. Accordingly, when the user resumes the session, a resume request is generated to retrieve the credential-cipher key from the computing service, wherein the request is validated before providing the key. Upon successful validation, the computing service provides the credential-cipher key, which is then used to decrypt the session-resume data and regain access to the user's authentication credentials.
    Type: Grant
    Filed: August 6, 2018
    Date of Patent: January 26, 2021
    Assignee: DASHLANE SAS
    Inventors: William Delmas, Guillaume Maron, Cyril Leclerc, Frédéric Rivain
  • Patent number: 10848312
    Abstract: Examples of the present disclosure describe systems and methods relating to a zero-knowledge architecture between multiple systems. In an example, multiple systems may provide an application. User data of the application may be encrypted using a cryptographic key to restrict access to the user data. In some examples, the cryptographic key may not be provided to the multiple systems, thereby providing a zero-knowledge architecture. In order to ensure a user may access the cryptographic key, the cryptographic key may be encrypted using a second cryptographic key. The encrypted representation of the cryptographic key may be provided to a first system, while the second cryptographic key may be provided to a second system. As a result, a user computing device may retrieve both the encrypted representation of the cryptographic key and the second cryptographic key from the first and second systems, respectively, in order to encrypt/decrypt user data.
    Type: Grant
    Filed: February 8, 2018
    Date of Patent: November 24, 2020
    Assignee: DASHLANE SAS
    Inventors: Frédéric Rivain, Guillaume Maron, Cyril Leclerc, Alexis Fogel, Rew Islam
  • Patent number: 10574648
    Abstract: Methods and systems for passwordless authenticating of a user are provided. A first request to access a first content is received from a first user of a first device. A first challenge is sent to the first device in response to the first request. The first challenge is resolved using a first private key associated with the first user for the first content. A first response, including a resolved challenge, is received from the first device. It is determined whether the first response is an acceptable response to the first challenge. Access to the first content is granted to the first user in response determining that the first response is an acceptable response.
    Type: Grant
    Filed: June 14, 2017
    Date of Patent: February 25, 2020
    Assignee: Dashlane SAS
    Inventors: Thomas Guillory, Guillaume Maron, Frédéric Rivain, Alexis Fogel
  • Patent number: 10432397
    Abstract: Examples of the present disclosure describe systems and methods relating to master password reset in a zero-knowledge architecture. A master password reset may be used to regain access to encrypted user data despite not having access to the master password associated with decrypting the user data. As an example, the user data may be encrypted using a local ciphering key, wherein the key may be encrypted using a master password and stored. A second copy of the key may be stored, wherein the second copy may be encrypted using a recovery key. The recovery key may then be stored by a third party. In a reset scenario in which the master password is forgotten, the recovery key may be retrieved from the third party and used to decrypt the second copy of the local ciphering key, thereby providing access to the encrypted user data without use of the master password.
    Type: Grant
    Filed: July 6, 2017
    Date of Patent: October 1, 2019
    Assignee: Dashlane SAS
    Inventors: Guillaume Maron, Frédéric Rivain, Alexis Fogel
  • Patent number: 9330245
    Abstract: Methods and systems are provided for secure online data access. In one embodiment, three levels of security are provided where user master passwords are not required at a server. A user device may register with a storage service and receive a user device key that is stored on the device and at the service. The user device key may be used to authenticate the user device with the storage service. As data in the storage service is encrypted with a master password, the data may be protected from disclosure. As a user master key or derivative thereof is not used in authentication, the data may be protected from a disclosure or breach of the authentication credentials. Encryption and decryption may thus be performed on the user device with a user master key that may not be disclosed externally from the user device.
    Type: Grant
    Filed: December 3, 2012
    Date of Patent: May 3, 2016
    Assignee: Dashlane SAS
    Inventor: Guillaume Maron
  • Publication number: 20130145447
    Abstract: Methods and systems are provided for secure online data access. In one embodiment, three levels of security are provided where user master passwords are not required at a server. A user device may register with a storage service and receive a user device key that is stored on the device and at the service. The user device key may be used to authenticate the user device with the storage service. As data in the storage service is encrypted with a master password, the data may be protected from disclosure. As a user master key or derivative thereof is not used in authentication, the data may be protected from a disclosure or breach of the authentication credentials. Encryption and decryption may thus be performed on the user device with a user master key that may not be disclosed externally from the user device.
    Type: Application
    Filed: December 3, 2012
    Publication date: June 6, 2013
    Applicant: Dashlane SAS
    Inventor: Dashlane SAS