Patents by Inventor Christopher Howell
Christopher Howell has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11924361Abstract: Determining whether to allow access to a message is disclosed. A message is received from a sender. The message is associated with a first time-to-live (TTL) value. A determination is made that the first time-to-live value has not been exceeded. The determination is made at least in part by obtaining an external master clock time. In response to the determination, access is allowed to the message.Type: GrantFiled: November 21, 2022Date of Patent: March 5, 2024Assignee: Amazon Technologies, Inc.Inventors: Robert Statica, Christopher A. Howell, Kara Lynn Coppa
-
Patent number: 11843588Abstract: A method, system, and non-transitory computer readable medium are described for providing a sender a plurality of ephemeral keys such that a sender and receiver can exchange encrypted communications. Accordingly, a sender may retrieve information, such as a public key and a key identifier, for the first receiver from a local storage. The retrieved information may be used to generate a key-encrypting key that is used to generate a random communication encryption key. The random communication encryption key is used to encrypt a communication, while the key-encrypting key encrypts the random communication key. The encrypted communication and the encrypted random communication key are transmitted to the first receiver.Type: GrantFiled: July 2, 2021Date of Patent: December 12, 2023Assignee: Amazon Technologies, Inc.Inventors: Thomas Michael Leavy, Christopher Howell, Joël Alwen
-
Patent number: 11757652Abstract: A decentralized system for securely registering, updating, and/or resolving domain names in a distributed ledger is disclosed. The distributed ledger may comprise a smart contract that includes a look-up table that maps network names to network addresses and/or one or more keys. The smart contract may verify whether any updates and/or changes made to an entry in the look-up table are cryptographically authorized. Additionally, the smart contract may enforce any additional policies implemented by a domain administrator for authenticating changes and/or updates to a domain name entry. The unique combination of storing domain information in a decentralized ledger and validating changes and/or updates to the domain information provides a decentralized root of trust that allows for secure queries of network names (e.g., domain name) for secure cross-entity communications.Type: GrantFiled: September 25, 2020Date of Patent: September 12, 2023Assignee: WICKR INC.Inventors: Joël Alwen, Thomas Michael Leavy, Christopher A. Howell
-
Patent number: 11509488Abstract: Determining whether to allow access to a message is disclosed. A message is received from a sender. The message is associated with a first time-to-live (TTL) value. A determination is made that the first time-to-live value has not been exceeded. The determination is made at least in part by obtaining an external master clock time. In response to the determination, access is allowed to the message.Type: GrantFiled: May 3, 2021Date of Patent: November 22, 2022Assignee: Amazon Technologies, Inc.Inventors: Robert Statica, Christopher A. Howell, Kara Lynn Coppa
-
Patent number: 11457018Abstract: The present disclosure describes a method, system, and non-transitory computer readable medium that includes instructions that permit users of different secure communication networks to exchange secure communications. A secure communication platform includes a user database that allows users from different secure communication networks to access keys for recipients outside of their network. Additionally, the secure communication platform provides a high degree of trust regarding the sender's identity, allowing the receiving network to trust the sender.Type: GrantFiled: August 16, 2021Date of Patent: September 27, 2022Assignee: Amazon Technologies, Inc.Inventors: Arjun Bhatnagar, Christopher Howell
-
Patent number: 11405370Abstract: The present disclosure describes techniques for storing encrypted files in a secure file repository and transferring those encrypted files to one or more recipients. A user selects a file to upload to a secure file repository. A secure collaboration app on the user's device generates a first encryption key that is used to encrypt the file. The encrypted file is then uploaded to the secure file repository, which provides the secure collaboration app with a random file name and a location of the encrypted file. The secure collaboration app updates locally stored metadata of the first encrypted file. To securely transfer the file, the user generates a second encryption key, encrypts the metadata with the second encryption key, and transmits the encrypted metadata to one or more receivers. The one or more receivers decrypt the encrypted metadata and use the decrypted metadata to retrieve the file and decrypt it.Type: GrantFiled: February 2, 2017Date of Patent: August 2, 2022Assignee: Amazon Technologies, Inc.Inventors: Ernest W. Grzybowski, Christopher A. Howell, Thomas Michael Leavy, David A. Sugar, Dipakkumar R. Kasabwala
-
Patent number: 11368445Abstract: The present disclosure describes techniques that allow for a client-side application, located on a first client device, to generate a random encryption key and encrypt locally-stored application data with the random encryption key. The random encryption key is used in lieu of a password-derived encryption key. In order to ensure that the client-device application is unable to decrypt the locally-stored encrypted application data prior to authenticating with an external authentication source (i.e., SSO, IdP), the random encryption key is encrypted with a key-encrypting key derived using a pseudorandom function (PRF). By using a PRF, the first device is able to authenticate to the first server and derive a secure key as part of the authentication process. Accordingly, the present disclosure describes techniques for securing data on a client device when credentials are managed by an external authentication system.Type: GrantFiled: August 21, 2018Date of Patent: June 21, 2022Assignee: Amazon Technologies, Inc.Inventors: Joël Alwen, Thomas Michael Leavy, Christopher Howell
-
Patent number: 11368442Abstract: The present disclosure describes a method, system, and non-transitory computer readable medium that includes instructions that permit users of different secure communication networks to exchange secure communications. A secure communication platform includes a user database that allows users from different secure communication networks to access keys for recipients outside of their network. Additionally, the secure communication platform provides a high degree of trust regarding the sender's identity, allowing the receiving network to trust the sender.Type: GrantFiled: August 29, 2017Date of Patent: June 21, 2022Assignee: Amazon Technologies, Inc.Inventors: Arjun Bhatnagar, Christopher Howell
-
Patent number: 11349659Abstract: The present disclosure describes a method, system, and non-transitory computer readable medium that includes instructions that permit users of different secure communication networks to exchange secure communications. A secure communication platform includes a user database that allows users from different secure communication networks to access keys for recipients outside of their network. Additionally, the secure communication platform provides a high degree of trust regarding the sender's identity, allowing the receiving network to trust the sender.Type: GrantFiled: August 29, 2017Date of Patent: May 31, 2022Assignee: Amazon Technologies, Inc.Inventors: Arjun Bhatnagar, Christopher Howell
-
Patent number: 11330003Abstract: A secure messaging platform for an enterprise environment is disclosed. The secure messaging platform enables users to exchange encrypted communications. Further, the secure messaging platform allows enterprise platforms to review the encrypted communications to ensure that they comply with company policies. Messages that comply with company policies may be provided to their intended recipients, while messages that fail to comply with company policies are not provided to their intended recipients. Additionally, the encrypted communications may be retained for a predetermined time.Type: GrantFiled: November 14, 2017Date of Patent: May 10, 2022Assignee: Amazon Technologies, Inc.Inventors: Christopher Howell, Robert Statica, Kara Lynn Coppa
-
Patent number: 11316666Abstract: A method, system, and non-transitory computer readable medium are described for providing a sender a plurality of ephemeral keys such that a sender and receiver can exchange encrypted communications. Accordingly, a sender may retrieve information, such as a public key and a key identifier, for the first receiver from a local storage. The retrieved information may be used to generate a key-encrypting key that is used to generate a random communication encryption key. The random communication encryption key is used to encrypt a communication, while the key-encrypting key encrypts the random communication key. The encrypted communication and the encrypted random communication key are transmitted to the first receiver.Type: GrantFiled: July 12, 2017Date of Patent: April 26, 2022Assignee: Amazon Technologies, Inc.Inventors: Thomas Michael Leavy, Joël Alwen, Christopher Howell
-
Publication number: 20220103370Abstract: A decentralized system for securely registering, updating, and/or resolving domain names in a distributed ledger is disclosed. The distributed ledger may comprise a smart contract that includes a look-up table that maps network names to network addresses and/or one or more keys. The smart contract may verify whether any updates and/or changes made to an entry in the look-up table are cryptographically authorized. Additionally, the smart contract may enforce any additional policies implemented by a domain administrator for authenticating changes and/or updates to a domain name entry. The unique combination of storing domain information in a decentralized ledger and validating changes and/or updates to the domain information provides a decentralized root of trust that allows for secure queries of network names (e.g., domain name) for secure cross-entity communications.Type: ApplicationFiled: September 25, 2020Publication date: March 31, 2022Applicant: Wickr Inc.Inventors: Joël Alwen, Thomas Michael Leavy, Christopher A. Howell
-
Publication number: 20220006659Abstract: Determining whether to allow access to a message is disclosed. A message is received from a sender. The message is associated with a first time-to-live (TTL) value. A determination is made that the first time-to-live value has not been exceeded. The determination is made at least in part by obtaining an external master clock time. In response to the determination, access is allowed to the message.Type: ApplicationFiled: May 3, 2021Publication date: January 6, 2022Inventors: Robert Statica, Christopher A. Howell, Kara Lynn Coppa
-
Patent number: 11159310Abstract: A digital security bubble encapsulation is disclosed. A public key and a device identifier of at least one recipient is requested from a first server. A message containing one or more components is encrypted using a symmetric key. The symmetric key is encrypted with a public key received in response to the request. The encrypted message, the encrypted symmetric key, and the device identifier are encapsulated in a digital security bubble encapsulation. The digital security bubble encapsulation is transmitted to a second server.Type: GrantFiled: January 23, 2020Date of Patent: October 26, 2021Assignee: Amazon Technologies, Inc.Inventors: Christopher A. Howell, Robert Statica, Kara Lynn Coppa
-
Publication number: 20210328976Abstract: A method, system, and non-transitory computer readable medium are described for providing a sender a plurality of ephemeral keys such that a sender and receiver can exchange encrypted communications. Accordingly, a sender may retrieve information, such as a public key and a key identifier, for the first receiver from a local storage. The retrieved information may be used to generate a key-encrypting key that is used to generate a random communication encryption key. The random communication encryption key is used to encrypt a communication, while the key-encrypting key encrypts the random communication key. The encrypted communication and the encrypted random communication key are transmitted to the first receiver.Type: ApplicationFiled: July 2, 2021Publication date: October 21, 2021Inventors: Thomas Michael Leavy, Christopher Howell, Joël Alwen
-
Patent number: 11101999Abstract: The present application describes a method, system, and non-transitory computer-readable medium for end-to-end encryption during a secure communication session. According to the present disclosure, a first device initializes a secure communication session with at least one second device. Initializing the secure communication session includes transmitting an invitation to a secure communication session to the at least one second device. The at least one second device may generate a transmission root key, which may be used to derive a first key for encrypting data transmitted to the first device and a second key for decrypting received data from the first device. The at least one second device may transmit the transmission root key to the first device, which may use the transmission root key to derive a first key to encrypt data transmitted to the at least one second device and a second key to decrypt data received from the at least one second device.Type: GrantFiled: February 25, 2020Date of Patent: August 24, 2021Assignee: Amazon Technologies, Inc.Inventors: Thomas Michael Leavy, Joël Alwen, Christopher Howell
-
Patent number: 11095662Abstract: The present disclosure describes a method, system, and non-transitory computer readable medium that includes instructions that permit users of different secure communication networks to exchange secure communications. A secure communication platform includes a user database that allows users from different secure communication networks to access keys for recipients outside of their network. Additionally, the secure communication platform provides a high degree of trust regarding the sender's identity, allowing the receiving network to trust the sender.Type: GrantFiled: August 29, 2017Date of Patent: August 17, 2021Assignee: Amazon Technologies, Inc.Inventors: Arjun Bhatnagar, Christopher Howell
-
Patent number: 11082412Abstract: A method, system, and non-transitory computer readable medium are described for providing a sender a plurality of ephemeral keys such that a sender and receiver can exchange encrypted communications. Accordingly, a sender may retrieve information, such as a public key and a key identifier, for the first receiver from a local storage. The retrieved information may be used to generate a key-encrypting key that is used to generate a random communication encryption key. The random communication encryption key is used to encrypt a communication, while the key-encrypting key encrypts the random communication key. The encrypted communication and the encrypted random communication key are transmitted to the first receiver.Type: GrantFiled: July 12, 2017Date of Patent: August 3, 2021Assignee: Wickr Inc.Inventors: Thomas Michael Leavy, Christopher Howell, Joël Alwen
-
Patent number: 11025440Abstract: Determining whether to allow access to a message is disclosed. A message is received from a sender. The message is associated with a first time-to-live (TTL) value. A determination is made that the first time-to-live value has not been exceeded. The determination is made at least in part by obtaining an external master clock time. In response to the determination, access is allowed to the message.Type: GrantFiled: January 2, 2020Date of Patent: June 1, 2021Assignee: Wickr Inc.Inventors: Robert Statica, Christopher A. Howell, Kara Lynn Coppa
-
Publication number: 20210144117Abstract: Secure directory services are disclosed. A cryptographic hash of a foreign identifier associated with a potential user is received. A determination is made that the received cryptographic hash of the foreign identifier matches a representation of a stored entry. In response to the determination, a transmission of a representation of a native identifier associated with the stored entry is transmitted to the sender of the cryptographic hash of the foreign identifier.Type: ApplicationFiled: January 25, 2021Publication date: May 13, 2021Inventors: Christopher A. Howell, Robert Statica, Kara Lynn Coppa