Patents by Inventor Erik A. Aronesty
Erik A. Aronesty has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11973867Abstract: A method comprises: tokenizing, at a first device, a search query; creating search requests and send to delegate devices, each search request including a public key encrypted message containing the tokenized search query and index identifiers of indices to be searched; computing search responses to the search requests, each search response comprising a partial trapdoor computed per token per identifier; transmitting the search responses to the first device; recombining, at the first device, the search responses per identifier per token; performing a ranked set of queries against the indices; and returning the search results in order of relevancy.Type: GrantFiled: June 29, 2023Date of Patent: April 30, 2024Assignee: Atakama LLCInventors: Joseph Oren Tysor, Erik A. Aronesty, Michael Krebs, Daniel Gallancy
-
Patent number: 11863666Abstract: A method comprises registering, by a first device having a public key, with a gateway server by providing a proof of work based on the first device public key and encrypting and decrypting data using cryptographic information transmitted via the gateway server between other devices similarly registered.Type: GrantFiled: February 8, 2023Date of Patent: January 2, 2024Assignee: Atakama LLCInventors: Christopher Higley, Alexander Pinkerton, Erik A. Aronesty, Daniel Gallancy
-
Publication number: 20230344631Abstract: A method comprises: tokenizing, at a first device, a search query; creating search requests and send to delegate devices, each search request including a public key encrypted message containing the tokenized search query and index identifiers of indices to be searched; computing search responses to the search requests, each search response comprising a partial trapdoor computed per token per identifier; transmitting the search responses to the first device; recombining, at the first device, the search responses per identifier per token; performing a ranked set of queries against the indices; and returning the search results in order of relevancy.Type: ApplicationFiled: June 29, 2023Publication date: October 26, 2023Inventors: Joseph Oren Tysor, Erik A. Aronesty, Michael Krebs, Daniel Gallancy
-
Patent number: 11743043Abstract: A method comprises: tokenizing, at a first device, a search query; creating search requests and send to delegate devices, each search request including a public key encrypted message containing the tokenized search query and index identifiers of indices to be searched; computing search responses to the search requests, each search response comprising a partial trapdoor computed per token per identifier; transmitting the search responses to the first device; recombining, at the first device, the search responses per identifier per token; performing a ranked set of queries against the indices; and returning the search results in order of relevancy.Type: GrantFiled: February 22, 2022Date of Patent: August 29, 2023Assignee: Atakama LLCInventors: Joseph Oren Tysor, Erik A. Aronesty, Michael Krebs, Daniel Gallancy
-
Publication number: 20230188332Abstract: A method comprises registering, by a first device having a public key, with a gateway server by providing a proof of work based on the first device public key and encrypting and decrypting data using cryptographic information transmitted via the gateway server between other devices similarly registered.Type: ApplicationFiled: February 8, 2023Publication date: June 15, 2023Inventors: Christopher Higley, Alexander Pinkerton, Erik A. Aronesty, Daniel Gallancy
-
Patent number: 11621835Abstract: A method comprises registering, by a first device having a public key, with a gateway server by providing a proof of work based on the first device public key and encrypting and decrypting data using cryptographic information transmitted via the gateway server between other devices similarly registered.Type: GrantFiled: March 21, 2022Date of Patent: April 4, 2023Assignee: Atakama LLCInventors: Christopher Higley, Alexander Pinkerton, Erik A. Aronesty, Daniel Gallancy
-
Publication number: 20220385453Abstract: A method for secure file transmission comprises: encrypting a file using a location key system having multi-part keys; generating an identification for the encrypted file; transmitting the identification from a sender to a recipient; transmitting a public key from the recipient to the sender; generating, by M of N devices of a set of devices associated with the sender, its respective partial secret for the encrypted file and encrypting respective partial shared secrets with the public key; transmitting, by the sender, the encrypted file and encrypted partial shared secrets to the recipient; decrypting, by the recipient, the received encrypted partial shared secrets; combining the decrypted partial shared secrets with a threshold scheme; and decrypting the encrypted file using the combined secrets.Type: ApplicationFiled: May 31, 2022Publication date: December 1, 2022Inventors: Alexander Pinkerton, Erik A. Aronesty, Daniel Gallancy, Christopher Higley
-
Publication number: 20220368527Abstract: A method for searching an encrypted file comprises: receiving a query from a first device of a set of devices; tokenizing the query; searching the encrypted file, without decrypting the file, for the tokenized query; aggregating results of the search; and outputting the aggregated results. The searching includes checking a bloom filter of an index of the encrypted file. The index includes a file public secret (R), a proof of work for the file secret (Rproof), a multipart threshold public encryption key (LKe-pub), a multipart threshold public search key (LKs-pub), and the bloom filter. The bloom filter including index values that are elliptic curve paired between a curve-hashed token of the encrypted file and the product of the encrypted file's ephemeral secret value (r) and the multipart threshold public search key (LKs-pub).Type: ApplicationFiled: May 13, 2022Publication date: November 17, 2022Inventors: Erik A. Aronesty, Christopher Higley, Aman Grewal, Michael Krebs, Joseph Oren Tysor, Daniel Gallancy, Alexander Pinkerton
-
Publication number: 20220360429Abstract: An encryption method comprises: creating an asymmetric profile key comprising a multipart threshold key using a set of user devices; signing a declaration using the profile key and the set of user devices, the declaration identifying the set of user devices; creating an asymmetric location key comprising two multipart threshold keys; sharding and storing the asymmetric location key; creating a symmetric key; encrypting a file with the symmetric key; encrypting the symmetric key with the location key; and storing the encrypted file and encrypted key such that the encrypted file cannot be decrypted without decrypting the location key by a threshold of the set of user devices.Type: ApplicationFiled: May 9, 2022Publication date: November 10, 2022Inventors: Erik A. Aronesty, Christopher Higley, Joseph Oren Tysor, Aman Grewal, Daniel Gallancy, David Cash, Alexander Pinkerton
-
Patent number: 11431494Abstract: The disclosed embodiments include a passwordless method for securing data-at-rest. The method includes encrypting and/or decrypting data with a cryptographic key. For example, the encrypted data can be stored on a non-transitory computer memory of a first device. The method can include generating key shards based on the cryptographic key, which can be reconstituted from the key shards, and distributing the key shards among devices such that the encrypted data is secured at the first device because the first device is incapable of decrypting the encrypted data due to an absence of the cryptographic key.Type: GrantFiled: August 21, 2018Date of Patent: August 30, 2022Assignee: Atakama LLCInventors: Daniel H. Gallancy, Erik A. Aronesty, Dimitri Nemirovsky
-
Publication number: 20220216983Abstract: A method comprises registering, by a first device having a public key, with a gateway server by providing a proof of work based on the first device public key and encrypting and decrypting data using cryptographic information transmitted via the gateway server between other devices similarly registered.Type: ApplicationFiled: March 21, 2022Publication date: July 7, 2022Inventors: Christopher Higley, Alexander Pinkerton, Erik A. Aronesty, Daniel Gallancy
-
Publication number: 20220182235Abstract: A method comprises: tokenizing, at a first device, a search query; creating search requests and send to delegate devices, each search request including a public key encrypted message containing the tokenized search query and index identifiers of indices to be searched; computing search responses to the search requests, each search response comprising a partial trapdoor computed per token per identifier; transmitting the search responses to the first device; recombining, at the first device, the search responses per identifier per token; performing a ranked set of queries against the indices; and returning the search results in order of relevancy.Type: ApplicationFiled: February 22, 2022Publication date: June 9, 2022Inventors: Joseph Oren Tysor, Erik A. Aronesty, Michael Krebs, Daniel Gallancy
-
Patent number: 11323252Abstract: A method comprises registering, by a first device having a public key, with a gateway server by providing a proof of work based on the first device public key and encrypting and decrypting data using cryptographic information transmitted via the gateway server between other devices similarly registered.Type: GrantFiled: October 9, 2020Date of Patent: May 3, 2022Assignee: Atakama LLCInventors: Christopher Higley, Alexander Pinkerton, Erik A. Aronesty, Daniel Gallancy
-
Patent number: 11296879Abstract: A method comprises: tokenizing, at a first device, a search query; creating search requests and send to delegate devices, each search request including a public key encrypted message containing the tokenized search query and index identifiers of indices to be searched; computing search responses to the search requests, each search response comprising a partial trapdoor computed per token per identifier; transmitting the search responses to the first device; recombining, at the first device, the search responses per identifier per token; performing a ranked set of queries against the indices; and returning the search results in order of relevancy.Type: GrantFiled: October 5, 2020Date of Patent: April 5, 2022Assignee: Atakama LLCInventors: Joseph Oren Tysor, Erik A. Aronesty, Michael Krebs, Daniel Gallancy
-
Publication number: 20210144002Abstract: A method comprises: receiving via a first channel, at a first device, a second device's public key and proof of work of the second device's public key; hashing, at the first device, the received second device's public key and proof of work; generating, at the first device, a representation of the second device's public key using the hash; confirming via a second channel that the generated representation at the first device matches a generated representation at the second device, the second device representation generated using a hash of the second device's public key and the proof of work; and encrypting data, at the first device, using the confirmed second device's public key.Type: ApplicationFiled: January 18, 2021Publication date: May 13, 2021Inventors: Erik A. Aronesty, Christopher Higley
-
Publication number: 20210112039Abstract: A method comprises receiving a second set of devices' public keys; authenticating the received second devices' public keys; creating subshares of a plurality of encrypted key shards stored in a file, the plurality of encrypted key shards based on a first device's symmetric key such that the symmetric key can be reconstituted from the plurality of key shards, the plurality of encrypted key shards encrypted, respectively, with public keys of a first set of devices including the first device; encrypting the subshares with the second set of devices' public keys; and storing the encrypted subshares on one more non-transitory memory devices.Type: ApplicationFiled: October 1, 2020Publication date: April 15, 2021Inventors: Alexander Pinkerton, Erik A. Aronesty, Daniel Gallancy, Christopher Higley
-
Publication number: 20210111889Abstract: A method comprises registering, by a first device having a public key, with a gateway server by providing a proof of work based on the first device public key and encrypting and decrypting data using cryptographic information transmitted via the gateway server between other devices similarly registered.Type: ApplicationFiled: October 9, 2020Publication date: April 15, 2021Inventors: Christopher Higley, Alexander Pinkerton, Erik A. Aronesty, Daniel Gallancy
-
Publication number: 20210111876Abstract: A method comprises: receiving, at a first device, a request to decrypt data encrypted with a symmetric key, the encrypted data stored on a memory device and determining if the request is part of an active session based on configuration parameters and session status. In response to determining the request is part of an active session, the method further comprises: requesting, by the first device, decryption by a plurality of devices of shards of the symmetric key, the shards encrypted with public keys from the plurality of devices, wherein decryption of the data requires reconstituting the symmetric key from a threshold number of the shards; receiving decrypted shards until the threshold number of shards is reached; updating the session status; reconstituting, by the first device, the symmetric key from the decrypted shards; and decrypting, by the first device, the encrypted data with the symmetric key.Type: ApplicationFiled: October 9, 2020Publication date: April 15, 2021Inventors: Daniel Gallancy, Dimitri Nemirovsky, Alexander Pinkerton, Erik A. Aronesty, Joseph Oren Tysor
-
Publication number: 20210105138Abstract: A method comprises: tokenizing, at a first device, a search query; creating search requests and send to delegate devices, each search request including a public key encrypted message containing the tokenized search query and index identifiers of indices to be searched; computing search responses to the search requests, each search response comprising a partial trapdoor computed per token per identifier; transmitting the search responses to the first device; recombining, at the first device, the search responses per identifier per token; performing a ranked set of queries against the indices; and returning the search results in order of relevancy.Type: ApplicationFiled: October 5, 2020Publication date: April 8, 2021Inventors: Joseph Oren Tysor, Erik A. Aronesty, Michael Krebs, Daniel Gallancy
-
Publication number: 20190288840Abstract: The disclosed embodiments include a passwordless method for securing data-at-rest. The method includes encrypting and/or decrypting data with a cryptographic key. For example, the encrypted data can be stored on a non-transitory computer memory of a first device. The method can include generating key shards based on the cryptographic key, which can be reconstituted from the key shards, and distributing the key shards among devices such that the encrypted data is secured at the first device because the first device is incapable of decrypting the encrypted data due to an absence of the cryptographic key.Type: ApplicationFiled: August 21, 2018Publication date: September 19, 2019Applicant: Atakama LLCInventors: Daniel H. Gallancy, Erik A. Aronesty, Dimitri Nemirovsky