Method of and system for encryption and authentication

摘要

The invention provides a method of and system for networked security, involving multiple clients and servers. Rather than relying on single server based authentication and/or single stream based data transmission, the invention breaks apart information before if leaves the User's computer so that intercepting any single electronic message does not provide the hacker with sufficient information to gain access. The invention splits the values (i.e. password, User name, card number for authorization; encrypted text for encryption, etc.) at the point of sender/external authorization client. These split values are encrypted with different keys and transmitted to multiple external authorization servers. The invention can be applied to any secure transmission, storage or authentication of data over a data network.

主权项

1. A method of secured communication over a networked system comprising:
a first party: splitting, using at least one processor, a secure data message into two or more separate messages, said secure data message including a request for access to data held by a second party and said secure data message including an encrypted message, each separate message encrypted with a different key and including at least some unique portion of said secure data message, said two or more separate messages collectively preserving information contained in said secure data message; and transmitting each of said two or more separate messages to a separate gatekeeper; each of said separate gatekeepers: receiving a respective one of said separate messages; receiving a partial data set from said second party; securely processing the one of said separate messages by comparing the one of said separate messages to the partial data set, securely processing the one of said separate messages including separately protecting and storing the one of said separate messages; generating a pass code responsive to comparing the one of said separate messages to the partial data set; and transmitting the one of said separate messages and the pass code to the second party; said second party: receiving the one of said separate messages and the pass code from each of said separate gatekeepers; generating an authentication code; splitting up said authentication code into two or more parts; separately encrypting said two or more parts; transmitting said two or more parts to separate gateways configured to forward the encrypted parts to a user so that they are re-assembled and decrypted; and re-assembling each of the one of said separate messages.