| CPC H04L 63/068 (2013.01) [H04L 63/061 (2013.01); H04L 63/0876 (2013.01); H04L 63/0892 (2013.01); H04L 63/18 (2013.01)] | 20 Claims |
|
1. A method comprising:
accessing, at a server of an encrypted messaging system, a payload including at least a list of authorized devices associated with a user, a cryptographic signature, wherein the list of authorized devices are cryptographically signed by a primary device of the user using a pairing key, the cryptographic signature is associated with a timestamp and each device in the list of authorized devices is associated with a cryptographic key, and the payload is encrypted using the pairing key;
identifying a time window during which the cryptographic signature remains valid;
determining whether a current time is within the time window;
if the current time is within the time window, allowing immediate communication between the server and an authorized device in the list of authorized devices;
if the current time is not within the time window, expiring the list of authorized devices;
destroying the cryptographic key associated with the authorized device in the list of authorized devices based on a request to manually retire the authorized device from the list of authorized devices; and
generating an updated list of authorized devices.
|