US 12,143,374 B2
Secure communication between devices
Ashley Kurtis, Warton (GB); and Kristian Daniel, Warton (GB)
Assigned to BAE Systems plc, London (GB)
Appl. No. 17/765,305
Filed by BAE Systems plc, London (GB)
PCT Filed Oct. 22, 2020, PCT No. PCT/GB2020/052651
§ 371(c)(1), (2) Date Mar. 30, 2022,
PCT Pub. No. WO2021/079115, PCT Pub. Date Apr. 29, 2021.
Claims priority of application No. 19275105 (EP), filed on Oct. 23, 2019; and application No. 1915313 (GB), filed on Oct. 23, 2019.
Prior Publication US 2022/0377058 A1, Nov. 24, 2022
Int. Cl. H04L 9/08 (2006.01); H04L 9/14 (2006.01); H04L 9/40 (2022.01); H04L 67/104 (2022.01)
CPC H04L 63/0485 (2013.01) [H04L 9/0819 (2013.01); H04L 9/0866 (2013.01); H04L 9/14 (2013.01); H04L 63/0428 (2013.01); H04L 63/06 (2013.01); H04L 67/104 (2013.01); H04L 9/0861 (2013.01)] 17 Claims
OG exemplary drawing
 
1. A computer-implemented method of providing secure communication between a first device and a second device, the method comprising:
the first device and the second device connecting to a server via a secure communication channel;
generating encryption keys for the first device;
generating encryption keys for the second device;
transferring data relating to the encryption keys for the first device to the second device via the server in the secure communication channel;
transferring data relating to the encryption keys for the second device to the first device via the server in the secure communication channel;
generating peer-to-peer connection information for the first device and encrypting the peer-to-peer connection information for the first device using the data relating to the encryption keys for the second device;
generating peer-to-peer connection information for the second device and encrypting the peer-to-peer connection information for the second device using the data relating to the encryption keys for the first device;
transferring the encrypted peer-to-peer connection information for the first device to the second device via the server in the secure communication channel;
transferring the encrypted peer-to-peer connection information for the second device to the first device via the server in the secure communication channel;
the first device decrypting the encrypted peer-to-peer connection information for the second device;
the second device decrypting the encrypted peer-to-peer connection information for the first device;
the first device and the second device using the decrypted peer-to-peer connection information for the first device and the decrypted peer-to-peer connection information for the second device to open a peer-to-peer connection in the secure communication channel;
the first device and the second device exchanging data via the peer-to-peer connection;
the first or the second device including a security code in data transferred to the second or the first device, respectively; and
the first or the second device checking for inclusion of the security code in the transferred data and only performing further steps on the data if the security code is included in the data,
wherein the security code is provided to the first device or the second device prior to the first device and second device connecting to the server via the secure communication channel.