Method and system for rendering a stolen mobile communications device inoperative

US 10,084,603 B2
Filed: 06/05/2014
Issued: 09/25/2018
Est. Priority Date: 06/12/2013
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

determining, by an autonomous security component preloaded on a system partition of an internal memory of a mobile communications device where an operating system is stored, the autonomous security component configured to persist after a factory reset of the mobile communications device and the autonomous security component being separate from the operating system, that the mobile communications device is in a first state, the first state being an indication that the mobile communications device is not in possession of an authorized user;

in response to the determination that the mobile communications device is in the first state, initiating and causing, by the autonomous security component, a destruction of a cryptographic key of a bootloader from a key store on the mobile communications device;

upon initiating and causing the destruction of the cryptographic key of the bootloader, initiating, by the autonomous security component, a boot sequence at the mobile communications device; and

during the boot sequence at the mobile communications device after the destruction of the cryptographic key, booting the mobile communications device into a kernel that restricts operation of the mobile communications device so that the mobile communications device can only communicate with a single server (i) to report at least one selected from the group of;

a mobile communications device location, and mobile communications device contextual information, and (ii) to receive a re-enablement cryptographic key from the single server.

View all claims

9 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system for rendering a stolen mobile communications device inoperative is presented. A determination that the mobile communications device is in a first state is made at a security component on the mobile communications device. A removal of a cryptographic key is affected at the security component on the mobile communications device.

Citations

16 Claims

1. A method comprising:
- determining, by an autonomous security component preloaded on a system partition of an internal memory of a mobile communications device where an operating system is stored, the autonomous security component configured to persist after a factory reset of the mobile communications device and the autonomous security component being separate from the operating system, that the mobile communications device is in a first state, the first state being an indication that the mobile communications device is not in possession of an authorized user;
  
  in response to the determination that the mobile communications device is in the first state, initiating and causing, by the autonomous security component, a destruction of a cryptographic key of a bootloader from a key store on the mobile communications device;
  
  upon initiating and causing the destruction of the cryptographic key of the bootloader, initiating, by the autonomous security component, a boot sequence at the mobile communications device; and
  
  during the boot sequence at the mobile communications device after the destruction of the cryptographic key, booting the mobile communications device into a kernel that restricts operation of the mobile communications device so that the mobile communications device can only communicate with a single server (i) to report at least one selected from the group of;
  
  a mobile communications device location, and mobile communications device contextual information, and (ii) to receive a re-enablement cryptographic key from the single server.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, wherein booting the mobile communications device into a kernel that restricts operation of the mobile communications device includes booting into a specific mode.
  - 3. The method of claim 2, further comprising:
    - determining, at the autonomous security component on the mobile communications device when the mobile communications device is booted into the specific mode, that the mobile communications device is in a second state, the second state being an indication that the mobile communications device is in possession of an authorized user, andwhen the mobile communications device is determined to be in the second state indicating that the mobile communications device is in possession of an authorized user, receiving, at the autonomous security component on the mobile communications device, the re-enablement cryptographic key from the single server to replace the destroyed cryptographic key from the key store.
  - 4. The method of claim 3, wherein the re-enablement cryptographic key received from the single server is stored in one of a Trusted Platform Module (TPM) or a separate hardware component that supports a command to cause the destruction of the cryptographic key.
  - 5. The method of claim 1, wherein the re-enablement cryptographic key received from the single server is stored in one of a Trusted Platform Module (TPM) or a separate hardware component that supports a command to cause the destruction of the cryptographic key.
  - 6. The method of claim 1, wherein the initiating, by the autonomous security component, a boot sequence at the mobile communications device includes initiating one of a reboot sequence or a power off sequence.
  - 7. The method of claim 1, wherein the cryptographic key of the bootloader on the mobile communications device comprises information unique to the mobile communications device.
  - 8. The method of claim 7, wherein the information unique to the mobile communications device is an International Mobile Station Equipment Identity (IMEI) number.
  - 9. The method of claim 1, wherein the cryptographic key on the mobile communications device is a cryptographic key used to decrypt encrypted device storage contents.

10. A method comprising:
- determining, by an autonomous security component preloaded on a system partition of an internal memory of a mobile communications device where an operating system is stored, the autonomous security component configured to persist after a factory reset of the mobile communications device and the autonomous security component being separate from the operating system, that the mobile communications device is not in possession of an authorized user;
  
  when the determination is that the mobile communications device is not in possession of an authorized user, receiving, from a single server and at the autonomous security component, a first cryptographic key;
  
  encrypting, at the autonomous security component, device storage contents with the first cryptographic key;
  
  after encrypting the device storage contents, initiating and causing, by the autonomous security component, a destruction of a second cryptographic key from a key store on the mobile communications device, the second cryptographic key being a cryptographic key of a bootloader;
  
  upon initiating and causing the destruction of the second cryptographic key, initiating, by the autonomous security component, a boot sequence at the mobile communications device; and
  
  during the boot sequence at the mobile communications device after the destruction of the second cryptographic key, booting the mobile communications device into a kernel that restricts operation of the mobile communications device so that the mobile communications device can only communicate with the single server (i) to report at least one selected from the group of;
  
  a mobile communications device location, and mobile communications device contextual information, and (ii) to receive a re-enablement second cryptographic key from the single server.
- View Dependent Claims (11, 12)
- - 11. The method of claim 10, wherein the re-enablement second cryptographic key is retrievable from the single server by a security program operating on the mobile communications device, the re-enablement second cryptographic key being retrievable when the single server determines that the security program fulfills predetermined security privileges criteria.
  - 12. The method of claim 10, wherein the re-enablement second cryptographic key received from the single server is not stored on the mobile communications device.

13. A non-transitory computer-readable medium encoded with a plurality of instructions which, when executed by a processor, cause the processor to perform a method comprising:
- receiving, at a server, an indication that a mobile communications device is not in possession of an authorized user;
  
  sending, from the server, a first command for a security component preloaded on a system partition of an internal memory of the mobile communications device where an operating system is stored, the security component configured to persist after a factory reset and the security component being separate from the operating system, the first command directing the security component to encrypt data stored on the mobile communications device using a first cryptographic key from the server;
  
  upon receiving from the security component of the mobile communications device confirmation that the data stored has been encrypted, sending, from the server, a second command for the security component of the mobile communications device to cause a destruction of a second cryptographic key from a key store on the mobile communications device, the second cryptographic key being a cryptographic key of a bootloader, wherein, upon causing the destruction of the second cryptographic key of the bootloader, the security component autonomously initiates a boot sequence at the mobile communications device; and
  
  during the boot sequence at the mobile communications device after the destruction of the second cryptographic key, booting the mobile communications device into a kernel that restricts operation of the mobile communications device so that the mobile communications device can only communicate with the server (i) to report at least one selected from the group of;
  
  a mobile communications device location, and mobile communications device contextual information, and (ii) to receive a re-enablement second cryptographic key from the server.
- View Dependent Claims (14, 15, 16)
- - 14. The non-transitory computer-readable medium of claim 13, wherein the security component autonomously initiating a boot sequence at the mobile communications device includes the security component of the mobile communications device initiating one of a reboot sequence or a power off sequence.
  - 15. The non-transitory computer-readable medium of claim 14, wherein booting the mobile communications device into a kernel that restricts operation of the mobile communications device includes booting into a specific mode.
  - 16. The non-transitory computer-readable medium of claim 13, further comprising instructions for:
    - receiving, at the server, an indication that the mobile communications device, after having been booted into the kernel that restricts operation of the mobile communications device, is in a second state indicating that the mobile communications device is in possession of an authorized user;
      
      sending, upon receiving the indication that the mobile communications device is in the second state, the re-enablement second cryptographic key from the server to the mobile communications device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
F-Secure Corporation (F-Secure Oyj)
Original Assignee
Lookout Incorporated
Inventors
Rogers, Marc William, Buck, Brian James
Primary Examiner(s)
Abbaszadeh, Jaweed A
Assistant Examiner(s)
Sampath, Gayathri

Application Number

US14/297,524
Publication Number

US 20140372743A1
Time in Patent Office

1,573 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/575   Secure boot

G09C 1/00   Apparatus or methods whereb...

H04L 2209/127   Trusted platform modules [TPM]

H04L 2209/80   Wireless

H04L 9/088   Usage controlling of secret...

H04L 9/3234   involving additional secure...

H04W 12/12   Detection or prevention of ...

H04W 12/126   Anti-theft arrangements, e....

Method and system for rendering a stolen mobile communications device inoperative

First Claim

9 Assignments

0 Petitions

Accused Products

Abstract

Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for rendering a stolen mobile communications device inoperative

First Claim

9 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links