Securitization of temporal digital communications with authentication and validation of user and access devices

US 10,601,805 B2
Filed: 10/29/2018
Issued: 03/24/2020
Est. Priority Date: 06/12/2017
Status: Active Grant

First Claim

Patent Images

1. One or more access devices or one or more user devices or both one or more access devices and one or more user devices comprising:

at least one computer processing unit (CPU) with computational capabilities that is connected to and controls a computer memory via an address bus and a data bus where said address bus accesses a designated range of computer memories and range of memory bits and said data bus provides a flow of transmission(s) into and out of said CPU and computer memory;

one or more real or one or more virtual master distributed auto-synchronous array (DASA) databases or both one or more real and one or more virtual master distributed auto-synchronous array (DASA) databases located within or external to said access devices and said user devices, where said master (DASA) databases at least store and retrieve data and also include at least two or more partial distributed auto-synchronous array (DASA) databases, wherein said partial DASA databases function in either an independent manner, a collaborative manner or both an independent manner and a collaborative manner, wherein said master and said partial DASA databases analyze and provide information in a form of data and act to control one or more output devices, wherein said output devices are computing devices, wherein said one or more output devices create user devices, and wherein said master and said partial DASA databases for configure bi-directional transmission of data to and from multiple partial user devices, to and from multiple partial access devices or to and from both multiple partial user and multiple partial access devices, wherein said user devices and said access devices are computing devices, and wherein one or more partial user and one or more partial access devices store and provide at least partial copies of portions of said master DASA databases, and wherein said master DASA databases, said partial DASA databases or both said partial DASA databases and said master DASA databases are linked and communicate with each other as well as inclusion of one or more logging and monitoring databases that provide statistical and numerical calculations utilizing data, wherein said one or more access devices authenticate using a first set of computing operations, and validate using a second set of computing operations, and wherein a third set of computing operations controls access for a specified set of users, wherein said master or partial DASA databases or both are encrypted to protect against unauthorized access of said DASA databases.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

One more devices and/or access control systems are described that securitize data and data transmissions using three sets of computing operations including authentication, validation, and securitization that allows or denies access to the data and/or the data transmissions. The system includes securitization of signals between one or more secure master and/or partial DASA databases for various user devices. Specific methods and devices for securing (primarily digital and normally two-way) communications using applications that offer the combination of securing communications from user devices with reader devices, are also is provided.

41 Citations

View as Search Results

21 Claims

1. One or more access devices or one or more user devices or both one or more access devices and one or more user devices comprising:
- at least one computer processing unit (CPU) with computational capabilities that is connected to and controls a computer memory via an address bus and a data bus where said address bus accesses a designated range of computer memories and range of memory bits and said data bus provides a flow of transmission(s) into and out of said CPU and computer memory;
  
  one or more real or one or more virtual master distributed auto-synchronous array (DASA) databases or both one or more real and one or more virtual master distributed auto-synchronous array (DASA) databases located within or external to said access devices and said user devices, where said master (DASA) databases at least store and retrieve data and also include at least two or more partial distributed auto-synchronous array (DASA) databases, wherein said partial DASA databases function in either an independent manner, a collaborative manner or both an independent manner and a collaborative manner, wherein said master and said partial DASA databases analyze and provide information in a form of data and act to control one or more output devices, wherein said output devices are computing devices, wherein said one or more output devices create user devices, and wherein said master and said partial DASA databases for configure bi-directional transmission of data to and from multiple partial user devices, to and from multiple partial access devices or to and from both multiple partial user and multiple partial access devices, wherein said user devices and said access devices are computing devices, and wherein one or more partial user and one or more partial access devices store and provide at least partial copies of portions of said master DASA databases, and wherein said master DASA databases, said partial DASA databases or both said partial DASA databases and said master DASA databases are linked and communicate with each other as well as inclusion of one or more logging and monitoring databases that provide statistical and numerical calculations utilizing data, wherein said one or more access devices authenticate using a first set of computing operations, and validate using a second set of computing operations, and wherein a third set of computing operations controls access for a specified set of users, wherein said master or partial DASA databases or both are encrypted to protect against unauthorized access of said DASA databases.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
- - 2. The one or more access devices and user devices of claim 1, wherein tolerance of said a designated portion of a user'"'"'s record is provided when data is in transit from said designated portion to said partial access device and wherein transit of said data is synchronized between said partial user device and said partial access device and wherein said first set of computing operations also relate to, correspond with, or invoke tolerance computing operations that search for an access device'"'"'s data record regarding data sent by said partial user devices.
  - 3. The one or more access devices and user devices of claim 1, wherein when data in transit is asynchronous in that said data in transit is not exactly matched or in synchronization with data within or external to devices that said data in transit is transmitted to and wherein when said data in transit is transmitted outside of a predetermined and limited tolerance, no authentication associated with said data in transit can be achieved.
  - 4. The one or more access devices and user devices of claim 3, wherein when synchronization is not occurring, resynchronization is achieved by changing a designated portion during access to said partial access devices to match said a designated portion of said partial user devices.
  - 5. The one or more access devices and user devices of claim 4, wherein when resynchronization occurs a user ID is utilized to select a user record according to said third set of computing operations, thereby allowing said user record to be accessed from a known portion of one or more master or one or more partial DASA database(s) or both one or more master and one or more partial DASA databases and wherein resynchronization recognizes a specified set of users to ensure proper resynchronization in order that said partial access devices can allow or deny access for said specified set of users.
  - 6. The one or more access devices and user devices of claim 1, wherein during a process authentication, a user or user'"'"'s device decrypts each data record within a designated portion that possess its own unique key and wherein said process continues until said user finds a match of said data record with said key.
  - 7. The one or more access devices and user devices of claim 1, wherein tolerance computing operations provides a desired range within which a system operates and said tolerance computing operations utilizes one or more record numbers via one or more distinct computing operations that encrypt and decrypt data.
  - 8. The one or more access devices and user devices of claim 7, wherein said tolerance computing operations further comprise an increased in complexity by applying a check of additional records within a designated portion of said partial user and said partial access devices along with temporal limitations that limit authentication.
  - 9. The one or more access devices and user devices of claim 1, wherein first attempts to access a secure device or secure location begins by acquisition of one or more keys that utilize a tolerance that provides for a number of attempts, (n), to retrieve keys from a configuration table wherein at least one encryption application with a get next key routine is invoked locally on or in proximity to said partial user devices to generate encryption keys and to generate a new master key and wherein simultaneous attempts are made to match a specific partial user'"'"'s device user identification (ID) encryption keys with an encryption database derived from said user ID encryption keys by using a specific tolerance number or tolerance range selected from many numbers available through a number generator.
  - 10. The one or more access devices and user devices of claim 9, wherein said at least one encryption application is added for layering security for said access devices, said user devices, and associated system so that a match is determined to establish whether a user of said partial user devices has access privileges.
  - 11. The one or more access devices and user devices of claim 10, wherein encryption keys can be removed from a user table either, before, during, or after said match such that a key management system ensures that said encryption keys are neither discoverable nor compromised in that a user of said access devices, said user devices, and associated system cannot locate said encryption keys and further even if said encryption keys were located they could not be acted upon by said user.
  - 12. The one or more access devices and user devices of claim 1, wherein said partial DASA databases include a list of identifiers and codes that reside in either said partial user devices or said partial access devices or within both said partial user devices and said partial access devices, such that said access devices and user devices includes a device that functions as two or more devices so that both a user device and another an access device, possess matching databases that communicate with each other and utilize one or more encryption applications.
  - 13. The one or more access devices and user devices of claim 12, wherein said partial user devices communicate internally within said partial user devices and externally from said partial user devices by transmitting and receiving data utilizing one or more encryption applications and a secured location and wherein a reader device is a detecting device that searches, retrieves, and analyzes a recognizable securitized and encrypted data signal generated after installation of said encryption application is completed.
  - 14. The one or more access devices and user devices of claim 13, wherein said transmitted and received data is comprised within a token and wherein said token is recognized by said reader device, said token controlling access to said partial user device, controlling access to said reader device and also controlling access to one or more locations.
  - 15. The one or more access devices and user devices of claim 1, wherein a partial access device is a reader device and wherein said reader device can be a badge reader.
  - 16. The one or more access devices and user devices of claim 1, wherein data is provided as code, said code selected from a group consisting of:
    - a QR code, a bar code, a digital code, an analog code, and a 7-bit binary code and wherein said QR code when found by a partial access device is recognizable in that it is recognized by a user'"'"'s cellular phone and allows access to a user identification (ID) encryption key from said QR code which is subsequently passed through at least one encryption application.
  - 17. The one or more access devices and user devices of claim 16, wherein said QR code found by a partial access device is recognizable in that it is recognized by a user'"'"'s cellular phone and allows access to a user identification (ID) encryption key from said QR code which is subsequently passed through at least one encryption application.
  - 18. The one or more access devices and user devices of claim 1, wherein one or more partial user devices and one or more partial access devices are data transceiver devices and wherein said data transceiver devices are intelligent and one or more receivers are intelligent in that said data transceiver devices and said receivers are computerized and possess memory.
  - 19. The one or more access devices and user devices of claim 18, wherein said data transceiver partial user device is selected from a group consisting of cellular phones, cameras, infrared transmitters, optical transmitters, WiFi transmitters, Bluetooth transmitters, ultra-wide band near-field transmitters, communication transmitters, radiation transmitting devices, magnetic strips, and smart chips and wherein said data transceiver partial user devices and data transceiver partial access devices comprise sensors selected from a group consisting of RFIDs, gyro sensors, magnetic field sensors, electromagnetic field sensors, electrical optical infrared sensors, radar sensors, lidar sensors, inclination accelerometers, inclinometers, cameras, and bio-sensors and wherein said data transceiver partial access devices are a cellular phone and wherein said data transceiver partial access devices are a cellular phone that can include a camera and wherein said cellular phone is a smart phone that can access, interact with, and display Internet provided data as well provide GPS guidance and allow for computational search, retrieval, and analysis of data derived from, residing within, or accessed by said smart phone.
  - 20. The one or more access devices and user devices of claim 1, wherein said partial access devices are selected from a group consisting of:
    - controllers and switches that control a flow of energy to and from devices including lights, transportation vehicles including aerospace vehicles, elevators and escalators, electrical switches, and electrical contacts, wherein said controllers and switches are selected from a group consisting of;
      
      rheostats, thermostats, and transformers, wherein said controllers and switches are selectively manipulated to operate and control said selected partial access devices within a specified range wherein said selected partial access devices are local or said selected partial access devices are remote or said selected partial access devices are both local and remote.
  - 21. The one or more access devices and user devices of claim 1, wherein simultaneously said partial access devices send one or more messages in the form of a group consisting of:
    - an oral message, a verbal message, a text message, and data message, wherein said messages are displayed and are associated with an encryption match.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Ironclad Encryption Corp.
Original Assignee
Daniel Maurice Lerner
Inventors
Lerner, Daniel Maurice
Primary Examiner(s)
Holder, Bradley W

Application Number

US16/173,091
Publication Number

US 20190230077A1
Time in Patent Office

512 Days
Field of Search
US Class Current
CPC Class Codes

G06F 16/27   Replication, distribution o...

G06F 21/34   involving the use of extern...

G06F 21/36   by graphic or iconic repres...

G06F 21/53   by executing in a restricte...

H04L 2463/082   applying multi-factor authe...

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

H04L 63/0823   using certificates cryptogr...

H04L 63/0861   using biometrical features,...

H04L 63/0876   based on the identity of th...

H04L 63/104   Grouping of entities

H04L 63/20   for managing network securi...

H04L 9/0819   Key transport or distributi...

H04L 9/0866   involving user or device id...

H04L 9/088   Usage controlling of secret...

H04L 9/0894   Escrow, recovery or storing...

H04L 9/14   using a plurality of keys o...

H04L 9/32   including means for verifyi...

Securitization of temporal digital communications with authentication and validation of user and access devices

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

41 Citations

21 Claims

Specification

Use Cases

Quick Links

Others

Securitization of temporal digital communications with authentication and validation of user and access devices

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

41 Citations

21 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others