Method and apparatus for secure mobile transaction

US 20030059049A1
Filed: 09/24/2001
Published: 03/27/2003
Est. Priority Date: 09/24/2001
Status: Abandoned Application

First Claim

Patent Images

1. A method in a wireless communication device comprising:

applying power to the wireless communication device; and

authenticating a certified program segment with a cryptographic program segment and a public key in response to applying power to said wireless communication device, said cryptographic program segment and said public key are hard coded into a non-reprogramable read only memory (ROM) of said wireless communication device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system for securing and authenticating wireless transactions. The method includes hard cooing a public key into a non-reprogramable ROM 114 through a first path 130 of a wireless communication device 116. An object to be stored on the wireless device is first signed by a private or secret key 104, which corresponds to the public key 104, to create a certificate 120. The certificate 120 is then bound to the object and both are subsequently sent to the wireless device 116 though a second path 132, which is different from the first path 130. A certified program segment 119 is also stored on the wireless device and is executed upon the boot up process of the device. During the boot process of the device, the certified program segment 119 is authenticated, and if authentic, it is executed. During the execution of the authenticated certified program sequence 119, certificates of corresponding objects stored on the device are authenticated by the public key and cryptographic program segments stored in the non-reprogramable ROM.

30 Citations

View as Search Results

23 Claims

1. A method in a wireless communication device comprising:
- applying power to the wireless communication device; and
  
  authenticating a certified program segment with a cryptographic program segment and a public key in response to applying power to said wireless communication device, said cryptographic program segment and said public key are hard coded into a non-reprogramable read only memory (ROM) of said wireless communication device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1 executing said certified program segment if said certified program segment is authenticated, said certified program segment having an object authentication program segment.
  - 3. The method of claim 1 entering said wireless communication device into an alternate mode of operation if said certified program segment is not authentic.
  - 4. The method of claim 2 authenticating an object in said wireless communication device with said public key and said cryptographic program segment in response to execution of said object authentication program segment of said certified program segment.
  - 5. The method of claim 4 further comprising entering said wireless communication device into a second alternate mode of operation if said object is not authentic.
  - 6. The method of claim 2 authenticating an object in response to executing said object authentication program segment in said certified program segment, wherein said at least one object authentication program segment comprises a first pointer, pointing to said public key of said non reprogramable ROM and a second pointer pointing to said cryptographic program segment of said non reprogramable ROM.
  - 7. The method of claim 1 installing said cryptographic program segment and said public key on said wireless communication device through a first path.
  - 8. The method of claim 7 authenticating an object in said wireless communication device with said public key and said cryptographic program segment in response to said certified program segment, said object and said certified program segment installed in said wireless communication device through a second path, said second path being different from said first path.
  - 9. The method of claim 4 receiving said object through a wireless interface of said wireless communication device before authenticating said object.
  - 10. The method of claim 4 further comprising downloading a new object and a corresponding certified program segment onto said wireless communication device, said corresponding certified program segment having a second object authentication program segment to authenticate said new object.

11. An wireless communication device comprising:
- a microprocessor;
  
  a non-reprogramable ROM coupled to said microprocessor;
  
  a cryptographic program segment hard coded into said non reprogramable ROM;
  
  a certified program segment; and
  
  a public key hard coded into said non-reprogramable ROM for authenticating said certified program segment.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
- - 12. The wireless communication device of claim 11 comprising a memory unit coupled to said microprocessor.
  - 13. The wireless communication device of claim 12 comprising an object, wherein said object is stored in said memory unit, and an authentic certified program segment for authenticating said object.
  - 14. The wireless communication device of claim 11 wherein said certified program segment is authenticated by said cryptographic program segment and said public key during the boot up process of the wireless communication device.
  - 15. The wireless communication device of claim 12 wherein said certified program segment is stored in said memory unit.
  - 16. The wireless communication device of claim 11 wherein said wireless communication device is a cellular radiotelephone handset.
  - 17. The wireless communication device of claim 11 wherein said non-reprogramable ROM is internal to said microprocessor.
  - 18. The wireless communication device of claim 11 wherein said non-reprogramable ROM is a mask programmed ROM.
  - 19. The wireless communication device of claim 11 wherein the publick key is signed with a private key to form said super root public key.

20. An wireless communication device comprising:
- a central processor means;
  
  a non-reprogramable ROM coupled to said central processor means for storing a plurality of hard coded program segments;
  
  a transceiver coupled to said central processor means;
  
  a certified program segment stored on said wireless communication device;
  
  a public key hard coded into said non-reprogramable ROM; and
  
  an authenticating means hard coded into said non reprogramable ROM for authenticating said certified program segment with said public key during a boot process of the wireless communication device.
- View Dependent Claims (21, 22, 23)
- - 21. The wireless communication device of claim 20 comprising an object stored on said wireless communication device, said object authenticated by said authenticating means in response to execution of said certified program segment in response to said certified program segment being authenticated.
  - 22. The wireless communication device of claim 20 comprising a new object installed in said wireless communication device through a wireless interface.
  - 23. The wireless communication device of claim 21 comprising a new certified program segment stored in said wireless communication device for authenticating said new object.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Motorola, Inc. (Motorola Solutions, Inc.)
Original Assignee
Motorola, Inc. (Motorola Solutions, Inc.)
Inventors
Nguyen, Khanh Q., Bina, Fred F., Moseley, Philip, Mihm, Thomas J. Jr.

Application Number

US09/961,718
Publication Number

US 20030059049A1
Time in Patent Office

Days
Field of Search
US Class Current

380/270
CPC Class Codes

G06F 21/51   at application loading time...

G06F 21/575   Secure boot

G06Q 20/00   Payment architectures, sche...

G06Q 20/12   specially adapted for elect...

G06Q 20/3227   using secure elements embed...

G06Q 20/3823   combining multiple encrypti...

Method and apparatus for secure mobile transaction

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

30 Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for secure mobile transaction

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

30 Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links