In-circuit security system and methods for controlling access to and use of sensitive data
First Claim
1. An in-circuit security system for electronic devices, comprising:
- a processor;
a memory, coupled to the processor;
a real-time clock, coupled to the processor;
a cryptographic subsystem, coupled to the processor and the real-time clock;
a random number generator, coupled to the cryptographic subsystem;
an identity credential verification subsystem, coupled to the processor;
at least three input/output interfaces;
wherein, said processor provides means for load and execution of instructions and associated data;
wherein, said memory provides means for storage of instructions and data, including security settings and profiles;
wherein, said real-time clock provides means for generating an accurate time;
wherein, said cryptographic subsystem provides means for performing encryption, decryption, digital signing, and digital signature verification;
wherein, said random number generator provides means for randomly producing a number with statistical randomness sufficient to meet a pre-determined level;
wherein, said identity credential verification subsystem provides means for identity credential acquisition, analysis, storage and matching;
wherein, a first input/output interface is used for connection between the identity credential verification subsystem and an external identity credential sensor;
wherein, a second input/output interface is used for transmission and receipt of data to and from a remote connection device; and
wherein, a third input/output line is used for connection to at least one peripheral device.
6 Assignments
0 Petitions
Accused Products
Abstract
The invention disclosed herein is an in-circuit security system for electronic devices. The in-circuit security system incorporates identity credential verification, secure data and instruction storage, and secure data transmission capabilities. It comprises a single semiconductor chip, and is secured using industry-established mechanisms for preventing information tampering or eavesdropping, such as the addition of oxygen reactive layers. This invention also incorporates means for establishing security settings, profiles, and responses for the in-circuit security system and enrolled individuals. The in-circuit security system can be used in a variety of electronic devices, including handheld computers, secure facility keys, vehicle operation/ignition systems, and digital rights management.
-
Citations
17 Claims
-
1. An in-circuit security system for electronic devices, comprising:
-
a processor;
a memory, coupled to the processor;
a real-time clock, coupled to the processor;
a cryptographic subsystem, coupled to the processor and the real-time clock;
a random number generator, coupled to the cryptographic subsystem;
an identity credential verification subsystem, coupled to the processor;
at least three input/output interfaces;
wherein, said processor provides means for load and execution of instructions and associated data;
wherein, said memory provides means for storage of instructions and data, including security settings and profiles;
wherein, said real-time clock provides means for generating an accurate time;
wherein, said cryptographic subsystem provides means for performing encryption, decryption, digital signing, and digital signature verification;
wherein, said random number generator provides means for randomly producing a number with statistical randomness sufficient to meet a pre-determined level;
wherein, said identity credential verification subsystem provides means for identity credential acquisition, analysis, storage and matching;
wherein, a first input/output interface is used for connection between the identity credential verification subsystem and an external identity credential sensor;
wherein, a second input/output interface is used for transmission and receipt of data to and from a remote connection device; and
wherein, a third input/output line is used for connection to at least one peripheral device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for controlling access to an electronic device having an in-circuit security system, comprising:
-
a. requiring enrollment of a personal identity credential within an identity credential verification subsystem, b. associating the personal identity credential with at least one security privilege, c. requesting a personal identity credential sample be provided to the identity credential verification subsystem upon access request, d. comparing the personal identity credential sample to at least one enrolled personal identity credential within the identity credential verification subsystem, e. determining existence of a match between the personal identity credential sample and an enrolled personal identity credential, f. determining all security privileges associated with the personal identity credential sample, g. determining access authorization based on at least one of said determined existence of a match or said determined security privileges, h. granting or denying access based on said access authorization, and i. performing any actions required for said granting or denying of access as stipulated by security settings. - View Dependent Claims (14, 15, 16, 17)
-
Specification