In-circuit security system and methods for controlling access to and use of sensitive data
First Claim
Patent Images
1. An in-circuit security system for electronic devices, comprising:
- a processor;
a memory, coupled to the processor;
a real-time clock, coupled to the processor;
a cryptographic subsystem, coupled to the processor and the real-time clock;
a random number generator, coupled to the cryptographic subsystem;
an identity credential verification subsystem, coupled to the processor;
at least three input/output interfaces;
wherein, said processor provides means for load and execution of instructions and associated data;
wherein, said memory provides means for storage of instructions and data, including security settings and profiles;
wherein, said real-time clock provides means for generating an accurate time;
wherein, said cryptographic subsystem provides means for performing encryption, decryption, digital signing, and digital signature verification;
wherein, said random number generator provides means for randomly producing a number with statistical randomness sufficient to meet a pre-determined level;
wherein, said identity credential verification subsystem provides means for identity credential acquisition, analysis, storage and matching;
wherein, a first input/output interface is used for connection between the identity credential verification subsystem and an external identity credential sensor;
wherein, a second input/output interface is used for transmission and receipt of data to and from a remote connection device; and
wherein, a third input/output line is used for connection to at least one peripheral device.
6 Assignments
0 Petitions
Accused Products
Abstract
The invention disclosed herein is an in-circuit security system for electronic devices. The in-circuit security system incorporates identity credential verification, secure data and instruction storage, and secure data transmission capabilities. It comprises a single semiconductor chip, and is secured using industry-established mechanisms for preventing information tampering or eavesdropping, such as the addition of oxygen reactive layers. This invention also incorporates means for establishing security settings, profiles, and responses for the in-circuit security system and enrolled individuals. The in-circuit security system can be used in a variety of electronic devices, including handheld computers, secure facility keys, vehicle operation/ignition systems, and digital rights management.
-
Citations
17 Claims
-
1. An in-circuit security system for electronic devices, comprising:
-
a processor;
a memory, coupled to the processor;
a real-time clock, coupled to the processor;
a cryptographic subsystem, coupled to the processor and the real-time clock;
a random number generator, coupled to the cryptographic subsystem;
an identity credential verification subsystem, coupled to the processor;
at least three input/output interfaces;
wherein, said processor provides means for load and execution of instructions and associated data;
wherein, said memory provides means for storage of instructions and data, including security settings and profiles;
wherein, said real-time clock provides means for generating an accurate time;
wherein, said cryptographic subsystem provides means for performing encryption, decryption, digital signing, and digital signature verification;
wherein, said random number generator provides means for randomly producing a number with statistical randomness sufficient to meet a pre-determined level;
wherein, said identity credential verification subsystem provides means for identity credential acquisition, analysis, storage and matching;
wherein, a first input/output interface is used for connection between the identity credential verification subsystem and an external identity credential sensor;
wherein, a second input/output interface is used for transmission and receipt of data to and from a remote connection device; and
wherein, a third input/output line is used for connection to at least one peripheral device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for controlling access to an electronic device having an in-circuit security system, comprising:
-
a. requiring enrollment of a personal identity credential within an identity credential verification subsystem, b. associating the personal identity credential with at least one security privilege, c. requesting a personal identity credential sample be provided to the identity credential verification subsystem upon access request, d. comparing the personal identity credential sample to at least one enrolled personal identity credential within the identity credential verification subsystem, e. determining existence of a match between the personal identity credential sample and an enrolled personal identity credential, f. determining all security privileges associated with the personal identity credential sample, g. determining access authorization based on at least one of said determined existence of a match or said determined security privileges, h. granting or denying access based on said access authorization, and i. performing any actions required for said granting or denying of access as stipulated by security settings. - View Dependent Claims (14, 15, 16, 17)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeApple Inc.
-
Original AssigneePrivaris, Inc.
-
InventorsOlvera, Kristen R., Johnson, Barry W., Russell, David C., Tillack, Jonathan A.
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current713/176
-
CPC Class CodesG06F 16/51 Indexing; Data structures t...G06F 18/22 Matching criteria, e.g. pro...G06F 21/1076 RevocationG06F 21/31 User authenticationG06F 21/32 using biometric data, e.g. ...G06F 21/6209 to a single file or object,...G06F 21/72 in cryptographic circuitsG06F 21/85 interconnection devices, e....G06V 40/13 Sensors thereforG06V 40/1365 Matching; ClassificationH04L 63/06 for supporting key manageme...H04L 63/0861 using biometrical features,...H04L 63/102 Entity profilesH04L 9/3231 Biological data, e.g. finge...H04N 21/25875 involving end-user authenti...H04N 21/4415 using biometric characteris...
