Mobile terminal and data protection system

US 20050246553A1
Filed: 07/20/2004
Published: 11/03/2005
Est. Priority Date: 04/30/2004
Status: Abandoned Application

First Claim

Patent Images

1. A mobile terminal comprising:

an IC card interface adapted to detachably mount an IC card including an encryption key to encrypt data, a decryption key to decrypt the data encrypted with the encryption key to the original data, and a decryption processing unit;

a data encryption processing unit which captures the encryption key from the IC card mounted and encrypts input data with the encryption key;

a storage device which stores the encrypted data supplied from the data encryption processing unit; and

a data decryption processing unit which decrypts the encrypted data read from the storage device in the decryption processing unit of the IC card by using the decryption key;

wherein a set of encryption key and decryption key, which is assigned to each IC card, is respectively different.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A mobile terminal which is usable by a plurality of users enables only a regular user to browse data for the regular user of the mobile terminal.

An IC card 3 installed in a mobile terminal stores an encryption key 4 and a decryption key 5. Input data 10 is subjected to data encryption processing by using the encryption key 4 read from the IC card 3 to be transformed to encrypted data 14 and is then stored in a storage device 7. In addition, the encrypted data 14 read from the storage device 7 is subjected to decryption processing 6 in data decryption processing 200 by using the decryption key 5 to be decrypted to the original data. For different IC cards, different encryption keys 4 and different decryption keys 5 are assigned, and therefore, the data 14 will be subjected to the decryption processing 6 with a different decryption key 5. Consequently, the data 14 thus encrypted will not be decrypted correctly.

54 Citations

View as Search Results

15 Claims

1. A mobile terminal comprising:
- an IC card interface adapted to detachably mount an IC card including an encryption key to encrypt data, a decryption key to decrypt the data encrypted with the encryption key to the original data, and a decryption processing unit;
  
  a data encryption processing unit which captures the encryption key from the IC card mounted and encrypts input data with the encryption key;
  
  a storage device which stores the encrypted data supplied from the data encryption processing unit; and
  
  a data decryption processing unit which decrypts the encrypted data read from the storage device in the decryption processing unit of the IC card by using the decryption key;
  
  wherein a set of encryption key and decryption key, which is assigned to each IC card, is respectively different.
- View Dependent Claims (2, 5, 6, 7, 8, 9)
- - 2. A mobile terminal according to claim 1, wherein:
    - said data encryption processing unit generates random numbers to create a key of a symmetric encryption algorithm;
      
      encrypts said data by using the key of symmetric encryption algorithm to make actual encryption data; and
      
      encrypts the key of symmetric encryption algorithm with said encryption key to make encryption key data, thus creating encryption data including the encryption key data and actual encryption data; and
      
      the encryption data is stored in said storage device.
  - 5. A mobile terminal according to claim 2, wherein:
    - said decryption processing unit of said IC card decrypts the encrypted key data of said encryption data read from said storage device by using said decryption key to recover said key of symmetric encryption algorithm, decrypts said actual encryption data of said encryption data by using the key of symmetric encryption key thus recovered, and recover the actual encryption data to the original data.
  - 6. A mobile terminal according to claim 1, wherein said encryption key is contained and stored in a digital certificate and is used for encryption processing as being extracted from the digital certificate.
  - 7. A mobile terminal according to claim 1, wherein only data for which security must be ensured is encrypted.
  - 8. A mobile terminal according to claim 1, wherein said data is encrypted partially.
  - 9. A mobile terminal according to claim 1, further comprising a data protection unit which decides whether the decrypted data has been correctly decrypted or not, displays or reads the decrypted data only when decryption is carried out correctly, and, if the decryption is not correct, notifies a message to the effect that the decryption is incorrect.

3. A mobile terminal comprising:
- an IC card interface adapted to detachably mount an IC card including an encryption key to encrypt data, a decryption key to decrypt the data encrypted with the encryption key to the original data, a encryption processing unit and a decryption processing unit;
  
  a data encryption processing unit which encrypts input data in the encryption processing unit by using the encryption key of the IC card;
  
  a storage device which stores the encrypted data supplied from the data encryption processing unit; and
  
  a data decryption processing unit which decrypts the encrypted data read from the storage device in the decryption processing unit of the IC card by using the decryption key;
  
  wherein a set of encryption key and decryption key, which is assigned to each IC card, is respectively different.
- View Dependent Claims (4)
- - 4. A mobile terminal according to claim 3, wherein:
    - said encryption processing unit of said IC card generates random numbers to create a key of a symmetric encryption algorithm;
      
      encrypts said data by using the key of symmetric encryption algorithm to make actual encryption data; and
      
      encrypts the key of symmetric encryption algorithm with said encryption key to make encryption key data, thus creating encryption data including the encryption key data and actual encryption data; and
      
      the encryption data is stored in said storage device.

10. A data protection system, wherein:
- an IC card includes an encryption key to encrypt data and a decryption key to decrypt the data encrypted with the encryption key to the original data;
  
  input data is encrypted by using the encryption key captured from the IC card and stored in a storage device;
  
  the stored encrypted data is decrypted in the IC card by using the decryption key; and
  
  a set of encryption key and decryption key, which is assigned to each IC card, is respectively different.
- View Dependent Claims (12, 13, 14, 15)
- - 12. A data protection system according to claim 10, wherein said encrypted and stored data is encryption data comprising said actual encryption data which is created by encrypting said data with a key of symmetric encryption algorithm generated from random numbers and said encryption key data which is created by encrypting the key of symmetric encryption algorithm with said encryption key.
  - 13. A data protection system according to claim 12, wherein decryption processing of said encryption data comprising steps of:
    - decrypting said encryption key data of said encryption data by using said decryption key to recover said key of symmetric encryption algorithm; and
      
      decrypting said actual encryption data of said encryption data by using the recovered key of symmetric encryption algorithm for recovery to the original data.
  - 14. A data protection system according to claim 10, wherein said encryption key is contained and stored in a digital certificate and is extracted from the digital certificate for use with encryption processing.
  - 15. A data protection system according to claim 10, wherein said decrypted data is decided as to whether it is correctly recovered or not, and, only if the decrypted data is correctly decrypted, said decrypted data is displayed or read, or if the decrypted data is not recovered correctly, a message to the effect that the decrypted data is incorrect is notified.

11. A data protection system, wherein:
- an IC card includes an encryption key to encrypt data and a decryption key to decrypt the data encrypted with the encryption key to the original data;
  
  input data is encrypted by using the encryption key in the IC card and stored in a storage device;
  
  the stored encrypted data is decrypted in the IC card by using the decryption key; and
  
  a set of encryption key and decryption key, which is assigned to each IC card, is respectively different.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Hitachi, Ltd.
Original Assignee
Hitachi, Ltd.
Inventors
Nakamura, Hideki, Nagura, Toru

Application Number

US10/894,046
Publication Number

US 20050246553A1
Time in Patent Office

Days
Field of Search
US Class Current

713/193
CPC Class Codes

H04L 2209/60   Digital content management,...

H04L 2209/80   Wireless network architectu...

H04L 9/0877   using additional device, e....

H04L 9/0894   Escrow, recovery or storing...

Mobile terminal and data protection system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

54 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Mobile terminal and data protection system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

54 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links