System and method for secure collaborative terminal identity authentication between a wireless communication device and a wireless operator

US 20060095454A1
Filed: 10/29/2004
Published: 05/04/2006
Est. Priority Date: 10/29/2004
Status: Abandoned Application

First Claim

Patent Images

1. A system for providing a wireless communication device with secure terminal identity information, comprising:

a public key generator configured to generate a unique public key and a unique private key for said wireless communication device and cause said private key to be stored within a secure execution environment of said wireless communication device; and

a certificate generator coupled to said public key generator and configured to create a device-bound certificate based on an identity of said wireless communication device and cause said device-bound certificate to be stored within said secure execution environment.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods for providing a wireless communication device with secure terminal identity information and secure collaborative terminal identity authentication between the wireless communication device and a wireless operator. In one embodiment, the system for providing a wireless communication device with secure terminal identity information includes: (1) a public key generator configured to generate a unique public key and a unique private key based on an identity of the wireless communication device and cause the private key to be stored within a secure execution environment of the wireless communication device and (2) a certificate generator coupled to the public key generator and configured to create a device-bound certificate based on the identity and cause the device-bound certificate to be stored within the secure execution environment.

Citations

20 Claims

1. A system for providing a wireless communication device with secure terminal identity information, comprising:
- a public key generator configured to generate a unique public key and a unique private key for said wireless communication device and cause said private key to be stored within a secure execution environment of said wireless communication device; and
  
  a certificate generator coupled to said public key generator and configured to create a device-bound certificate based on an identity of said wireless communication device and cause said device-bound certificate to be stored within said secure execution environment.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The system as recited in claim 1 wherein said public key generator executes in a host downloader to generate said unique public key and said unique private key and encrypts said private key with a selected one of an operator-specific secret key and a wireless communication device manufacturer-specific secret key before transmitting said private key toward said secure execution environment.
  - 3. The system as recited in claim 1 wherein said public key generator executes in said secure execution environment to generate said unique public key and said unique private key.
  - 4. The system as recited in claim 1 wherein said certificate generator operates in a host downloader to create said device-bound certificate.
  - 5. The system as recited in claim 1 wherein said device-bound certificate is based on a device-specific secret key preprogrammed into said secure execution environment.

6. A method of providing a wireless communication device with secure terminal identity information, comprising:
- generating a unique public key and a corresponding unique private key for said wireless communication device outside said wireless communication device;
  
  creating a device-bound certificate based on an identity of said wireless communication device; and
  
  causing said private key and said device-bound certificate to be stored within a secure execution environment of said wireless communication device.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The method as recited in claim 6 wherein said generating is carried out in a host downloader and said method further comprises encrypting said private key with a selected one of an operator-specific secret key and a wireless communication device manufacturer-specific secret key before transmitting said private key toward said secure execution environment.
  - 8. The method as recited in claim 6 wherein said generating is carried out in said secure execution environment.
  - 9. The method as recited in claim 6 wherein said certificate generator operates in a host downloader to create said device-bound certificate.
  - 10. The method as recited in claim 6 wherein said device-bound certificate is based on a device-specific secret key preprogrammed into said secure execution environment.

11. A system for secure collaborative terminal identity authentication between a wireless communication device and a wireless operator, comprising:
- a challenge receiver operable within said wireless communication device and configured to receive a challenge from said wireless operator; and
  
  a response generator operable within said wireless communication device and configured to generate a response by digitally signing said challenge with a private key of said wireless communication device within a secure execution environment thereof.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The system as recited in claim 11 wherein said challenge is at least pseudorandom.
  - 13. The system as recited in claim 11 wherein said challenge is encrypted with a public key unique to said wireless communication device.
  - 14. The system as recited in claim 11 wherein said challenge is received in response to an access request by said wireless communication device containing a public ID thereof.
  - 15. The system as recited in claim 11 wherein said wireless communication device is a wireless telephone.

16. A method of secure collaborative terminal identity authentication between a wireless communication device and a wireless operator, comprising:
- receiving a challenge from said wireless operator; and
  
  generating a response by digitally signing said challenge with a private key of said wireless communication device within a secure execution environment thereof.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The method as recited in claim 16 wherein said challenge is at least pseudorandom.
  - 18. The method as recited in claim 16 wherein said challenge is encrypted with a public key unique to said wireless communication device.
  - 19. The method as recited in claim 16 further comprising generating an access request containing a public ID of said wireless communication device.
  - 20. The method as recited in claim 16 wherein said wireless communication device is a wireless telephone.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Texas Instruments, Inc.
Original Assignee
Texas Instruments, Inc.
Inventors
Shankar, Narendar, Paksoy, Erdal, Sturgeon, Derrill

Application Number

US10/978,276
Publication Number

US 20060095454A1
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/602   Providing cryptographic fac...

G06F 2221/2149   Restricted operating enviro...

H04L 63/0823   using certificates cryptogr...

System and method for secure collaborative terminal identity authentication between a wireless communication device and a wireless operator

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for secure collaborative terminal identity authentication between a wireless communication device and a wireless operator

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links