COMMUNICATION CARD, CONFIDENTIAL INFORMATION PROCESSING SYSTEM, AND CONFIDENTIAL INFORMATION TRANSFER METHOD AND PROGRAM

US 20070015589A1
Filed: 07/11/2006
Published: 01/18/2007
Est. Priority Date: 07/12/2005
Status: Abandoned Application

First Claim

Patent Images

1. A communication card connectable to a host device, comprising:

an interface unit operable to communicate with the host device;

a first communication unit operable to communicate with an external device other than the host device;

an encryption unit operable to perform encryption processing onto data transferred between the host device and the external device via said interface unit and said first communication unit;

a storage unit operable to store the following;

list information indicating a list of identifiers of unauthorized communication cards; and

communication key information used for performing encryption processing onto the data; and

a control unit operable to;

perform authentication processing between said communication card and the host device, and only when the authentication processing has been completed normally, allow the host device to control said first communication unit, cause said encryption unit to encrypt the data by using the communication key information after the authentication processing, and transfer the encrypted data to the host device via said interface unit, wherein the authentication processing includes processing of revoking, by using the list information, an unexpected unauthorized communication card.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A communication card comprised of: an interface unit which communicates with the host; a first communication unit which communicates with an external device other than the host; an encryption unit which performs encryption processing onto data transferred between the host device and the external device via the interface unit and the first communication unit; a storage unit which stores: list information indicating a list of identifiers of unauthorized communication cards; and communication key information used for encryption; and a control unit which performs authentication processing, and only when the authentication processing has been completed normally, allows the host to control the first communication unit, causes said encryption unit to encrypt the data by using the communication key information after the authentication processing, and transfers the encrypted data to the host via the interface unit, in which the authentication processing includes processing of revoking an unauthorized communication card by using the list information.

63 Citations

View as Search Results

25 Claims

1. A communication card connectable to a host device, comprising:
- an interface unit operable to communicate with the host device;
  
  a first communication unit operable to communicate with an external device other than the host device;
  
  an encryption unit operable to perform encryption processing onto data transferred between the host device and the external device via said interface unit and said first communication unit;
  
  a storage unit operable to store the following;
  
  list information indicating a list of identifiers of unauthorized communication cards; and
  
  communication key information used for performing encryption processing onto the data; and
  
  a control unit operable to;
  
  perform authentication processing between said communication card and the host device, and only when the authentication processing has been completed normally, allow the host device to control said first communication unit, cause said encryption unit to encrypt the data by using the communication key information after the authentication processing, and transfer the encrypted data to the host device via said interface unit, wherein the authentication processing includes processing of revoking, by using the list information, an unexpected unauthorized communication card.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The communication card according to claim 1, further comprising a memory unit operable to store data, wherein said control unit is operable to:
    - cause said encryption unit to encrypt, by using the communication key information, the data received from the external device by said first communication unit, store the encrypted data into said memory unit, and transfer the encrypted data stored in said memory unit to the host device through said interface unit;
      
      store in said memory unit the encrypted data received from the host device by said interface unit, and cause said encryption unit to decrypt by using the communication key information the encrypted data stored in said memory unit; and
      
      transfer the decrypted data to the external device via said first communication unit.
  - 3. The communication card according to claim 1, wherein said control unit is operable to perform first, second, and third processing in the authentication processing, the first processing is processing of determining whether both of said communication card and the host device are authorized ones, the second processing is processing of revoking an unexpected unauthorized host device, and the third processing is processing of revoking, by using the list information, an unexpected unauthorized communication card.
  - 4. The communication card according to claim 1, wherein said first communication unit has an encryption circuit operable to perform encryption processing onto the data, and operable to communicate, with said external device, encrypted data encrypted by said encryption circuit, said communication card further comprises a second communication unit operable to communicate non-encrypted data with the external device, and said control unit is operable to:
    - allow the host device to use said second communication unit without authentication processing, and transfer non-encrypted data between said second communication unit and said interface unit.
  - 5. The communication card according to claim 1, wherein said first communication unit has a first encryption circuit operable to perform encryption processing onto communication data, and is operable to communicate, with said external device, encrypted data encrypted by said first encryption circuit, said communication card further comprises one or more second communication units, each of which has a second encryption circuit operable to perform encryption processing onto communication data, and is operable to communicate to an external device encrypted data generated by said second encryption circuit, and said control unit is further operable to:
    - perform authentication processing between said communication card and host devices, using individually different information, and, only when the authentication processing has been completed normally, allow a host device to control said second communication unit corresponding to each authentication processing, then after the authentication processing, cause said encryption unit to encrypt the data by using communication key information different from the communication key information, and transfer the encrypted data to the host device via said interface unit.
  - 6. The communication card according to claim 1, wherein said first communication unit has a first encryption circuit operable to perform encryption processing onto communication data, and is operable to communicate, with said external device, encrypted data encrypted by said first encryption circuit, said communication card further comprises one or more second communication units, each of which has a second encryption circuit operable to perform encryption processing onto communication data, and is operable to communicate to an external device encrypted data generated by said second encryption circuit, and when the authentication processing has been completed normally, said control unit is further operable to:
    - allow the host device to control each of said second communication units, cause said encryption unit to encrypt, by using the communication key information, the data obtained from said second communication unit, and transfer the encrypted data to the host device via said interface unit.
  - 7. The communication card according to claim 1, further comprising a holding unit operable to hold at least one of (i) authentication information indicating whether authentication processing is necessary between a host device and a communication card, (ii) encryption information indicating whether encryption processing is necessary between a host device and a communication card, (iii) memory information indicating whether data is stored in said memory unit, and (iv) completion information indicating whether authentication processing has been completed normally, wherein said control unit is operable to control said first communication unit in accordance with the information held in said holding unit.
  - 8. The communication card according to claim 3, wherein said storage unit has a public area which is an area accessible even from an unauthenticated host device and a hidden area which is an area accessible only from an authorized and authenticated host device, said public area has a first area that can only be read by a host device, said first area holds an authentication card key which is a key proper to each communication card and used in the third processing, said hidden area has a second area which is an area that cannot be read and written by a host device, said second area holds a first authentication key which is an expected value of a first authentication key generated in the first or the second processing, and the authentication card key is encrypted with the first authentication key.
  - 9. The communication card according to claim 8, wherein said second area further holds a communication key which is a key used for encryption and decryption of data by said communication card, the communication key being included in the communication key information.
  - 10. The communication card according to claim 9, wherein said control unit is operable, in the first processing, to authenticate an authorization status of a host device by using the following:
    - an authentication host key indicating an identifier of the host device; and
      
      a first authentication slave key indicating a list of identifiers of authorized host devices, in the second processing, to revoke an unauthorized host device by using the authentication host key, and a second authentication slave key indicating a list of identifiers of unexpected unauthorized host devices, and in the third processing, to provide to the host device the authentication card key and a third authentication slave key which is said list information, and to cause said host device to revoke an unauthorized communication card, and wherein the second processing is omitted in a case that the second authentication slave key is not present, and the third processing is omitted in a case that the third authentication slave key is not present.
  - 11. The communication card according to claim 10, wherein said hidden area further has a third area which is an area that can be read and written by the host device only when the authentication processing has been completed normally, said third area holds the communication key, and the communication key is encrypted in advance with the first authentication key in a case that only the first processing is performed in the authentication processing, encrypted in advance with a second authentication key which is a key generated in the second processing, in a case that only the first processing and the second processing are performed in the authentication processing, and encrypted in advance with a third authentication key which is a key generated in the third processing, in a case that the first processing through the third processing are performed in the authentication processing or alternatively in a case that only the first processing and the third processing are performed.
  - 12. The communication card according to claim 10, wherein said public area further has a fourth area which is an area that can be read and written by a host device, said fourth area is an area operable to hold the third authentication slave key, and the third authentication slave key is:
    - encrypted in advance with a first authentication intermediate key which is a key generated in the first processing, in a case that only the first processing and the third processing are performed in the authentication processing; and
      
      encrypted in advance with a second authentication intermediate key which is a key generated in the second processing, in a case that the first processing through the third processing are performed in the authentication processing.

13. A confidential information processing system comprising a host device and a communication card connectable to said host device, said communication card including:
- an interface unit operable to communicate with said host device, a first communication unit operable to communicate with an external device other than said host device, an encryption unit operable to perform encryption processing onto data transferred between said host device and the external device via said interface unit and said first communication unit, a storage unit operable to store the following;
  
  list information indicating a list of identifiers of unauthorized communication cards;
  
  and communication key information used for performing encryption processing onto the data, and a first control unit operable to control said communication card, said host device including;
  
  a card slot operable to connect with said communication card, and a second control unit operable to control said host device, wherein said host device and said communication card perform authentication processing between said communication card and said host device, and only when the authentication processing has been completed normally, said first control unit is operable to;
  
  allow said host device to control said first communication unit;
  
  cause said encryption unit to encrypt the data by using the communication key information after the authentication processing, and transfer the encrypted data to said host device via said interface unit, and wherein the authentication processing includes processing of revoking, by using the list information, an unexpected unauthorized communication card.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
- - 14. The confidential information processing system according to claim 13, wherein said first and said second control units are operable to perform first, second, and third processing in the authentication processing, the first processing is processing of determining whether both of said communication card and said host device are authorized ones, the second processing is processing of revoking an unexpected unauthorized host device, and the third processing is processing of revoking, by using the list information, an unexpected unauthorized communication card.
  - 15. The confidential information processing system according to claim 14, wherein in the third processing, said first and said second control units are operable to determine whether said communication card is an unauthorized communication card, by using an authentication card key which is a key proper to each communication card, and a third authentication slave key which is said list information.
  - 16. The confidential information processing system according to claim 15, wherein said first and said second control units are operable, in the first processing, to authenticate an authorization status of a host device by using the following:
    - an authentication host key indicating an identifier of said host device; and
      
      a first authentication slave key indicating a list of identifiers of authorized host devices, in the second processing, to revoke an unauthorized host device by using the authentication host key and a second authentication slave key indicating a list of identifiers of unexpected unauthorized host devices, and in the third processing, to provide to said host device the authentication card key and a third authentication slave key which is the list information, and to cause said host device to revoke an unauthorized communication card, and wherein the second processing is omitted in a case that the second authentication slave key is not present, and said third processing is omitted in a case that the third authentication slave key is not present.
  - 17. The confidential information processing system according to claim 16, wherein said first and said second control units are operable to:
    - perform the third processing after the second processing in a case that the second authentication slave key and the third authentication slave key are present, and perform the third processing after the first processing in a case that the second authentication slave key is not present and the third authentication slave key is present.
  - 18. The confidential information processing system according to claim 16, wherein said second control unit is operable to decrypt said authentication card key encrypted in advance, with a first authentication key generated in the first processing, in a case that the third authentication slave key is present.
  - 19. The confidential information processing system according to claim 16, wherein said second control unit, in a case that the first processing and the third processing are performed, is operable to:
    - decrypt the third authentication slave key encrypted in advance, with a first authentication intermediate key; and
      
      decrypt the key with a second authentication intermediate key in a case that the first processing, the second processing and the third processing are performed.
  - 20. The confidential information processing system according to claim 16, wherein said second control unit is operable to:
    - generate a third intermediate key in the third processing, and generate a third authentication key from the third intermediate key and a card number which is a number proper to each communication card.
  - 21. The confidential information processing system according to claim 16, wherein when receiving a report of an unexpected unauthorized communication card, said second control unit is further operable to:
    - update the third authentication slave key, and issue the updated third authentication slave key to said communication card.
  - 22. The confidential information processing system according to claim 21, wherein said storage unit has a public area which is an area accessible even from an unauthenticated host device and a hidden area which is an area accessible only from an authorized and authenticated host device, said public area has a first area that can only be read by a host device, said first area holds an authentication card key which is a key proper to each communication card and used in the third processing, said hidden area has a second area which is an area that cannot be read and written by a host device and a third area which is an area that can be read and written by a host device only when said authentication processing has been completed normally, said second area holds a first authentication key which is an expected value of a first authentication key generated in the first processing, and a communication key which is a key used for encryption and decryption of data by said communication card, the communication key being included in the communication key information, said third area holds a communication key which is the communication key having been encrypted, and is included in the communication key information, said public area further has a fourth area which is an area that can be read and written by a host device, and said fourth area is an area operable to hold the third authentication slave key.
  - 23. The confidential information processing system according to claim 22, wherein when the third authentication slave key is updated, said second control unit is further operable to re-encrypt the encrypted communication key held in said third area, with an updated third authentication key generated in the third processing using the updated third authentication slave key.
  - 24. The confidential information processing system according to claim 22, wherein in a case that the communication key is encrypted with the first authentication key and stored in said communication card, after normal completion of authentication processing between said communication card and said host device, said first control unit is operable to:
    - re-generate a communication key in said communication card, change, by using the re-generated communication key, the communication key in said second area and the encrypted communication key in said third area, and perform data encryption processing with the changed communication key.

25. A confidential information transfer method used in a communication card including:
- an interface unit which communicates with a host device;
  
  a first communication unit which communicates with an external device other than the host device;
  
  an encryption unit which performs encryption processing onto data transferred between the host device and the external device via the interface unit and the first communication unit; and
  
  a memory unit which stores list information indicating a list of unauthorized communication cards and communication key information used for performing encryption processing onto the data, said method comprising;
  
  performing, between the communication card and the host device, authentication processing that includes processing of revoking, by using the list information, an unexpected unauthorized communication card;
  
  allowing the host device to control the first communication unit only when the authentication processing has been completed normally; and
  
  causing the encryption unit to encrypt the data by using the communication key information after the authentication processing, and transferring the encrypted data to the host device via the interface unit.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Panasonic Corporation (Panasonic Holdings Corporation)
Original Assignee
Matsushita Electric Industrial Company Limited (Panasonic Holdings Corporation)
Inventors
Sato, Tomoya, Shimizu, Kazuya, Fujiwara, Makoto, Shiomi, Kentaro, Nemoto, Yusuke, Torisaki, Yuishi

Application Number

US11/456,665
Publication Number

US 20070015589A1
Time in Patent Office

Days
Field of Search
US Class Current

463/43
CPC Class Codes

G06F 21/10 Protecting distributed prog...

G06F 21/6245 Protecting personal data, e...

COMMUNICATION CARD, CONFIDENTIAL INFORMATION PROCESSING SYSTEM, AND CONFIDENTIAL INFORMATION TRANSFER METHOD AND PROGRAM

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

63 Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

COMMUNICATION CARD, CONFIDENTIAL INFORMATION PROCESSING SYSTEM, AND CONFIDENTIAL INFORMATION TRANSFER METHOD AND PROGRAM

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

63 Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links