SYSTEM FOR PROVIDING SECURITY IN A NETWORK COMPRISING COMMUNICATIONS DEVICES

US 20080016332A1
Filed: 07/11/2007
Published: 01/17/2008
Est. Priority Date: 07/30/1996
Status: Active Grant

First Claim

Patent Images

1. A system for providing secure communications between a plurality of devices, comprising:

a first, substantially portable device comprising a host computer running an untrusted operating system and untrusted hardware, a communications stack operative to run on said host computer, a first security apparatus adapted to establish a security association, and a communications interface adapted to establish a communications link with at least one other device;

a second computerized device comprising a second security apparatus;

a first computer program operative to run on said first portable device and adapted to verify the identify of a user of said first portable device before further access is permitted;

a second computer program operative to run on said first portable device and adapted to receive data sent from a higher layer process in said host computer for transmission over said communications link;

a third computer program operative to run on said first portable device and adapted to determine whether said security association exists with said second security apparatus of said second computerized device;

a fourth computer program operative to run on said first portable device and adapted to encrypt at least a portion of said data using at least one cryptographic key; and

a fifth computer program operative to run on said first portable device and adapted to transmit said at least portion to said second security apparatus when said security association does exist.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system for providing communications security and authentication to a plurality of computerized devices is disclosed. In one embodiment, the system is useful with an untrusted network, and comprises security apparatus adapted to create associations with a plurality of security devices on the network. Traffic between the associated devices may be encrypted and residue-protected for e.g., data confidentiality and integrity protection. In one variant, the security apparatus of the system comprises a software entity disposed at least partly within the software stack of a host. A security card may also be used as part of the security apparatus system. The computerized devices of the system may be untrusted (e.g., have an untrusted operating system) and also be physically unsecure.

107 Citations

View as Search Results

78 Claims

1. A system for providing secure communications between a plurality of devices, comprising:
- a first, substantially portable device comprising a host computer running an untrusted operating system and untrusted hardware, a communications stack operative to run on said host computer, a first security apparatus adapted to establish a security association, and a communications interface adapted to establish a communications link with at least one other device;
  
  a second computerized device comprising a second security apparatus;
  
  a first computer program operative to run on said first portable device and adapted to verify the identify of a user of said first portable device before further access is permitted;
  
  a second computer program operative to run on said first portable device and adapted to receive data sent from a higher layer process in said host computer for transmission over said communications link;
  
  a third computer program operative to run on said first portable device and adapted to determine whether said security association exists with said second security apparatus of said second computerized device;
  
  a fourth computer program operative to run on said first portable device and adapted to encrypt at least a portion of said data using at least one cryptographic key; and
  
  a fifth computer program operative to run on said first portable device and adapted to transmit said at least portion to said second security apparatus when said security association does exist.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43)
- - 2. The system of claim 1, wherein said first security apparatus comprises a removable and substantially user- or device-specific security card received at least party within a card reading apparatus of said portable device.
  - 3. The system of claim 2, wherein at least portions of said card are physically secure and protected from unauthorized access.
  - 4. The system of claim 2, wherein said card must exchange security information with said host computer before further processing of a user transaction or message is permitted.
  - 5. The system of claim 4, wherein said exchanged security information comprises security information that is unique and specific to said card.
  - 6. The system of claim 2, wherein said at least one cryptographic key is generated at least in part based on security information disposed on said security card.
  - 7. The system of claim 1, wherein said second computerized device comprises a substantially fixed and at least partly physically secure network access control device.
  - 8. The system of claim 7, wherein said network access control device further comprise an interface providing direct or indirect data communication to another network.
  - 9. The system of claim 1, wherein said second security apparatus of said second computerized device comprises an at least partly physically secure network gateway.
  - 10. The system of claim 9, wherein said gateway comprises an interface to a second network, said second network having a third security apparatus associated therewith, said third security apparatus of said second network being configured to establish security associations with at least said gateway.
  - 11. The system of claim 1, wherein said first computer program verifies the identity of said user of said portable devices comprises verification via a unique name or identification associated with said user.
  - 12. The system of claim 1, wherein said first computer program verifies the identity of said user of said portable device comprises verification via a password associated with said user.
  - 13. The system of claim 1, wherein said first computer program verifies the identity of said user of said portable device comprises verification via a key associated with said host computer.
  - 14. The system of claim 1, wherein said substantially portable device further comprises a network protocol used to resolve an IP address from a given hardware or network address.
  - 15. The system of claim 1, wherein said substantially portable device further comprises a network protocol used to resolve a given hardware or network address from an IP address.
  - 16. The system of claim 1, wherein said first security apparatus is further adapted to authenticate said second security apparatus of said second computerized device using a key-exchange algorithm.
  - 17. The system of claim 1, wherein said first security apparatus is further adapted to authenticate said second security device from which said second security apparatus has first requested authentication.
  - 18. The system of claim 1, wherein at least portions of said first security apparatus is disposed substantially within said software stack above the Physical Layer thereof.
  - 19. The system of claim 10, wherein at least portions of said first security apparatus is disposed substantially within said software stack above the Link Layer thereof.
  - 20. The system of claim 10, wherein at least portions of said first security apparatus is disposed substantially within said software stack below the Transport Layer thereof.
  - 21. The system of claim 1, wherein said at least one cryptographic key comprises at least one key of a public/private key pair.
  - 22. The system of claim 2, wherein said card further comprises a device driver.
  - 23. The system of claim 22, wherein said driver comprises an application programming interface (API).
  - 24. The system of claim 1, wherein said secure association comprises a non-permanent trusted communications channel between and unique to said first security apparatus and said second security apparatus.
  - 25. The system of claim 24, wherein said second computerized device comprises a fixed, substantially stand-alone device.
  - 26. The system of claim 1, wherein said communications link further comprises an auditor function in data communication therewith, said auditor function adapted to facilitate audit or tracking of unauthorized security events or attempted accesses.
  - 27. The system of claim 1, wherein said second computerized device comprises at least one interface port, access to which is based at least in part on identification of a user of said substantially portable device.
  - 28. The system of claim 1, wherein said first security apparatus is adapted to dynamically generate at least one encryption key for each association, said act of generating not requiring either (i) intervention by a network administrator;
    - or (ii) intervention by a user of said substantially portable device.
  - 29. The system of claim 1, wherein at least one encryption key is dynamically generated by said first security apparatus of said portable device pursuant to establishing an association with said second security apparatus, said at least one key being specific to a particular session between said first security apparatus and said second security apparatus.
  - 30. The system of claim 1, wherein said first and second security apparatus of said devices are adapted to encrypt at least portions of said message using a block cipher.
  - 31. The system of claim 1, wherein said first and second security apparatus of said devices generate at least one encryption key for use in encrypting at least portions of said message, said at least one encryption key comprises at least a portion of a public/private key pair.
  - 32. The system of claim 1, wherein said first security apparatus generates at least one encryption key for use in encrypting at least portions of said message, said at least one encryption key comprising a symmetric encryption key.
  - 33. The system of claim 1, wherein said first security apparatus generates at least one encryption key, and said at least one encryption key provides confidentiality and integrity of user datagrams during a particular session or association between said first security apparatus and said second security apparatus.
  - 34. The system of claim 1, wherein, said first security apparatus is further adapted to generate a request message for transmission to at least said second security apparatus, said request message initiating an authentication procedure and comprising at least cryptographic information generated by said substantially portable device.
  - 35. The system of claim 34, wherein, said cryptographic information comprises a cryptographic vector.
  - 36. The system of claim 35, wherein, said cryptographic vector comprises a vector used by said second security apparatus as part of a mutual authentication procedure between said substantially portable device and said second computerized device.
  - 37. The system of claim 34, wherein, said cryptographic information comprises a cryptographic key.
  - 38. The system of claim 1, wherein said first security apparatus, as part of establishing said association, utilizes random data that is transmitted from said second computerized device.
  - 39. The system of claim 1, wherein said second security apparatus comprises a cryptographic element exchange algorithm adapted to generate and transmit random data to said first security apparatus as part of a mutual authentication.
  - 40. The system of claim 1, wherein at least a portion of said transmitted at least portion is evaluated by said second security apparatus using a first cryptographic residue generated at said second security apparatus using at least locally stored information, and a second residue of said transmitted message.
  - 41. The system of claim 40, wherein said evaluation of said first and second residues comprises comparing said residues to see if they match.
  - 42. The system of claim 41, wherein if said first and second residue does not match, a change in the operation of said second security apparatus is invoked.
  - 43. The system of claim 42, wherein said change in the operation comprises performing a network audit function.

44. A system for providing secure communications between two or more devices on a communications network, comprising:
- a first, substantially portable communications device comprising a host computerized device running an untrusted operating system and a network communications interface adapted to communicate with said network and said host computerized device;
  
  a remote security device in communication with said network;
  
  a security card adapted to be received at least partly within said first substantially portable communications device, said security card having portions comprising user-specific and cryptographic data stored therein, at least said portions being protected against access by unauthorized users;
  
  a first computer program operative to run on said first substantially portable communications device adapted to dynamically obtain at least one identifier for said portable communications device when said network communications interface is placed in data communication with said network;
  
  a second computer program operative to run on said first substantially portable communications device adapted to establish a security association between said portable communications device and said remote security device, said second computer program comprising a cryptographic data exchange algorithm adapted to cause said portable communications device and said remote security device to exchange cryptographic information while establishing said security association; and
  
  a third computer program operative to run on said first substantially portable communications device adapted to seal or encrypt data sent from said portable device using at least said cryptographic information.
- View Dependent Claims (45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64)
- - 45. The system of claim 44, wherein said portable communications device is adapted to dynamically generate at least one encryption key for each security association, said act of generating not requiring either (i) intervention by a network administrator;
    - or (ii) intervention by a user of said portable device.
  - 46. The system of claim 44, wherein said security card further comprises a device driver having an application programming interface (API).
  - 47. The system of claim 44, wherein, said second computer program is further adapted to generate a request message for transmission to at least said remote security device of said second computerized device, said request message initiating an authentication procedure and comprising at least cryptographic information generated by said substantially portable device.
  - 48. The system of claim 47, wherein, said cryptographic information comprises a cryptographic vector.
  - 49. The system of claim 48, wherein, said cryptographic vector comprises a vector used by said remote security device as part of a mutual authentication procedure between said substantially portable device and said remote security device.
  - 50. The system of claim 47, wherein, said cryptographic information comprises a cryptographic key.
  - 51. The system of claim 50, wherein, said cryptographic key comprises a key that is part of a public/private key pair.
  - 52. The system of claim 47, wherein, said cryptographic information comprises a digital signature generated based at least in part on said cryptographic data stored in said security card.
  - 53. The system of claim 44, wherein said identifier comprises an IP address.
  - 54. The system of claim 53, wherein said first computer program is further adapted to:
    - (i) obtain an IP address for said a second computerized device based on a hardware address thereof;
      
      or (ii) obtain a hardware address for a second computerized device based on an IP address thereof.
  - 55. The system of claim 44, wherein at least a portion of said data sent is evaluated by said remote security device using a first cryptographic residue generated at said remote device using at least locally stored information, and a second residue of said sent data.
  - 56. The system of claim 44, wherein said protection against access by unauthorized users comprises at least physical protection for said at least portions.
  - 57. The system of claim 44, wherein said protection against access by unauthorized users comprises verification of prospective users via a unique name or identification associated with a valid user.
  - 58. The system of claim 44, wherein said protection against access by unauthorized users comprises verification of prospective users via a password associated with a valid user.
  - 59. The system of claim 44, wherein said protection against access by unauthorized users comprises verification of prospective users via a key associated with said host computerized device.
  - 60. The system of claim 44, wherein said substantially portable device is physically non-secure.
  - 61. The system of claim 44, wherein said remote security device of said second computerized device comprises a gateway, said gateway being in direct or indirect data communication with a second network.
  - 62. The system of claim 61, wherein said second network comprises the Internet, and said second network is in data communication with a website.
  - 63. The system of claim 44, wherein said portable device comprises an encryption algorithm that is initialized at least in part using a cryptographic vector.
  - 64. The system of claim 63, wherein said substantially portable device is adapted to generate a new vector for each encryption event.

65. A security system, comprising:
- a portable communications device, said portable communications device comprising a host computerized device adapted to run an untrusted operating system;
  
  a security card adapted to be received at least partly within said host device, said security card having portions comprising user-specific and cryptographic data stored therein, at least said portions being protected against access by unauthorized users;
  
  a card interface apparatus adapted to receive said security card at least partly within said host device;
  
  a communications interface of said portable communications device adapted for data communication with an untrusted network;
  
  software adapted to verify a user of said portable device using at least a portion of one of said user-specific and cryptographic data and an input supplied by a user via a user interface of said portable device;
  
  software adapted to exchange at least a portion of said cryptographic data between said card and host device;
  
  software adapted to establish a security association between said portable communications device and a security device on said network, said establishment comprising use of a cryptographic data exchange algorithm adapted to cause said portable communications device and said security device to exchange cryptographic data while establishing said association so as to enable at least ciphering or encrypting using one or more cryptographic keys; and
  
  software adapted to cipher or encrypt data sent from said portable device using at least one of said cryptographic keys.
- View Dependent Claims (66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77)
- - 66. The system of claim 65, wherein said card comprises a device driver with application programming interface (API).
  - 67. The system of claim 65, further comprising software adapted to generate a request message for transmission to a security device, said request message initiating an authentication procedure and comprising at least cryptographic information generated by said portable device.
  - 68. The system of claim 67, wherein said cryptographic information comprises a cryptographic vector.
  - 69. The system of claim 68, wherein said cryptographic vector comprises a vector used by said network security device as part of a mutual authentication procedure between said portable device and said security device.
  - 70. The system of claim 67, wherein said cryptographic information comprises a cryptographic key.
  - 71. The system of claim 70, wherein said cryptographic key comprises a key that is part of a public/private key pair.
  - 72. The system of claim 67, wherein said cryptographic information comprises a digital signature generated based at least in part on cryptographic data stored in said card.
  - 73. The system of claim 65, wherein said providing security card comprises portions comprising user-specific and cryptographic data stored therein, at least said portions being protected against access by unauthorized users;
  - 74. The system of claim 73, wherein said protection against access by unauthorized users comprises at least physical protection for said at least portions.
  - 75. The system of claim 73, wherein said protection against access by unauthorized users comprises verification of prospective users via a unique name or identification associated with a valid user.
  - 76. The system of claim 73, wherein said protection against access by unauthorized users comprises verification of prospective users via a password associated with a valid user.
  - 77. The system of claim 73, wherein said protection against access by unauthorized users comprises verification of prospective users via a key associated with said host user device.

78. A system for providing security to a plurality of portable communications devices, said system comprising:
- a first portable communications device adapted to provide a plurality of security functions, comprising;
  
  a physically unsecure and untrusted host device having an untrusted operating system;
  
  a communications stack operative to run on said host device;
  
  a communications interface adapted to establish temporary two-way communications with an untrusted multi-user network, said interface being driven at least in part by said stack; and
  
  a card reading apparatus; and
  
  security apparatus for use with said communications stack of said first portable communications device, said security apparatus comprising;
  
  (i) a removable and substantially user-specific security card adapted to be received at least party within said card reading apparatus of said portable device; and
  
  (ii) a security stack operable to interface with one or more layers of said communications stack;
  
  wherein said security apparatus is adapted to;
  
  verify the identity of said user of said portable device before further access to said network via said communications stack is permitted;
  
  physically secure security data elements uniquely associated with said user thereof; and
  
  exchange security information with said physically unsecure and untrusted host device before further processing of a user transaction or message is permitted;
  
  wherein said security card is substantially platform agnostic such that it may be removed from and inserted into another portable physically unsecure and untrusted communications device while;
  
  (i) providing similar user-specific security functionality to that of said portable device; and
  
  (ii) substantially preventing compromise of said security data elements.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Round Rock Research LLC
Original Assignee
Micron Technology, Inc.
Inventors
Holden, James, Levin, Stephen, Wrench, Edwin, Nickel, James

Granted Patent

US 7,904,565 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/151
CPC Class Codes

G06F 21/31   User authentication

G06F 21/606   by securing the transmissio...

G06F 21/85   interconnection devices, e....

G06F 2211/001   In-Line Device

G06F 2211/005   Network, LAN, Remote Access...

G06F 2211/007   Encryption, En-/decode, En-...

G06F 2211/009   Trust

G06F 2221/2101   Auditing as a secondary aspect

G06F 2221/2141   Access rights, e.g. capabil...

G06F 2221/2149   Restricted operating enviro...

G06F 2221/2153   Using hardware token as a s...

H04L 2209/76   Proxy, i.e. using intermedi...

H04L 63/02   for separating internal fro...

H04L 63/0218   Distributed architectures, ...

H04L 63/0442   wherein the sending and rec...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/0869   for achieving mutual authen...

H04L 63/101   Access control lists [ACL]

H04L 63/105   Multiple levels of security

H04L 63/126   the source of the received ...

H04L 63/14 : for detecting or protecting...

H04L 67/141 : Setup of application sessio...

H04L 67/563 : Data redirection of data ne...

H04L 9/3247 : involving digital signatures

H04L 9/3268 : using certificate validatio...

H04L 9/3273 : for mutual authentication n...

H04L 9/40 : Network security protocols

H04W 12/069 : using certificates or pre-s...

View All

SYSTEM FOR PROVIDING SECURITY IN A NETWORK COMPRISING COMMUNICATIONS DEVICES

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

107 Citations

78 Claims

Specification

Use Cases

Quick Links

Others

SYSTEM FOR PROVIDING SECURITY IN A NETWORK COMPRISING COMMUNICATIONS DEVICES

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

107 Citations

78 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others