Systems and methods for authenticating a device

US 20080120698A1
Filed: 11/22/2006
Published: 05/22/2008
Est. Priority Date: 11/22/2006
Status: Abandoned Application

First Claim

Patent Images

1. A method for creating a synthesized security identifier for a query device comprising:

(a) submitting, to a centralized data server, data associated with the query device, wherein the data comprise information associated with a device identifier or a user identifier for the query device, wherein the user identifier is not stored on the query device;

(b) receiving, from the centralized data server, a synthesized security identifier at least partially based on the data from the submitting step (a);

(c) storing the synthesized security identifier permanently on the query device; and

(d) requesting a remote user session by transmitting (i) the device identifier and (ii) the synthesized security identifier.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems, methods and apparatus for authenticating a query device by creating a synthesized security identifier include submitting, to a centralized data server, data associated with the query device. The data comprise information associated with a device identifier or a user identifier for the query device. The user identifier is not stored on the query device. The query device receives, from the centralized data server, a synthesized security identifier at least partially based on the data from the submitting step and stories the synthesized security identifier permanently on the query device. The query device further requests a remote user session by transmitting (i) the device identifier and (ii) the synthesized security identifier.

109 Citations

49 Claims

1. A method for creating a synthesized security identifier for a query device comprising:
- (a) submitting, to a centralized data server, data associated with the query device, wherein the data comprise information associated with a device identifier or a user identifier for the query device, wherein the user identifier is not stored on the query device;
  
  (b) receiving, from the centralized data server, a synthesized security identifier at least partially based on the data from the submitting step (a);
  
  (c) storing the synthesized security identifier permanently on the query device; and
  
  (d) requesting a remote user session by transmitting (i) the device identifier and (ii) the synthesized security identifier.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
- - 2. The method of claim 1, wherein the query device is a cellular phone, a personal digital assistant (PDA), an iPod, a credit card, a mobile device equipped with a fingerprint scanner, a desktop computer, a laptop computer, or any networked device.
  - 3. The method of claim 1, wherein the query device is a credit card associated with a network device.
  - 4. The method of claim 1, wherein the query device is connected to a network through an external network module.
  - 5. The method of claim 1, wherein the query device identifier is an IPv6 address.
  - 6. The method of claim 1, wherein the query device identifier is an IPv4 address, a public key infrastructure (PKI) key, a virtual private network (VPN) key, a radio frequency identification (RFID) tag number, a public key cryptography number, a credit card number, or a machine serial number.
  - 7. The method of claim 1, wherein the user identifier associated with the query device comprises a biometric key.
  - 8. The method of claim 7, wherein the biometric key is extracted from biometric data from a user of the query device.
  - 9. The method of claim 8, wherein the biometric data comprises a measurement of a physical trait of the user selected from the group consisting of a facial thermogram, a finger print, an iris scan, and a hand geometry measurement.
  - 10. The method of claim 8, wherein the biometric data comprises a measurement of a physical trait of the user selected from the group consisting of a vein pattern, an ear shape, an analysis of a body odor, and an analysis of nucleic acid material obtained from the user.
  - 11. The method of claim 8, wherein the biometric data comprises a behavioral characteristic of the user selected from the group consisting of a hand signature pattern, a keystroke dynamic and a gait pattern.
  - 12. The method of claim 8, wherein the biometric data comprises a voice pattern of the user.
  - 13. The method of claim 1, wherein the user identifier associated with the query device comprises a user password.
  - 14. The method of claim 1, wherein the synthesized security identifier associated with the query device is derived from the user identifier associated with the query device.
  - 15. The method of claim 1, wherein the synthesized security identifier associated with the query is derived from a biometric key associated with the query device.
  - 16. The method of claim 1, wherein the synthesized security identifier associated with the query device is derived from a device identifier.
  - 17. The method of claim 1, wherein the device identifier associated with the query device is at least 32 bits in length.
  - 18. The method of claim 1, wherein the device identifier associated with the query device is at least 128 bits in length.
  - 19. The method of claim 1, wherein the device identifier associated with the query device is at least 256 bits in length.
  - 20. The method of claim 1, wherein the synthesized security identifier associated with the query device is up to 128 bits in length.
  - 21. The method of claim 1, wherein the synthesized security identifier associated with the query device is up to 512 bits in length.
  - 22. The method of claim 1, wherein the synthesized security identifier associated with the query device is up to 2048 bits in length.
  - 23. The method of claim 1, wherein the user identifier associated with the query device is at least 16 bits in length.
  - 24. The method of claim 1, wherein the user identifier associated with the query device is at least 32 bits in length.
  - 25. The method of claim 1, wherein the user identifier associated with the query device is at least 64 bits in length.
  - 26. The method of claim 1, wherein the user identifier associated with the query device is at least 256 bits in length.
  - 27. The method of claim 1, wherein the submitting step (a) occurs on the query device.
  - 28. The method of claim 1, wherein the submitting step (a) occurs on a device external to the query device.
  - 29. The method of claim 28, wherein the external device is an intermediary gateway server.
  - 30. The method of claim 1, wherein a backup access key associated with the query device 4 is communicated to the centralized data server prior to the submitting step (a).
  - 31. The method of claim 30, wherein the backup access key is assigned to a query device with a device identifier.
  - 32. The method of claim 30, wherein the backup access key is associated with a plurality of query devices.
  - 33. The method of claim 1, wherein the requesting step (d) further comprises transmitting user identifier or data comprising information associated with the user identifier.

34. A method for authenticating a query device to a centralized data server, wherein the method comprises:
- (a) associating and storing, on the centralized data server, for each respective device in a plurality of devices, a device identifier, a user identifier, and a synthesized security identifier that collectively authenticate the respective user device;
  
  (b) receiving, at the centralized data server, an authentication request that seeks verification of an identity of the query device, wherein the authentication request comprises a query device identifier, a query synthesized security identifier and a query user identifier;
  
  (c) attempting to verify, at the centralized data server, the query device by (i) searching for a match between the query device identifier and a stored device identifier, (ii) searching for a match between the query synthesized security identifier and a stored synthesized security identifier, and (iii) searching for a match between the query user identifier and a stored user identifier; and
  
  (d) communicating, from the centralized data server, whether the identity of the query device is verified to an intermediary gateway server.
- View Dependent Claims (35, 36, 37)
- - 35. The method of claim 34, wherein the authentication request is received at the centralized data center from an intermediary gateway server.
  - 36. The method of claim 34, wherein the authentication request is received at the centralized data center from a web interface.
  - 37. The method of claim 34, wherein the authentication request is received at the centralized data center from a telephone interface.

38. A method for authenticating a query device to a centralized data server, wherein the method comprises:
- (a) storing, on the query device, a device identifier and a synthesized security identifier that collectively authenticate the query device;
  
  (b) submitting an authentication request that comprises the device identifier or the synthesized security identifier, wherein the synthesized security identifier is derived, at least in part, from an IPv6 address for the query device; and
  
  (c) receiving verification that there is a match between the query device identifier and a device identifier stored on the centralized data server and a match between the query synthesized security identifier and a synthesized security identifier stored on the centralized data server.
- View Dependent Claims (39, 40, 41, 42, 43, 44, 45, 46, 47, 48)
- - 39. The method of claim 38, wherein the authentication request is submitted to an intermediary gateway server in the submitting step (b).
  - 40. The method of claim 38, wherein the authentication request is submitted to centralized data server in the submitting step (b).
  - 41. The method of claim 38, wherein the authentication request further comprises data that uniquely identifies the user of the query device.
  - 42. The method of claim 41, wherein the data that uniquely identifies the user is a measurement of a physical trait of the user selected from the group consisting of a facial thermogram, a finger print, an iris scan, and a hand geometry measurement.
  - 43. The method of claim 41, wherein the data that uniquely identifies the user is a measurement of a physical trait of the user selected from the group consisting of a vein pattern, an ear shape, an analysis of a body odor, and an analysis of nucleic acid material obtained from the user.
  - 44. The method of claim 41, wherein the data that uniquely identifies the user comprises a behavioral characteristic of the user selected from the group consisting of a hand signature pattern, a keystroke dynamic and a gait pattern.
  - 45. The method of claim 38, wherein the data that uniquely identifies the user comprises a voice pattern of the user.
  - 46. The method of claim 38, wherein the IPv6 address for the query device is the device identifier of the query device.
  - 47. The method of claim 38, wherein the receiving verification step (c) further comprises receiving access to a remote session.
  - 48. The method of claim 38, wherein the receiving verification step (c) further comprises receiving approval of a financial transaction.

49. A query device comprising a central processing unit and a computer readable memory coupled with the central processing unit, the computer readable memory including instructions for authenticating the query device to a centralized data server by:
- (a) storing a device identifier and a synthesized security identifier in the computer readable memory that collectively authenticate the query device;
  
  (b) submitting an authentication request that comprises the device identifier or the synthesized security identifier, wherein the synthesized security identifier is derived, at least in part, from an IPv6 address for the query device; and
  
  (c) receiving verification that there is a match between the query device identifier and a device identifier stored on the centralized data server and a match between the query synthesized security identifier and a synthesized security identifier stored on the centralized data server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Goldstar Global Minerals Corp.
Original Assignee
Goldstar Global Minerals Corp.
Inventors
Ramia, Alexander

Application Number

US11/603,723
Publication Number

US 20080120698A1
Time in Patent Office

Days
Field of Search
US Class Current

726/4
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

H04L 63/0861   using biometrical features,...

Systems and methods for authenticating a device

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

109 Citations

49 Claims

Specification

Use Cases

Quick Links

Others

Systems and methods for authenticating a device

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

109 Citations

49 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others