Method for removable element authentication in an embedded system

US 20090241186A1
Filed: 05/07/2008
Published: 09/24/2009
Est. Priority Date: 05/07/2007
Status: Active Grant

First Claim

Patent Images

1. A method for removable element authentication in an embedded system comprising the steps of:

registering details of the removable entity in a device host prior to insertion of the removable entity into the embedded system;

calculating a first registration identification based on an algorithm in the device host and storing the result in the device host;

registering the first registration identification in an unalterable memory area of the device host after the removable entity is inserted into the embedded system;

calculating a second registration identification based on a removable entity registration algorithm by the device host; and

displaying the details of the removable entity to the user by the device host after comparing the first registration into the embedded system and the second registration identification,wherein, if the user wants to change the removable entity, the user de-registers the device through an appropriate device host user interface configuration, then de-lists the removable device as non-secure and deletes the registration identification in the device host.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention proposes a method for protecting and monitoring removable entities in an embedded system. In accordance with the present invention, prior to insertion of a removable entity in the embedded system, a user registers details of the removable entity in the device host. The details may be entered after entering a password or a PIN. A registration identification is calculated based on an algorithm in the device host and is then stored in the host. After the removable entity is inserted, it is registered in an unalterable area (e.g. flash memory) of the device host. Information such as the category of the removable entity, a device number, etc. may be exchanged between the device host and the removable entity. The device host then computes a registration identification based on a Removable Entity Registration Algorithm. The identifications are then compared, and the device host displays the details of the removable entity to the user.

10 Citations

View as Search Results

20 Claims

1. A method for removable element authentication in an embedded system comprising the steps of:
- registering details of the removable entity in a device host prior to insertion of the removable entity into the embedded system;
  
  calculating a first registration identification based on an algorithm in the device host and storing the result in the device host;
  
  registering the first registration identification in an unalterable memory area of the device host after the removable entity is inserted into the embedded system;
  
  calculating a second registration identification based on a removable entity registration algorithm by the device host; and
  
  displaying the details of the removable entity to the user by the device host after comparing the first registration into the embedded system and the second registration identification,wherein, if the user wants to change the removable entity, the user de-registers the device through an appropriate device host user interface configuration, then de-lists the removable device as non-secure and deletes the registration identification in the device host.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. A method as claimed in claim 1, wherein the interface between the removable entity and the device host is made operable, even during device power off, by using standby battery support.
  - 3. A method as claimed in claim 1, wherein the authenticity of the removable entity is checked constantly by the device host.
  - 4. A method as claimed in claim 1, wherein the registering details are entered after entering a password or a Personal Identification Number(PIN).
  - 5. A method as claimed in claim 1, wherein the device host reads the removable device details through a prescribed message sent from the device host to the removable entity.
  - 6. A method as claimed in claim 1, wherein the device host transmits the prescribed message into the removable entity and the removable entity transmits details of the removable entity having removable entity product manufacture number, removable entity type category, and a registration identification that is prestored in the removable entity as a response to the prescribed message.
  - 7. A method as claimed in claim 1, wherein the generation of the second identification at the device host is using responses from the response to the prescribed message.
  - 8. A method as claimed in claim 1, wherein the usage of the second identification by the device host is done through a Host_TEE_Interaction message, and by this message, the device is authenticated before every secure data transaction.

9. A device for removable entity authentication in an embedded system, comprising:
- a slot for receiving said removable entity;
  
  an input /output device for receiving/output desired data items;
  
  a processor in communication with said slot, said input/output device and a memory, the memory contain code which when accessed by the processor causing the processor to;
  
  receive registering details of the removable entity prior to insertion of the removable entity into said slot;
  
  calculate a first registration identification based on an algorithm;
  
  register the first registration identification in an unalterable area of the memory after the removable entity is inserted into the slot;
  
  calculate a second registration identification based on a removable entity registration algorithm; and
  
  displaying the details of the removable entity to the user after comparing the first registration into the embedded system and the second registration identification.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
- - 10. The device as claimed in claim 9, further comprising:
    - a standby battery, wherein an interface in said slot between the removable entity and the processor is operable, even during device power off, by using said standby battery.
  - 11. The device as claimed in claim 9, wherein said processor further:
    - continually checking the authenticity of the removable entity.
  - 12. The device as claimed in claim 9, wherein the registering details are entered after entering a password or a Personal Identification Number(PIN).
  - 13. The device as claimed in claim 9, wherein the processor reads the removable device details through a prescribed message sent from the processor to the removable entity.
  - 14. The device as claimed in claim 9, wherein the processor transmits the prescribed message into the removable entity and the removable entity transmits details of the removable entity is at least one entity selected from the group consisting of:
    - removable entity product manufacture number, removable entity type category, and a registration identification that is prestored in the removable entity as a response to the prescribed message.
  - 15. The device as claimed in claim 9, wherein the generation of the second identification is using responses from the response to the prescribed message.
  - 16. The device as claimed in claim 9, wherein the usage of the second identification by the processor is done through a Host_TEE_Interaction message, and by this message, the device is authenticated before every secure data transaction.
  - 17. The device as claimed in claim 9, the processor, in response to removal of said removable entity, executing code for:
    - de-registering the removable entity;
      
      de-listing the removable entity as non-secure; and
      
      deleting the registration identification.

18. A portable device including an interface for communicating with a removable medium, said device comprising:
- a processor, in communication with said interface, responsive to insertion of said removable medium into said slot, accessing a code stored in a memory, for;
  
  determining a first registration identification based on an algorithm, wherein receive details of the removable medium are prestored in said memory;
  
  registering the first registration identification in an unalterable area of the memory;
  
  determining a second registration identification based on a removable medium registration algorithm;
  
  comparing the first registration into the embedded system and the second registration identification; and
  
  outputting the details of the removable medium.
- View Dependent Claims (19, 20)
- - 19. The device of claim 18 further comprising:
    - an input device in communication with said processor, said input device allowing entry of said details of said removable medium; and
      
      a display device in communication with said processor for displaying said outputted details.
  - 20. The device of claim 18, wherein said details of said removable medium are selected as at least one of group consisting of:
    - Subscriber Identification Module (SIM), an International Mobile Equipment Identity (IMEI), and a product manufacture serial number.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Samsung Electronics Co. Ltd.
Original Assignee
Samsung Electronics Co. Ltd.
Inventors
Arunan, Thenmozhi, Naniyat, Arun

Granted Patent

US 8,397,289 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/19
CPC Class Codes

G06F 21/44   Program or device authentic...

G06F 21/6272   by registering files or doc...

G06F 21/73   by creating or determining ...

G06F 2221/2129   Authenticate client device ...

H04W 12/065   Continuous authentication

Method for removable element authentication in an embedded system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

10 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Method for removable element authentication in an embedded system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

10 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others