Radio Frequency Identification (RFID) Based Authentication System and Methodology

US 20100011211A1
Filed: 07/09/2008
Published: 01/14/2010
Est. Priority Date: 07/09/2008
Status: Active Grant

First Claim

Patent Images

1. A radio frequency identification (RFID) authentication system comprising:

a RFID tag associated with a user, said RFID tag comprising a first memory storing a private key and a RFID tag antenna connected to said first memory, said RFID tag antenna transmitting said private key, when activated;

a RFID reader comprising a RFID reader antenna activating said RFID tag antenna and receiving said private key; and

a computer system in communication with said RFID reader, said computer system comprising;

a processor; and

a second memory in communication with said processor, said second memory storing encrypted data, said encrypted data being encrypted with a public key related to said private key, and said processor further using said private key, as transmitted by said RFID tag antenna to said RFID reader, to decrypt said encrypted data in order to generate decrypted data.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed are embodiments of a radio frequency identification (RFID) authentication system and an associated authentication methodology. The embodiments incorporate an identification device (e.g., an identification badge, a key fob, etc.) with an embedded RFID tag. The embedded RFID tag is associated with a specific user and stores a private key generated as part of a public key-private key encryption scheme. The private key is read by an RFID reader and used to decode public key encrypted data stored within or accessible by a computer system (e.g., a desktop computer system, a laptop computer system, a personal digital assistant (PDA), a digital fax machine, wireless telephone, etc.). Thus, the embodiments provide a portable way to use public key-private key encryption scheme data anywhere using RFID technology.

Citations

25 Claims

1. A radio frequency identification (RFID) authentication system comprising:
- a RFID tag associated with a user, said RFID tag comprising a first memory storing a private key and a RFID tag antenna connected to said first memory, said RFID tag antenna transmitting said private key, when activated;
  
  a RFID reader comprising a RFID reader antenna activating said RFID tag antenna and receiving said private key; and
  
  a computer system in communication with said RFID reader, said computer system comprising;
  
  a processor; and
  
  a second memory in communication with said processor, said second memory storing encrypted data, said encrypted data being encrypted with a public key related to said private key, and said processor further using said private key, as transmitted by said RFID tag antenna to said RFID reader, to decrypt said encrypted data in order to generate decrypted data.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The radio frequency identification (RFID) authentication system according to claim 1, said computer system further comprising a display displaying said decrypted data to said user.
  - 3. The radio frequency identification (RFID) authentication system according to claim 1, said decrypted data comprising a password required for access by said user to a secured domain and said computer system further automatically providing said user with access to said secured domain using said password.
  - 4. The radio frequency identification (RFID) authentication system according to claim 3, said secured domain comprising additional encrypted data encrypted using said public key and said processor further using said private key to decrypt said additional encrypted data in order to generate additional decrypted data.
  - 5. The radio frequency identification (RFID) authentication system according to claim 4, said computer system further comprising a display displaying said additional decrypted data to said user.
  - 6. The radio frequency identification (RFID) authentication system according to claim 1, said RFID tag antenna further operating over a private frequency.
  - 7. The radio frequency identification (RFID) authentication system according to claim 1, said computer system further comprising a third memory temporarily storing said private key, as transmitted by said RFID tag antenna to said RFID reader, for a predetermined time period.

8. A radio frequency identification (RFID) authentication method comprising:
- activating an RFID tag antenna of an RFID tag associated with a user such that said RFID tag transmits a private key stored in a first memory of said RFID tag;
  
  receiving said private key; and
  
  using said private key to decrypt encrypted data in order to generate decrypted data, said encrypted data being encrypted using a public key related to said private key and further being stored locally in a second memory.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The radio frequency identification (RFID) authentication method according to claim 8, further comprising displaying said decrypted data to said user.
  - 10. The radio frequency identification (RFID) authentication method according to claim 8, said decrypted data comprising a password required for access by said user to a secured domain and said method further comprising automatically providing said user with access to said secured domain using said password.
  - 11. The radio frequency identification (RFID) authentication method according to claim 10, said secured domain comprising additional encrypted data, said additional encrypted data being encrypted using said public key and said method further comprising using said private key to decrypt said additional encrypted data in order to generate additional decrypted data.
  - 12. The radio frequency identification (RFID) authentication method according to claim 11, further comprising displaying said additional decrypted data to said user.
  - 13. The radio frequency identification (RFID) authentication method according to claim 8, said RFID tag antenna further operating over a private frequency.
  - 14. The radio frequency identification (RFID) authentication method according to claim 8, further comprising temporarily storing said private key, as transmitted by said RFID tag antenna to said RFID reader, in a third memory for a predetermined time period.

15. A radio frequency identification (RFID) authentication system comprising:
- a RFID tag associated with a user, said RFID tag comprising a first memory storing a private key and a RFID tag antenna connected to said first memory, said RFID tag antenna transmitting said private key over a private frequency, when activated;
  
  a RFID reader comprising a RFID reader antenna activating said RFID tag antenna and receiving said private key; and
  
  a computer system in communication with said RFID reader, said computer system comprising;
  
  a processor;
  
  a second memory in communication with said processor, said second memory storing an encrypted password, said encrypted password being encrypted with a public key related to said private key, and said processor further using said private key, as transmitted by said RFID tag antenna to said RFID reader, to decrypt said encrypted password in order to generate a decrypted password; and
  
  a user interface in communication with said processor, said user interface prompting said user to enter an unencrypted password and said processor further comparing said unencrypted password, as entered by said user through said user interface, to said decrypted password in order to authenticate said user.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The radio frequency identification (RFID) authentication system according to claim 15, said decrypted password comprising a specific password required for access by said user to a secured domain and said computer system further receiving a request by said user for access to said secured domain and automatically providing said user with access to said secured domain using said specific password.
  - 17. The radio frequency identification (RFID) authentication system according to claim 15, said decrypted password comprising a universal password required for access by said user to a first secured domain storing a specific password required for access by said user to a second secured domain and said computer system further receiving a request by said user for access to said second secured domain, entering said first secured domain using said universal password, retrieving said specific password, and using said specific password to provide said user with access to said second secured domain.
  - 18. The radio frequency identification (RFID) authentication system according to claim 17, said specific password being encrypted with said public key and said processor further using said private key to decrypt said specific password.
  - 19. The radio frequency identification (RFID) authentication system according to claim 16, said processor further recognizing that said unencrypted password, as entered by said user through said user interface, comprises a designated panic password and automatically alerting a designated authority that said designated panic password has been entered.
  - 20. The radio frequency identification (RFID) authentication system according to claim 17, said computer system further comprising a third memory temporarily storing said private key, as transmitted by said RFID tag antenna to said RFID reader, for a predetermined time period.

21. A radio frequency identification (RFID) authentication method comprising:
- activating an RFID tag antenna of an RFID tag associated with a user such that said RFID tag transmits, over a private frequency, a private key stored in a first memory of said RFID tag;
  
  receiving said private key;
  
  using said private key to decrypt an encrypted password in order to generate a decrypted password, said encrypted password being encrypted using a public key related to said private key and being stored locally in a second memory;
  
  prompting said user to enter an unencrypted password; and
  
  comparing said unencrypted password, as entered by said user, to said decrypted password in order to authenticate said user.
- View Dependent Claims (22, 23, 24, 25)
- - 22. The radio frequency identification (RFID) authentication method according to claim 21, said decrypted password comprising a specific password required for access by said user to a secured domain and said method further comprising receiving a request by said user for access to said secured domain and automatically providing said user with access to said secured domain using said specific password.
  - 23. The radio frequency identification (RFID) authentication method according to claim 21, said decrypted password comprising a universal password required for access by said user to a first secured domain storing a specific password required for access by said user to a second secured domain and said method further comprising receiving a request by said user for access to said second secured domain, entering said first secured domain using said universal password, retrieving said specific password, and using said specific password to provide said user with access to said second secured domain.
  - 24. The radio frequency identification (RFID) authentication method according to claim 23, said specific password being encrypted with said public key and said method further comprising using said private key to decrypt said specific password.
  - 25. The radio frequency identification (RFID) authentication method according to claim 21, further comprising recognizing that said unencrypted password, as entered by said user through said user interface, comprises a designated panic password and automatically alerting a designated authority that said designated panic password has been entered.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Fetterolf, Shawn P., McPadden, Adam J., Anemikos, Theodoros

Granted Patent

US 8,214,651 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/168
CPC Class Codes

G06F 21/35   communicating wirelessly

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 9/3226   using a predetermined code,...

Radio Frequency Identification (RFID) Based Authentication System and Methodology

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Radio Frequency Identification (RFID) Based Authentication System and Methodology

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links