Personalized I/O Device as Trusted Data Source

US 20100042848A1
Filed: 08/13/2008
Published: 02/18/2010
Est. Priority Date: 08/13/2008
Status: Abandoned Application

First Claim

Patent Images

1. A personalized input/output (I/O) device as trusted credential source, comprising:

an I/O interface configured to transmit one or more user credentials from a user or owner of the I/O device to an authenticator; and

a personalized certificate configured on the I/O device containing combined information of the user and the I/O device, wherein the personalized certificate is traceable to a trusted source.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Personalized input/output (I/O) device as trusted credential source is described. According to one exemplary embodiment of the invention, a personalized I/O device used as trusted credential source is configured with a personalized certificate that includes a combination of the user and device information. One or more user credentials are signed with the private key associated with the personalized certificate and sent to an authenticator. An optional secure link based on personalized certificate provides additional security for transmitting the credentials either signed or unsigned. User credentials may include biometric measures (something the user is) such as user'"'"'s voiceprint sample or fingerprint sample, and passwords (something the user knows). When the user credentials must be originated from the personalized I/O device (something the user has), all three factors of authentication can be included.

94 Citations

View as Search Results

20 Claims

1. A personalized input/output (I/O) device as trusted credential source, comprising:
- an I/O interface configured to transmit one or more user credentials from a user or owner of the I/O device to an authenticator; and
  
  a personalized certificate configured on the I/O device containing combined information of the user and the I/O device, wherein the personalized certificate is traceable to a trusted source.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The I/O device of claim 1, further comprising:
    - a microprocessor configured to execute instructions from at least one application module installed thereon; and
      
      a memory device configured to provide storage space for said microprocessor and to store said personalized certificate.
  - 3. The I/O device of claim 2 wherein said at least one application module is configured to digitally signing said one or more user credentials with a private key in accordance with Public Key Infrastructure (PKI).
  - 4. The I/O device of claim 3 wherein the private key is used for encrypting a hash generated from each of said one or more user credentials.
  - 5. The I/O device of claim 3 wherein the private key is associated with the personalized certificate.
  - 6. The I/O device of claim 2 wherein said personalized certificate is created with combined information from a manufacturer certificate and an independent user certificate.
  - 7. The I/O device of claim 6 wherein the manufacturer certificate is pre-installed on the I/O device to contain the device information including manufacturer name, model, serial number, and wherein the manufacturer certificate is traceable to a trusted source.
  - 8. The I/O device of claim 6 wherein the independent user certificate contains the user information including name, e-mail address, and wherein the independent user certificate is traceable to a trusted source.
  - 9. The subject matter claimed in claim 1 wherein the I/O device comprises a personalized headset.
  - 10. The subject matter claimed in claim 1 wherein the I/O device comprises a personalized cellular phone.
  - 11. The subject matter claimed in claim 1 wherein the I/O device comprises a personal digital assistant.

12. A method of authenticating a user or owner of an input/output (I/O) device, comprising:
- requesting and receiving one or more user credentials entered by the user via the I/O device;
  
  verifying the received one or more user credentials are traceable to a trusted source, and the received one or more user credentials match previously agreed respective credentials associated with the user; and
  
  receiving a personalized certificate that contains combined information of the user and the I/O device.
- View Dependent Claims (13, 14, 15)
- - 13. The method of claim 12, further comprises receiving a hash of the received one or more user credentials generated by the I/O device and generating a hash of the received one or more user credentials using same algorithm used by the I/O device.
  - 14. The method of claim 12, further comprising establishing a secure link based on a device certificate between the I/O device and the authenticator, wherein the device certificate is either a manufacturer certificate or a personalized certificate.
  - 15. The method of claim 14 wherein the one or more user credentials are digitally signed with a private key associated with the device certificate.

16. A method of personalizing an input/output (I/O) device such that the I/O device can be used to transmit trusted user credentials, the method comprising:
- installing a manufacturer certificate on the I/O device by a manufacturer of the I/O device, wherein the manufacturer certificate contains information of the I/O device; and
  
  creating a personalized certificate on a registration server by combining the information of the I/O device and information of a user or owner of the I/O device, wherein the information of the user is included in an independent user certificate that has been gathered along with the manufacturer certificate during a registration procedure.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The method of claim 16 wherein creating the personalized certificate on the registration server further comprises:
    - requesting and receiving the manufacturer certificate in response to a request for registration, wherein the manufacturer certificate is digitally signed; and
      
      requesting and receiving the independent user certificate after the manufacturer certificate has been received and verified to be valid and trusted.
  - 18. The method of claim 17, further comprising creating a secure link based on the manufacturer certificate between the registration server and the I/O device.
  - 19. The method of claim 17 wherein the independent user certificate is configured on a personal computer and is traceable to a trusted source.
  - 20. The method of claim 16, further comprising encrypting the personalized certificate and associated private key with a public key belonging to the user on the registration server and sending the encrypted personalized certificate to the I/O device when both said manufacturer certificate and said independent user certificate have been verified to be valid and trusted.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Plantronics, Inc.
Original Assignee
Plantronics, Inc.
Inventors
Rosener, Douglas K.

Application Number

US12/191,263
Publication Number

US 20100042848A1
Time in Patent Office

Days
Field of Search
US Class Current

713/184
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 21/33   using certificates

G06F 21/34   involving the use of extern...

Personalized I/O Device as Trusted Data Source

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

94 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Personalized I/O Device as Trusted Data Source

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

94 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links