Replacement of keys
First Claim
1. A method for assigning a key to a device, the method comprising:
- providing a device having a processor ID (CID) and an associated processor key (CK) and comprising a memory;
at a first time, storing a personalization data ID (PDID) and associated personalization data (PD) in the memory;
at a later time, sending the CID and the PDID to a security provider and receiving an activation value (AV) back from the security provider, the activation value AV being based, at least in part, on the CK and a personalization data key (PDK) associated with the PDID and the PD;
computing, in the device, a result, based, at least in part, on the CK and the activation value, the result being produced by applying a first function g to the CK and the AV, such that the result=g(CK, AV); and
storing the result in the memory,wherein a second function ƒ
is used to compute the value of AV, such that AV=ƒ
(CK, PDK), and f comprises an inverse function of function g, such that g(CK, ƒ
(CK, PDK))=PDK,thereby assigning the personalization data key PDK to the device.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for assigning a key to a device, the method including providing a device having a processor ID (CID) and an associated processor key (CK) and including a memory, at a first time, storing a personalization data ID (PDID) and associated personalization data (PD) in the memory, at a later time, sending the CID and the PDID to a security provider and receiving an activation value (AV) back from the security provider, the activation value AV being based, at least in part, on the CK and a personalization data key (PDK) associated with the PDID and the PD, computing, in the device, a result, based, at least in part, on the CK and the activation value, the result being produced by applying a first function g to the CK and the AV, such that the result=g(CK, AV), and storing the result in the memory, wherein a second function ƒ is used to compute the value of AV, such that AV=ƒ(CK, PDK), and ƒ includes an inverse function of function g, such that g(CK, ƒ(CK, PDK))=PDK, thereby assigning the personalization data key PDK to the device. Related methods and hardware are also described.
-
Citations
23 Claims
-
1. A method for assigning a key to a device, the method comprising:
-
providing a device having a processor ID (CID) and an associated processor key (CK) and comprising a memory; at a first time, storing a personalization data ID (PDID) and associated personalization data (PD) in the memory; at a later time, sending the CID and the PDID to a security provider and receiving an activation value (AV) back from the security provider, the activation value AV being based, at least in part, on the CK and a personalization data key (PDK) associated with the PDID and the PD; computing, in the device, a result, based, at least in part, on the CK and the activation value, the result being produced by applying a first function g to the CK and the AV, such that the result=g(CK, AV); and storing the result in the memory, wherein a second function ƒ
is used to compute the value of AV, such that AV=ƒ
(CK, PDK), and f comprises an inverse function of function g, such that g(CK, ƒ
(CK, PDK))=PDK,thereby assigning the personalization data key PDK to the device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 19, 20, 21, 22, 23)
-
-
17. A system for assigning a key to a device, the system comprising:
-
a device having a processor ID (CID) and an associated processor key (CK) and comprising a memory; a personalization data ID (PDID) and associated personalization data (PD) being stored in the memory at a first time; apparatus operative to send, at a later time, the CID and the PDID to a security provider and receive an activation value (AV) back from the security provider, the activation value AV being based, at least in part, on the CK and a personalization data key (PDK) associated with the PDID and the PD; a processor comprised in the device, operative to compute a result, based, at least in part, on the CK and the activation value, the result being produced by applying a first function g to the CK and the AV, such that the result=g(CK, AV); and the result being stored in the memory, wherein a second function ƒ
is used to compute the value of AV, such that AV=ƒ
(CK, PDK), and ƒ
comprises an inverse function of function g, such that g(CK, ƒ
(CK, PDK))=PDK,thereby assigning the personalization data key PDK to the device.
-
-
18. A system for assigning a key to a device, the system comprising:
-
means for providing a device having a processor ID (CID) and an associated processor key (CK) and comprising a memory; means for storing, at a first time, a personalization data ID (PDID) and associated personalization data (PD) in the memory; means for sending, at a later time, the CID and the PDID to a security provider and receiving an activation value (AV) back from the security provider, the activation value AV being based, at least in part, on the CK and a personalization data key (PDK) associated with the PDID and the PD; means for computing, in the device, a result, based, at least in part, on the CK and the activation value, the result being produced by applying a first function g to the CK and the AV, such that the result=g(CK, AV); and means for storing the result in the memory, wherein a second function ƒ
is used to compute the value of AV, such that AV=ƒ
(CK, PDK), and ƒ
comprises an inverse function of function g, such that g(CK, ƒ
(CK, PDK))=PDK,thereby assigning the personalization data key PDK to the device.
-
Specification