FACILITATING SECURE COMMUNICATION BETWEEN UTILITY DEVICES

US 20110296169A1
Filed: 09/04/2009
Published: 12/01/2011
Est. Priority Date: 09/05/2008
Status: Abandoned Application

First Claim

Patent Images

1. Apparatus for facilitating communication between a plurality of servers and a plurality of local devices, comprising a first network interface for communicating with said servers, a second network interface for communicating with said local devices, and a microcontroller having a processor, memory, a cryptographic engine for carrying out cryptographic calculations, and a tamper-resistance element configured to resist tampering with said apparatus,wherein a plurality of programs, each comprising instructions and data, are stored in said memory, and said processor is configured to:

for a first local device, identify a first program which is associated with said first local device, andusing said first program, provide a secure communications channel between said first local device and a first server, whereinsaid processor is unable to accept commands from any other of said programs to access or change said first program, andsaid processor is unable to route messages over said secure communications channel that are not from or to said first local device and said first server.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Communication is facilitated between a plurality of servers (101,102,103) and a plurality of local devices (204,206,207,208,210). An apparatus comprises a first network interface for communicating with the servers, a second network interface for communicating with the local devices, and a microcontroller having a processor, memory, a cryptographic engine for carrying out cryptographic calculations, and a tamper-resistance element configured to resist tampering with the apparatus. A plurality of programs, each comprising instructions and data, are stored in the memory. The processor is configured to, for a first local device, identify a first program which is associated with the first local device, and using the first program, provide a secure communications channel between the first local device and a first server. The processor is unable to accept commands from any other of the programs to access or change the first program, and the processor is unable to route messages over the secure communications channel that are not from or to the first local device and the first server.

130 Citations

30 Claims

1. Apparatus for facilitating communication between a plurality of servers and a plurality of local devices, comprising a first network interface for communicating with said servers, a second network interface for communicating with said local devices, and a microcontroller having a processor, memory, a cryptographic engine for carrying out cryptographic calculations, and a tamper-resistance element configured to resist tampering with said apparatus,wherein a plurality of programs, each comprising instructions and data, are stored in said memory, and said processor is configured to:
- for a first local device, identify a first program which is associated with said first local device, andusing said first program, provide a secure communications channel between said first local device and a first server, whereinsaid processor is unable to accept commands from any other of said programs to access or change said first program, andsaid processor is unable to route messages over said secure communications channel that are not from or to said first local device and said first server.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
- - 2. Apparatus according to claim 1, wherein said processor is configured to, when using said first program, process data received within, messages sent over said secure communications channel.
  - 3. Apparatus according to claim 1, further comprising one of said local devices.
  - 4. Apparatus according to claim 3, wherein said local device is a metrology device.
  - 5. Apparatus according to claim 1, wherein said first network interface sends signals along a mains power line.
  - 6. Apparatus according to claim 1, wherein said first network interface is a wireless interface.
  - 7. Apparatus according to claim 1, wherein one of said programs provides connectivity for a telecare system.
  - 8. Apparatus according to claim 1, wherein one of said programs configures said processor to disable a local device based on instructions from a server.
  - 9. Apparatus according to claim 1, wherein one of said programs configures said processor to monitor a local device and inform a server if it is no longer within the local network.
  - 10. Apparatus according to claim 1, wherein one of said programs provides connectivity for a financial service.
  - 11. Apparatus according to claim 1, wherein one of said programs configures said processor to backup data stored on a local device to a remote server.
  - 12. Apparatus according to claim 1, wherein one of said programs provides connectivity to increase the credit on a mobile telephone.
  - 13. Apparatus according to claim 1, wherein one of said programs provides connectivity to increase the credit on a money-replacement card.
  - 14. Apparatus according to claim 1, further comprising a barcode reader and a visual display, wherein one of said programs configures said processor to read a barcode on an item, obtain information associated with said barcode from a server, and output said information to said visual display.
  - 15. Apparatus according to claim 1, further comprising a barcode reader, wherein one of said programs configures said processor to read a barcode on an item and place an order for a similar item on a server.
  - 16. Apparatus according to claim 1, further comprising an RFID reader and a visual display, wherein one of said programs configures said processor to identify an RFID tag on an item, obtain information associated with said barcode from a server, and output said information to a visual display.
  - 17. Apparatus according to claim 1, further comprising an RFID reader, wherein one of said programs configures said processor to identify an RFID tag on an item and place an order for a similar item on a server.
  - 18. Apparatus according to claim 1, wherein one of said programs configures said processor to receive a message from a sensing device and send a message to a server to raise an alarm.
  - 19. Apparatus according to claim 1, wherein said apparatus is further connected to a plurality of sensors, and one of said programs configures said processor to control local devices depending on signals received from said sensors.
  - 20. Apparatus according to claim 1, wherein one of said programs configures said processor to receive a manual input and send a signal to a local device requesting it to audibly identify itself.
  - 21. Apparatus according to claim 1, wherein one of said programs configures said processor to communicate with local devices via power lines.
  - 22. Apparatus according to any of claims 1 to 20, further comprising a short range wireless communication interface.
  - 23. Apparatus according to claim 22, wherein one of said programs configures said processor to communicate with a local device comprising a second wireless communication interface.
  - 24. Apparatus according to claim 1, wherein one of said programs configures said processor to communicate with a plurality of other apparatus.
  - 25. A network including a plurality of nodes, wherein each of said nodes is an apparatus according to claim 24.

26. A method of locating a device within a network having a plurality of nodes, wherein said device has a unique identifier, comprising the steps of:
- at said device, broadcasting a message that is malformed and that includes encrypted data representing said unique identifier and location data;
  
  at one of said nodes, receiving said message, rejecting it as being malformed, and recording it;
  
  at said node, receiving a message including a cryptographic key;
  
  attempting to decrypt said encrypted data; and
  
  if said decryption is successful, using said location data to locate said device.
- View Dependent Claims (27, 28, 29)
- - 27. A method according to claim 26, wherein said message is malformed because it includes an invalid user identifier.
  - 28. A method according to claim 26, wherein said device and said node communicate wirelessly, and said location data comprises data indicating a signal strength between said local device and said node.
  - 29. A method according to claim 26, wherein the location data stored at a plurality of nodes for said device is combined to locate said device.

30. A method of locating a device within a network having a plurality of nodes, wherein said device has a unique identifier, comprising the steps of:
- at said device, storing a plurality of location data, wherein each of said location data indicates a location with respect to one of said nodes;
  
  at one of said nodes, receiving a message including said unique identifier;
  
  at said node, broadcasting a signal to said unique identifier, receiving a reply from said device and receiving said location data from said device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Charles Graham Palmer
Original Assignee
Charles Graham Palmer
Inventors
PALMER, CHARLES GRAHAM

Application Number

US13/062,645
Publication Number

US 20110296169A1
Time in Patent Office

Days
Field of Search
US Class Current

713/153
CPC Class Codes

H04L 63/0428   wherein the data content is...

H04L 67/125   involving control of end-de...

Y04S 40/18   Network protocols supportin...

Y04S 40/20   Information technology spec...

FACILITATING SECURE COMMUNICATION BETWEEN UTILITY DEVICES

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

130 Citations

30 Claims

Specification

Solutions

Use Cases

Quick Links

FACILITATING SECURE COMMUNICATION BETWEEN UTILITY DEVICES

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

130 Citations

30 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links