SYSTEMS AND METHODS FOR RFID SECURITY

US 20120087501A1
Filed: 12/21/2011
Published: 04/12/2012
Est. Priority Date: 03/21/2006
Status: Active Grant

First Claim

Patent Images

1-44. -44. (canceled)

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An RFID system includes an RFID tag, an RFID reader, and a server. The RFID tag communicates to the server via encrypted information. The information may be encrypted with synchronized encryption keys. In this manner, the reader need not decrypt the information from the RFID tag. The effectiveness of malicious readers is thereby reduced, resulting in improved RFID tag security.

8 Citations

View as Search Results

64 Claims

1-44. -44. (canceled)

45. An apparatus comprising a tag for use in a system including a tag reader and a server communicatively coupled to the tag reader, the tag comprising:
- a transceiver to communicate with the tag reader through a wireless link; and
  
  a processor coupled to the transceiver, the processor to execute sets of instructions to (i) receive information from the tag reader that enables encryption of identification data identifying the tag and (ii) encrypt the identification data according to the predetermined encryption scheme using the received information to produce encrypted data for the reader to transmit to the server, the encrypted data for the server to decrypt according to the predetermined encryption scheme in order to produce the identification data of the tag.
- View Dependent Claims (46, 47, 48, 49, 50, 51, 52, 53)
- - 46. The apparatus of claim 45, wherein the identification data is for the server to authorize transmission from the reader.
  - 47. The apparatus of claim 45, wherein the tag further comprises a display to display an authentication code for a user of the tag to provide to the reader as authentication data.
  - 48. The apparatus of claim 45, wherein the tag further comprises a switch for activating the tag.
  - 49. The apparatus of claim 45, wherein the tag further comprises an input device for a user to enter one of a password and biometric information to activate the tag.
  - 50. The apparatus of claim 45, wherein the processor of the tag is further to execute a set of instructions to generate a pseudorandom number based on the information received from the reader, wherein the processor uses the pseudorandom number to encrypt the identification data.
  - 51. The apparatus of claim 45, wherein the information received from the reader comprises an encryption key generated by the server, wherein the processor of the tag uses the encryption key to encrypt the identification data, wherein the server uses a same encryption key to decrypt the encrypted data.
  - 52. The method of claim 45, wherein the server and the tag share an encryption key, wherein the processor of the tag generates an updated encryption key according to a defined process using the information and encrypts the identification data using the updated encryption key, wherein the server generates a same updated encryption key according to the defined process using said information and uses the same updated encryption key to decrypt the encrypted data.
  - 53. The method of claim 45, wherein the reader reads the encrypted data by backscattering.

54. A method of transmitting information between a tag and a server via a reader, the method comprising:
- at the tag, generating a pseudorandom number according to a predetermined scheme; and
  
  at the tag, encrypting identification data identifying the tag using the pseudorandom number, the predetermined scheme shared with the server for the server to generate a same pseudorandom number and decrypt the encrypted identification data using the pseudorandom number.
- View Dependent Claims (55, 56, 57, 58, 59)
- - 55. The method of claim 54 further comprising activating the tag prior to generating the pseudorandom number.
  - 56. The method of claim 55, wherein activating the tag comprises activating with one of a switch, biometric information, and a password.
  - 57. The method of claim 54 further comprising:
    - receiving from the reader information for verification by a user; and
      
      transmitting the encrypted identification data to the reader when the user verifies the information received from the reader.
  - 58. The method of claim 57, wherein the tag comprises a display, the method further comprising displaying the information received from the reader on the display.
  - 59. The method of claim 54, wherein the tag comprises a display, the method further comprising displaying the generated pseudorandom number on the display.

60. A system comprising:
- a tag configured (i) to generate a pseudorandom number according to a predetermined scheme for encryption of identification data, the identification data identifying the tag, (ii) to encrypt the identification data using the generated pseudorandom number, and (iii) to send the encrypted identification data to a server; and
  
  the server configured (i) to receive the encrypted data transmitted by the tag, (ii) to generate a same pseudorandom number according to the predetermined scheme, and (iii) to decrypt the encrypted identification data using the generated pseudorandom number.
- View Dependent Claims (61, 62, 63, 64)
- - 61. The system of claim 60, wherein the tag is configured to generate the pseudorandom number after the tag has been activated.
  - 62. The system of claim 60 further comprising a reader, wherein the tag is further configured to receive information from the reader, wherein a user verifies the information from the reader and activates the tag, wherein the tag is configured to send the encrypted identification to the server only when the user verifies the information from the reader.
  - 63. The system of claim 62, wherein the tag comprises a display, wherein the tag is further configured to display the information to the user.
  - 64. The system of claim 60, wherein the tag comprises a display, wherein the tag is further configured to display the pseudorandom number.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Knapp Investment Company Limited
Original Assignee
Radiofy, LLC
Inventors
Shoarinejad, Kambiz, Soltan, Maryam

Granted Patent

US 8,325,043 B2
Time in Patent Office

Days
Field of Search
US Class Current

380/270
CPC Class Codes

G06K 7/00   Methods or arrangements for...

G06K 7/10257   arrangements for protecting...

G06Q 20/206   comprising security or oper...

G06Q 20/3278   RFID or NFC payments by mea...

G06Q 20/3829   involving key management

G06Q 20/40145   Biometric identity checks

G06Q 20/409   Device specific authenticat...

G07F 7/10   together with a coded signa...

G07F 7/12   Card verification

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

H04L 63/0876   based on the identity of th...

H04L 9/12   Transmitting and receiving ...

H04L 9/3226   using a predetermined code,...

H04L 9/3231   Biological data, e.g. finge...

SYSTEMS AND METHODS FOR RFID SECURITY

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

8 Citations

64 Claims

Specification

Use Cases

Quick Links

Others

SYSTEMS AND METHODS FOR RFID SECURITY

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

8 Citations

64 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others