SECURE ID CHECKING

US 20120210137A1
Filed: 12/13/2011
Published: 08/16/2012
Est. Priority Date: 05/22/2006
Status: Abandoned Application

First Claim

Patent Images

1. A method for secure ID checking, comprising:

receiving attribute information of a user, wherein at least a portion of said attribute information is encrypted attribute information;

identifying said encrypted attribute information in response to an access request initiated by a card presented by the user;

generating a decryption key for said encrypted attribute information using at least some of the information on the card;

decrypting said encrypted attribute information to generate clear text attribute information;

displaying said clear text attribute information;

granting or denying access of the user to a secure area based on said clear text attribute information.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A cost-effective system that provides for the efficient protection of transmitted non-public attribute information may be used, for example, to control access to a secure area. Encryption of the attribute information may be performed using symmetric encryption techniques, such as XOR and/or stream cipher encryption. A centralized database that stores and transmits the encrypted attribute information may generate the encryption/decryption key based on selected information bytes, for example, as taken from a card inserted into a handheld device used at the secure area. The selected information to generate the encryption key stream may be varied on a periodic basis by the centralized database. Information as to which selected bytes are to be used for a particular access authorization request may be transmitted to the handheld unit or may be input through action of a user of the handheld unit, for example by entry of a PIN code.

30 Citations

15 Claims

1. A method for secure ID checking, comprising:
- receiving attribute information of a user, wherein at least a portion of said attribute information is encrypted attribute information;
  
  identifying said encrypted attribute information in response to an access request initiated by a card presented by the user;
  
  generating a decryption key for said encrypted attribute information using at least some of the information on the card;
  
  decrypting said encrypted attribute information to generate clear text attribute information;
  
  displaying said clear text attribute information;
  
  granting or denying access of the user to a secure area based on said clear text attribute information.
- View Dependent Claims (2, 3, 12, 13)
- - 2. The method of claim 1, wherein generating a the decryption key includes generating a symmetric decryption key.
  - 3. The method of claim 1, wherein said attribute information is received from a secure computer.
  - 12. The method of claim 1, wherein the attribute information of the user is transmitted periodically from the database to the access control device.
  - 13. The method of claim 1, wherein the attribute information of the user is transmitted to the access control device in response to a request from the access control device.

4. An apparatus for secure ID checking, comprising:
- machine executable code for receiving attribute information of a user, wherein at least a portion of said attribute information is encrypted attribute information;
  
  machine executable code for identifying said encrypted attribute information in response to an access request initiated by a card presented by the user;
  
  machine executable code for generating a decryption key for said encrypted attribute information using at least some of the information on the card;
  
  machine executable code for decrypting said encrypted attribute information to generate clear text attribute information;
  
  machine executable code for displaying said clear text attribute information to enable granting or denying access of the user to a secure area based on said clear text attribute information.
- View Dependent Claims (5, 6, 14, 15)
- - 5. The apparatus of claim 4, wherein generating a decryption key includes generating a symmetric decryption key.
  - 6. The apparatus of claim 4, wherein said attribute information is received from a secure computer.
  - 14. The apparatus of claim 4, wherein the attribute information of the user is transmitted periodically from the database to the access control device.
  - 15. The apparatus of claim 4, wherein the attribute information of the user is transmitted to the access control device in response to a request from the access control device.

7. A system for secure ID checking, comprising:
- a databasean access control device coupled to the database and having a card reader device, wherein said access control device receives attribute information of a user from said database, and wherein at least a portion of said attribute information is encrypted; and
  
  a decryption device coupled to said access control device, wherein said decryption device decrypts said encrypted attribute information received from said database to generate clear text attribute information using a decryption key, wherein the decryption key is generated using information obtained by the card reader device from a card presented by the user.
- View Dependent Claims (8, 9, 10, 11)
- - 8. The system of claim 7, wherein said decryption key is a symmetric decryption key.
  - 9. The system of claim 7, wherein said database is a secure computer.
  - 10. The system of claim 7, wherein the attribute information of the user is transmitted periodically from the database to the access control device.
  - 11. The system of claim 7, wherein the attribute information is transmitted to the access control device in response to a request from the access control device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Assa Abloy AB
Original Assignee
Assa Abloy AB
Inventors
Engberg, David, LIBIN, Phil

Application Number

US13/324,239
Publication Number

US 20120210137A1
Time in Patent Office

Days
Field of Search
US Class Current

713/185
CPC Class Codes

G06Q 20/367   involving electronic purses...

G06Q 20/3672   initialising or reloading t...

G06Q 20/3674   involving authentication

G06Q 20/382   insuring higher security of...

H04L 2209/80   Wireless network architectu...

H04L 9/0866   involving user or device id...

H04L 9/3226   using a predetermined code,...

H04L 9/3234   involving additional secure...

H04W 12/082   using revocation of authori...

SECURE ID CHECKING

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

30 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

SECURE ID CHECKING

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

30 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links