MOBILE TRUSTED MODULE (MTM)-BASED SHORT MESSAGE SERVICE SECURITY SYSTEM AND METHOD THEREOF

US 20160309331A1
Filed: 04/15/2016
Published: 10/20/2016
Est. Priority Date: 04/16/2015
Status: Active Grant

First Claim

Patent Images

1. A hardware security module, comprising:

an access control unit configured to verify the integrity of a SMS application a request from the SMS application, and verify whether the SMS application has a permission for the request;

a key management unit configured to store and manage a public key and a private key of the terminal, and an encryption key shared with a server configured for the security message between the SMS server and the terminal; and

a security message processing unit configured to convert the security message based on a preset security policy when the security message is received from the server, and return the converted message to the SMS application.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An MTM-based short message service security system and a method thereof are provided. A hardware security module according to the present invention includes an access control unit configured to verify the integrity of a SMS application and a request from the SMS application, and verify whether the SMS application has a permission for the request; a key management unit configured to store and manage a public key and a private key of the terminal, and an encryption key shared with a server configured to transmit a security message between the server and the terminal; and a security message processing unit configured to convert the security message based on a preset security policy when the security message is received from the server, and return the converted message to the SMS application.

15 Citations

View as Search Results

11 Claims

1. A hardware security module, comprising:
- an access control unit configured to verify the integrity of a SMS application a request from the SMS application, and verify whether the SMS application has a permission for the request;
  
  a key management unit configured to store and manage a public key and a private key of the terminal, and an encryption key shared with a server configured for the security message between the SMS server and the terminal; and
  
  a security message processing unit configured to convert the security message based on a preset security policy when the security message is received from the server, and return the converted message to the SMS application.
- View Dependent Claims (2, 3, 4)
- - 2. The hardware security module of claim 1,wherein the security message processing unit uses the encryption key, decrypts the security message, and returns the decrypted security message to the SMS application.
  - 3. The hardware security module of claim 1,wherein the security message processing unit uses the encryption key, decrypts the security message, re-encrypts the decrypted security message using a separate key, and returns the re-encrypted security message and a key ID of the separate key to the SMS application.
  - 4. The hardware security module of claim 1,wherein, when the request for the security message is received from the SMS application, the security message processing unit generates the security message through encrypting the received short message with the encryption key, and returns the message to the SMS application.

5. A short message service security method that is provided by a user terminal including a hardware security module configured to encrypt or decrypt a short message in cooperation with a SMS application that is executed in an application processor, the method comprising:
- receiving a security message encrypted with an encryption key shared with a server;
  
  converting the security message based on a preset security policy for managing the security message; and
  
  transmitting a reception checking message to the server when reception of the security message is completed.
- View Dependent Claims (6, 7, 8)
- - 6. The short message service security method of claim 5,wherein the converting includesdecrypting the security message using the encryption key and displaying the decrypted security message.
  - 7. The short message service security method of claim 5,wherein the converting includesdecrypting the security message using the encryption key, re-encrypting the decrypted security message using a separate key, and storing the re-encrypted security message and a key ID of the separate key.
  - 8. The short message service security method of claim 5, further comprisingwhen a security message writing request is received from the SMS application, generating a security message in which the short message is encrypted using the encryption key, and returning the message to the SMS application.

9. A short message service security method that is provided by a server that manages the encryption keys shared with each target terminal, generates the security message in which a short message received from a transmitting terminal is encrypted, and transmits the security message to the target terminal, the method comprising:
- generating a security message in which the short message is encrypted using an encryption key shared with the target terminal when the short message that is received from the transmitting terminal and not encrypted matches a security policy set in the target terminal;
  
  delivering the security message to the target terminal and requesting a security message reception checking task from the target terminal; and
  
  verifying reception of the security message.
- View Dependent Claims (10, 11)
- - 10. The short message service security method of claim 9,wherein the verifying of the reception includes:
    - setting a time-out for reception verification of the security message;
      
      determining whether a reception checking message generated when the target terminal performs a security message reception checking procedure is delivered within the time-out; and
      
      generating a reception checking error message when the reception checking message is not delivered within the time-out based on the determination result.
  - 11. The short message service security method of claim 9,wherein the reception checking message includes a hash value of plain text of the received security message or the received security message, and includes hash values of plain texts of most recently received N security messages, andwherein the verifying of the reception further includes:
    - checking whether a hash value of plain text of the transmitted security message or plain texts of recently transmitted N security messages matches a hash value included in the reception checking message when the reception checking message is delivered within the time-out; and
      
      generating a verification checking message when the values match, and generating an error message when the values do not match.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Electronics and Telecommunications Research Institute
Original Assignee
Electronics and Telecommunications Research Institute
Inventors
MOON, Hwa Shin

Granted Patent

US 10,021,562 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

H04W 12/02   Protecting privacy or anony...

H04W 12/033   of the user plane, e.g. use...

H04W 12/04   Key management, e.g. using ...

H04W 12/08   Access security

H04W 12/12   Detection or prevention of ...

H04W 12/128   Anti-malware arrangements, ...

H04W 4/14   Short messaging services, e...

H04W 4/70   Services for machine-to-mac...

MOBILE TRUSTED MODULE (MTM)-BASED SHORT MESSAGE SERVICE SECURITY SYSTEM AND METHOD THEREOF

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

15 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

MOBILE TRUSTED MODULE (MTM)-BASED SHORT MESSAGE SERVICE SECURITY SYSTEM AND METHOD THEREOF

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

15 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links