Method of secure remote access

US 5,144,667 A
Filed: 12/20/1990
Issued: 09/01/1992
Est. Priority Date: 12/20/1990
Status: Expired due to Term

First Claim

Patent Images

1. In a secure remote access system having a base unit and a remote unit coupled by a communication link, the remote unit containing a private key known only to that particular remote unit, a method of authentication of the remote unit comprising the steps of:

registering the remote unit with the base unit by establishing a randomly selected common key through communication between the base unit and the remote unit in a manner that maintains the privacy of the common key, and storing the common key and an encrypted form of the common key in the base unit;

then authenticating the remote unit by encrypting a random number with the common key in the base unit, passing the encrypted common key and a challenge number from the base unit to the remote unit wherein the challenge number comprises one of the random number and the encrypted random number, decrypting the common key in the remote unit, operating on the challenge number with the common key in the remote unit and passing the result to the base unit, and comparing the results.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Access to a vehicle by a remote electronic key via a radio link is secured by an exchange of encrypted signals. A remote unit having a secret number is introduced to a base unit and a common key is agreed upon by an exponential key exchange. The common key is encrypted using the secret number and stored in the base unit. Thereafter, the base unit is able to authenticate the identity of the remote unit by sending the encrypted common key and a random number to the remote unit which decrypts the key and uses it to encrypt the random number. The random number is also encrypted in the base unit and compared with the encrypted random number from the remote unit.

198 Citations

12 Claims

1. In a secure remote access system having a base unit and a remote unit coupled by a communication link, the remote unit containing a private key known only to that particular remote unit, a method of authentication of the remote unit comprising the steps of:
- registering the remote unit with the base unit by establishing a randomly selected common key through communication between the base unit and the remote unit in a manner that maintains the privacy of the common key, and storing the common key and an encrypted form of the common key in the base unit;
  
  then authenticating the remote unit by encrypting a random number with the common key in the base unit, passing the encrypted common key and a challenge number from the base unit to the remote unit wherein the challenge number comprises one of the random number and the encrypted random number, decrypting the common key in the remote unit, operating on the challenge number with the common key in the remote unit and passing the result to the base unit, and comparing the results.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The invention as defined in claim 1 wherein the step of authenticating the remote unit comprises passing the encrypted common key and a random number from the base unit to the remote unit, decrypting the common key in the remote unit, encrypting the random number with the common key in the remote unit, and comparing the results.
  - 3. The invention as defined in claim 1 wherein the challenge number is the encrypted random number, and the step of operating on the challenge number comprises decrypting the challenge number with the common key to reveal the random number, and passing the random number to the base unit for comparison with the original random number.
  - 4. The invention as defined in claim 1 wherein the common key is established by exponential key exchange.
  - 5. The invention as defined in claim 1 wherein the common key is established by a public key cryptographic method.
  - 6. The invention as defined in claim 1 wherein a secret code is stored in the remote unit, and is used as a key for encrypting and decrypting the common key.
  - 7. The invention as defined in claim 1 wherein a secret code is stored in the remote unit, and including the steps of passing a random seed to the remote unit and generating with the secret code and the seed a number used in establishing a common key.

8. In a secure remote access system having a base unit and a remote unit coupled by a communication link, a method of encrypted communication comprising the steps of:
- secretly establishing a common key by communication between the base unit and the remote unit;
  
  encrypting the common key in the remote unit by using a secret code in the remote unit;
  
  passing the encrypted common key to the base unit for storage in the base unit;
  
  then authenticating the remote unit by passing the encrypted common key and a random number from the base unit to the remote unit, decrypting the common key in the remote unit, encrypting the random number with the common key in both units, passing the result from the remote unit to the base unit, and comparing the results.

9. In a secure remote access system for an automotive vehicle having a base unit in the vehicle and a remote unit coupled to the base unit by a radio link subject to eavesdropping, the remote unit having a secret code, a method of authenticating the remote unit comprising the steps of:
- initializing the system by providing the base unit and the remote unit with a common key, and encrypting the common key in the remote unit using the secret code for encryption and passing the encrypted common key via the radio link to the base unit for storage; and
  
  thenauthenticating the remote unit when access is attempted by passing the encrypted common key and a random number to the remote unit, decrypting the common key in the remote unit, encrypting the random number with the common key in both units, and comparing the encrypted random numbers to determine authenticity.
- View Dependent Claims (10, 11, 12)
- - 10. The invention as defined in claim 9 wherein the encrypted random numbers each comprise a string of binary digits, and the step of comparing the encrypted random numbers includes passing an encrypted random number via the radio link to the base unit whereby the passed number is subject to transmission errors, and comparing the strings of binary digits for a near match, thus allowing for a small percent of transmission error.
  - 11. The invention as defined in claim 9 wherein the step of providing the base unit and the remote unit with a common key comprises the steps of:
    - selecting a number in the base unit;
      
      selecting a number which is a function of the secret code in the remote unit; and
      
      establishing a common key by an exponential key exchange having secret exponents comprising the selected numbers in the respective units, whereby the common key is safe from detection.
  - 12. The invention as defined in claim 11 wherein the step of selecting a number which is a function of the secret code comprises passing a seed from the base unit to the remote unit, and operating on the seed and the secret code to derive the selected number in the remote unit.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Delphi Technologies, Inc. (BorgWarner Incorporated)
Original Assignee
Delco Electronics Corporation (Motors Liquidation Co. GUC Trust)
Inventors
Pogue, Russell W. Jr., Rivest, Ronald L.
Primary Examiner(s)
SWANN, TOD R

Application Number

US07/630,626
Time in Patent Office

621 Days
Field of Search

380/21, 380/23, 380/25, 380/30, 380/43, 380/44, 380/45, 380/46, 380/48, 380/49, 380/50, 340/825.31
US Class Current

380/45
CPC Class Codes

B60R 25/24   using electronic identifier...

G06F 21/34   involving the use of extern...

G06F 2221/2103   Challenge-response

G07C 2009/00373   whereby the wake-up circuit...

G07C 2009/00412   the transmitted data signal...

G07C 2009/005   whereby the code is a rando...

G07C 2009/00793   by Hertzian waves

G07C 2209/63   Comprising locating means f...

G07C 9/00309   operated with bidirectional...

H04L 2209/84   Vehicles

H04L 9/0841   involving Diffie-Hellman or...

H04L 9/3271   using challenge-response

Method of secure remote access

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

198 Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

Method of secure remote access

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

198 Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links