Mutual authentication system and method which checks the authenticity of a device before transmitting authentication data to the device

US 5,288,978 A
Filed: 10/02/1991
Issued: 02/22/1994
Est. Priority Date: 10/05/1990
Status: Expired due to Term

First Claim

Patent Images

1. A mutual authentication system for authenticating a first electronic device and a second electronic device by transmitting authentication data between the first and second electronic devices, comprising:

first transmission means for transmitting a first authentication data from the second electronic device to the first electronic device;

determination means, provided in the first electronic device, for determining the legitimacy of the second electronic device based on the first authentication data transmitted from the second electronic device by the first transmission means;

second transmission means for transmitting a second authentication data, which is used for determining the legitimacy of the first electronic device, from the first electronic device to the second electronic device when the second electronic device is determined to be legitimate by the determination means.inhibition means for inhibiting the operation of the second transmission means, including inhibiting transmission of the second authentication data, when the second electronic device is determined not to be legitimate by the determination means.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A mutual authentication system authenticates a first electronic device and a second electronic device by transmitting authentication data between the first and second electronic devices. In this system, the second electronic device transmits a first authentication data to the first electronic device. In the first electronic device, the legitimacy of the second electronic device is determined based on the first authentication data transmitted from the second electronic device. The first electronic device also transmits a second authentication data, which is used for determining the legitimacy of the first electronic device, to the second electronic device. When the second electronic device is not determined to be legitimate by the first electronic device, the first electronic device does not transmit the second authentication data to the second electronic device.

250 Citations

14 Claims

1. A mutual authentication system for authenticating a first electronic device and a second electronic device by transmitting authentication data between the first and second electronic devices, comprising:
- first transmission means for transmitting a first authentication data from the second electronic device to the first electronic device;
  
  determination means, provided in the first electronic device, for determining the legitimacy of the second electronic device based on the first authentication data transmitted from the second electronic device by the first transmission means;
  
  second transmission means for transmitting a second authentication data, which is used for determining the legitimacy of the first electronic device, from the first electronic device to the second electronic device when the second electronic device is determined to be legitimate by the determination means.inhibition means for inhibiting the operation of the second transmission means, including inhibiting transmission of the second authentication data, when the second electronic device is determined not to be legitimate by the determination means.
- View Dependent Claims (2, 3, 4, 5)
- - 2. A mutual authentication system as in claim 1, wherein the first electronic device is a portable electronic device having a contact section for electrically communicating with the second electronic device.
  - 3. A mutual authentication system as in claim 2, wherein the second electronic device is a terminal device for electrically communicating with the portable electronic device.
  - 4. A mutual authentication system as in claim 1, wherein the first transmission means comprises a card reader/writer in the second electronic device which communicates with a contact section in the first electronic device.
  - 5. A mutual authentication system as in claim 1, wherein the determination means includes means for comparing the first authentication data with data stored in the first electronic device.

6. A mutual authentication method for authenticating a first electronic device and a second electronic device by transmitting authentication data between the first and second electronic devices, comprising the steps of:
- transmitting a first authentication data from the second electronic device to the first electronic device;
  
  determining the legitimacy of the second electronic device based on the first authentication data transmitted from the second electronic device;
  
  transmitting a second authentication data, which is used for determining the legitimacy of the first electronic device, from the first electronic device to the second electronic device when the second electronic device is determined to be legitimate by the determining step; and
  
  inhibiting the transmitting of the second authentication data when the second electronic device is determined not to be legitimate by the determining step.
- View Dependent Claims (7, 8)
- - 7. A mutual authentication as in claim 6, wherein the step of determining the legitimacy of the second electronic device includes comparing the first authentication data with data stored in the first electronic device.
  - 8. A mutual authentication method as in claim 6, wherein the step of inhibiting includes the step of sending an indication from the first electronic device to the second electronic device when the second electronic device is determined not to be legitimate.

9. A mutual authentication method for transmitting authentication data between the first and second electronic devices for authenticating with each other, comprising the steps of:
- transmitting first data and first designate data designating first key data to the first electronic device from the second electronic device;
  
  transmitting second data and second designate data designating second key data to the second electronic device from the first electronic device;
  
  generating first authentication data based on the second data and the second designate data in the first electronic device;
  
  generating second authentication data based on the received second data and the second designate data in the second electronic device and transmitting the second authentication data to the first electronic device;
  
  comparing the first authentication data with the second authentication data transmitted from the second electronic device in the first electronic device;
  
  generating third authentication data based on the first data and the first designate data in the first electronic device;
  
  transmitting the third authentication data and third data indicating that the first authentication data coincides with the second authentication data from the first electronic device to the second electronic device when the first authentication data coincides with the second authentication data in the comparing step; and
  
  transmitting fourth data indicating that the first authentication data does not coincide with the second authentication data from the first electronic device to the second electronic device when the first authentication data does not coincide with the second authentication data in the comparing step.
- View Dependent Claims (10, 11, 12)
- - 10. A mutual authentication method as in claim 9, wherein the first electronic device includes storing means having memory areas divided corresponding to application objects thereof for storing key data corresponding to the divided areas.
  - 11. A mutual authentication method as in claim 10, further comprising the step of controlling reading and writing operations with respect to the divided areas of the storing means based on a comparison result of the comparing step.
  - 12. A mutual authentication method as in claim 10, wherein the storing means stores the first key data and the second key date into the each of memory areas.

13. A mutual authentication system for authenticating a first electronic device and a second electronic device by transmitting authentication data between the first and second electronic devices, comprising:
- first transmission means for transmitting a first authentication data from the second electronic device to the first electronic device;
  
  determination means, provided in the first electronic device, for determining the legitimacy of the second electronic device based on the first authentication data transmitted from the second electronic device by the first transmission means;
  
  second transmission means for transmitting a second authentication data, which is used for determining the legitimacy of the first electronic device, from the first electronic device to the second electronic device when the second electronic device is determined to be legitimate by the determination means; and
  
  third transmission means for transmitting a determination result data from the first electronic device to the second electronic device when the second electronic device is determined not to be legitimate by the determination means, the determination result data indicating that the second electronic device is not legitimate.

14. A mutual authentication method for authenticating a first electronic device having a determination means and a second electronic device by transmitting authentication data between the first and second electronic devices, comprising the steps of:
- transmitting a first authentication data from the second electronic device to the first electronic device;
  
  determining, by the determination means in the first electronic device, the legitimacy of the second electronic device based on the first authentication data transmitted from the second electronic device;
  
  transmitting a second authentication data, which is used for determining the legitimacy of the first electronic device, from the first electronic device to the second electronic device when the second electronic device is determined to be legitimate by the determining step; and
  
  transmitting a determination result data from the first electronic device to the second electronic device when the second electronic device is determined not to be legitimate by the determining step, the determination result data indicating that the second electronic device is not legitimate.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Kabushiki Kaisha Toshiba (Toshiba Corporation)
Original Assignee
Kabushiki Kaisha Toshiba (Toshiba Corporation)
Inventors
Iijima, Yasuo
Primary Examiner(s)
Nelms, David C.
Assistant Examiner(s)
Lee, John R.

Application Number

US07/769,719
Time in Patent Office

874 Days
Field of Search

235/380, 235/382, 235/381, 235/379, 235/375, 380/23, 380/24, 380/25
US Class Current

235/380
CPC Class Codes

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/40975   using encryption therefor

G07F 7/1008   Active credit-cards provide...

H04L 63/0853   using an additional device,...

H04L 63/0869   for achieving mutual authen...

H04W 12/06   Authentication

H04W 92/08   between user and terminal d...

Mutual authentication system and method which checks the authenticity of a device before transmitting authentication data to the device

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

250 Citations

14 Claims

Specification

Solutions

Use Cases

Quick Links

Mutual authentication system and method which checks the authenticity of a device before transmitting authentication data to the device

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

250 Citations

14 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links