Apparatus and method for controlling access to and interconnection of computer system resources

US 5,483,596 A
Filed: 01/24/1994
Issued: 01/09/1996
Est. Priority Date: 01/24/1994
Status: Expired due to Fees

First Claim

Patent Images

1. A system for transferring secure data across a data communication medium between first and second computer system resources, comprising:

first and second access controllers electrically connected to the data communication medium and to respective ones of the first and second resources, for transferring the secure data during a data transfer session after verifying that the first and second resources are both associated with at least one authorized access code;

the access controllers each including;

a memory storing a table of encryption keys, a table of algorithms, and a table of authorized resources that associates pairs of resources with authorized access control codes, the encryption keys and algorithms being identical in each access controller;

a processor randomly generating for the data transfer session, plural numbers and utilizing an access controller identifying number, the randomly generated numbers, selected ones of the stored algorithms, and a predetermined one of the stored encryption keys to generate in cooperation with the other access controller a unique session key; and

an encryption/decryption processor using the unique session key to encrypt the secure data transferred across the data communication medium.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A compact, physically secure, high-performance access controller (16, 18) is electrically connected to each access-managed resource (12, 14) or group of resources (10) in a computer system. Whenever access managed resources attempt to establish communications, their associated access controllers exchange sets of internally generated access authorization codes (106, 112, 120, 132, 202, 208, 216, 270, 272) utilizing protocols characterized by multiple random numbers, resource authorization keys, serial number (48, 72) verification, and session authorization keys. Each new session employs different encryption keys derived from multiple random numbers and multiple hidden algorithms. Tables of authorized requesting and responding resources are maintained in a protected memory (34, 38) in each access controller. An authorization table building procedure is augmented by an optional central access control system (56) that employs a parallel control network (62, 64, 66) to centrally manage the access control tables in an access-controlled system of resources.

326 Citations

33 Claims

1. A system for transferring secure data across a data communication medium between first and second computer system resources, comprising:
- first and second access controllers electrically connected to the data communication medium and to respective ones of the first and second resources, for transferring the secure data during a data transfer session after verifying that the first and second resources are both associated with at least one authorized access code;
  
  the access controllers each including;
  
  a memory storing a table of encryption keys, a table of algorithms, and a table of authorized resources that associates pairs of resources with authorized access control codes, the encryption keys and algorithms being identical in each access controller;
  
  a processor randomly generating for the data transfer session, plural numbers and utilizing an access controller identifying number, the randomly generated numbers, selected ones of the stored algorithms, and a predetermined one of the stored encryption keys to generate in cooperation with the other access controller a unique session key; and
  
  an encryption/decryption processor using the unique session key to encrypt the secure data transferred across the data communication medium.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The system of claim 1 in which the resources are selected from a group consisting of:
    - computers, software, servers, networks, data bases, communications switches, communication controllers, mass memory devices, printers, and disk drives.
  - 3. The system of claim 1 in which the communication medium is selected from a group consisting of:
    - a modem, a network, a radio frequency transmission, a SCSI bus, an IEEE-488 bus, an RS-232 interconnection, a cellular radio, a CATV cable, an optical fiber, a switched network, and electrical wiring.
  - 4. The system of claim 1 in which the access controllers verify an access level of authorization and a resource privilege level of authorization before connecting their respective first and second resources to the data communication medium.
  - 5. The system of claim 1 in which the access controllers generate a new unique session key for each subsequent data transfer session.
  - 6. The system of claim 1 further including a communication pathway that interconnects at least one of the access controllers to a central access control system that communicates access control code information to the access controllers through the communication pathway.
  - 7. The system of claim 6 in which the communication pathway is selected from a group consisting of:
    - the communication medium, a modem, a network, tan Ethernet,]a radio frequency transmission, a SCSI bus, an IEEE-488 bus, a computer bus, an RS-232 interconnection, a cellular radio, a CATV cable, an optical fiber, a switched network, and electrical wiring.
  - 8. The system of claim 1 in which a major portion of at least one of the access controllers is encapsulated in a potting compound and the access controller further includes a self-destruct mechanism that erases the memory in response to detecting tampering with the potting compound.
  - 9. The system of claim 8 in which the self-destruct mechanism includes an electret material oriented in the potting compound in proximity to an electric field detecting device.

10. A method for generating a table of authorized resources entry for use in a secure access control system, comprising:
- establishing a secure data communication dialog between first and second access controllers;
  
  storing in each access controller, a table of encryption keys, a table of algorithms, and a table of authorized resources that associates pairs of access controllers with authorized access control codes, the tables of encryption keys and algorithms being identical in each access controller;
  
  generating a unique base key associated with the first and second access controllers by using the secure data communication dialog to exchange data derived from predetermined ones of the encryption keys and the algorithms; and
  
  associating the first and second access controllers with the unique base key in the table of authorized resources of the first and second access controllers.
- View Dependent Claims (11)
- - 11. The method of claim 10 in which the first access controller is associated with a resource access control system that stores an ID number in the first access controller, the ID number being related to a production serial number of the first access controller.

12. A method for generating and using encryption keys to authorize and encrypt data exchanged between first and second computer system resources, comprising:
- providing a master access controller and a slave access controller each including a processor and a memory;
  
  storing in the memories tables of authorized resources and identical base key tables, encryption key tables, and algorithm tables;
  
  randomly generating in the master access controller a number alpha1;
  
  selecting a predetermined base key "a" from the master access controller base key table;
  
  calculating "a" alpha1;
  
  randomly generating in the slave access controller a number beta1;
  
  selecting the predetermined base key "a" from the slave access controller base key table;
  
  determining a key A in the slave access controller by calculating "a" alpha1) beta1;
  
  calculating "a" beta1;
  
  determining key A in the master access controller by calculating ("a" beta1) alpha1;
  
  selecting a base key x at random from the master access controller base key table;
  
  determining a key B by calculating (x) alpha1*beta1;
  
  determining base key x in the slave access controller bycalculating (key B) (1/beta1*alpha1); and
  
  determining that base key x exists in the slave access controller base key table to verify the validity of key B.
- View Dependent Claims (13, 14)
- - 13. The method of claim 12 further including:
    - mapping into a record A, a master access controller ID number, and an encryption key selected from the master access controller encryption key table;
      
      unmapping record A in the slave access controller;
      
      generating from record A a unique base key;
      
      entering the master access controller ID number, the encryption key and the unique base key into the slave access controller table of authorized resources;
      
      mapping a slave access controller serial number and the unique base key into a record B;
      
      unmapping record B in the master access controller; and
      
      entering the slave access controller serial number, the encryption key and the unique base key into the master access controller table of authorized resources.
  - 14. The method of claim 12 in which predetermined base key "a" is replaced by a predetermined base key "b" and the method further comprises:
    - randomly generating in the master access controller a number alpha2;
      
      mapping the master access controller ID number and alpha2 into a record C;
      
      unmapping record C in the slave access controller;
      
      randomly generating in the slave access controller a number beta2;
      
      searching the slave access controller table of authorized resources for a match to the master access controller ID number;
      
      mapping into a record D if a match to the master access controller ID number is found a slave access controller ID number and beta2;
      
      unmapping record D in the master access controller;
      
      searching the master access controller table of authorized resources for an existing entry including the slave access controller ID number;
      
      storing in the master access controller table of authorized resources if the slave access controller ID number is found, the encryption key and the unique base key associated with the slave access controller ID number;
      
      searching the slave access controller table of authorized resources for an existing entry including the master access controller ID number;
      
      storing in the slave access controller table of authorized resources if the slave master controller ID number is found, the encryption key and unique base key associated with the master access controller ID number;
      
      randomly generating in the slave access controller a number beta3,calculating unique base key beta3 and sending unique base key beta3 to the master access controller;
      
      randomly generating in the master access controller a number alpha3;
      
      calculating unique base key alpha3 and sending unique base key alpha3 to the slave access controller;
      
      determining a session key in the master access controller by calculating (the unique base key beta3) alpha3;
      
      determining the session key in the slave access controller by calculating (the unique base key alpha3) beta3; and
      
      transferring data between the first and second computer system resources by encrypting and decrypting the data in the associated access controllers using the session key.

15. A system for transferring secure data across a data communication medium between first and second computers comprising:
- first and second access control means in communication with the data communication medium and with associated ones of the first and second computers, for transferring the secure data after verifying that the first and second computers are both associated with the authorized access control code;
  
  the first and second access control means each having an associated memory for storing a table of predetermined encryption keys and a table of authorized resources for associating the first and second computers with an authorized access control code, and an associated processor for randomly generating numbers and using the randomly generated numbers in cooperation with a predetermined one of the stored encryption keys to generate in data communication with the other access control means a session key; and
  
  an encryption/decryption processor using the session key to encrypt the secure data transferred across the data communication medium.
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22)
- - 16. The system of claim 15 further including a self-destruct means that erases the associated memory in response to detecting tampering with the access control means.
  - 17. The system of claim 16 in which the self-destruct means detects tampering with an electromechanical means coupled to at least one of the associated memory and a data communication connection.
  - 18. The system of claim 15 in which at least a portion of one of the access control means is integral with its associated computer.
  - 19. The system of claim 18 in which the communication medium is a switched network and each of the access control means is connected to the switched network through a modem.
  - 20. The system of claim 19 in which the modem is integral with its associated access control means.
  - 21. The system of claim 15 further including a communication pathway that interconnects the first access control means to a central access control system that includes at least a portion of the associated memory.
  - 22. The system of claim 21 in which the communication pathway is selected from a group consisting of:
    - the communication medium, a network, a radio frequency transmission, a SCSI bus, an IEEE-488 bus, an RS-232 interconnection, a cellular radio, a CATV cable, an optical fiber, a switched network, and electrical wiring.

23. A method for generating and using encryption keys to authorize and encrypt data transferred between first and second computer system resources, comprising:
- providing a master access controller and a slave access controller each including a processor and a memory;
  
  storing in the memories tables of authorized resources and identical encryption key tables;
  
  randomly generating in the master access controller and the slave access controller respective first and second numbers;
  
  selecting from the master access controller encryption key table and the slave access controller encryption key table a first predetermined encryption key;
  
  determining in the master access controller and the slave access controller a key A by processing the first predetermined encryption key with the first and second randomly generated numbers;
  
  selecting at random from the master access controller encryption key table a second encryption key;
  
  determining a key B in the master access controller by processing the second encryption key with the first and second randomly generated numbers; and
  
  encrypting key B with key A and sending encrypted key B to the slave access controller,
- View Dependent Claims (24, 25, 26)
- - 24. The method of claim 23 further including:
    - determining in the slave access controller the second encryption key by processing key B with the first and second randomly generated numbers; and
      
      verifying that key B exists by determining whether the second encryption key exists in the slave access controller encryption key table.
  - 25. The method of claim 23 further including:
    - providing the master access controller with a master access controller ID number and the slave access controller with a slave access controller ID number;
      
      encrypting the master access controller ID number and sending the master access controller ID number to the slave access controller;
      
      determining in the slave access controller a unique code by processing the master access controller ID number and the slave access controller ID number;
      
      entering the master access controller ID number and the unique code into the slave access controller table of authorized resources;
      
      encrypting the slave access controller ID number and the unique code and sending them to the master access controller; and
      
      entering the slave access controller ID number and the unique code into the master access controller table of authorized resources.
  - 26. The method of claim 25 further comprising:
    - encrypting the master access controller ID number and sending the master access controller ID number to the slave access controller;
      
      encrypting the slave access controller ID number and sending the slave access controller ID number to the master access controller if the master access controller ID number is an existing entry in the slave access controller table of authorized resources;
      
      registering the unique code associated with the slave access controller ID number if the slave access controller ID number is an existing entry in the master access controller table of authorized resources;
      
      registering the unique code associated with the master access controller ID number if the master access controller ID number is an existing entry in the slave access controller table of authorized resources;
      
      determining a session key in the master access controller and the slave access controller by processing the unique code registered in each access controller; and
      
      decrypting with the session key the data transferred between the first and second computer system resources.

27. A method for authorizing access to and encrypting data transferred between first and second computer system resources, comprising:
- connecting together through a first data communication medium first and second access controllers each associated with a table of authorized resources;
  
  generating in the table of authorized resources an authorized resource pair entry associating the first and second access controllers;
  
  detaching the first and second access controllers;
  
  attaching the first and second access controllers to respective ones of the first and second computer system resources;
  
  connecting the first and second access controllers through a second data communication medium;
  
  exchanging data between the first and second access controllers to verify that both access controllers are associated by the authorized resource pair entry in the associated table of authorized resources;
  
  establishing a session encryption key; and
  
  encrypting and decrypting with the session key data transferred across the second data communication medium between the first and second computer system resources.
- View Dependent Claims (28, 29, 30, 31, 32, 33)
- - 28. The method of claim 27 further including the step of providing each of the first and second access controllers with a memory and storing the table of authorized resources in the memory.
  - 29. The method of claim 27 in which the connecting together and generating steps are carried out in data communication with a resource access control system that provides the table of authorized resources with identifying data unique to the first and second access controllers.
  - 30. The method of claim 27 further including the steps of providing a central access control system in data communication with at least one of the access controllers and exchanging authorized resource data between the central access control system and the access controller.
  - 31. The method of claim 30 further including the step of storing the table of authorized resources in the central access control system.
  - 32. The method of claim 30 further including the step of providing a parallel control network that provides the authorized resource data through a third data communication medium interconnecting the central access control system and the first and second access controllers.
  - 33. The method of claim 32 in which the first, second, and third data communication media are selected from a group consisting of:
    - a modem, a network, a radio frequency,transmission, a SCSI bus, an IEEE-488 bus, a computer bus, an RS-232 interconnection, a cellular radio, a CATV cable, an optical fiber, a switched network, and electrical wiring.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Paralon Technologies, Inc.
Original Assignee
Paralon Technologies, Inc.
Inventors
Trafton, Roger M., Rosenow, Peter D.
Primary Examiner(s)
Gregory, Bernarr E.

Application Number

US08/186,663
Time in Patent Office

715 Days
Field of Search

380/4, 380/9, 380/10, 380/20, 380/21, 380/23, 380/24, 380/25, 380/28, 380/44, 380/46, 380/49, 380/50
US Class Current

713/167
CPC Class Codes

G06F 21/31   User authentication

G06F 21/6236   between heterogeneous systems

G06F 21/86   Secure or tamper-resistant ...

G06F 2211/007   Encryption, En-/decode, En-...

G06F 2221/2107   File encryption

G06F 2221/2141   Access rights, e.g. capabil...

G06F 2221/2143   Clearing memory, e.g. to pr...

H04L 63/0428   wherein the data content is...

H04L 63/101   Access control lists [ACL]

H04L 9/40   Network security protocols

Apparatus and method for controlling access to and interconnection of computer system resources

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

326 Citations

33 Claims

Specification

Use Cases

Quick Links

Others

Apparatus and method for controlling access to and interconnection of computer system resources

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

326 Citations

33 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others