Authentication of a message source
First Claim
1. A method for authenticating the location of a source for a message transmitted from a data signal source to a data receiving station, the method comprising the steps of:
- receiving, at a data signal source or putative source (ps), a data signal, defined at a sequence of two or more times and changing with time, and receiving measurable location determination (LD) signals from at least one LD signal source at a sequence of two or more LD signal receipt times;
forming at the data signal source and transmitting to the data receiving station an augmented data signal that includes (1) a segment of data signal values, (2) at least one segment of LD signal values received between a selected first LD signal receipt time and a selected second LD signal receipt time, (3) the values of the selected first and second LD signal receipt times, (4) an indicium identifying the LD signal source for each segment of LD signal values included in the augmented data signal, and (5) an asserted location for the data signal source and an asserted data source location time for which this location is asserted, where the asserted data source location time lies in or near a range of times between the selected first and second LD signal receipt times; and
receiving the augmented data signal at the data receiving station, estimating a location of the data signal source from information contained in the augmented data signal, comparing the asserted location with the estimated location, and authenticating the asserted location of the data signal source only if the asserted location and the estimated location substantially agree with each other.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods for authentication or validation of the location of a putative source (ps) of a message, using time varying location determination (LD) signals that are received from J sources (J>1) of LD signals G(t;j;ps) that are spaced apart from the putative source. The putative source forms an augmented data signal that includes the original message, one or more segments g tk(m),tk(m+1) ; j; ps!={G(tr ;j;ps)|tk(m) ≦tr ≦tk(m+1) } of the LD signals for a selected time interval, a putative source asserted location L(t"k(m) ;ps) for a time t"k(m) in the selected time interval, and other identifying parameters. The augmented data signal is received by a central station that analyzes the LD signal segments and determines whether the asserted location L(t"k(m) ;ps) is likely to be the true message source location. Part or all of the augmented data signal can be encrypted for transmission. One application is validation of use of licensed software on a computer whose location may be mobile. Another application is validation of votes cast from a plurality of remote voting sites.
205 Citations
42 Claims
-
1. A method for authenticating the location of a source for a message transmitted from a data signal source to a data receiving station, the method comprising the steps of:
-
receiving, at a data signal source or putative source (ps), a data signal, defined at a sequence of two or more times and changing with time, and receiving measurable location determination (LD) signals from at least one LD signal source at a sequence of two or more LD signal receipt times; forming at the data signal source and transmitting to the data receiving station an augmented data signal that includes (1) a segment of data signal values, (2) at least one segment of LD signal values received between a selected first LD signal receipt time and a selected second LD signal receipt time, (3) the values of the selected first and second LD signal receipt times, (4) an indicium identifying the LD signal source for each segment of LD signal values included in the augmented data signal, and (5) an asserted location for the data signal source and an asserted data source location time for which this location is asserted, where the asserted data source location time lies in or near a range of times between the selected first and second LD signal receipt times; and receiving the augmented data signal at the data receiving station, estimating a location of the data signal source from information contained in the augmented data signal, comparing the asserted location with the estimated location, and authenticating the asserted location of the data signal source only if the asserted location and the estimated location substantially agree with each other. - View Dependent Claims (2, 3)
-
-
4. A method for authenticating the location of a source for a message transmitted from a data signal source to a data receiving station, the method comprising the steps of:
-
receiving, at a data signal source or putative source (ps), a data signal, defined at a sequence of two or more times and changing with time, and receiving measurable location determination (LD) signals from at least one LD signal source at a sequence of two or more LD signal receipt times; forming at the data signal source and transmitting to the data receiving station an augmented data signal that includes (1) a segment of data signal values, (2) at least one segment of LD signal values received between a selected first LD signal receipt time and a selected second LD signal receipt time, (3) the values of the selected first and second LD signal receipt times, (4) an indicium identifying the LD signal source for each segment of LD signal values included in the augmented data signal, and (5) an asserted location for the data signal source and an asserted data source location time for which this location is asserted, where the asserted data source location time lies in or near a range of times between the selected first and second LD signal receipt times; receiving at the data receiving station the augmented data signal and an LD signal from at least one selected LD signal source for which a segment of LD signal values is included in the augmented data signal; estimating, at the data receiving station, a segment of LD signal values that should have been received at the data signal source between the selected first and second LD signal receipt times, based on the asserted location, for the at least one selected LD signal source, and comparing the estimated segment of LD signal values with the segment of LD signal values contained in the augmented data signal for the at least one selected LD signal source; and authenticating the asserted location of the data signal source only if the estimated segment of LD signal values and the segment of LD signal values contained in the augmented data signal for the at least one selected LD signal source substantially agree with each other. - View Dependent Claims (5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 42)
-
-
16. A method for authenticating the location of a source for a message transmitted from a data signal source to a data receiving station, the method comprising the steps of:
-
receiving, at a data signal source or putative source (ps), a data signal, defined at a sequence of two or more times and changing with time, and receiving measurable location determination (LD) signals from at least one LD signal sources at a sequence of two or more LD signal receipt times; forming at the data signal source and transmitting to the data receiving station an encrypted augmented data signal, encrypted using a selected encryption algorithm E(Θ
) that depends upon a selectable encryption parameter Θ
, that includes (1) a segment of data signal values, (2) at least one segment of LD signal values received between a selected first LD signal receipt time and a selected second LD signal receipt time, (3) the values of the selected first and second LD signal receipt times, (4) an indicium identifying the LD signal source for each segment of LD signal values included in the augmented data signal, and (5) an asserted location for the data signal source and an asserted data source location time for which this location is asserted, where the asserted data source location time lies in or near a range of times between the selected first and second LD signal receipt times, where the data receiving station is capable of receiving and decrypting an encrypted signal that uses the encryption algorithm E(Θ
); andreceiving the encrypted augmented data signal at the data receiving station, determining the encryption parameter Θ
used to encrypt the encrypted augmented data signal, decrypting the encrypted augmented data signal, estimating a location of the data signal source from information contained in the augmented data signal, comparing the asserted location with the estimated location, and authenticating the asserted location of the data signal source only if the asserted location and the estimated location substantially agree with each other. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
-
-
31. A method for authenticating the location of a site where a software package is being used, the method comprising the steps of:
-
receiving at a computer station a segment of location determination (LD) signals with measurable LD signal values from at least three LD signal sources at a sequence of two or more LD signal receipt times, where the computer station is asserted to be located at one of N selected locations (N≧
1) and includes a microprocessor, a computer memory, a transmitter, a receiver and a software package that requires a license for use of the software;forming at the computer station and transmitting to a data receiving station an authentication signal that includes (1) a computer station indicium identifying the computer station that includes the software package, and (2) a segment of LD signals received at the computer station between a first selected time and a second selected time and the corresponding first and second selected times, for each of at least three distinct LD signal sources, and (4) an indicium identifying the LD signal source for the at least three segments of LD signal values included in the authentication signal; receiving the authentication signal at the data receiving station, estimating a location of the computer station from information contained in the authentication signal, and comparing the estimated location with a list of N authorized locations, at which use of the software package is approved; and approving use of the software package at the computer station only when the distance between the estimated location and at least one of the N authorized locations is no greater than a selected threshold distance. - View Dependent Claims (32, 33, 34)
-
-
35. A method for authenticating the location of a site where a vote is cast by a voting station user, the method comprising the steps of:
-
receiving at a computer station a segment of location determination (LD) signals with measurable LD signal values from at least three LD signal sources at a sequence of two or more LD signal receipt times, where the computer station is asserted to be located at one of N selected locations (N≧
1) and includes a microprocessor, a computer memory, a transmitter, a receiver and a voter module that allows a voter to cast a vote on a designated election issue;forming at the computer station and transmitting to a data receiving station an authentication signal that includes (1) a computer station indicium identifying the computer station that includes the software package, and (2) a segment of LD signals received at the computer station between a first selected time and a second selected time and the corresponding first and second selected times, for each of at least three distinct LD signal sources, and (4) an indicium identifying the LD signal source for the at least three segments of LD signal values included in the authentication signal; receiving the location authentication signal at the data receiving station, estimating a location of the computer station from information contained in the authentication signal, and comparing the estimated location with a list of N authorized locations, at which casting a vote upon the designated election issue is approved; and accumulating the vote cast by the voter at the computer station only when the distance between the estimated location and at least one of the N authorized locations is no greater than a selected threshold distance. - View Dependent Claims (36, 37, 38, 39)
-
-
40. A system for authenticating the location of a source for a message transmitted from a data signal source to a data receiving station, the apparatus comprising:
-
a data signal source or putative source, having a data signal defined at a sequence of two or more times and changing with time, and having the capacity to transmit the data signal to a data receiving station, where the data signal source receives measurable location determination (LD) signals from at least one LD signal source at a sequence of two or more LD signal receipt times; where the data signal source forms and transmits to a data receiving station an augmented data signal that includes (1) a segment of data signal values, (2) at least one segment of LD signal values received between a selected first LD signal receipt time and a selected second LD signal receipt time, (3) the values of the selected first and second LD signal receipt times, (4) an indicium identifying the LD signal source for each segment of LD signal values included in the augmented data signal, and (5) an asserted location for the data signal source and an asserted data source location time for which this location is asserted, where the asserted data source location time lies in or near a range of times between the selected first and second LD signal receipt times; and a data receiving station having the capacity to receive the augmented data signal, estimate a location of the data signal source from information contained in the augmented data signal, compare the asserted location with the estimated location, and authenticate the asserted location of the data signal source only if the asserted location and the estimated location substantially agree with each other.
-
-
41. A system for authenticating the location of a source for a message transmitted from a data signal source to a data receiving station, the apparatus comprising:
-
a data signal source or putative source, having a data signal defined at a sequence of two or more times and changing with time, and having the capacity to transmit the data signal to a data receiving station, where the data signal source receives measurable location determination (LD) signals from at least one LD signal source at a sequence of two or more LD signal receipt times; where the data signal source forms and transmits to a data receiving station an augmented data signal that includes (1) a segment of data signal values, (2) at least one segment of LD signal values received between a selected first LD signal receipt time and a selected second LD signal receipt time, (3) the values of the selected first and second LD signal receipt times, (4) an indicium identifying the LD signal source for each segment of LD signal values included in the augmented data signal, and (5) an asserted location for the data signal source and an asserted data source location time for which this location is asserted, where the asserted data source location time lies in or near a range of times between the selected first and second LD signal receipt times; a data receiving station having the capacity to receive the augmented data signal, to receive LD signals from at least one selected LD signal source for which a segment of LD signal values is included in the augmented data signal, to estimate a segment of LD signal values that should have been received at the data signal source between the selected first and second LD signal receipt times, for the at least one selected LD signal source, to compare the estimated segment of LD signal values with the segment of LD signal values contained in the augmented data signal for the at least one selected LD signal source, and to authenticate the asserted location of the data signal source only if the estimated segment of LD signal values and the segment of LD signal values contained in the augmented data signal for the at least one selected LD signal source approximately agree with each other.
-
Specification