Consumable authentication protocol and system

US 6,374,354 B1
Filed: 03/02/2000
Issued: 04/16/2002
Est. Priority Date: 07/15/1997
Status: Expired due to Term

First Claim

Patent Images

1. A consumable authentication protocol for validating the authenticity of an untrusted authentication chip, the protocol includes the steps of:

generating a random number and applying a keyed one-way function to the random number using a first secret key to produce a first outcome, in a trusted authentication chip;

passing the random number and the first outcome to the untrusted authentication chip;

applying the keyed one-way function to the random number using the first secret key to produce a second outcome, in the untrusted authentication chip, and then comparing the first and second outcomes;

in the event that the first and second outcomes match, applying the keyed one-way function to the random number together with a data message read from the untrusted chip using a second secret key to produce a third outcome, in the untrusted chip;

passing the third outcome together with the data message to the trusted chip;

applying the keyed one-way function to the random number together with a data message read from the untrusted chip using the second secret key to produce a fourth outcome, in the trusted chip;

comparing the third and fourth outcomes in the trusted chip, and in the event of a match, considering the untrusted chip and the data message to be valid;

otherwise considering the untrusted chip and the data message to be invalid.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

This invention concerns a consumable authentication protocol for validating the existence of an untrusted authentication chip, as well as ensuring that the Authentication Chip lasts only as long as the consumable. In a further aspect it concerns a consumable authentication system for the protocol. In this invention we are concerned not only with validating that an authentication chip is present, but writes and reads of the authentication chip'"'"'s memory space must be authenticated as well. A random number and an encrypted version of it are produced in a trusted authentication chip and passed to an untrusted authentication chip. The untrusted chip encrypts the random number to determine whether it gets the same result as the trusted chip. If so then it re-encrypts the random number together with a data message using a second key and sends it back with the data message. The trusted chip then encrypts the data message and random number with the second key for comparison.

Citations

23 Claims

1. A consumable authentication protocol for validating the authenticity of an untrusted authentication chip, the protocol includes the steps of:
- generating a random number and applying a keyed one-way function to the random number using a first secret key to produce a first outcome, in a trusted authentication chip;
  
  passing the random number and the first outcome to the untrusted authentication chip;
  
  applying the keyed one-way function to the random number using the first secret key to produce a second outcome, in the untrusted authentication chip, and then comparing the first and second outcomes;
  
  in the event that the first and second outcomes match, applying the keyed one-way function to the random number together with a data message read from the untrusted chip using a second secret key to produce a third outcome, in the untrusted chip;
  
  passing the third outcome together with the data message to the trusted chip;
  
  applying the keyed one-way function to the random number together with a data message read from the untrusted chip using the second secret key to produce a fourth outcome, in the trusted chip;
  
  comparing the third and fourth outcomes in the trusted chip, and in the event of a match, considering the untrusted chip and the data message to be valid;
  
  otherwise considering the untrusted chip and the data message to be invalid.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
- - 2. A consumable authentication protocol according to claim 1, for validating the authenticity of an untrusted authentication chip and for ensuring that the untrusted authentication chip lasts only as long as the consumable comprising the untrusted authentication chip, the authentication of writing new data to an untrusted chip including the step of writing new data to the untrusted chip, followed by performing each step specified in claim 1, wherein the data message read step in claim 1 includes reading the new data, and in the event that the chip is found to be authentic and the new data is the same as the data message read from the untrusted chip, the step of writing new data to the untrusted chip is validated.
  - 3. A consumable authentication protocol according to claim 1, where the two secret keys are held by both the trusted and untrusted chips and must be kept secret.
  - 4. A consumable authentication protocol according to claim 1 where the trusted authentication chip contains a random function to produce numbers from a seed, and the function advances after every random number is produced so that the next random number will be produced from a new seed.
  - 5. A consumable authentication protocol according to claim 1, where the random number is generated by a random function seeded with a different value each time and where for a group of authentication chips the initial value of the seed for each chip is different from the initial value for the other chips in the group.
  - 6. A consumable authentication protocol according to claim 1, where the data message is a memory vector of the authentication chip.
  - 7. A consumable authentication protocol according to claim 6, where a part of the memory vector may contain different values for each instance of the authentication chip, and be designated read only (constant) for a lifetime of the consumable, and where part of the memory vector nay be designated decrement only for the lifetime of the consumable, and where part of the memory vector may be designated read-writeable for the lifetime of the consumable.
  - 8. A consumable authentication protocol according to claim 1, where the trusted chip contains a test function to return a value indicating validity, and advance the random number if the untrusted chip is valid;
    - otherwise it returns a value indicating invalidity.
  - 9. A consumable authentication protocol according to claim 1, where a time taken to return a value indicating invalidity is the same for all bad inputs.
  - 10. A consumable authentication protocol according to claim 1, where the untrusted chip contains a read function to read a first and second value and apply the one-way function to the first value to produce an outcome;
    - if the outcome is the same as the second value it returns a data message and another output, from applying the one-way function to the first value and the data message;
      
      otherwise it returns a value indicating failure of the function.
  - 11. A consumable authentication protocol according to claim 10, where a time taken to return the value indicating failure is the same for all bad inputs.
  - 12. A consumable authentication protocol according to claim 1, where the untrusted chip also contains a write function to write new data over those parts of the data message that can legitimately be written over.
  - 13. A consumable authentication system for performing the method according to claim 1;
    - where the system includes;
      
      a trusted authentication chip and an untrusted authentication chip;
      
      the trusted authentication chip includes a random number generator and a one-way function and first and second secret keys for the function, and a test function;
      
      the one-way function operates to generate a random number and an encrypted version of it as a first outcome;
      
      the untrusted authentication chip includes the one-way function and the first and second keys, and a read function;
      
      the read function operates to apply the keyed one-way function to the random number using the first secret key to produce a second outcome, and then compare the first and second outcomes;
      
      in the event that the first and second outcomes match, the read function then applies the keyed one-way function to the random number together with a data message read from the untrusted chip using the second secret key to produce a third outcome, and pass the third outcome together with the data message to the trusted chip;
      
      the test function in the trusted chip applies the keyed one-way function to the random number together with the data message passed from the untrusted chip using the second secret key to produce a fourth outcome which it compares with the third outcome;
      
      In the event of a match, the untrusted chip and the data message are considered to be valid.
  - 14. A consumable authentication system according to claim 13, where new data written to the untrusted chip is considered valid in the event that the chip is found to be authentic and the new data is the same as the data message read from the untrusted chip.
  - 15. A consumable authentication system according to claim 13, where the two secret keys awe held by both the trusted and untrusted chips and must be kept secret.
  - 16. A consumable authentication system according to claim 13, where the random number is generated by a random function seeded with a different value each time.
  - 17. A consumable authentication system according to claim 13, where the data message is a memory vector of the authentication chip.
  - 18. A consumable authentication system according to claim 17, where part of the memory vector space is different for each chip, par of it may be constant (read only) for each consumable, and part of it is decrement only.
  - 19. A consumable authentication system according to claim 13, where the trusted chip contains a test function to return a value indicating validity, and advances the random number if the untrusted chip is valid, otherwise it returns a value indicating invalidity.
  - 20. A consumable authentication system according to claim 19, where a time taken to return the value indicating invalidity is the same for all bad inputs.
  - 21. A consumable authentication system according to claim 13, where the untrusted chip contains a read function to read a first and second value and apply the one-way function to the first value to produce an outcome;
    - if the outcome is the same as the second value it returns a data message and another output, from applying the oneway function to the first value and the data message;
      
      otherwise it returns a value indicating failure of the function.
  - 22. A consumable authentication system according to claim 21, where a time taken to return the value indicating failure is die same for all bad inputs.
  - 23. A consumable authentication system according to claim 13, where the untrusted chip also contains a write function to write new data over those parts of the data message that can legitimately be written over.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Memjet Technology Ltd. (Memjet Limited)
Original Assignee
Silverbrook Research Pty Limited
Inventors
Lapstun, Paul, Walmsley, Simon Robert
Primary Examiner(s)
Decady, Albert
Assistant Examiner(s)
Zand, Kambiz

Application Number

US09/516,869
Time in Patent Office

775 Days
Field of Search

713/189, 713/172, 713/170, 713/168, 713/159, 713/155, 713/181, 380/262
US Class Current

713/167
CPC Class Codes

B41J 15/044   Cassettes or cartridges con...

B41J 2/01   Ink jet

B41J 2/14   Structure thereof only for ...

B41J 2/14314   Structure of ink jet print ...

B41J 2/14427   Structure of ink jet print ...

B41J 2/16   Production of nozzles

B41J 2/1601   Production of bubble jet pr...

B41J 2/1623   bonding and adhesion

B41J 2/1626   etching

B41J 2/1628   dry etching

B41J 2/1629   wet etching

B41J 2/1631   photolithography

B41J 2/1632   machining

B41J 2/1635   dividing the wafer into ind...

B41J 2/1637   molding

B41J 2/1639   sacrificial molding

B41J 2/1642   thin film formation by CVD ...

B41J 2/1643   thin film formation by plating

B41J 2/1645   thin film formation by spin...

B41J 2/1646   thin film formation by sput...

B41J 2/1648 : Production of print heads w...

B41J 2/16585 : for paper-width or non-reci...

B41J 2/17503 : Ink cartridges

B41J 2/17513 : Inner structure

B41J 2/17596 : Ink pumps, ink valves

B41J 2002/041 : Electromagnetic transducer

B41J 2002/14491 : Electrical connection

B41J 2202/21 : Line printing

B41J 29/02 : Framework

B41J 29/13 : Cases or covers

B41J 3/00 : Typewriters or selective pr...

B82Y 30/00 : Nanotechnology for material...

G03B 17/02 : Bodies

G03B 17/24 : with means for separately p...

G03B 17/48 : adapted for combination wit...

G03B 27/02 : Exposure apparatus for cont...

G06F 1/1626 : with a single-body enclosur...

G06F 12/0866 : for peripheral storage syst...

G06F 21/79 : in semiconductor storage me...

G06F 21/86 : Secure or tamper-resistant ...

G06F 2212/2022 : Flash memory

G06F 2221/2129 : Authenticate client device ...

G06K 1/121 : by printing code marks appl...

G06K 19/06 : characterised by the kind o...

G06K 19/06037 : multi-dimensional coding

G06K 19/073 : Special arrangements for ci...

G06K 7/10 : by electromagnetic radiatio...

G06K 7/10722 : Photodetector array or CCD ...

G06K 7/14 : using light without selecti...

G06K 7/1417 : 2D bar codes

G06Q 20/3674 : involving authentication

G06Q 20/382 : insuring higher security of...

G06Q 20/3829 : involving key management

G06T 1/20 : Processor architectures; Pr...

G06T 3/02 : Affine transformations for ...

G07F 7/08 : by coded identity card or c...

G07F 7/086 : by passive credit-cards ada...

G07F 7/12 : Card verification

G09G 2310/0281 : Arrangement of scan or data...

G11B 7/0033 : with cards or other card-li...

G11B 7/007 : Arrangement of the informat...

G11C 11/56 : using storage elements with...

G11C 16/22 : Safety or protection circui...

H01L 23/576 : using active circuits

H01L 2924/00 : Indexing scheme for arrange...

H01L 2924/0002 : Not covered by any one of g...

H04L 9/32 : including means for verifyi...

H04N 1/00127 : Connection or combination o...

H04N 1/00278 : with a printing apparatus, ...

H04N 1/00326 : with a data reading, recogn...

H04N 1/00355 : Mark-sheet input sensing re...

H04N 1/0044 : for image preview or review...

H04N 1/00965 : using a plug-in memory modu...

H04N 1/00968 : by scanning marks on a shee...

H04N 1/2112 : using still video cameras

H04N 1/2154 : the still video camera inco...

H04N 1/2307 : Circuits or arrangements fo...

H04N 1/32122 : in a separate device, e.g. ...

H04N 1/32133 : on the same paper sheet, e....

H04N 2101/00 : Still video cameras

H04N 2201/0008 : Connection or combination o...

H04N 2201/0084 : Digital still camera

H04N 2201/3222 : of processing required or p...

H04N 2201/3242 : of processing required or p...

H04N 2201/3261 : of multimedia information, ...

H04N 2201/3264 : of sound signals

H04N 2201/3269 : of machine readable codes o...

H04N 2201/3276 : of a customised additional ...

H04N 2201/328 : Processing of the additiona...

H04N 23/00 : Cameras or camera modules c...

H04N 25/00 : Circuitry of solid-state im...

H04N 5/2628 : Alteration of picture size,...

H05K 1/14 : Structural association of t...

H05K 1/189 : characterised by the use of...

Y02D 10/00 : Energy efficient computing,...

Y10S 977/839 : Mathematical algorithms, e....

Y10S 977/843 : Gas phase catalytic growth,...

Y10S 977/901 : having step or means utiliz...

Y10S 977/94 : in a logic circuit

View All

Consumable authentication protocol and system

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

Consumable authentication protocol and system

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links