System for secure controlled electronic memory updates via networks

US 6,546,492 B1
Filed: 03/26/1999
Issued: 04/08/2003
Est. Priority Date: 03/26/1999
Status: Expired due to Term

First Claim

Patent Images

1. A system for updating software programs of remote units in a controlled secure manner over a network, the system comprising:

a remote programmable unit having a memory storing software programs, the remote programmable unit adapted for connection to the network;

an authentication server disposed remotely from the remote programmable unit and accessible over the network, the authentication server verifying the authenticity of the remote programmable unit and providing a decryption key to the remote programmable unit over the network for storage in the memory storing program of the remote programmable unit, wherein the decryption key is used to decode an encrypted update file program; and

an update server disposed remotely from the remote programmable unit and accessible over the network, the update server providing the encrypted update file program to the remote programmable unit over the network for storage in the memory storing program of the remote programmable unit, wherein the remote programmable unit decrypts the encrypted update file program with the decryption key from the authentication server in order to update one of the software programs of the remote programmable unit.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for updating software for a remote unit over a network is disclosed herein. The system and method includes the remote unit, an authentication server and an update server. The remote unit may have a flasher host for communicating over the network and for transmitting commands to the remote unit. The system and method allows for the verification of a request message from the remote unit, and a response from the authentication server. The response message to the remote unit from the authentication server will contain an decryption key to decrypt the update file that will be sent by the update server. Such an authentication process prevents rogue programs from being sent to the remote unit thereby decreasing the potential for cellular fraud.

Citations

18 Claims

1. A system for updating software programs of remote units in a controlled secure manner over a network, the system comprising:
- a remote programmable unit having a memory storing software programs, the remote programmable unit adapted for connection to the network;
  
  an authentication server disposed remotely from the remote programmable unit and accessible over the network, the authentication server verifying the authenticity of the remote programmable unit and providing a decryption key to the remote programmable unit over the network for storage in the memory storing program of the remote programmable unit, wherein the decryption key is used to decode an encrypted update file program; and
  
  an update server disposed remotely from the remote programmable unit and accessible over the network, the update server providing the encrypted update file program to the remote programmable unit over the network for storage in the memory storing program of the remote programmable unit, wherein the remote programmable unit decrypts the encrypted update file program with the decryption key from the authentication server in order to update one of the software programs of the remote programmable unit.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The system according to claim 1 wherein the remote unit is a PC card.
  - 3. The system according to claim 1 further comprising a flasher host to provide connection to the network for the remote programmable unit.
  - 4. The system according to claim 3 wherein the remote programmable unit comprises means for communication over a cellular network.
  - 5. The system according to claim 1 wherein the authentication server is integrated with the update server.
  - 6. The system according to claim 1 wherein the network is the Internet.
  - 7. The system according to claim 1 wherein the remote programmable unit comprises means for authenticating a communication from the authentication server.
  - 8. The system according to claim 1 wherein the remote programmable unit is a cellular telephone.

9. A method for updating software programs for remote units over a network in a secure controlled manner, the method comprising:
- transmitting a request for a software update from a remote unit to an authentication server over a network, the authentication server disposed remotely to the remote unit;
  
  verifying the authenticity of a communication from the authentication server to the remote unit, the communication containing a decryption key to decode the update program for the software;
  
  transmitting the software program update from an update server to the remote unit over the network, the update server disposed remotely to the remote unit;
  
  decrypting the update program with the decryption key; and
  
  updating the software of the remote unit.
- View Dependent Claims (10, 11, 12, 13)
- - 10. The method according to claim 9 wherein verifying the authenticity comprises communicating a first random number from the authentication server to the remote unit, communicating a second random number from the remote unit to the authentication server;
    - and
11. The method according to claim 9 wherein the remote unit is a PC card.
12. The method according to claim 9 wherein the network is the Internet.
13. The method according to claim 9 further comprising verifying the update program from the update server.

14. A system for updating software programs via a network, the system comprising:
- a PC card having a memory storing software programs, the PC card adapted for connection to the network;
  
  means for controlling the network connection to the PC card and for storing update file programs prior to utilization by the PC card;
  
  means for providing an encrypted update file program to the PC card via the network to update a particular software program of the PC card; and
  
  means for decrypting the encrypted update file program, the decrypting means provided to, the PC card from a remote server via the network.
- View Dependent Claims (15, 16, 17, 18)
- - 15. The system according to claim 14 wherein the communication transferring means is a flasher host which controls the update process by communicating over the network and transmitting commands to the PC card.
  - 16. The system according to claim 14 wherein the decrypting means is an decrypted key encrypted in a verifiable message provided by an authentication server to the PC card via the network.
  - 17. The system according to claim 14 wherein the transferring communication means is integrated into the PC card.
  - 18. The system according to claim 14 wherein the network is the Internet.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Ericsson, Inc. (Telefonaktiebolaget LM Ericsson)
Original Assignee
Ericsson, Inc. (Telefonaktiebolaget LM Ericsson)
Inventors
Walker, Anthony Dean, Petty, John S.
Primary Examiner(s)
HUA, LY

Application Number

US09/277,434
Time in Patent Office

1,474 Days
Field of Search

713/200, 713/201, 713/153, 713/168, 713/155, 713/176, 713/178
US Class Current

726/3
CPC Class Codes

G06F 21/572   Secure firmware programming...

G06F 2221/2103   Challenge-response

G06F 8/65   Updates security arrangemen...

System for secure controlled electronic memory updates via networks

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

System for secure controlled electronic memory updates via networks

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links