Scheme for blocking the use of lost or stolen network-connectable computer systems

US 6,925,562 B2
Filed: 12/15/2000
Issued: 08/02/2005
Est. Priority Date: 12/17/1999
Status: Active Grant

First Claim

Patent Images

1. Method for switching a computer system (11;

21;

60), which is connectable via a communication interface (64) and a network (12;

22;

62) to a server module (13;

23;

61), into a special mode of operation, the method comprising the steps;

a. exhausting step-by-step a credit of a credit counter (44) of the computer system (11;

21;

60);

b. switching the computer system (11;

21;

60) into the special mode of operation if the credit is exhausted;

c. sending an identifier (w) assigned to the computer system (11;

21;

60) via the communication interface (64) and the network (12;

22;

62) to the server module (13;

23;

61);

d. receiving a token (S) issued by the server module (13;

23;

61);

e. verifying the validity of the token (S); and

f. if the token (S) is valid, then extracting a credit (C) from the token (S) and updating the credit counter (44) with the credit (C).

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Scheme for switching a computer system (21), which is connectable via a communication interface and a network (22) to a server module (23), into a special mode of operation. The computer system (21) comprises a software component (26) for sending an identifier (w) assigned to the computer system (21) via the communication interface and the network (22) to the server module (23). In response, the software component (26) receives a token (S), issued by the server module (23), whereby the token (S) comprises a credit (C). In addition, the computer system (21) comprises a trusted hardware component (25) storing the identifier (w) and comprising a credit counter (44) with a credit which is automatically exhaustible step-by-step, and which is updateable with the credit (C) received from the server module (23). The computer system (21) has a trigger unit for switching the computer system (21) into the special mode of operation, e.g. a mode where the computer system (21) is of limited use to a user, if the credit of the credit counter is exhausted.

Citations

45 Claims

1. Method for switching a computer system (11;
- 21;
  
  60), which is connectable via a communication interface (64) and a network (12;
  
  22;
  
  62) to a server module (13;
  
  23;
  
  61), into a special mode of operation, the method comprising the steps;
  
  a. exhausting step-by-step a credit of a credit counter (44) of the computer system (11;
  
  21;
  
  60);
  
  b. switching the computer system (11;
  
  21;
  
  60) into the special mode of operation if the credit is exhausted;
  
  c. sending an identifier (w) assigned to the computer system (11;
  
  21;
  
  60) via the communication interface (64) and the network (12;
  
  22;
  
  62) to the server module (13;
  
  23;
  
  61);
  
  d. receiving a token (S) issued by the server module (13;
  
  23;
  
  61);
  
  e. verifying the validity of the token (S); and
  
  f. if the token (S) is valid, then extracting a credit (C) from the token (S) and updating the credit counter (44) with the credit (C).
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The method of claim 1, whereby the computer system (11;
    - 21;
      
      60) is caused to switch into the special mode of operation if step e. reveals that the token (S) is invalid.
  - 3. The method of claim 2, whereby the special mode of operation is a mode of operation where:
    - the computer system (11;
      
      21;
      
      60) or part(s) thereof are inactivated;
      
      or certain services provided by the computer system (11;
      
      21;
      
      60) are canceled;
      
      or the computer system'"'"'s (11;
      
      21;
      
      60) access to sensitive services is refused;
      
      or the computer system (11;
      
      21;
      
      60) shows an alert screen or issues an alarm;
      
      or the computer system (11;
      
      21;
      
      60) causes an alert message to be sent out;
      
      or software of the computer system (11;
      
      21;
      
      60), or part of the software, is rendered useless.
  - 4. The method of claim 1, whereby the computer system (11;
    - 21;
      
      60) continues with step c. if step e. reveals that the token (S) is invalid.
  - 5. The method of claim 1, whereby step c. is carried out before the credit counter (44) reaches a predefined value or threshold (v).
  - 6. The method of claim 5, whereby the predefined value or threshold is zero (v=0).
  - 7. The method of claim 1, whereby the validity of said token (S) is verified by checking whether the token (S) comprises a signature of the server module (13;
    - 23;
      
      61).
  - 8. The method of claim 1, whereby the credit counter (44) is updated by adding the credit (C).
  - 9. The method of claim 1, whereby the credit counter (44) is updated by overwriting it with the credit (C).
  - 10. The method of claim 1, whereby the identifier (w) is unique within the network (12;
    - 22;
      
      62).
  - 11. The method of claim 1, whereby the computer system (11;
    - 21;
      
      60) is switched into the special mode of operation if the computer system (11;
      
      21;
      
      60) was reported lost or stolen.
  - 12. The method of claim 1, whereby step c. comprises the steps:
    - generating additional information (n);
      
      encrypting the identifier (w) and the additional information (n) to generate a secure identifier (E) using a cryptographic key (k).
  - 13. The method of claim 12, whereby the cryptographic key (k) is a secret cryptographic key, preferably a cryptographic key of a public encryption scheme.
  - 14. The method of claim 12, whereby the additional information (n) is a random number, preferably an unpredictable random number.

15. Method in a system (13;
- 23;
  
  61) that is connectable via a network interface (67) and a network (12;
  
  22;
  
  62, 66, 68) to a computer system (11;
  
  21;
  
  60), the method comprising the steps;
  
  receiving an identifier (w) from the computer system (11;
  
  21;
  
  60) via the network (12;
  
  22;
  
  62, 66, 68) and the network interface (67);
  
  comparing the identifier (w) with a list (14;
  
  24) of identifiers (w) to determine whether the identifier (w) originates from a computer system (11;
  
  21;
  
  60) that was reported lost or stolen;
  
  if the identifier (w) originates from a computer system (11;
  
  21;
  
  60) that was not reported lost or stolen, then generating a token (S) which comprises the identifier (w) and a credit C, signing the token (S) using a cryptographic key to create a signed token (S), and sending the signed token (S) via the network interface (67) and the network (12;
  
  22;
  
  62, 66, 68) to the computer system (11;
  
  21;
  
  60).
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
- - 16. The method of claim 15, whereby the following step is carried out if the identifier (w) originates from a computer system (11;
    - 21;
      
      60) that was reported lost or stolen;
      
      generating a token (S) which comprises the identifier (w) and a credit revocation, signing the token (S) using the cryptographic key to create a signed token (S), and sending the signed token (S) via the network interface (67) and the network (12;
      
      22;
      
      62, 66, 68) to the computer system (11;
      
      21;
      
      60).
  - 17. The method of claim 16, whereby the credit revocation is a negative credit amount.
  - 18. The method of claim 16, whereby the system is a server or server module.
  - 19. The method of claim 16, whereby the list (14;
    - 24) of identifiers (w) is a black-list which comprises the identifier (w) of a plurality of computer systems that are reported lost or stolen.
  - 20. The method of claim 16, whereby the list (14;
    - 24) of identifiers (w) is a valid list which comprises the identifier (w) of a plurality of computer systems that are not reported lost or stolen.
  - 21. The method of claim 16, whereby the system applies predefined rules when generating a token (S) which comprises the identifier (w) and a credit C.
  - 22. The method of claim 16, whereby the signed token (S) comprises additional information (n) that was received from the computer system (11;
    - 21;
      
      60) together with the identifier (w).
  - 23. The method of claim 22, whereby the step of generating a token (S) comprises the steps:
    - generating the binary XOR (H) of the identifier (w) and the additional information (n).
  - 24. The method of claim 23, whereby the step of generating a token (S) comprises the steps:
    - concatenating the binary XOR (H) and the credit (C) to generate the concatenation (H∥
      
      C); and
      
      creating the signed token (S) by signing the concatenation (H∥
      
      C) using the cryptographic key.
  - 25. The method of claim 15, whereby the cryptographic key is a public key.

26. Apparatus comprising:
- a communication interface (64) for connecting the apparatus (11;
  
  21;
  
  60) via a network (12;
  
  22;
  
  62) to a server module (13;
  
  23;
  
  61), a software component (26;
  
  50) for sending an identifier (w) assigned to the apparatus (11;
  
  21;
  
  60) via the communication interface (64) and the network (12;
  
  22;
  
  62) to the server module (13;
  
  23;
  
  61), and for receiving a token (S), issued by the server module (13;
  
  23;
  
  61), whereby the token (S) comprises a credit (C);
  
  a trusted hardware component (25;
  
  40) storing the identifier (w) and comprising a credit counter (44) with a credit which is automatically exhaustible step-by-step by the apparatus (11;
  
  21;
  
  60); and
  
  which is updateable with the credit (C);
  
  a trigger unit (25;
  
  47) for switching the apparatus (11;
  
  21;
  
  60) into a special mode of operation if the credit of the credit counter (44) is exhausted.
- View Dependent Claims (27, 28, 29, 30, 31, 32, 33)
- - 27. The apparatus of claim 26, wherein the communication interface (64) comprises a transmitter and a receiver.
  - 28. The apparatus of claim 26, wherein the trusted hardware component (25;
    - 40) also stores a cryptographic key (k).
  - 29. The apparatus of claim 28, wherein the software component (26;
    - 50) encrypts the identifier (w) using the cryptographic key (k) prior to sending the identifier (w).
  - 30. The apparatus of claim 26, wherein the trusted hardware component (25;
    - 40) further comprises a unit for generating additional information (n).
  - 31. The apparatus of claim 30, wherein unit for generating additional information (n) is a random number generator and where the additional information (n) is a random number, preferably an unpredictable random number.
  - 32. The apparatus of claim 26 being part of a computer system.
  - 33. The apparatus of claim 26 being part of a mobile computer system or part of a vehicle, such as a rental car.

34. Apparatus comprising:
- a network interface (67) for connecting the apparatus (13;
  
  23;
  
  61) via a network (12;
  
  22;
  
  62, 66, 68) to a computer system (11;
  
  21;
  
  60);
  
  a processor (71);
  
  a memory (72) with code which, when being executed by the processor (71), performs the steps;
  
  receiving an identifier (w) from the computer system (11;
  
  21;
  
  60) via the network (12;
  
  22;
  
  62, 66, 68) and the network interface (67);
  
  comparing the identifier (w) with a list (14;
  
  24) of identifiers (w) to determine whether the identifier (w) originates from a computer system (11;
  
  21;
  
  60) that was reported lost or stolen; and
  
  if the identifier (w) originates from a computer system (11;
  
  21;
  
  60) that was not reported lost or stolen, then generating a token (S) which comprises the identifier (w) and a credit (C), signing the token (S) using a cryptographic key to create a signed token (S), and sending the signed token (S) via the network interface (67) and the network (12;
  
  22;
  
  62, 66, 68) to the computer system (11;
  
  21;
  
  60).
- View Dependent Claims (35, 36, 37, 38, 39)
- - 35. The apparatus of claim 34, whereby the credit (C) is a revocation credit.
  - 36. The apparatus of claim 34, whereby the apparatus is part of a server or server module.
  - 37. The apparatus of claim 34, whereby the cryptographic key is a public key.
  - 38. The apparatus of claim 34, whereby the list (14;
    - 24) of identifiers (w) is a black-list which comprises the identifier (w) of a plurality of computer systems that are reported lost or stolen.
  - 39. The apparatus of claim 34, whereby the list (14;
    - 24) of identifiers (w) is a valid list which comprises the identifier (w) of a plurality of computer systems that are not reported lost or stolen.

40. A computer program product comprising a computer readable medium, having thereon:
- computer program code means, when said program is loaded in a computer system (11;
  
  21;
  
  60), which comprises a communication interface (64) for connection via a network (12;
  
  22;
  
  62) to a server module (13;
  
  23;
  
  61), execute procedure to a. exhaust step-by-step a credit of a credit counter (44) of the computer system (11;
  
  21;
  
  60);
  
  b. switch the computer system (11;
  
  21;
  
  60) into the special mode of operation if the credit is exhausted;
  
  c. send an identifier (w) assigned to the computer system (11;
  
  21;
  
  60) via the communication interface (64) and the network (12;
  
  22;
  
  62) to the server module (13;
  
  23;
  
  61);
  
  d. receive a token (S) issued by the server module (13;
  
  23;
  
  61);
  
  e. verify the validity of the token (S); and
  
  f. if the token (S) is valid, then extract a credit (C) from the token (S) and updating the credit counter (44) with the credit (C).
- View Dependent Claims (41, 42)
- - 41. The computer program product of claim 40, whereby the computer system (11;
    - 21;
      
      60) is caused to switch into the special mode of operation if step e. reveals that the token (S) is invalid.
  - 42. The computer program product of claim 40, whereby the computer system (11;
    - 21;
      
      60) continues with step c. if step e. reveals that the token (S) is invalid.

43. A computer program element comprising:
- computer program code means to make a computer system (11;
  
  21;
  
  60), which comprises a communication interface (64) for connection via a network (12;
  
  22;
  
  62) to a server module (13;
  
  23;
  
  61), execute procedure to a. exhaust step-by-step a credit of a credit counter (44) of the computer system (11;
  
  21;
  
  60);
  
  b. switch the computer system (11;
  
  21;
  
  60) into the special mode of operation if the credit is exhausted;
  
  c. send an identifier (w) assigned to the computer system (11;
  
  21;
  
  60) via the communication interface (64) and the network (12;
  
  22;
  
  62) to the server module (13;
  
  23;
  
  61);
  
  d. receive a token (S) issued by the server module (13;
  
  23;
  
  61);
  
  e. verify the validity of the token (S); and
  
  f. if the token (S) is valid, then extract a credit (C) from the token (S) and updating the credit counter (44) with the credit (C).

44. A computer program product comprising a computer readable medium, having thereon:
- computer program code means, when said program is loaded in a server (11;
  
  21;
  
  60), which comprises a network interface (67) for connection via a network (12;
  
  22;
  
  62, 66, 68) to a computer system (11;
  
  21;
  
  60), execute procedure to receive an identifier (w) from the computer system (11;
  
  21;
  
  60) via the network (12;
  
  22;
  
  62, 66, 68) and the network interface (67);
  
  compare the identifier (w) with a list (14;
  
  24) of identifiers (w) to determine whether the identifier (w) originates from a computer system (11;
  
  21;
  
  60) that was reported lost or stolen;
  
  if the identifier (w) originates from a computer system (11;
  
  21;
  
  60) that was not reported lost or stolen, then generating a token (S) which comprises the identifier (w) and a credit C, signing the token (S) using a cryptographic key to create a signed token (S), and sending the signed token (S) via the network interface (67) and the network (12;
  
  22;
  
  62, 66, 68) to the computer system (11;
  
  21;
  
  60).

45. A computer program element comprising:
- computer program code means to make a server (11;
  
  21;
  
  60), which comprises a network interface (67) for connection via a network (12;
  
  22;
  
  62, 66, 68) to a computer system (11;
  
  21;
  
  60), execute procedure to receive an identifier (w) from the computer system (11;
  
  21;
  
  60) via the network (12;
  
  22;
  
  62, 66, 68) and the network interface (67);
  
  compare the identifier (w) with a list (14;
  
  24) of identifiers (w) to determine whether the identifier (w) originates from a computer system (11;
  
  21;
  
  60) that was reported lost or stolen;
  
  if the identifier (w) originates from a computer system (11;
  
  21;
  
  60) that was not reported lost or stolen, then generating a token (S) which comprises the identifier (w) and a credit C, signing the token (S) using a cryptographic key to create a signed token (S), and sending the signed token (S) via the network interface (67) and the network (12;
  
  22;
  
  62, 66, 68) to the computer system (11;
  
  21;
  
  60).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Trend Micro Inc.
Original Assignee
International Business Machines Corporation
Inventors
Droz, Patrick, Haas, Robert, Gulcu, Ceki
Primary Examiner(s)
Wright, Norman M.

Application Number

US09/738,559
Publication Number

US 20020016838A1
Time in Patent Office

1,691 Days
Field of Search

713/193, 713/172, 713/155, 713/165, 380/233, 380/231, 705/51, 705/52
US Class Current

713/172
CPC Class Codes

G06F 21/88   Detecting or preventing the...

H04L 63/101   Access control lists [ACL]

H04L 63/108   when the policy decisions a...

Scheme for blocking the use of lost or stolen network-connectable computer systems

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

45 Claims

Specification

Solutions

Use Cases

Quick Links

Scheme for blocking the use of lost or stolen network-connectable computer systems

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

45 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links