Knowledge-type authorization device and methods

US 7,366,913 B1
Filed: 09/04/2002
Issued: 04/29/2008
Est. Priority Date: 09/04/2002
Status: Active Grant

First Claim

Patent Images

1. A mobile telephone having electronic authentication circuitry for authentication for a transaction, comprising:

(a) a hack-proof, non-duplicatable, authenticating smart chip with a bi-directional communications port;

(b) a radio communications circuit coupled to the communications port;

(c) an input circuit that receives user input and provides it to the smart chip;

(d) a wireless power supply that powers the aforementioned elements; and

(e) a programmed logic circuit which causes the authenticating smart chip to require receipt of a knowledge token from the input circuit to achieve authentication and, upon receipt of said token, then securely report achievement of authentication via the radio communications circuit to another system to which the smart chip securely authenticates itself with bi-directional crypto communications as part of a transaction with the system;

(f) all housed in a portable housing of a mobile telephone.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A wireless electronic authentication device with an authenticating smart chip, a local radio communication circuit, an input circuit that receives user input, and a power supply, all housed in a portable housing. Preferably, the authentication device is a mobile telephone with an authenticating smart chip. The user enters a knowledge token, such as a password stated by voice or a personal identification number input at the keyboard, to indicate that he is both in possession of the authorization device and knows the critical information. The knowledge token may be entered in advance and merely confirmed by the user pressing a key on the keypad when a confirmation is requested. A method is provided for making use of the authentication device to perform authorizations. A similar method is disclosed for use in existing systems and then achieving a gradual transition from existing systems to the new authentication device.

57 Citations

View as Search Results

30 Claims

1. A mobile telephone having electronic authentication circuitry for authentication for a transaction, comprising:
- (a) a hack-proof, non-duplicatable, authenticating smart chip with a bi-directional communications port;
  
  (b) a radio communications circuit coupled to the communications port;
  
  (c) an input circuit that receives user input and provides it to the smart chip;
  
  (d) a wireless power supply that powers the aforementioned elements; and
  
  (e) a programmed logic circuit which causes the authenticating smart chip to require receipt of a knowledge token from the input circuit to achieve authentication and, upon receipt of said token, then securely report achievement of authentication via the radio communications circuit to another system to which the smart chip securely authenticates itself with bi-directional crypto communications as part of a transaction with the system;
  
  (f) all housed in a portable housing of a mobile telephone.
- View Dependent Claims (2, 3, 4)
- - 2. The mobile telephone of claim 1 where the radio communications circuit operates on one of the standards of Bluetooth or 802.11.
  - 3. The mobile telephone of claim 1 further comprising a display screen coupled to the smart chip.
  - 4. The mobile telephone of claim 1 where the radio communications circuit operates via conventional mobile telephone communications.

5. A method of authenticating for a transaction a user of a mobile telephone having authentication circuitry including a hack-proof, non-duplicatable, authenticating smart chip, a user input receiver, and a radio communications circuit, comprising:
- (a) transmitting between a radio communications access point and the mobile telephone information identifying a proposed transaction;
  
  (b) receiving at said access point via radio communications from the hack-proof, non-duplicatable, authenticating smart chip within the mobile telephone encrypted information identifying the telephone which information is crypto-verified with bi-directional radio communications between the access point and the hack-proof, non-duplicatable, authenticating smart chip within the telephone;
  
  (c) comparing said identifying information received at said access point to records in a database and determining whether there is a record indicating that said telephone is authorized and was last registered to a person with a valid account; and
  
  (d) receiving at said access point via encrypted bi-directional radio communications from the mobile telephone information indicating that the telephone is a type that requires receipt of an intentionally given knowledge token at a user input receiver on said telephone, as well as information indicating that an appropriate knowledge token has been received and verified using said hack-proof, non-duplicatable, authenticating smart chip relative to said information identifying a proposed transaction.
- View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
- - 6. The method of claim 5 where the information identifying a proposed transaction is first sent by the mobile telephone to the access point.
  - 7. The method of claim 5 where the information identifying a proposed transaction is first sent by the access point to the mobile telephone.
  - 8. The method of claim 5 where said account is a permitted access account and the proposed transaction is the unlocking of a door.
  - 9. The method of claim 5 where said account is a credit account and the proposed transaction is charging said account.
  - 10. The method of claim 5 where said account is a debit account and the proposed transaction is charging said account.
  - 11. The method of claim 5 where the radio communications is via one of a standard called Bluetooth or a standard called 802.11.
  - 12. The method of claim 5 where the access point it at a merchant'"'"'s point of sale location.
  - 13. The method of claim 5 where the access point it at an entrance to a facility for use by humans.
  - 14. The method of claim 5 where the access point is coupled to a personal computer which is coupled to a computer network and the database is in a server coupled to the personal computer via the network.
  - 15. The method of claim 14 where the server is operated by a financial institution.
  - 16. The method of claim 5 where the access point is coupled to a personal computer which stores and operates the database.
  - 17. The method of claim 5 where the radio communications is via conventional mobile telephone communications.

18. A system for authenticating for a transaction a user of a mobile telephone having authentication circuitry including a non-duplicatable smart chip, a user input receiver, and a radio communications circuit, the system comprising:
- (a) a radio communications access point with a transmitter-receiver capable of communicating between the radio communications access point and a mobile telephone information identifying a proposed transaction;
  
  (b) a crypto-verification component that receives via the access point radio communications from a hack-proof, non-duplicatable, authenticating smart chip within the mobile telephone with encrypted information identifying the telephone and crypto-verifies the information with bi-directional radio communications between the access point and the hack-proof, non-duplicatable, authenticating smart chip within the telephone;
  
  (c) a database comparison component that compares said identifying information received at said access point to records in a database and determines whether there is a record indicating that said telephone is authorized and was last registered to a person with a valid account; and
  
  (d) a knowledge token verification component that receives via said access point via encrypted bi-directional radio communications from the hack-proof, non-duplicatable, authenticating smart chip within the mobile telephone, relative to said information identifying a proposed transaction, information indicating that the telephone is a type that requires receipt of an intentionally given knowledge token at a user input receiver on said telephone, as well as information indicating that an appropriate knowledge token has been received and verified using the hack-proof, non-duplicatable, authenticating smart chip.
- View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
- - 19. The system of claim 18 where the information identifying a proposed transaction is first sent by the mobile telephone to the access point.
  - 20. The system of claim 18 where the information identifying a proposed transaction is first sent by the access point to the mobile telephone.
  - 21. The system of claim 18 where said account is a permitted access account and the proposed transaction is the unlocking of a door.
  - 22. The system of claim 18 where said account is a credit account and the proposed transaction is charging said account.
  - 23. The system of claim 18 where said account is a debit account and the proposed transaction is charging said account.
  - 24. The system of claim 18 where the access point it at a merchant'"'"'s point of sale location.
  - 25. The system of claim 18 where the access point it at an entrance to a facility for use by humans.
  - 26. The system of claim 18 where the access point is coupled to a personal computer which is coupled to a computer network and the database is in a server coupled to the personal computer via the network.
  - 27. The system of claim 26 where the server is operated by a financial institution.
  - 28. The system of claim 18 where the access point is coupled to a personal computer which stores and operates the database.
  - 29. The system of claim 18 where the radio communications is via conventional mobile telephone communications.
  - 30. The system of claim 18 where the radio communications is via one of a standard called Bluetooth or a standard called 802.11.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Callahan Cellular LLC (Intellectual Ventures LLC)
Original Assignee
Jeffrey T. Haley
Inventors
Haley, Jeffrey T.
Primary Examiner(s)
Moise; Emmanuel L.
Assistant Examiner(s)
GERGISO, TECHANE

Application Number

US10/236,291
Time in Patent Office

2,064 Days
Field of Search

713/189, 713/182, 705/64, 380/247, 235/380
US Class Current

713/189
CPC Class Codes

G06Q 20/3227   using secure elements embed...

G06Q 20/325   using wireless networks

G06Q 20/382   insuring higher security of...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4014   Identity check for transact...

G06Q 20/425   using two different network...

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/80   Wireless network architectu...

H04L 9/3218   using proof of knowledge, e...

H04L 9/3234   involving additional secure...

Knowledge-type authorization device and methods

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

57 Citations

30 Claims

Specification

Solutions

Use Cases

Quick Links

Knowledge-type authorization device and methods

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

57 Citations

30 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links