System and method for securing system content by automated device authentication

US 8,156,340 B1
Filed: 11/24/2008
Issued: 04/10/2012
Est. Priority Date: 07/23/2004
Status: Active Grant

First Claim

Patent Images

1. A method for authentication of a requesting entity by an authenticating entity comprising:

receiving, by an authenticating entity, a request for data from a requesting entity; and

sending, by the authenticating entity, challenge data to the requesting entity;

receiving, by the authenticating entity, the challenge data from the requesting entity;

wherein the challenge data is encrypted, by a computer processor, in one direction between the authenticating entity and the requesting entity, and the challenge data is sent in plain text in the other direction between the authenticating entity and the requesting entity;

wherein the challenge data comprises time data based on a current time of a system of the authenticating entity;

wherein the authenticating entity determines a received time of the received challenge data and calculates, by a computer processor, a time difference between the time data and the received time when the challenge data is received from the requesting entity; and

authenticating, by the authenticating entity, the requesting entity by comparing the challenge data sent to the requesting entity and the challenge data received from the requesting entity, and determining that the time difference is less than a predetermined threshold, wherein when the requesting entity requests data, the authenticating entity provides an application and a key for download by the requesting entity, and wherein the challenge data is encrypted by the requesting entity or the authenticating entity and decrypted by the authenticating entity or the requesting entity using the key.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system is provided for securely downloading content to a mobile telecommunications device. The system includes a mobile application to enable the mobile telecommunications device to send a request for content identified on a telecommunication provider system. The system includes a content application maintained by the content provider to retrieve content and promote delivery of the content to the mobile telecommunications device. The system also includes a challenge component and a response component, the response component communicates with the mobile application and encodes a challenge data. The challenge component communicates with the content application. The challenge component sends the challenge data to the mobile application and decodes the challenge data received from the mobile application to validate the response for delivery of the content to the mobile application.

Citations

14 Claims

1. A method for authentication of a requesting entity by an authenticating entity comprising:
- receiving, by an authenticating entity, a request for data from a requesting entity; and
  
  sending, by the authenticating entity, challenge data to the requesting entity;
  
  receiving, by the authenticating entity, the challenge data from the requesting entity;
  
  wherein the challenge data is encrypted, by a computer processor, in one direction between the authenticating entity and the requesting entity, and the challenge data is sent in plain text in the other direction between the authenticating entity and the requesting entity;
  
  wherein the challenge data comprises time data based on a current time of a system of the authenticating entity;
  
  wherein the authenticating entity determines a received time of the received challenge data and calculates, by a computer processor, a time difference between the time data and the received time when the challenge data is received from the requesting entity; and
  
  authenticating, by the authenticating entity, the requesting entity by comparing the challenge data sent to the requesting entity and the challenge data received from the requesting entity, and determining that the time difference is less than a predetermined threshold, wherein when the requesting entity requests data, the authenticating entity provides an application and a key for download by the requesting entity, and wherein the challenge data is encrypted by the requesting entity or the authenticating entity and decrypted by the authenticating entity or the requesting entity using the key.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein the challenge data sent by the authenticating entity is encrypted and the challenge data received from the requesting entity is decrypted.
  - 3. The method of claim 2, wherein the challenge data received from the requesting entity is in plain text.
  - 4. The method of claim 1, wherein the challenge data received from the requesting entity is encrypted and the authenticating entity decrypts the encrypted challenge data.
  - 5. The method of claim 4, wherein the authenticating entity sends the challenge data to the requesting entity in plain text.
  - 6. The method of claim 1, wherein the requesting entity is a mobile telecommunications device requesting content to be downloaded.
  - 7. The method of claim 6, wherein the authenticating entity is a content provider maintaining content to be downloaded to the mobile telecommunications device.

8. A method for authentication of a requesting entity by an authenticating entity comprising:
- receiving, by an authenticating entity, a request for data from a requesting entity;
  
  sending, by the authenticating entity to the requesting entity, challenge data in plain text, wherein the challenge data comprises time data based on a current time of a system of the authenticating entity;
  
  receiving, by the authenticating entity from the requesting entity, the challenge data, wherein the received challenge data is encrypted, by a computer processor of the requesting entity;
  
  calculating, by a computer processor, a time difference between when the challenge data is sent to the requesting entity in plain text from the authenticating entity and when the encrypted challenge data is received by the authenticating entity from the requesting entity; and
  
  authenticating, by the authenticating entity, the requesting entity by decrypting the received encrypted challenge data and determining that the time difference is less than a predetermined threshold, wherein when the requesting entity requests data, the authenticating entity provides an application and a key for download by the requesting entity, and wherein the challenge data is encrypted by the requesting entity and decrypted by the authenticating entity using the key.
- View Dependent Claims (9, 10, 11)
- - 9. The method of claim 8, wherein the requesting entity periodically downloads a new application and a new key from the authenticating entity.
  - 10. The method of claim 9, wherein the challenge data is encrypted by the requesting entity and decrypted by the authenticating entity using the new key.
  - 11. The method of claim 8, wherein the requesting entity is a mobile telecommunications device requesting content to be downloaded.

12. A method for authentication of a requesting entity by an authenticating entity comprising:
- receiving, by an authenticating entity, a request for data from a requesting entity;
  
  encrypting, by a computer processor of the authenticating entity, challenge data;
  
  sending, by the authenticating entity to the requesting entity, the encrypted challenge data, wherein the challenge data comprises time data based on a current time of a system of the authenticating entity;
  
  receiving, by the authenticating entity from the requesting entity, the challenge data in plain text, wherein the received challenge data in plain text is decrypted by the requesting entity, andcalculating a time difference between when the encrypted challenge data is sent to the requesting entity from the authenticating entity and when the challenge data in plain text is received by the authenticating entity from the requesting entity; and
  
  authenticating, by the authenticating entity, the requesting entity when the authenticating entity receives the challenge data in plain text and when the time difference is less than a predetermined threshold, wherein when the requesting entity requests data, the authenticating entity provides an application and a key for download by the requesting entity, and wherein the challenge data is encrypted by the authenticating entity and decrypted by the requesting entity using the key.
- View Dependent Claims (13, 14)
- - 13. The method of claim 12, wherein the key is used by a plurality of requesting entities to authenticate each of the plurality of requesting entities.
  - 14. The method of claim 12, wherein the requesting entity is a mobile telecommunications device requesting content to be downloaded.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
T-Mobile Innovations LLC (Deutsche Telekom AG)
Original Assignee
Sprint Communications Company LP (Deutsche Telekom AG)
Inventors
Marballi, Gaurav K.
Primary Examiner(s)
Brown, Christopher

Application Number

US12/276,566
Time in Patent Office

1,233 Days
Field of Search

713/178, 726/29
US Class Current

713/178
CPC Class Codes

G06F 21/107   License processing; Key pro...

G06F 2221/2103   Challenge-response

H04L 2209/60   Digital content management,...

H04L 2209/80   Wireless

H04L 9/3271   using challenge-response

H04W 12/02   Protecting privacy or anony...

H04W 12/06   Authentication

H04W 12/35   Protecting application or s...

H04W 12/61   Time-dependent

System and method for securing system content by automated device authentication

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

Citations

14 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for securing system content by automated device authentication

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

14 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links