Secure software execution such as for use with a cell phone or mobile device
First Claim
Patent Images
1. A security system for securely providing data between a server computer and multiple mobile telecommunications devices, the system comprising:
- at least one server computer having at least one database, wherein the database stores software programs, scripts, or data, andwherein the server computer is configured to;
generate a globally unique number,store the globally unique number in the database, and provide the globally unique number to a specific one of the multiple mobile telecommunications devices; and
,wherein the server computer is further configured to;
receive a hash value from the specific mobile telecommunications device,encrypt or digitally sign at least one file containing a software program, script, or data using the hash value, andprovide to the specific mobile telecommunications device the encrypted or digitally signed file; and
a Subscriber Identification Module (SIM), smart card, or tamper resistant memory module, at least releasable secured to the specific mobile telecommunications device, wherein the specific mobile telecommunications device wirelessly receives the globally unique number, andwherein the SIM, smart card, or tamper resistant memory module stores a locally resident secret or secure number, and generates the hash value based at least in part on the locally resident number and the wirelessly received globally unique number; and
,wherein the specific mobile telecommunications device wirelessly provides the hash value to the at least one server computer, wirelessly receives the encrypted or digitally signed file, and locally decrypts or verifies the digital signature based at least in part on the generated hash value and without connectivity to the server or other external computer, andwherein the locally resident number on the specific mobile telecommunications device is an International Mobile Equipment Identifier (IMEI), a International Mobile Subscriber Identifier (IMSI), a Medium Access Control (MAC) address, a Universal Subscriber Identity Module (USIM), or an Electronic Serial Number (ESN).
4 Assignments
0 Petitions
Accused Products
Abstract
A method and system for securely executing software or securely loading data generates a secret value at a destination device based on a value transmitted to the destination device, which is algorithmically combined with a secure value stored at the destination device. The destination device, such as a cell phone, remotely accesses an entity or otherwise receives the software or data, where the software or data is encrypted or digitally signed based on the secret value. The cell phone then selectively employs the software or data.
90 Citations
9 Claims
-
1. A security system for securely providing data between a server computer and multiple mobile telecommunications devices, the system comprising:
-
at least one server computer having at least one database, wherein the database stores software programs, scripts, or data, and wherein the server computer is configured to; generate a globally unique number, store the globally unique number in the database, and provide the globally unique number to a specific one of the multiple mobile telecommunications devices; and
,wherein the server computer is further configured to; receive a hash value from the specific mobile telecommunications device, encrypt or digitally sign at least one file containing a software program, script, or data using the hash value, and provide to the specific mobile telecommunications device the encrypted or digitally signed file; and a Subscriber Identification Module (SIM), smart card, or tamper resistant memory module, at least releasable secured to the specific mobile telecommunications device, wherein the specific mobile telecommunications device wirelessly receives the globally unique number, and wherein the SIM, smart card, or tamper resistant memory module stores a locally resident secret or secure number, and generates the hash value based at least in part on the locally resident number and the wirelessly received globally unique number; and
,wherein the specific mobile telecommunications device wirelessly provides the hash value to the at least one server computer, wirelessly receives the encrypted or digitally signed file, and locally decrypts or verifies the digital signature based at least in part on the generated hash value and without connectivity to the server or other external computer, and wherein the locally resident number on the specific mobile telecommunications device is an International Mobile Equipment Identifier (IMEI), a International Mobile Subscriber Identifier (IMSI), a Medium Access Control (MAC) address, a Universal Subscriber Identity Module (USIM), or an Electronic Serial Number (ESN). - View Dependent Claims (2, 3)
-
-
4. A computer-readable storage medium whose contents cause at least one device, associated with a wireless telecommunications network, to perform a method to securely process data, or securely execute programs, the method comprising:
-
generating a globally unique number; storing the globally unique number; wirelessly providing the globally unique number to a specific receiving telecommunications device; receiving a hash value from the specific receiving telecommunications device, wherein the hash value is generated at least in part on the globally unique number and a globally unique and locally resident number stored at the specific receiving telecommunications device, wherein the locally resident number is locally stored in a secure memory location of a removable memory media releasably secured to the specific receiving telecommunications device, and wherein the removable memory media comprises a Subscriber Identification Module (SIM), a smart card, or a tamper resistant memory module; encrypting or digitally signing at least one file using at least the hash value; and providing to the specific receiving telecommunications device the encrypted or digitally signed file for locally decrypting or authenticating the file using at least the hash value and without connectivity to an external computer coupled to the wireless telecommunications network, wherein the computer-readable storage medium is not a signal, wherein the SIM, smart card, or tamper resistant memory module stores the locally resident number, and generates the hash value based at least in part on the locally resident number and the globally unique number, and, wherein the locally resident number is an International Mobile Equipment Identifier (IMEI), a International Mobile Subscriber Identifier (IMSI), a Medium Access Control (MAC) address, a Universal Subscriber Identity Module (USIM), or an Electronic Serial Number (ESN). - View Dependent Claims (5, 6, 7, 8)
-
-
9. A mobile telecommunications apparatus for use with a telecommunications server coupled to a wireless telecommunications network, wherein the mobile telecommunications apparatus is associated with at least one subscriber who subscribes to wireless telecommunication services from a telecommunications service provider, the apparatus comprising:
-
means for generating a globally unique number; means for storing the globally unique number; means for wirelessly providing the globally unique number to a specific receiving telecommunications component; means for receiving a hash value from the specific receiving telecommunications device, wherein the hash value is generated at least in part on the globally unique number and a globally unique and locally resident number stored at the specific receiving telecommunications component, wherein the locally resident number is locally stored in a secure memory location of a removable memory media releasably secured to the specific receiving telecommunications component, and wherein the removable memory media comprises a Subscriber Identification Module (SIM), a smart card, or a tamper resistant memory module; means for encrypting or digitally signing at least one file using at least the hash value; and means for providing to the specific receiving telecommunications component the encrypted or digitally signed file for locally decrypting or authenticating the file using at least the hash value and without connectivity to an external computer coupled to the wireless telecommunications network, wherein the SIM, smart card, or tamper resistant memory module stores the locally resident number, and generates the hash value based at least in part on the locally resident number and the globally unique number, and wherein the locally resident number is an International Mobile Equipment Identifier (IMEI), a International Mobile Subscriber Identifier (IMSI), a Medium Access Control (MAC) address, a Universal Subscriber Identity Module (USIM), or an Electronic Serial Number (ESN).
-
Specification