Method for post-manufacturing data transfer to and from a sealed device

US 8,220,718 B2
Filed: 09/15/2008
Issued: 07/17/2012
Est. Priority Date: 09/15/2008
Status: Active Grant

First Claim

Patent Images

1. A method for manufacturing personalized authentication tokens embedded in a non-conductive moulding having secret cryptographic key data, comprising:

arranging on one or more substrates;

a memory that stores individualized data comprising device identification data and a particular set of electronic personalization data comprising secret cryptographic key data wherein the device identification data is associated with the particular set of electronic personalization data,a processing unit that generates client credentials based on said secret cryptographic key data, said client credentials for authenticating a user through cryptographic verification of said client credentials by an authentication device external to the token after said client credentials have been communicated to said authentication device external to the token,a battery,a capacitive or inductive coupler that communicates with an external control unit, anda secure user output interface that communicates said client credentials to said user;

storing the individualized data in the memory;

subsequent to said arranging and storing, embedding said one or more substrates in said non-conductive plastic moulding such that the manufactured authentication token has no external electrical or ohmic contacts;

subsequent to said embedding, attaching a visual device identifier to the outside of said moulding;

subsequent to said embedding, synchronizing the token to create a correspondence between said individualized data and the visual device identifier of the token, said synchronizing including receiving said device identification data from the memory through the coupler and establishing a correspondence in a database external to the token between the individualized data and the visual device identifier using the received device identification data; and

wherein said manufacturing takes place prior to the token being provided to a user for a first use.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention is directed towards authentication tokens that are completely embedded in a non-conductive enclosure. The invention is based on the insight that it would be advantageous to separate the electronic data personalization of such tokens from the visual device personalization. The present application concerns an authentication token that allows communication with an external unit after the production of the nonconductive enclosure, in order to transmit or receive device identification data. As this communication need only take place during the manufacturing process, a low-power close-range transmission technique such as inductive coupling, capacitive coupling, or RFID communication suffices for this purpose. Accordingly, the present application discloses a method for manufacturing authentication tokens, and a token manufactured according to said method.teh

63 Citations

11 Claims

1. A method for manufacturing personalized authentication tokens embedded in a non-conductive moulding having secret cryptographic key data, comprising:
- arranging on one or more substrates;
  
  a memory that stores individualized data comprising device identification data and a particular set of electronic personalization data comprising secret cryptographic key data wherein the device identification data is associated with the particular set of electronic personalization data,a processing unit that generates client credentials based on said secret cryptographic key data, said client credentials for authenticating a user through cryptographic verification of said client credentials by an authentication device external to the token after said client credentials have been communicated to said authentication device external to the token,a battery,a capacitive or inductive coupler that communicates with an external control unit, anda secure user output interface that communicates said client credentials to said user;
  
  storing the individualized data in the memory;
  
  subsequent to said arranging and storing, embedding said one or more substrates in said non-conductive plastic moulding such that the manufactured authentication token has no external electrical or ohmic contacts;
  
  subsequent to said embedding, attaching a visual device identifier to the outside of said moulding;
  
  subsequent to said embedding, synchronizing the token to create a correspondence between said individualized data and the visual device identifier of the token, said synchronizing including receiving said device identification data from the memory through the coupler and establishing a correspondence in a database external to the token between the individualized data and the visual device identifier using the received device identification data; and
  
  wherein said manufacturing takes place prior to the token being provided to a user for a first use.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, wherein said coupler is also adapted to receive power from an external power unit, said method further comprising providing power to said coupler.
  - 3. The method of claim 1, wherein said memory and said coupler comprise memory and coupler components of an RFID tag.
  - 4. The method of claim 1, wherein said secure user output interface comprises a display.
  - 5. The method of claim 1, wherein a component for definitively disabling said coupler is arranged on said one or more substrates, said method further comprising activating said component after said synchronizing.
  - 6. The method of claim 1, wherein, prior to said attaching, said visual identifier is chosen taking into account said device identification data.

7. A method for manufacturing personalized authentication tokens embedded in a non-conductive moulding having secret cryptographic key data, comprising:
- arranging on one or more substrates;
  
  a memory that stores individualized data comprising a particular set of electronic personalization data comprising secret cryptographic key data,a processing unit that generates client credentials based on said secret cryptographic key data, said client credentials for authenticating a user through cryptographic verification of said client credentials by an authentication device external to the token after said client credentials have been communicated to said authentication device external to the token,a battery,a capacitive or inductive coupler that communicates with an external control unit, anda secure user output interface that communicates said client credentials to said user;
  
  storing the individualized data in the memory;
  
  subsequent to said arranging, embedding said one or more substrates in said non-conductive plastic moulding such that the manufactured authentication token has no external electrical or ohmic contacts;
  
  subsequent to said embedding, attaching a visual device identifier to the outside of said moulding;
  
  establishing a correspondence in a database external to the token between the individualized data and the visual device identifier;
  
  subsequent to said embedding, synchronizing the token to create a correspondence between said individualized data and the visual device identifier of the token, said synchronizing including retrieving the particular set of electronic personalization data from the external database, transmitting said particular set of electronic personalization data from the external control unit to the token through the coupler, and storing said particular set of electronic personalization data in the memory of the token; and
  
  wherein said manufacturing takes place prior to the token being provided to a user for a first use.
- View Dependent Claims (8, 9, 10, 11)
- - 8. The method of claim 7, wherein said synchronizing comprises machine-reading said visual device identifier.
  - 9. The method of claim 7, wherein said coupler is also adapted to receive power from an external power unit, said method further comprising providing power to said coupler.
  - 10. The method of claim 7, wherein said secure user output interface comprises a display.
  - 11. The method of claim 7, wherein a component for definitively disabling said coupler is arranged on said one or more substrates, said method further comprising activating said component after said synchronizing.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Onespan North America Incorporated (OneSpan, Inc.)
Original Assignee
Vasco Data Security Incorporated (OneSpan, Inc.)
Inventors
Couck, Guy Louis, Hoornaert, Frank
Primary Examiner(s)
WALSH, DANIEL I

Application Number

US12/210,691
Publication Number

US 20100065646A1
Time in Patent Office

1,401 Days
Field of Search

438/19, 438/126, 438/127, 438/371, 257/E23.179, 257/678, 235/487, 235/492, 235/493, 235/380, 235/449, 235/451
US Class Current

235/492
CPC Class Codes

G06F 21/86   Secure or tamper-resistant ...

G06K 19/07   with integrated circuit chips

G06K 19/07707   the visual interface being ...

G06K 19/07716   the record carrier comprisi...

Y10T 29/49117   Conductor or circuit manufa...

Method for post-manufacturing data transfer to and from a sealed device

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

63 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Method for post-manufacturing data transfer to and from a sealed device

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

63 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links