System and method for generating secured authentication image files for use in device authentication

US 8,301,888 B2
Filed: 03/06/2007
Issued: 10/30/2012
Est. Priority Date: 03/27/2006
Status: Expired due to Fees

First Claim

Patent Images

1. A method for authentication of a peripheral in communication with a device, comprising:

generating a secure authentication image file comprising;

reserving key address locations in a raw memory image file that includes data for an array of regularly spaced locations, wherein the key address locations are non-contiguous and randomly distributed in the array;

filling the raw memory image file with test data; and

merging secure key data into the key address locations of the raw memory image file, wherein merging the secure key data includes replacing the portion of the test data that is located in the key address locations;

storing the secure authentication image file in the peripheral that is to be authenticated by the device;

wherein the device concurrently stores multiple plaintext/cyphertext pairs and each pair includes a plaintext string associated with a cyphertext string; and

further comprising;

transmitting one of the plaintext strings from the device to the peripheral; and

the peripheral using the received plaintext string and the secure authentication image file to generate a proposed cyphertext string.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A secure authentication image file is generated for use in authenticating a device. The device performs a secure authentication algorithm on the secure authentication image file and a received plaintext challenge, and outputs a cyphertext response. If the cyphertext response matches a pre-stored cyphertext string associated with the plaintext challenge, then the device is authenticated. The secure authentication image file is pre-generated in a secure environment. A plurality of key address locations are reserved in a raw memory image file. A key merger application merges the secure key data into the raw memory image file to generate a secure authentication image file. A test set of plaintext/cyphertext pairs are generated using the newly created secure authentication image file. To maintain security of the secure authentication image file, the secure key data and the raw memory image file are erased from a working memory. The test set of plaintext/cyphertext pairs are used to verify a production device containing the secure authentication image file.

45 Citations

View as Search Results

11 Claims

1. A method for authentication of a peripheral in communication with a device, comprising:
- generating a secure authentication image file comprising;
  
  reserving key address locations in a raw memory image file that includes data for an array of regularly spaced locations, wherein the key address locations are non-contiguous and randomly distributed in the array;
  
  filling the raw memory image file with test data; and
  
  merging secure key data into the key address locations of the raw memory image file, wherein merging the secure key data includes replacing the portion of the test data that is located in the key address locations;
  
  storing the secure authentication image file in the peripheral that is to be authenticated by the device;
  
  wherein the device concurrently stores multiple plaintext/cyphertext pairs and each pair includes a plaintext string associated with a cyphertext string; and
  
  further comprising;
  
  transmitting one of the plaintext strings from the device to the peripheral; and
  
  the peripheral using the received plaintext string and the secure authentication image file to generate a proposed cyphertext string.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, further comprising erasing the secure key data and the raw memory image file.
  - 3. The method of claim 1, wherein the device is a mobile phone, the peripheral is a battery for powering the mobile phone, the battery is in electrical communication with the device during execution of the method, and the secure key data is 16 bytes.
  - 4. The method of claim 1, wherein using the received plaintext string and the secure authentication image file to generate the proposed cyphertext string includes using a hash function stored on the peripheral.
  - 5. The method of claim 1, wherein the proposed cyphertext string is generated by encrypting the associated plaintext string using the secure key data from the secure authentication image file.
  - 6. The method of claim 1, further comprising:
    - transmitting the proposed cyphertext string from the peripheral to the device.
  - 7. The method of claim 6, further comprising:
    - comparing the proposed cyphertext string received at the device to the cyphertext string that the device associates with the plaintext string that was transmitted from the device to the peripheral.
  - 8. The method of claim 1, further comprising:
    - generating each of the plaintext/cyphertext pairs such that each of the cyphertext strings is generated using the associated plaintext string in combination with the secure key data.
  - 9. The method of claim 8, wherein each of the cyphertext strings is generated by encrypting the associated plaintext string using the secure key data.

10. A system for authenticating peripherals that are each configured to be in communication with a device, comprising:
- electronics configured to generate a secure authentication image file by,reserving key address locations in a raw memory image file that includes data for an array of regularly spaced locations, wherein the key address locations are non-contiguous and randomly distributed in the array,filling the raw memory image file with test data; and
  
  merging secure key data into the key address locations of the raw memory image file, wherein merging the secure key data includes replacing the portion of the test data that is located in the key address locations;
  
  wherein the electronics store the secure authentication image file in the peripherals that are to be authenticated by the device;
  
  wherein the device concurrently stores multiple plaintext/cyphertext pairs and each pair includes a plaintext string associated with a cyphertext string;
  
  wherein the device transmits one of the plaintext strings from the device to one of the peripherals being authenticated by the device; and
  
  wherein the peripheral being authenticated uses the received plaintext string and the secure authentication image file to generate a proposed cyphertext string.
- View Dependent Claims (11)
- - 11. The system of claim 10, wherein the device is one of a plurality of devices that can each authenticate the peripherals, and each of the devices include a unique set of plaintext/cyphertext pairs.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Original Assignee
Kyocera Corporation
Inventors
Taylor, John P.
Primary Examiner(s)
Orgad, Edan
Assistant Examiner(s)
Holder, Bradley

Application Number

US11/682,834
Publication Number

US 20100268946A1
Time in Patent Office

2,065 Days
Field of Search

713/168, 713/169, 713/170, 380/247
US Class Current

713/170
CPC Class Codes

G06F 21/31   User authentication

G06F 2221/2103   Challenge-response

G06F 2221/2129   Authenticate client device ...

H04M 1/72409   by interfacing with externa...

System and method for generating secured authentication image files for use in device authentication

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

45 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for generating secured authentication image files for use in device authentication

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

45 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links