Verification of movement of items
First Claim
1. An apparatus for use in verification of a route taken during movement of an RFID tag, the apparatus comprising:
- a processing system having one or more processors;
sealed storage comprising a store for storing a private key and a policy; and
a trusted platform module which is operatively coupled to the sealed storage to protect the private key and policy, and which is operatively coupled to the processing system to;
(i) use the private key to provide, for the given RFID tag identity, an encrypted signature based on the policy; and
(ii) forward data comprising the encrypted signature to an RFID tag writer for writing to the RFID tag.
1 Assignment
0 Petitions
Accused Products
Abstract
Apparatus and system for verifying a route taken during movement of an RFID tag, comprising a trusted platform module; sealed storage (80) comprising one or more stores (50, 52) for storing a public key (64), a private key (68) and a policy (62); and processors arranged to: receive data (60) read-out from the RFID tag (4) and comprising an RFID tag identity and an encrypted signature (9); use the public key (64) to decrypt the encrypted signature (9); verify that the decrypted signature (9) corresponds to a first entity from which, according to the policy (62), a second entity is authorised to receive the given RFID tag (4); use the private key (68) to provide an encrypted signature (9); and forward data comprising the encrypted signature (9) to an RFID tag writer (22).
-
Citations
16 Claims
-
1. An apparatus for use in verification of a route taken during movement of an RFID tag, the apparatus comprising:
-
a processing system having one or more processors; sealed storage comprising a store for storing a private key and a policy; and a trusted platform module which is operatively coupled to the sealed storage to protect the private key and policy, and which is operatively coupled to the processing system to; (i) use the private key to provide, for the given RFID tag identity, an encrypted signature based on the policy; and (ii) forward data comprising the encrypted signature to an RFID tag writer for writing to the RFID tag. - View Dependent Claims (2, 3, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
4. A verification apparatus for use in verification of a route taken during movement of an RFID tag, the verification apparatus comprising:
-
a processing system having one or more processors; sealed storage comprising one or more stores for storing a public key, a private key and a policy; and a trusted platform module which is operatively coupled to the sealed storage to protect the public key, private key and policy, and which is operatively coupled to the processing system to; (i) receive, from an RFID tag reader, data read-out from the RFID tag and comprising an RFID tag identity and an encrypted signature; (ii) use the public key to decrypt the encrypted signature from the data read-out from the RFID tag; and (iii) verify that the decrypted signature corresponds to a first entity from which, according to the policy, a second entity associated with the verification apparatus is authorised to receive an RFID tag with the given RFID tag identity. - View Dependent Claims (5, 6)
-
Specification