Security system for handheld wireless devices using-time variable encryption keys
First Claim
1. A portable wireless personal communication system for cooperating with a remote certification authority to employ time variable secure key information pursuant to a predetermined encryption algorithm to facilitate secure encrypted communication, comprising:
- a. a key generating component adapted to be mounted on an individual'"'"'s body for wirelessly transmitting, within the immediate proximity of the individual when the key generating component is mounted on the individual'"'"'s body, a key signal comprising secret or private key information corresponding to the time variable secure key information to facilitate secure wireless communication in accordance with the encryption algorithm; and
b. a handheld wireless component, physically separated from the key generating component, adapted to (a) wirelessly receive the key signal transmitted by the key generating component, (b) use the secret or private key information included in the key signal to encrypt a message in accordance with the predetermined encryption algorithm, and (c) transmit the encrypted message via a wireless link that forms part of a communication channel connected at one end to said handheld wireless component and connected at the other end to a third party that has communicated with the certification authority in accordance with the encryption algorithm;
wherein the time variable key generated by said key generating component is an authenticating key that uniquely identifies to the certification authority the individual upon which said key generating component is mounted and wherein said authenticating key and the corresponding secure key information held by the certification authority change in time in accordance with said key generating algorithm in a manner to permit the certification authority to uniquely and securely certify the identity of the individual to whom the key generating component was provided;
wherein said certification authority implements the encryption algorithm to allow encrypted communication between the certification authority and each of the individuals over the wireless network, said certification authority including a memory for storing an operating program and for storing subscriber identification information adapted to be associated with time variable key information corresponding to the time variable keys generated in each of the corresponding key generating components and used by the respective handheld components to form an encrypted message for transmission over the wireless network to the certification authority wherein the certification authority can authenticate any encrypted message forwarded to said certification authority as coming from a particular individual by implementing an authentication routine of the encryption algorithm using the associated time variable key information.
1 Assignment
0 Petitions
Accused Products
Abstract
In one embodiment, the invention provides a portable wireless personal communication system for cooperating with a remote certification authority to employ time variable secure key information pursuant to a predetermined encryption algorithm to facilitate convenient, secure encrypted communication. The disclosed system includes a wireless handset, such as PDA, smartphone, cellular telephone or the like, characterized by a relatively robust data processing capability and a body mounted key generating component which is adapted to be mounted on an individual'"'"'s body, in a permanent or semi-permanent manner, for wirelessly broadcasting, within the immediate proximity of the individual, a secret or private key identifying signal corresponding to a time variable secure key information under the control of the certification authority. The key identifying signal is generated in a format that facilitates secure wireless communication with the individual in accordance with a predetermined encryption algorithm including a PKI encryption algorithm. The disclosed system may be used with a console for coordinating access to a variety of different communication system and networks.
-
Citations
28 Claims
-
1. A portable wireless personal communication system for cooperating with a remote certification authority to employ time variable secure key information pursuant to a predetermined encryption algorithm to facilitate secure encrypted communication, comprising:
-
a. a key generating component adapted to be mounted on an individual'"'"'s body for wirelessly transmitting, within the immediate proximity of the individual when the key generating component is mounted on the individual'"'"'s body, a key signal comprising secret or private key information corresponding to the time variable secure key information to facilitate secure wireless communication in accordance with the encryption algorithm; and b. a handheld wireless component, physically separated from the key generating component, adapted to (a) wirelessly receive the key signal transmitted by the key generating component, (b) use the secret or private key information included in the key signal to encrypt a message in accordance with the predetermined encryption algorithm, and (c) transmit the encrypted message via a wireless link that forms part of a communication channel connected at one end to said handheld wireless component and connected at the other end to a third party that has communicated with the certification authority in accordance with the encryption algorithm; wherein the time variable key generated by said key generating component is an authenticating key that uniquely identifies to the certification authority the individual upon which said key generating component is mounted and wherein said authenticating key and the corresponding secure key information held by the certification authority change in time in accordance with said key generating algorithm in a manner to permit the certification authority to uniquely and securely certify the identity of the individual to whom the key generating component was provided; wherein said certification authority implements the encryption algorithm to allow encrypted communication between the certification authority and each of the individuals over the wireless network, said certification authority including a memory for storing an operating program and for storing subscriber identification information adapted to be associated with time variable key information corresponding to the time variable keys generated in each of the corresponding key generating components and used by the respective handheld components to form an encrypted message for transmission over the wireless network to the certification authority wherein the certification authority can authenticate any encrypted message forwarded to said certification authority as coming from a particular individual by implementing an authentication routine of the encryption algorithm using the associated time variable key information.
-
-
2. The portable wireless personal communication system as defined in claim 1, wherein the personal communication system is adapted to operate with a certification authority that implements a PKI type encryption algorithm, wherein the certification authority certifies, as authentically associated with the individual on whose body is mounted the key generating component, a sequentially series of public keys corresponding one to one to a sequentially series of secret or private keys generated from time to time by said key generating component in accordance with a predetermined PKI key generation algorithm and wherein said time variable key signal broadcast by said key generating component is the private key corresponding to the current public key used by the certification authority to facilitate secure communication between third parties and the individual who has been authenticated by the certification authority.
-
3. The portable wireless personal communication system as defined in claim 2 wherein said PKI key generation algorithm employs a predetermined sequence of paired secret or private keys and public keys wherein the private keys and the public keys are generated and provided, respectively, to the key generating component and to the certification authority to be used in the future in accordance with the PKI key generating algorithm to cause the current private key broadcast by said key generating component to properly correspond to the public key provided by the certification authority to facilitate third party communication with the individual.
-
4. The portable wireless personal communication system as defined in claim 1, wherein the key generating algorithm implemented by said key generating component includes a pseudo random number generation function corresponding to a similar pseudo random number generation function performed by the certification authority to permit accurate authentication over time of the identity of the individual to whom the key generating component has been issued despite the fact that the authenticating key is time variable and further wherein the pseudo random number generator used by the key operates to render subsequent prior authenticating keys unpredictable.
-
5. The portable wireless personal communication system as defined in claim 1, wherein said key generating component a body mount allowing for semi-permanent mounting on the individual'"'"'s body.
-
6. The portable wireless personal communication system as defined in claim 5, wherein said body mount includes means for mounting said key generating component in a wrist watch, ring, necklace, or bracelet.
-
7. The portable wireless personal communication system as defined in claim 1, wherein said key generating component is a integrated circuit within a housing adapted to be permanently mounted on the individual subcutaneously.
-
8. The portable wireless personal communication system as defined in claim 1, wherein said handheld wireless component is a cellular telephone.
-
9. The portable wireless personal communication system as defined in claim 3, wherein the personal communication system is adapted to operate within a PKI in accordance with an algorithm that allows a sender to create a cipher text from a message text using the public key provided by the certification authority for a participating party that can only be decrypted using the secret or private key corresponding to that party'"'"'s public key, wherein said handheld wireless component is capable of recovering a message text from a cipher text created by a third party using the public key currently being provided by the certification authority provided the handheld wireless component has received the corresponding secret or private key and provided the certification authority, third party and handheld wireless component operate in accordance with the same PKI algorithm.
-
10. The portable wireless personal communication system as defined in claim 1, wherein said key generating component includes a processor adapted to generate a time variable key that corresponds to the time variable secure key information held by the certification authority.
-
11. The portable wireless personal communication system as defined in claim 10, wherein said key generating component includes a radio transmitter for broadcasting the time variable key within a zone in close proximity to the individual on whose body said key generating component is mounted and said key generating component includes encrypting means for broadcasting the time variable key in an encrypted form and further wherein said hand held wireless component includes decrypting means for recovering the time variable key from the signal broadcasted by said key generating component.
-
12. The portable wireless personal communication system as defined in claim 11, wherein said key generating component includes a transponder circuit adapted to cause said key generating component to broadcast the time variable key only upon receipt of a wireless signal requesting a time variable key created and broadcast by said hand held wireless component that has been encrypted in a manner to cause it to be decrypted only by said transponder circuit.
-
13. The portable wireless personal communication system as defined in claim 12, wherein each time said transponder circuit is activated, the current time variable key is changed to the next key in the sequence of time variable keys and the certification authority is notified of the need to change to a corresponding time variable key information.
-
14. The portable wireless personal communication system as defined in claim 10, wherein said key generating component includes a pseudo random number generator that is coordinated with a pseudo random number generator operated by said certification authority such that corresponding keys can be generated by said certification authority and by said key generating component.
-
15. A certification apparatus for secure communication and unique identification by implementing an encryption algorithm within an encryption infrastructure employing secret or private keys including a wireless network having individual subscribers who access the wireless network using handheld wireless components for implementing a compatible encryption algorithm using time variable secret or private keys uniquely associated with the respective individual subscribers, comprising:
-
a plurality of key generating components adapted to be mounted, respectively, on the bodies of the subscribers, each said key generating component including; key generating means adapted to be mounted on an individual'"'"'s body for generating a time variable secret or private key for use in secure communication or uniquely identifying the individual on which the component is mounted, and wireless transceiver for transmitting, in a limited zone surrounding the individual when the key generating component is mounted on the individual'"'"'s body, a generated time variable secret or private key that can be used in the handheld component to create an encrypted message suitable to be transmitted by the handheld device over the wireless network; and a certification authority for implementing the encryption algorithm to allow encrypted communication between the certification authority and each of the individual subscribers over the wireless network, including a memory for storing an operating program and for storing subscriber identification information adapted to be associated with time variable key information corresponding to the time variable keys generated in each of the corresponding key generating components and used by the respective handheld components to form an encrypted message for transmission over the wireless network to the certification authority wherein the certification authority can authenticate any encrypted message forwarded to said certification authority as coming from a particular individual by implementing an authentication routine of the encryption algorithm using the associated time variable key information.
-
-
16. The certification apparatus as defined in claim 15, wherein said certification authority implements a PKI type encryption algorithm including certifying, as authentically associated with the individual on whose body is mounted the key generating component, a sequentially series of public keys corresponding one to one to a sequentially series of secret or private keys generated from time to time by said key generating component in accordance with a predetermined PKI key generation algorithm and wherein said time variable key signal broadcast by said key generating component is the private key corresponding to the current public key used by the certification authority to facilitate secure communication between third parties and the individual who has been authenticated by the certification authority.
-
17. The certification apparatus as defined in claim 16, wherein said PKI key generation algorithm employs a predetermined sequence of paired private keys and public keys wherein the private keys and the public keys are generated and provided, respectively, to the key generating component and to the certification authority to be used in the future in accordance with the PKI key generating algorithm to cause the current private key broadcast by said key generating component to properly correspond to the public key provided by the certification authority to facilitate third party communication with the individual.
-
18. The certification apparatus as defined in claim 15, wherein the time variable key generated by said key generating component is an authenticating key that uniquely identifies to the certification authority the individual upon which said key generating component is mounted and wherein said authenticating key and the corresponding secure key information held by the certification authority change in time in accordance with said key generating algorithm in a manner to permit the certification authority to uniquely and securely certify the identity of the individual to whom the key generating component was provided.
-
19. The certification apparatus as defined in claim 18, wherein the key generating algorithm implemented by each said key generating component includes a pseudo random number generation function corresponding to a similar pseudo random number generation function performed by the certification authority to permit accurate authentication over time of the identity of the individual to whom the key generating component has been issued despite the fact that the authenticating key is time variable and further wherein the pseudo random number generator used by the key operates to render subsequent prior authenticating keys unpredictable.
-
20. The certification apparatus as defined in claim 15, wherein each said key generating component a body mount allowing for semi-permanent mounting on the individual'"'"'s body.
-
21. The certification apparatus as defined in claim 20, wherein said body mount includes means for mounting said key generating component in a wrist watch, ring, necklace, or bracelet.
-
22. The certification apparatus as defined in claim 15, wherein said key generating component is a integrated circuit within a housing adapted to be permanently mounted on the individual subcutaneously.
-
23. The certification apparatus as defined in claim 17, wherein said certification authority is adapted to implement a PKI in accordance with an algorithm that allows a sender to create a cipher text from a message text using the public key provided by said certification authority for a participating party that can only be decrypted using the private key corresponding to that party'"'"'s public key, wherein said handheld wireless component is capable of recovering a message text from a cipher text created by a third party using the public key currently being provided by the certification authority provided the handheld wireless component has received the corresponding private key and provided the certification authority, third party and handheld wireless component operate in accordance with the same PKI algorithm.
-
24. The certification apparatus as defined in claim 15, wherein said key generating component includes a processor adapted to generate a time variable key that corresponds to the time variable secure key information held by the certification authority.
-
25. The certification apparatus as defined in claim 14, wherein said key generating component includes a radio transmitter for broadcasting the time variable key within a zone in close proximity to the individual on whose body said key generating component is mounted and said key generating component includes encrypting means for broadcasting the time variable key in an encrypted form and further wherein said hand held wireless component includes decrypting means for recovering the time variable key from the signal broadcasted by said key generating component.
-
26. The certification apparatus as defined in claim 25, wherein said key generating component includes a transponder circuit adapted to cause said key generating component to broadcast the time variable key only upon receipt of a wireless signal requesting a time variable key created and broadcast by said hand held wireless component that has been encrypted in a manner to cause it to be decrypted only by said transponder circuit.
-
27. The certification apparatus as defined in claim 26, wherein each time said transponder circuit is activated, the current time variable key is changed to the next key in the sequence of time variable keys and the certification authority is notified of the need to change to a corresponding time variable key information.
-
28. The certification apparatus as defined in claim 15, further including a personal communication console adapted to wirelessly communicate with one of the wireless handheld devices wherein said personal communication is connected with a landline telephone communication network and a cable communication network line and wherein said console includes a communication controller and a memory for storing changeable user criteria for the type of communication service desired and wherein said controller operates to direct communication links to and from the wireless handheld device over a selected communication network that best satisfies said user criteria.
Specification