Portable system and method for remotely accessing data

US 8,826,015 B2
Filed: 04/21/2008
Issued: 09/02/2014
Est. Priority Date: 04/21/2008
Status: Expired due to Fees

First Claim

Patent Images

1. A portable system for accessing data stored on a host system from a remote system using a data link, the system comprising:

a first hardware device and a second hardware device;

wherein said first hardware device is capable of being physically connected to both said host system and said second hardware device to associate said first hardware device, said second hardware device and said host system with each other by generating a random master cryptographic key that is stored on each of said first and second hardware devices, and by providing an address of the host system to said second hardware device; and

wherein said second hardware device is capable of being physically disconnected from said first hardware device and physically connected to said remote system to generate a session key from said master cryptographic key to establish a secure communication channel between said first and second hardware devices across said data link based on the obtained address of the host system to enable the remote system to access said data on the host system, wherein second hardware device and said host system are securely connected with each other using a unique identifier of the host system, and wherein said unique identifier of the host system is at least one identifier selected from a group consisting of a media access control address of said host system, a hard disk identification number of said host system, an internet protocol address of said host system, and a randomly generated pairing, identifier.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of the present invention provide a portable system and method for accessing data remotely. The system and method include a first module and a second module, each of the modules being associated with the host system, wherein the first module is capable of being connected to the host system and the second module, and the second module is capable of being connected to the remote system to establish a secure communication channel between the first and second modules across the data link to access the data.

Citations

17 Claims

1. A portable system for accessing data stored on a host system from a remote system using a data link, the system comprising:
- a first hardware device and a second hardware device;
  
  wherein said first hardware device is capable of being physically connected to both said host system and said second hardware device to associate said first hardware device, said second hardware device and said host system with each other by generating a random master cryptographic key that is stored on each of said first and second hardware devices, and by providing an address of the host system to said second hardware device; and
  
  wherein said second hardware device is capable of being physically disconnected from said first hardware device and physically connected to said remote system to generate a session key from said master cryptographic key to establish a secure communication channel between said first and second hardware devices across said data link based on the obtained address of the host system to enable the remote system to access said data on the host system, wherein second hardware device and said host system are securely connected with each other using a unique identifier of the host system, and wherein said unique identifier of the host system is at least one identifier selected from a group consisting of a media access control address of said host system, a hard disk identification number of said host system, an internet protocol address of said host system, and a randomly generated pairing, identifier.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The system of claim 1, wherein said first and second hardware devices are initially connected to each other, said first hardware device is then connected to said host system.
  - 3. The system of claim 1, wherein said first hardware device connects to said host system using a universal serial bus (USB) connector, and said second hardware device connects to said remote system using a USB connector.
  - 4. The system of claim 1, wherein said data is virtually copied to said first hardware device to provide said data access and said virtually copied data is only available to said remote system when connected to said second hardware device.
  - 5. The system of claim 1, wherein said data link is selected from a group consisting of the internet, a local area network, a wide area network, and a wireless network.
  - 6. The system of claim 2, wherein said data link is routed via a trusted third-party.
  - 7. The system of claim 6, wherein said trusted third-party maintains said unique identifier and uses said unique identifier to complete a data connection between said first and second hardware devices.
  - 8. The system of claim 6, wherein said trusted third-party can revoke the system pairing.

9. A method of accessing data stored on a host system from a remote system using a data link, the method comprising the steps of:
- providing a system comprising a first hardware device and a second hardware device initially physically connected to each other;
  
  physically connecting said first hardware device of said system to said host system;
  
  associating said first hardware device, said second hardware device and said host system with each other using a unique identifier of the host system, wherein associating comprises generating a master cryptographic key that is stored on each of said first and second hardware devices, and providing an address of the host system to the second hardware device;
  
  physically disconnecting said second hardware device from said first hardware device; and
  
  physically connecting said second hardware device to said remote system to generate a session key from said master cryptographic key to establish a secure communication channel between said first and second hardware devices across said data link to enable the remote system to access said data on the host system, wherein said unique identifier of the host system is at least one identifier selected from a group consisting of a media access control address of said host system, a hard disk identification number of said host system, an internet protocol address of said host system, and a randomly generated long system pairing identifier.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
- - 10. The method of claim 9, wherein said master cryptographic key is generated using a random number generator and wherein a cryptographic protocol used for securing the data link between the first hardware device and the second hardware device is selected from a group consisting of symmetric key cryptography, asymmetric key cryptography, and one-time pad cryptography.
  - 11. The method of claim 9, wherein said first and second hardware devices are initially connected to said host system and said remote system using a physical electrical connection.
  - 12. The method of claim 9, wherein:
    - said first hardware device comprises a USB, and said first connecting step comprises connecting said USB to said host system; and
      
      said second hardware device comprises a USB, and said second connecting step comprises connecting said USB to said remote system.
  - 13. The method of claim 9, further comprising a step for virtually copying said data to said first hardware device after said associating step, such that only said virtually copied data is available to said second hardware device.
  - 14. The method of claim 9, wherein said data link is selected from a group consisting of the internet, a local area network, a wide area network, and a wireless network.
  - 15. The method of claim 9, wherein said data link is routed through a trusted third-party.
  - 16. The method of claim 15, wherein said trusted third-party maintains said unique identifier and uses said unique identifier to complete a data connection between said first and second hardware devices.
  - 17. The method of claim 15, wherein said trusted third party can revoke said association between said first hardware device, said second hardware device, and said host system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Agency For Science Technology and Research (Government of Singapore)
Original Assignee
Agency For Science Technology and Research (Government of Singapore)
Inventors
Lakshminarayanan, Anantharaman, Takru, Kalyan
Primary Examiner(s)
Zecher, Dede
Assistant Examiner(s)
LAKHIA, VIRAL S

Application Number

US12/988,613
Publication Number

US 20110040971A1
Time in Patent Office

2,325 Days
Field of Search

713/175, 713168-171, 726/9, 726 22- 25, 380/278, 705/12
US Class Current

713/168
CPC Class Codes

G06F 21/445   by mutual authentication, e...

G06F 21/6263   during internet communicati...

G06F 21/79   in semiconductor storage me...

G06F 2221/2153   Using hardware token as a s...

H04L 63/0853   using an additional device,...

H04L 63/0869   for achieving mutual authen...

H04L 63/0876   based on the identity of th...

Portable system and method for remotely accessing data

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Portable system and method for remotely accessing data

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links