System for protection and authentication of location services with distributed security
First Claim
1. A method for providing secure location information, said method comprising:
- receiving, by a secure location processor (SLP), security key exchange information including security keys from a location requesting entity, said location requesting entity external to said SLP;
obtaining location determination measurements, said obtaining performed by said SLP;
verifying that said location determination measurements have not exceeded an expiration threshold, said verifying performed by said SLP;
determining location information based on said location determination measurements, said determining performed by said SLP;
encrypting said location information based on said security keys, said encrypting performed by said SLP;
transmitting said encrypted location information from said SLP to said location requesting entity;
adjusting the accuracy of said location determination measurements based on credentials of said location requesting entity, said adjusting performed by said SLP;
encrypting said adjusted location determination measurements based on said security keys, said encrypting performed by said SLP; and
transmitting said encrypted location determination measurements from said SLP to said location requesting entity.
1 Assignment
0 Petitions
Accused Products
Abstract
Generally, this disclosure provides methods and apparatus for the protection and authentication of location services based on a distributed security system. The method may include exchanging security keys between a secure location processor (SLP) and a location requesting entity, the location requesting entity external to the SLP; obtaining location determination measurements, the obtaining performed by the SLP; determining a location based on the location determination measurements, the determining performed by the SLP; encrypting the location based on the security keys, the encrypting performed by the SLP; and transmitting the encrypted location from the SLP to the location requesting entity.
-
Citations
19 Claims
-
1. A method for providing secure location information, said method comprising:
-
receiving, by a secure location processor (SLP), security key exchange information including security keys from a location requesting entity, said location requesting entity external to said SLP; obtaining location determination measurements, said obtaining performed by said SLP; verifying that said location determination measurements have not exceeded an expiration threshold, said verifying performed by said SLP; determining location information based on said location determination measurements, said determining performed by said SLP; encrypting said location information based on said security keys, said encrypting performed by said SLP; transmitting said encrypted location information from said SLP to said location requesting entity; adjusting the accuracy of said location determination measurements based on credentials of said location requesting entity, said adjusting performed by said SLP; encrypting said adjusted location determination measurements based on said security keys, said encrypting performed by said SLP; and transmitting said encrypted location determination measurements from said SLP to said location requesting entity. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A mobile platform with secure location capability, said platform comprising:
-
a host comprising a processor and a memory, said host configured to run an operating system and one or more applications; a secure location processor (SLP) coupled to said host through an application programming interface (API) and configured to at least receive security key exchange information including security keys from a location requesting entity external to said SLP, said SLP comprising; a receiver configured to provide location measurement data; a location engine coupled to said receiver, said location engine configured to generate location information based on said location measurement data; and a trusted execution environment (TEE) configured to; restrict access to control and data within said SLP from said host and said operating system and said applications; verify that said location measurement data has not exceeded an expiration threshold; adjust the accuracy of said location measurement data based on credentials of said location requesting entity; and encrypt said adjusted location measurement data and encrypt said location information for transmission to said location requesting entity. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A non-transitory computer-readable storage medium having instructions stored thereon which when executed by a processor result in the following operations for securely providing context sensor data, said operations comprising:
-
receiving, by a secure location processor (SLP), security key exchange information including security keys from a location requesting entity, said location requesting entity external to said SLP; obtaining location determination measurements, said obtaining performed by said SLP; verifying that said location determination measurements have not exceeded an expiration threshold, said verifying performed by said SLP; determining location information based on said location determination measurements, said determining performed by said SLP; adjusting the accuracy of said location information based on credentials of said location requesting entity, said adjustment performed by said SLP; encrypting said adjusted location information based on said security keys, said encrypting performed by said SLP; and transmitting said encrypted location information from said SLP to said location requesting entity. - View Dependent Claims (18, 19)
-
Specification