System and method for exchanging encryption keys between a mobile device and a peripheral device

US 8,855,310 B2
Filed: 07/28/2011
Issued: 10/07/2014
Est. Priority Date: 05/12/2006
Status: Active Grant

First Claim

Patent Images

1. A method by a computing device of providing additional security over an established wireless connection between the computing device and a peripheral device, the method comprising:

determining that a pairing process between the computing device and the peripheral device is complete;

the computing device entering into an additional security operational mode;

the computing device triggering transmission of a command to the peripheral device over the wireless connection to cause the peripheral device to enter the additional security operational mode, or the computing device receiving a command transmitted from the peripheral device over the wireless connection before the computing device enters into the additional security operational mode;

after the pairing process is complete;

automatically generating an encryption key at the computing device in a binary form;

at the computing device, converting the encryption key in the binary form into a number comprising fewer alphanumeric digits than the encryption key in the binary form;

at the computing device, displaying the number comprising fewer alphanumeric digits on a display of the computing device, for entry at the peripheral device; and

at the computing device, encrypting data transmitted to the peripheral device or decrypting data received from the peripheral device over the wireless connection, using the encryption key and in accordance with an encryption algorithm.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods for providing additional security for data being transmitted across a wireless connection that has been established using a known wireless protocol (e.g. Bluetooth) are described. An encryption key is exchanged between a computing device (e.g. a mobile device) and a wireless peripheral device (e.g. a keyboard, a printer). In some embodiments, the encryption key is generated at one of the two devices. Data associated with the encryption key is output at the one device, which can be input by the user at the other device. The encryption key is then recovered at the other device from the input, thereby completing the key exchange. The encryption key can then be used to encrypt and decrypt data transmitted over the established wireless connection, providing additional security.

78 Citations

View as Search Results

20 Claims

1. A method by a computing device of providing additional security over an established wireless connection between the computing device and a peripheral device, the method comprising:
- determining that a pairing process between the computing device and the peripheral device is complete;
  
  the computing device entering into an additional security operational mode;
  
  the computing device triggering transmission of a command to the peripheral device over the wireless connection to cause the peripheral device to enter the additional security operational mode, or the computing device receiving a command transmitted from the peripheral device over the wireless connection before the computing device enters into the additional security operational mode;
  
  after the pairing process is complete;
  
  automatically generating an encryption key at the computing device in a binary form;
  
  at the computing device, converting the encryption key in the binary form into a number comprising fewer alphanumeric digits than the encryption key in the binary form;
  
  at the computing device, displaying the number comprising fewer alphanumeric digits on a display of the computing device, for entry at the peripheral device; and
  
  at the computing device, encrypting data transmitted to the peripheral device or decrypting data received from the peripheral device over the wireless connection, using the encryption key and in accordance with an encryption algorithm.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, wherein the pairing process is a Bluetooth pairing process.
  - 3. The method of claim 1, wherein the encryption algorithm is a symmetric encryption algorithm.
  - 4. The method of claim 1, wherein the number comprising fewer alphanumeric digits is a hexadecimal number.
  - 5. The method of claim 1, further comprising generating a new encryption key at the computing device and repeating the converting and the displaying in accordance with a pre-defined schedule, without repeating, the pairing process.
  - 6. The method of claim 1, further comprising generating a new encryption key at the computing device and repeating the converting and the displaying periodically, in accordance with a pre-defined frequency, without repeating the pairing process.
  - 7. The method of claim 1, further comprising generating a new encryption key at the computing device and repeating the converting and the displaying in response to a user request, without repeating the pairing process.
  - 8. The method of claim 1, wherein the computing device comprises a mobile device.
  - 9. The method of claim 1, wherein the peripheral device comprises a keyboard.

10. A computing device configured to provide additional security over an established wireless connection between the computing device and a peripheral device, the computing device comprising:
- a processor and a memory,wherein the processor of the computing device is configured to;
  
  determine that a pairing process between the computing device and the peripheral device is complete;
  
  place the computing device into an additional security operational mode;
  
  trigger transmission of a command to the peripheral device over the wireless connection to cause the peripheral device to enter the additional security operational mode, or receive a command transmitted from the peripheral device over the wireless connection before placing the computing device into the additional security operational mode;
  
  after the pairing process is complete;
  
  automatically generate an encryption key at the computing device in a binary form;
  
  convert the encryption key in the binary form into a number comprising fewer alphanumeric digits than the encryption key in the binary form;
  
  display the number comprising fewer alphanumeric digits on a display of the computing device, for entry at the peripheral device; and
  
  encrypt data transmitted to the peripheral device or decrypt data received from the peripheral device over the wireless connection, using the encryption key and in accordance with an encryption algorithm.

11. A method by a peripheral device of providing additional security over an established wireless connection between a computing device and the peripheral device, the method comprising:
- determining that a pairing process between the computing device and the peripheral device is complete;
  
  the peripheral device entering into an additional security operational mode;
  
  the peripheral device triggering transmission of a command to the computing device over the wireless connection to cause the computing device to enter the additional security operational mode, or the peripheral device receiving a command transmitted from the computing device over the wireless connection before the peripheral device enters into the additional security operational mode;
  
  after the pairing process is complete;
  
  receiving input via the peripheral device, wherein the input is a number comprising alphanumeric digits;
  
  at the peripheral device, converting the number into an encryption key in binary form having more digits than the number; and
  
  at the peripheral device, encrypting data transmitted to computing device or decrypting data received from the computing device over the wireless connection, using the encryption key and in accordance with an encryption algorithm.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
- - 12. The method of claim 11, wherein the pairing process is a Bluetooth pairing process.
  - 13. The method of claim 11, wherein the encryption algorithm is a symmetric encryption algorithm.
  - 14. The method of claim 11, wherein the number comprising alphanumeric digits is a hexadecimal number.
  - 15. The method of claim 11, further comprising, receiving new input at the computing device and repeating the converting in accordance with a pre-defined schedule, without repeating the pairing process.
  - 16. The method of claim 11, further comprising receiving new input at the computing device and repeating the converting periodically, in accordance with a pre-defined frequency, without repeating the pairing process.
  - 17. The method of claim 11, further comprising receiving new input at the computing device and repeating the converting in response to a user request, without repeating the pairing process.
  - 18. The method of claim 11, wherein the computing device comprises a mobile device.
  - 19. The method of claim 11, wherein the peripheral device comprises ,a keyboard.

20. A peripheral device configured to provide additional security over an established wireless connection between a computing device and the peripheral device, the peripheral device comprising:
- a processor and a memory,wherein the processor of the peripheral device is configured to;
  
  determine that a pairing process between the computing device and the peripheral device is complete;
  
  place the peripheral device into an additional security operational mode;
  
  trigger transmission of a command to the computing device over the wireless connection to cause the computing device to enter the additional security operational mode, or receive a command transmitted from the computing device over the wireless connection before placing the peripheral device into the additional security operational mode;
  
  after the pairing process is complete;
  
  receive input via the peripheral device, wherein the input is a number comprising alphanumeric digits;
  
  convert the number into an encryption key in binary form having more digits than the number; and
  
  encrypt data transmitted to computing device or decrypt data received from the computing device over the wireless connection, using the encryption key and in accordance with an encryption algorithm.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Malikie Innovations Limited (Key Patent Innovations Limited)
Original Assignee
Blackberry Limited
Inventors
Kirkup, Michael Grant, Brown, Michael Kenneth, Brown, Michael Stephen
Primary Examiner(s)
SHOLEMAN, ABU S

Application Number

US13/192,898
Publication Number

US 20110280401A1
Time in Patent Office

1,167 Days
Field of Search

713/150, 713/168, 713/171, 713/18, 380/270, 380/204, 380/244, 380/274
US Class Current

380/270
CPC Class Codes

H04L 2209/80   Wireless network architectu...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/18   using different networks or...

H04L 9/0844   with user authentication or...

H04L 9/0861   Generation of secret inform...

H04W 12/04   Key management, e.g. using ...

H04W 12/50   Secure pairing of devices

H04W 76/10   Connection setup

H04W 84/18   Self-organising networks, e...

System and method for exchanging encryption keys between a mobile device and a peripheral device

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

78 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for exchanging encryption keys between a mobile device and a peripheral device

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

78 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links