Method and system to provide secure exchange of data between mobile phone and computer system

US 8,918,905 B2
Filed: 06/06/2007
Issued: 12/23/2014
Est. Priority Date: 06/06/2006
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

detecting, by a mobile telephone comprising a first certificate of authenticity in a first secure access layer, that the mobile telephone has been coupled to a computer system;

in response to affirmatively detecting that the mobile telephone has been coupled to the computer system, transmitting, by the mobile telephone, via the first secure access layer stored within the mobile telephone, an authentication request to a second secure access layer resident within the computer system;

receiving, by the mobile telephone, authentication data comprising a second certificate of authenticity transmitted by the second secure access layer resident within a DLL (Dynamic Linked Library) of the computer system, wherein the first secure access layer is configured to communicate only with the DLL comprising the second secure access layer that matches the first secure access layer;

comparing, by the mobile telephone via the first secure access layer, the second certificate of authenticity to a first certificate of authenticity in the first secure access layer of the mobile telephone;

determining, by the mobile telephone, via the first secure access layer, whether the computer system is authorized to exchange data with the mobile telephone based on the comparison of the first certificate of authenticity and the second certificate of authenticity;

in response to determining the computer system is authorized to exchange data with the mobile telephone, granting, using the mobile telephone, authorization to the DLL of the computer system to transmit data between the mobile telephone and the computer system; and

in response to determining the computer system is not authorized to exchange data with the mobile telephone, restricting, by the mobile telephone, the computer system from transmitting data between the mobile telephone and the computer system, anddisplaying on the mobile telephone, a communications error message to a user of the mobile telephone.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods of providing a secure access layer in a mobile phone and a computer system coupled to the mobile phone to provide authentication for transmitting data between the phone and the computer system.

16 Citations

View as Search Results

15 Claims

1. A method comprising:
- detecting, by a mobile telephone comprising a first certificate of authenticity in a first secure access layer, that the mobile telephone has been coupled to a computer system;
  
  in response to affirmatively detecting that the mobile telephone has been coupled to the computer system, transmitting, by the mobile telephone, via the first secure access layer stored within the mobile telephone, an authentication request to a second secure access layer resident within the computer system;
  
  receiving, by the mobile telephone, authentication data comprising a second certificate of authenticity transmitted by the second secure access layer resident within a DLL (Dynamic Linked Library) of the computer system, wherein the first secure access layer is configured to communicate only with the DLL comprising the second secure access layer that matches the first secure access layer;
  
  comparing, by the mobile telephone via the first secure access layer, the second certificate of authenticity to a first certificate of authenticity in the first secure access layer of the mobile telephone;
  
  determining, by the mobile telephone, via the first secure access layer, whether the computer system is authorized to exchange data with the mobile telephone based on the comparison of the first certificate of authenticity and the second certificate of authenticity;
  
  in response to determining the computer system is authorized to exchange data with the mobile telephone, granting, using the mobile telephone, authorization to the DLL of the computer system to transmit data between the mobile telephone and the computer system; and
  
  in response to determining the computer system is not authorized to exchange data with the mobile telephone, restricting, by the mobile telephone, the computer system from transmitting data between the mobile telephone and the computer system, anddisplaying on the mobile telephone, a communications error message to a user of the mobile telephone.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1, wherein the first certificate of authenticity of the first secure access layer is a public key infrastructure certificate of authenticity and the second certificate of authenticity of the second secure access layer is a public key infrastructure certificate of authenticity.
  - 3. The method of claim 2, further comprising, in response to determining the computer system is authorized to exchange data with the mobile telephone, granting, using the mobile device, authorization to a phone access software instance on the computer system to transmit data between the mobile telephone and the computer system.
  - 4. The method of claim 3, further comprising, the phone access software instance on the computing system providing access to media content stored on the computer system.
  - 5. The method of claim 3, further comprising, the phone access software instance on the computing system providing access to a phonebook stored on the computer system.

6. A non-transitory machine-readable medium, having stored thereon a set of instructions, which when executed, cause a machine to perform a method comprising:
- detecting, by a mobile telephone comprising a first certificate of authenticity in a first secure access layer, that the mobile telephone has been coupled to a computer system;
  
  in response to affirmatively detecting that the mobile telephone has been coupled to the computer system transmitting, by the mobile telephone, via the first secure access layer stored within the mobile telephone, an authentication request to a second secure access layer resident within the computer system;
  
  receiving, by the mobile telephone, authentication data comprising a second certificate of authenticity transmitted by the second secure access layer resident within a DLL (Dynamic Linked Library) of the computer system, wherein the first secure access layer is configured to communicate only with the DLL comprising the second secure access layer that matches the first secure access layer;
  
  comparing, by the mobile telephone via the first secure access layer, the second certificate of authenticity to a first certificate of authenticity in the first secure access layer of the mobile telephone;
  
  determining, by the mobile telephone, via the first secure access layer, whether the computer system is authorized to exchange data with the mobile telephone based on the comparison of the first certificate of authenticity with the second certificate of authenticity;
  
  in response to determining the computer system is authorized to exchange data with the mobile telephone, granting, using the mobile telephone, authorization to the DLL of the computer system to transmit data between the mobile telephone and the computer system; and
  
  in response to determining the computer system is not authorized to exchange data with the mobile telephone, restricting, by the mobile telephone, the computer system from transmitting data between the mobile telephone and the computer system, anddisplaying on the mobile telephone, a communications error message to a user of the mobile telephone.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The machine-readable medium of claim 6, wherein the first certificate of authenticity of the first secure access layer is a public key infrastructure certificate of authenticity and the second certificate of authenticity of the second secure access layer is a public key infrastructure certificate of authenticity.
  - 8. The machine-readable medium of claim 7, further comprising, in response to determining the computer system is authorized to exchange data with the mobile telephone, granting, using the mobile device, authorization to a phone access software instance on the computer system to transmit data between the mobile telephone and the computer system.
  - 9. The machine-readable medium of claim 8, further comprising, the phone access software instance on the computing system providing access to media content stored on the computer system.
  - 10. The machine-readable medium of claim 8, further comprising, the phone access software instance on the computing system providing access to a phonebook stored on the computer system.

11. A mobile telephone comprising:
- a memory comprising a first certificate of authenticity in a first secure access layer;
  
  a connector; and
  
  a processor coupled to the memory and the connector to;
  
  detect that the mobile telephone has been coupled to a computer system via the connector;
  
  in response to affirmatively detecting that the mobile telephone has been coupled to the computer system, transmit, by the mobile telephone, via the first secure access layer stored on the memory, an authentication request to a second secure access layer resident within the computer system;
  
  receive, by the mobile telephone, authentication data comprising a second certificate of authenticity transmitted by the second secure access layer resident within a DLL (Dynamic Linked Library) of the computer system, wherein the first secure access layer is configured to communicate only with the DLL comprising the second secure access layer that matches the first secure access layer;
  
  compare, via the first secure access layer, the second certificate of authenticity to a first certificate of authenticity in the first secure access layer of the mobile telephone;
  
  determine via the first secure access layer, whether the computer system is authorized to exchange data with the mobile telephone based on the comparison of the first certificate of authenticity and the second certificate of authenticity; and
  
  in response to determining the computer system is authorized to exchange data with the mobile telephone, grant authorization to the DLL of the computer system to transmit data between the mobile telephone and the computer system;
  
  in response to determining the computer system is not authorized to exchange data with the mobile telephone,restrict the computer system from transmitting data between the mobile telephone and the computer system, anddisplay on the mobile telephone a communications error message to a user of the mobile telephone.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The mobile telephone of claim 11, wherein the first certificate of authenticity of the first secure access layer is a public key infrastructure certificate of authenticity and the second certificate of authenticity of the second secure access layer is a public key infrastructure certificate of authenticity.
  - 13. The mobile telephone of claim 12, further comprising, in response to determining the computer system is authorized to exchange data with the mobile telephone, granting authorization to a phone access software instance on the computer system to transmit data between the mobile telephone and the computer system.
  - 14. The mobile telephone of claim 13, wherein the phone access software instance on the computing system is to provide access to media content stored on the computer system.
  - 15. The mobile telephone of claim 13, wherein the phone access software instance on the computing system is to provide access to a phonebook stored on the computer system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Future Dial Inc
Original Assignee
Future Dial Inc
Inventors
Chong, Benedict
Primary Examiner(s)
Colin, Carl
Assistant Examiner(s)
LAVELLE, GARY E

Application Number

US11/759,212
Publication Number

US 20070280480A1
Time in Patent Office

2,757 Days
Field of Search

726/29
US Class Current

726/29
CPC Class Codes

G06F 21/12   Protecting executable software

G06F 21/33   using certificates

G06F 21/35   communicating wirelessly

G06F 21/445   by mutual authentication, e...

H04L 2209/24   Key scheduling, i.e. genera...

H04L 61/4594   Address books, i.e. directo...

H04L 63/0823   using certificates cryptogr...

H04L 9/006   involving public key infras...

H04W 12/04   Key management, e.g. using ...

H04W 12/06   Authentication

H04W 12/08   Access security

H04W 12/50   Secure pairing of devices

H04W 88/02   Terminal devices

Method and system to provide secure exchange of data between mobile phone and computer system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

16 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system to provide secure exchange of data between mobile phone and computer system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

16 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links