Geothentication based on network ranging
First Claim
1. A method for authenticating a physical location of a target node, the method comprising:
- sending, by the target node, a geothentication request to at least one trusted node with a known physical location;
receiving, by the at least one trusted node, the geothentication request;
sending, by the at least one trusted node, an inquiry message to the target node;
receiving, by the target node, the inquiry message;
sending, by the target node, a response message to the at least one trusted node;
receiving, by the at least one trusted node, the response message;
calculating a ranging measurement from the target node to the at least one trusted node by using an amount of time elapsed from the sending of the inquiry message to the receiving of the response message; and
authenticating the physical location of the target node by using the ranging measurement from the target node to the at least one trusted node,wherein the physical location of the at least one trusted node is obtained via satellite geolocation techniques, andwherein the satellite geolocation techniques use at least one secure authentication signal, which is derived from at least one secret key, in order to obtain the physical location of the at least one trusted node.
1 Assignment
0 Petitions
Accused Products
Abstract
A system, method, and apparatus for the authentication of the physical location of a target node are disclosed herein. In one or more embodiments, the authentication of the target node'"'"'s physical location is achieved by using ping ranging measurements obtained from the amount of time that elapses during ping messages being sent between the target node and at least one trusted node with a known physical location. The physical location of the trusted node(s) is obtained by using satellite geolocation techniques. The accuracy of the ranging measurements may be improved upon by using pre-coordination and/or priority determination of the ping messages being sent between the target node and the trusted node(s). In at least one embodiment, the ping messages are sent by dedicated ping response hardware that is associated with the target node and/or the trusted node(s). In some embodiments, the ping messages include a pseudo random code bit sequence.
34 Citations
21 Claims
-
1. A method for authenticating a physical location of a target node, the method comprising:
-
sending, by the target node, a geothentication request to at least one trusted node with a known physical location; receiving, by the at least one trusted node, the geothentication request; sending, by the at least one trusted node, an inquiry message to the target node; receiving, by the target node, the inquiry message; sending, by the target node, a response message to the at least one trusted node; receiving, by the at least one trusted node, the response message; calculating a ranging measurement from the target node to the at least one trusted node by using an amount of time elapsed from the sending of the inquiry message to the receiving of the response message; and authenticating the physical location of the target node by using the ranging measurement from the target node to the at least one trusted node, wherein the physical location of the at least one trusted node is obtained via satellite geolocation techniques, and wherein the satellite geolocation techniques use at least one secure authentication signal, which is derived from at least one secret key, in order to obtain the physical location of the at least one trusted node. - View Dependent Claims (3, 4, 5, 6, 7, 8, 9)
-
-
2. A method for authenticating a physical location of a target node, the method comprising:
-
sending, by at least one trusted node with a known physical location, an inquiry message to the target node; receiving, by the target node, the inquiry message; sending, by the target node, a response message to the at least one trusted node; receiving, by the at least one trusted node, the response message; calculating a ranging measurement from the target node to the at least one trusted node by using an amount of time elapsed from the sending of the inquiry message to the receiving of the response message; and authenticating the physical location of the target node by using the ranging measurement from the target node to the at least one trusted node, wherein the physical location of the at least one trusted node is obtained via satellite geolocation techniques, and wherein the satellite geolocation techniques use at least one secure authentication signal, which is derived from at least one secret key, in order to obtain the physical location of the at least one trusted node. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A system for authenticating a physical location of a target node, the system comprising:
-
at least one trusted node with a known physical location to send an inquiry message to the target node, wherein the physical location of the at least one trusted node is obtained via satellite geolocation techniques; the target node to receive the inquiry message, and to send a response message to the at least one trusted node; and at least one processor to calculate a ranging measurement from the target node to the at least one trusted node by using an amount of time elapsed from the sending of the inquiry message to the receiving of the response message, wherein the physical location of the at least one trusted node is obtained via satellite geolocation techniques, and wherein the satellite geolocation techniques use at least one secure authentication signal which is derived from at least one secret key, in order to obtain the physical location of the at least one trusted node. - View Dependent Claims (18, 19)
-
-
20. An apparatus for fast tracking a response message, the apparatus comprising:
-
a receiver to receive an inquiry message; a transmitter to transmit the response message after the inquiry message is received; a buffer to store communication data packets that are delayed in their transmission during the transmission of the response message; memory to store a message schedule; a data splitter through which the communication data packets are transmitted; and at least one of satellite tracking hardware to perform verification of a physical location of at least one trusted node and satellite tracking firmware to perform verification of the physical location of the at least one trusted node, wherein the physical location of the at least one trusted node is obtained via satellite geolocation techniques, and wherein the satellite geolocation techniques use at least one secure authentication signal, which is derived from at least one secret key, in order to obtain the physical location of the at least one trusted node. - View Dependent Claims (21)
-
Specification