Access techniques using a mobile communication device

US 9,026,171 B2
Filed: 06/04/2014
Issued: 05/05/2015
Est. Priority Date: 11/23/2010
Status: Active Grant

First Claim

Patent Images

1. A system comprising:

one or more modules implemented at least partially in hardware, the one or more modules configured to perform operations comprising;

provisioning credentials on a secure element implemented in tamper-resistant hardware of the mobile communication device having telephone functionality using a public key to encrypt the credentials for communication to the mobile communication device, the secure element configured to decrypt the encrypted credentials using a corresponding private key stored within the secure element without exposing the credentials or the private key outside of the secure element and the secure element being resistant to physical removal from the mobile communication device; and

forming a communication for transmission by the mobile communication device that includes data that describes a function to be performed by a physical lock or vehicle and also includes data generated using the provisioned credentials that is usable to verify that the mobile communication device is authorized to cause the function to be performed.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Access techniques using a mobile communication device are described. In implementations, a mobile communication device comprises a processor, hardware configured to implement multi-mode wireless communication in which at least one of the modes involves telephone communication, tamper-resistant hardware implementing a secure element as storing one or more credentials, and memory having instructions stored therein. The instructions are executable by the processor to cause the mobile communication device to perform operations comprising forming a communication having data that was generated using the one or more credentials stored in the secure element, the communication to be transmitted wirelessly using the hardware implementing the multi-mode wireless communication to initiate function of a physical lock or vehicle.

142 Citations

20 Claims

1. A system comprising:
- one or more modules implemented at least partially in hardware, the one or more modules configured to perform operations comprising;
  
  provisioning credentials on a secure element implemented in tamper-resistant hardware of the mobile communication device having telephone functionality using a public key to encrypt the credentials for communication to the mobile communication device, the secure element configured to decrypt the encrypted credentials using a corresponding private key stored within the secure element without exposing the credentials or the private key outside of the secure element and the secure element being resistant to physical removal from the mobile communication device; and
  
  forming a communication for transmission by the mobile communication device that includes data that describes a function to be performed by a physical lock or vehicle and also includes data generated using the provisioned credentials that is usable to verify that the mobile communication device is authorized to cause the function to be performed.
- View Dependent Claims (2, 3, 4, 5)
- - 2. A system as recited in claim 1, wherein the function to be performed by the vehicle is to unlock the vehicle, lock the vehicle, cause a door of the vehicle to open, or cause the door of the vehicle to close.
  - 3. A system as recited in claim 1, wherein the function to be performed by the physical lock is to permit or deny access to premises.
  - 4. A system as recited in claim 1, wherein the communication is configured to be communicated directly between the physical lock or the vehicle and the mobile communication device.
  - 5. A system as recited in claim 1, wherein forming of the communication is performed responsive to receipt of an input through execution of an application on the processor of the mobile communication device.

6. A device comprising:
- a processor;
  
  hardware configured to implement multi-mode wireless communication;
  
  tamper-resistant hardware implementing a secure element as storing one or more credentials that include one or more cryptographic keys usable to encrypt or decrypt data, the tamper-resistant hardware including an integrated circuit that is resistant to physical removal from the device; and
  
  memory having instructions stored therein, the instructions being executable by the processor to cause the device to perform operations comprising;
  
  receiving, from a mobile device, a communication having data that describes a function to be performed by a physical lock or vehicle, the communication received wirelessly using the hardware implementing the multi-mode wireless communication; and
  
  initiating the function of the physical lock or the vehicle based, at least in part, on the data of the received communication and the one or more credentials stored in the secure element of the device.
- View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 7. A device as described in claim 6, wherein the function of the vehicle is to lock or unlock the vehicle, start the vehicle, open a door of the vehicle, or close a door of the vehicle.
  - 8. A device as described in claim 6, wherein the function of the physical lock is to permit or deny access to premises.
  - 9. A device as described in claim 6, wherein the initiating the function of the physical lock of the vehicle is performed automatically and without user intervention based on a proximity of the device and the mobile device.
  - 10. A device as described in claim 6, the operations further comprising verifying that the mobile device is authorized to cause the function to be performed based, at least in part, on the one or more credentials stored in the secure element of the device.
  - 11. A device as described in claim 6, wherein the communication includes data that describes the function to be performed by the physical lock or vehicle.
  - 12. A device as described in claim 6, wherein the one or more credentials are used to verify an answer to a challenge included in the data of the received communication.
  - 13. A device as described in claim 12, wherein the secure element of the device is configured to verify the answer to the challenge without exposing the one or more credentials outside of the secure element of the device.
  - 14. A device as described in claim 6, wherein the device is located in the vehicle.
  - 15. A device as described in claim 6, wherein the communication is received wirelessly and directly via the hardware configured to implement the multi-mode wireless communication without communicating via an Internet.

16. A method comprising:
- receiving, by a computing device, a communication transmitted by a mobile communication device, the communication including first data that describes a function to be performed by a vehicle or a physical lock and second data usable to verify that the mobile communication device is authorized to cause the function to be performed, the second data being generated using credentials provisioned in a secure element implemented in tamper-resistant hardware of the mobile communication device the secure element of the mobile communication device being resistant to physical removal from the mobile communication device;
  
  verifying that the mobile communication device is authorized to cause the function to be performed; and
  
  responsive to verifying that the mobile communication device is authorized to cause the function to be performed, initiating performance of the function of the vehicle or the physical lock.
- View Dependent Claims (17, 18, 19, 20)
- - 17. A method as described in claim 16, wherein the function to be performed by the vehicle is to unlock the vehicle, lock the vehicle, cause a door of the vehicle to be open, or cause the door of the vehicle to close.
  - 18. A method as described in claim 16, wherein the verifying includes using credentials stored in a secure element implemented in tamper-resistant hardware of the computing device to verify a result of a challenge provided by the mobile communication device, the secure element of the computing device being resistant to physical removal from the computing device.
  - 19. A method as described in claim 18, wherein the verifying includes using the credentials stored in the secure element of the computing device to generate data and comparing the generated data and the second data to determine a match.
  - 20. A method as described in claim 18, wherein the credentials stored in the secure element of the computing device and the credentials provisioned in the secure element of the mobile communication device include one or more cryptographic keys usable to encrypt or decrypt data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Inventors
Vasudevan, Barathram
Primary Examiner(s)
AKINYEMI, AJIBOLA A

Application Number

US14/296,334
Publication Number

US 20140286492A1
Time in Patent Office

335 Days
Field of Search

455/550.1
US Class Current

455/550.1
CPC Class Codes

B60R 2325/205   Mobile phones

B60R 25/24   using electronic identifier...

G07C 9/00571   operated by interacting wit...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 2209/84   Vehicles

H04L 9/14   using a plurality of keys o...

H04L 9/3271   using challenge-response

H04W 12/04   Key management, e.g. using ...

H04W 12/08   Access security

H04W 12/35   Protecting application or s...

Access techniques using a mobile communication device

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

142 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Access techniques using a mobile communication device

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

142 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links