System and method for securing data from a remote input device

US 9,288,192 B2
Filed: 09/14/2012
Issued: 03/15/2016
Est. Priority Date: 12/21/2004
Status: Active Grant

First Claim

Patent Images

1. A method for secure handling of input data comprising:

generating a private key within a first hardware security module that is integrated into an input device;

generating a public key corresponding to the private key;

exporting the public key to an external device;

exchanging a temporary cryptographic key with a second hardware security module of the external device to establish a secure communication channel on a communication link between the first hardware security module and the external device;

receiving an encrypted symmetric key via the secure communication channel;

decrypting the encrypted symmetric key using the private key;

receiving, at the first hardware security module, the input data from the input device;

encrypting, using the exchanged temporary cryptographic key, the input data within the first hardware security module before the input data leaves a hardware boundary of the input device; and

transmitting the encrypted input data to the external device over the secure communication channel.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An input device with an integrated security module communicates with a processing component over an insecure medium. The insecure medium may be a wireless network, software stack, or the like. According to one embodiment, the security module is integrated into an existing chip of the input device. Data generated by the input device is encoded and/or authenticated by the security module prior its transmission to the processing device. The processing device receives the input data and processes it within its own security boundary for providing selected services or information to a user or application associated with the input device.

140 Citations

20 Claims

1. A method for secure handling of input data comprising:
- generating a private key within a first hardware security module that is integrated into an input device;
  
  generating a public key corresponding to the private key;
  
  exporting the public key to an external device;
  
  exchanging a temporary cryptographic key with a second hardware security module of the external device to establish a secure communication channel on a communication link between the first hardware security module and the external device;
  
  receiving an encrypted symmetric key via the secure communication channel;
  
  decrypting the encrypted symmetric key using the private key;
  
  receiving, at the first hardware security module, the input data from the input device;
  
  encrypting, using the exchanged temporary cryptographic key, the input data within the first hardware security module before the input data leaves a hardware boundary of the input device; and
  
  transmitting the encrypted input data to the external device over the secure communication channel.
- View Dependent Claims (2, 3, 20)
- - 2. The method of claim 1, further comprising:
    - exporting a certificate to the external device with the public key, wherein the certificate is configured to verify that the public key is authentic.
  - 3. The method of claim 1, further comprising:
    - binding the input device and the external device based on the public key.
  - 20. The method of claim 1, wherein the communication link is a short range wireless communication link.

4. A first hardware security module for a secure data processing system, the first hardware security module comprising:
- a key generator configured to;
  
  generate a private key, andgenerate a public key corresponding to the private key;
  
  a memory configured to store the private key; and
  
  a controller configured to;
  
  export the public key to an external device,exchange a temporary cryptographic key with a second hardware security module of the external device to establish a secure communication link with the external device,receive an encrypted symmetric key via the secure communication link,decrypt the encrypted symmetric key using the private key, andencrypt, using the exchanged temporary cryptographic key, received input data within the first hardware security module.
- View Dependent Claims (5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 5. The first hardware security module of claim 4, wherein the controller is further configured to control:
    - a boot operation of the first hardware security module;
      
      data flow within the first hardware security module; and
      
      key traffic flow within the first hardware security module.
  - 6. The first hardware security module of claim 4, wherein the key generator is configured to generate the private key and the public key based on a root key for the first hardware security module that was injected into the first hardware security module.
  - 7. The first hardware security module of claim 4, further comprising:
    - a register block configured to be controlled by the controller.
  - 8. The first hardware security module of claim 7, wherein the register block includes:
    - a command register; and
      
      a timer or configuration register.
  - 9. The first hardware security module of claim 7, further comprising:
    - an external interface coupled to the register block, wherein the controller is further configured to load the public key into the external interface to export the public key to the external device.
  - 10. The first hardware security module of claim 4, wherein the memory includes a one-time programmable memory.
  - 11. The first hardware security module of claim 4, wherein the memory is configured to store application code for a cryptographic algorithm or an authentication algorithm.
  - 12. The first hardware security module of claim 4, further comprising:
    - a bi-directional interface configured to receive the input data from an input device coupled to the first hardware security module.
  - 13. The first hardware security module of claim 12, wherein the controller is further configured to:
    - send the encrypted input data to the external device.
  - 14. The first hardware security module of claim 4, further comprising:
    - security assurance logic configured to protect the first hardware security module from a security attack.
  - 15. The first hardware security module of claim 4, wherein the controller is further configured to:
    - export a certificate to the external device with the public key, wherein the certificate is used to verify that the public key is authentic.

16. A security device, the security device comprising:
- an input device configured to receive data; and
  
  a first hardware security module integrated onto the input device, the first hardware security module comprising;
  
  a key generator configured to;
  
  generate a private key, andgenerate a public key corresponding to the private key;
  
  a memory configured to store the private key; and
  
  a controller configured to;
  
  export the public key to an external device,exchange a temporary cryptographic key with a second hardware security module of the external device to establish a secure communication link with the external device,receive an encrypted symmetric key via the secure communication link,decrypt the encrypted symmetric key using the private key,encrypt, using the exchanged temporary cryptographic key, the data, andsend the data to the external device via the secure communication link.
- View Dependent Claims (17, 18, 19)
- - 17. The security device of claim 16, wherein the first hardware security module is integrated onto a chip of the input device.
  - 18. The security device of claim 16, wherein the input device is a telephone.
  - 19. The security device of claim 16, wherein the input device is further configured to store the data within a security boundary of the input device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
NXP B.V. (NXP Semiconductors NV)
Original Assignee
Broadcom Corporation (Broadcom, Inc.)
Inventors
Buer, Mark, Frank, Ed
Primary Examiner(s)
LEMMA, SAMSON B

Application Number

US13/620,179
Publication Number

US 20130254542A1
Time in Patent Office

1,278 Days
Field of Search

380/255, 380/285, 380/28, 380/30, 726/9, 713/150, 713/171
US Class Current

1/1
CPC Class Codes

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 63/0428   wherein the data content is...

H04L 63/045   wherein the sending and rec...

H04L 63/08   for authentication of entit...

H04L 9/0877   using additional device, e....

System and method for securing data from a remote input device

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

140 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for securing data from a remote input device

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

140 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links