Method and system to provide secure exchange of data between mobile phone and computer system

US 9,414,226 B2
Filed: 10/21/2014
Issued: 08/09/2016
Est. Priority Date: 06/06/2006
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

sending, by a first secure access layer operating on a mobile telephone, an authentication request to a second secure access layer operating on a computer system that is separate from, and in communication with, the mobile telephone, wherein the second secure access layer is included within a dynamic linked library comprising phone-specific functions used to access data on the mobile telephone, the first secure access layer is configured to communicate only with the dynamic linked library, and the dynamic linked library stores a first certificate of authenticity;

in response to the authentication request, receiving the first certificate from the second secure access layer;

confirming, by the first secure access layer, using the first certificate, authenticity of the second secure access layer by determining the first secure access layer and the second secure access layer are matching, wherein the confirming includes comparing a second certificate of authenticity of the first secure access layer with the first certificate; and

in response to confirming authenticity of the second secure access layer, granting, by the first secure access layer, authorization to the dynamic linked library to transmit data between the mobile telephone and the computer system.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods of providing a secure access layer in a mobile phone and a computer system coupled to the mobile phone to provide authentication for transmitting data between the phone and the computer system.

Citations

15 Claims

1. A method comprising:
- sending, by a first secure access layer operating on a mobile telephone, an authentication request to a second secure access layer operating on a computer system that is separate from, and in communication with, the mobile telephone, wherein the second secure access layer is included within a dynamic linked library comprising phone-specific functions used to access data on the mobile telephone, the first secure access layer is configured to communicate only with the dynamic linked library, and the dynamic linked library stores a first certificate of authenticity;
  
  in response to the authentication request, receiving the first certificate from the second secure access layer;
  
  confirming, by the first secure access layer, using the first certificate, authenticity of the second secure access layer by determining the first secure access layer and the second secure access layer are matching, wherein the confirming includes comparing a second certificate of authenticity of the first secure access layer with the first certificate; and
  
  in response to confirming authenticity of the second secure access layer, granting, by the first secure access layer, authorization to the dynamic linked library to transmit data between the mobile telephone and the computer system.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1, wherein the first certificate is a public key infrastructure certificate of authenticity and the second certificate is a public key infrastructure certificate of authenticity.
  - 3. The method of claim 2, further comprising:
    - in response to confirming authenticity of the second secure access layer, granting authorization, by the first secure access layer, to a phone access software instance on the computer system to transmit data between the mobile telephone and the computer system.
  - 4. The method of claim 3, wherein the phone access software instance on the computing system provides access to media content stored on the computer system.
  - 5. The method of claim 3, wherein the phone access software instance on the computing system provides access to a phonebook stored on the computer system.

6. A non-transitory machine-readable medium storing instructions that, when executed by a mobile telephone, cause the mobile telephone to:
- send, by a first secure access layer operating on the mobile telephone, an authentication request to a second secure access layer operating on a computer system that is separate from, and in communication with, the mobile telephone, wherein the second secure access layer is included within a dynamic linked library comprising phone-specific functions used to access data on the mobile telephone, the first secure access layer is configured to communicate only with the dynamic linked library, and the dynamic linked library stores a first certificate of authenticity;
  
  in response to the authentication request, receive the first certificate from the second secure access layer;
  
  confirm, by the first secure access layer, using the first certificate, authenticity of the second secure access layer by determining the first secure access layer and the second secure access layer are matching, wherein the confirming includes comparing a second certificate of authenticity of the first secure access layer with the first certificate; and
  
  in response to confirming authenticity of the second secure access layer, grant, by the first secure access layer, authorization to the dynamic linked library to transmit data between the mobile telephone and the computer system.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The machine-readable medium of claim 6, wherein the first certificate is a public key infrastructure certificate of authenticity and the second certificate is a public key infrastructure certificate of authenticity.
  - 8. The machine-readable medium of claim 7, wherein the medium further stores instructions for causing the mobile telephone to:
    - in response to confirming authenticity of the second secure access layer, grant, by the first secure access layer, authorization to a phone access software instance on the computer system to transmit data between the mobile telephone and the computer system.
  - 9. The machine-readable medium of claim 8, wherein the phone access software instance on the computing system provides access to media content stored on the computer system.
  - 10. The machine-readable medium of claim 8, wherein the phone access software instance on the computing system provides access to a phonebook stored on the computer system.

11. A mobile telephone comprising:
- a processor; and
  
  memory coupled to the processor and storing instructions that, when executed by the processor, cause the mobile telephone to;
  
  send, by a first secure access layer operating on the mobile telephone, an authentication request to a second secure access layer operating on a computer system that is separate from, and in communication with, the mobile telephone, wherein the second secure access layer is included within a dynamic linked library comprising phone-specific functions used to access data on the mobile telephone, the first secure access layer is configured to communicate only with the dynamic linked library, and the dynamic linked library stores a first certificate of authenticity;
  
  in response to the authentication request, receive the first certificate from the second secure access layer;
  
  confirm, by the first secure access layer, using the first certificate, authenticity of the second secure access layer by determining the first secure access layer and the second secure access layer are matching, wherein the confirming includes comparing a second certificate of authenticity of the first secure access layer with the first certificate; and
  
  in response to confirming authenticity of the second secure access layer, grant, by the first secure access layer, authorization to the dynamic linked library to transmit data between the mobile telephone and the computer system.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The mobile telephone of claim 11, wherein the first certificate is a public key infrastructure certificate of authenticity and the second certificate is a public key infrastructure certificate of authenticity.
  - 13. The mobile telephone of claim 12, wherein the memory further stores instructions for causing the mobile telephone to:
    - in response to confirming authenticity of the second secure access layer, grant, by the first secure access layer, authorization to a phone access software instance on the computer system to transmit data between the mobile telephone and the computer system.
  - 14. The mobile telephone of claim 13, wherein the phone access software instance on the computing system provides access to media content stored on the computer system.
  - 15. The mobile telephone of claim 13, wherein the phone access software instance on the computing system provides access to a phonebook stored on the computer system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Future Dial Inc
Original Assignee
Future Dial Inc
Inventors
Chong, Benedict
Primary Examiner(s)
Le, Chau
Assistant Examiner(s)
LAVELLE, GARY E

Application Number

US14/520,256
Publication Number

US 20150045002A1
Time in Patent Office

658 Days
Field of Search

726/29
US Class Current

1/1
CPC Class Codes

G06F 21/12   Protecting executable software

G06F 21/33   using certificates

G06F 21/35   communicating wirelessly

G06F 21/445   by mutual authentication, e...

H04L 2209/24   Key scheduling, i.e. genera...

H04L 61/4594   Address books, i.e. directo...

H04L 63/0823   using certificates cryptogr...

H04L 9/006   involving public key infras...

H04W 12/04   Key management, e.g. using ...

H04W 12/06   Authentication

H04W 12/08   Access security

H04W 12/50   Secure pairing of devices

H04W 88/02   Terminal devices

Method and system to provide secure exchange of data between mobile phone and computer system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system to provide secure exchange of data between mobile phone and computer system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links