Security system for handheld wireless devices using time-variable encryption keys
First Claim
1. A certification apparatus for a secure wireless personal communication system using an encryption algorithm, the secure wireless personal communication system serving a plurality of users, each of whom has a handheld wireless component for encrypting information for broadcast over a wireless communication channel using a time variable key and a body mounted paired key generating component adapted to be mounted permanently or semi-permanently on the user for wirelessly broadcasting a time variable key signal including the time variable key required by the encryption algorithm within an immediate proximity of the user, wherein said certification apparatus comprises:
- a. a memory for storing an operating program, encryption program, and user identification information uniquely associated with each of the users of the secure wireless personal communication system; and
b. a data processor adapted to implement the operating program and the encryption program to generate time variable keys corresponding uniquely with the time variable keys generated by each of the body mounted paired key generating components, mounted on the respective users, to allow the respective users to communicate securely and to be authenticated to third parties, who communicate with the respective users over wireless communication channels,wherein the certification apparatus can authenticate each user and facilitate encryption of information broadcast or received over wireless communication channels accessed by each user by using a corresponding time variable key,wherein said certification apparatus implements a Public Key Infrastructure, PKI, type encryption algorithm for generating a series of public keys corresponding one to one to a sequential series of secret or private keys generated from time to time by said body mounted paired key generating component in accordance with a predetermined Public Key Infrastructure, PKI, key generation algorithm and wherein said time variable key signal broadcast by the body mounted paired key generating component is a private key corresponding to a current public key used by the certification apparatus to facilitate secure communication between third parties and the user who has been authenticated by the certification apparatus, andwherein said predetermined PKI key generation algorithm employs a predetermined sequence of paired private keys and public keys wherein the private keys and the public keys are generated and provided, respectively, to the body mounted paired key generating component and to the certification apparatus to be used in the future in accordance with the predetermined PKI key generation algorithm to cause a current private key broadcast by said body mounted paired key generating component to properly correspond to a public key provided by the certification apparatus to facilitate third party communication with the user.
1 Assignment
0 Petitions
Accused Products
Abstract
In one embodiment, the invention provides a portable wireless personal communication system for cooperating with a remote certification authority to employ time variable secure key information pursuant to a predetermined encryption algorithm to facilitate convenient, secure encrypted communication. The disclosed system includes a wireless handset, such as PDA, smartphone, cellular telephone or the like, characterized by a relatively robust data processing capability and a body mounted key generating component which is adapted to be mounted on an individual'"'"'s body, in a permanent or semi-permanent manner, for wirelessly broadcasting, within the immediate proximity of the individual, a secret or private key identifying signal corresponding to a time variable secure key information under the control of the certification authority. The key identifying signal is generated in a format that facilitates secure wireless communication with the individual in accordance with a predetermined encryption algorithm including a PKI encryption algorithm. The disclosed system may be used with a console for coordinating access to a variety of different communication system and networks.
36 Citations
21 Claims
-
1. A certification apparatus for a secure wireless personal communication system using an encryption algorithm, the secure wireless personal communication system serving a plurality of users, each of whom has a handheld wireless component for encrypting information for broadcast over a wireless communication channel using a time variable key and a body mounted paired key generating component adapted to be mounted permanently or semi-permanently on the user for wirelessly broadcasting a time variable key signal including the time variable key required by the encryption algorithm within an immediate proximity of the user, wherein said certification apparatus comprises:
-
a. a memory for storing an operating program, encryption program, and user identification information uniquely associated with each of the users of the secure wireless personal communication system; and b. a data processor adapted to implement the operating program and the encryption program to generate time variable keys corresponding uniquely with the time variable keys generated by each of the body mounted paired key generating components, mounted on the respective users, to allow the respective users to communicate securely and to be authenticated to third parties, who communicate with the respective users over wireless communication channels, wherein the certification apparatus can authenticate each user and facilitate encryption of information broadcast or received over wireless communication channels accessed by each user by using a corresponding time variable key, wherein said certification apparatus implements a Public Key Infrastructure, PKI, type encryption algorithm for generating a series of public keys corresponding one to one to a sequential series of secret or private keys generated from time to time by said body mounted paired key generating component in accordance with a predetermined Public Key Infrastructure, PKI, key generation algorithm and wherein said time variable key signal broadcast by the body mounted paired key generating component is a private key corresponding to a current public key used by the certification apparatus to facilitate secure communication between third parties and the user who has been authenticated by the certification apparatus, and wherein said predetermined PKI key generation algorithm employs a predetermined sequence of paired private keys and public keys wherein the private keys and the public keys are generated and provided, respectively, to the body mounted paired key generating component and to the certification apparatus to be used in the future in accordance with the predetermined PKI key generation algorithm to cause a current private key broadcast by said body mounted paired key generating component to properly correspond to a public key provided by the certification apparatus to facilitate third party communication with the user. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A certification apparatus for a secure wireless personal communication system using an encryption algorithm, the secure wireless personal communication system serving a plurality of users, each of whom has a handheld wireless component for encrypting information for broadcast over a wireless communication channel using a time variable key and a body mounted paired key generating component adapted to be mounted permanently or semi-permanently on the user for wirelessly broadcasting a time variable key signal including the time variable key required by the encryption algorithm within an immediate proximity of the user, wherein said certification apparatus comprises:
-
a. a memory for storing an operating program, encryption program, and user identification information uniquely associated with each of the users of the secure wireless personal communication system; and b. a data processor adapted to implement the operating program and the encryption program to generate time variable keys corresponding uniquely with the time variable keys generated by each of the body mounted paired key generating components, mounted on the respective users, to allow the respective users to communicate securely and to be authenticated to third parties, who communicate with the respective users over wireless communication channels, wherein the certification apparatus can authenticate each user and facilitate encryption of information broadcast or received over wireless communication channels accessed by each user by using a corresponding time variable key, wherein the time variable key generated by said body mounted paired key generating component is an authenticating key that uniquely identifies to the certification apparatus the user upon which the body mounted paired key generating component is mounted and wherein said authenticating key and corresponding key information held by the certification apparatus change in time in accordance with a predetermined Public Key Infrastructure, PKI, key generation algorithm in a manner to permit the certification apparatus to uniquely and securely certify the identity of the user to whom the body mounted paired key generating component was provided, and wherein the predetermined PKI key generation algorithm implemented by each body mounted paired key generating component includes a pseudo random number generation function corresponding to a similar pseudo random number generation function performed by the certification apparatus to permit accurate authentication over time of the identity of the user to whom the body mounted paired key generating component has been issued despite the fact that the authenticating key is time variable and further wherein the pseudo random number generation function used by the predetermined PKI key generation algorithm operates to render each subsequent time variable key unpredictable based on previously generated time variable keys. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A certification apparatus for a secure wireless personal communication system using an encryption algorithm, the secure wireless personal communication system serving a plurality of users, each of whom has a handheld wireless component for encrypting information for broadcast over a wireless communication channel using a time variable key and a body mounted paired key generating component adapted to be mounted permanently or semi-permanently on the user for wirelessly broadcasting a time variable key signal including the time variable key required by the encryption algorithm within an immediate proximity of the user, wherein said certification apparatus comprises:
-
a. a memory for storing an operating program, encryption program, and user identification information uniquely associated with each of the users of the secure wireless personal communication system; and b. a data processor adapted to implement the operating program and the encryption program to generate time variable keys corresponding uniquely with the time variable keys generated by each of the body mounted paired key generating components, mounted on the respective users, to allow the respective users to communicate securely and to be authenticated to third parties, who communicate with the respective users over wireless communication channels, wherein the certification apparatus can authenticate each user and facilitate encryption of information broadcast or received over wireless communication channels accessed by each user by using a corresponding time variable key, wherein said certification apparatus implements a Public Key Infrastructure, PKI, type encryption algorithm for generating a series of public keys corresponding one to one to a sequential series of secret or private keys generated from time to time by said body mounted paired key generating component in accordance with a predetermined Public Key Infrastructure, PKI, key generation algorithm and wherein said time variable key signal broadcast by the body mounted paired key generating component is a private key corresponding to a current public key used by the certification apparatus to facilitate secure communication between third parties and the user who has been authenticated by the certification apparatus, and wherein said certification apparatus is adapted to implement the PKI type encryption algorithm that allows a user to create a cipher text from a message text using a public key provided by said certification apparatus that can only be decrypted using a private key corresponding to the public key provided by said certification apparatus, wherein said handheld wireless component is capable of recovering a message text from a cipher text created by a third party using the public key currently being provided by the certification apparatus provided the handheld wireless component has received the corresponding private key. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification