System and method for secured host-slave communication
First Claim
1. A supply item for an imaging apparatus, comprising:
- a processor and memory coupled thereto having stored therein program code instructions which, when executed by the processor, cause the processor to;
following a predetermined event, determine a session identifier value;
determine a new seed value based on a secure hash algorithm calculation on a seed value stored in the memory;
calculate a slave random number from a predetermined number of bits resulting from a secure hash algorithm calculation on the session identifier value, the new seed value, and a serial number of the supply item;
receive a host number from the imaging apparatus;
calculate a session key by generating a cryptographic value using a secret key maintained in the memory and a concatenation of the host number, the slave random number, and the session identifier value, the session key being a single session key comprising a set of bits including a first subset of the set of bits and a second subset of the set of bits, the first and second subsets of the set of bits being separate from each other; and
use the first subset of the set of bits to perform encryption and decryption operations on data to be transmitted and data received by the supply item, respectively, and the second subset of the set of bits to generate a new address value for the supply item for communicating with the imaging apparatus.
4 Assignments
0 Petitions
Accused Products
Abstract
Slave device circuitry, including processing circuitry which is configured to determine a new session identification value; determine a seed value using a secure hash algorithm on a previously determined seed value; determine a slave number from using the secure hash algorithm on the new session identification value, the determined seed value, and a serial number of the slave device associated with the slave device circuitry; receive a host number from the host imaging apparatus and calculate a session key using a hash-based algorithm computation on the host number, the slave number, the new session identification value, and a stored encryption key. The session key has a first portion for performing encryption and decryption operations on data to be transmitted and data received by the slave device, respectively, and a second portion for generating a new address value of the slave device for communicating with the host.
-
Citations
21 Claims
-
1. A supply item for an imaging apparatus, comprising:
a processor and memory coupled thereto having stored therein program code instructions which, when executed by the processor, cause the processor to; following a predetermined event, determine a session identifier value; determine a new seed value based on a secure hash algorithm calculation on a seed value stored in the memory; calculate a slave random number from a predetermined number of bits resulting from a secure hash algorithm calculation on the session identifier value, the new seed value, and a serial number of the supply item; receive a host number from the imaging apparatus; calculate a session key by generating a cryptographic value using a secret key maintained in the memory and a concatenation of the host number, the slave random number, and the session identifier value, the session key being a single session key comprising a set of bits including a first subset of the set of bits and a second subset of the set of bits, the first and second subsets of the set of bits being separate from each other; and use the first subset of the set of bits to perform encryption and decryption operations on data to be transmitted and data received by the supply item, respectively, and the second subset of the set of bits to generate a new address value for the supply item for communicating with the imaging apparatus. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
12. Slave device circuitry for a slave device of a host imaging apparatus, comprising:
processing circuitry and memory coupled thereto, the processing circuitry configured to; determine a new session identification value based upon a stored session identification value in the memory; determine a seed value using a secure hash algorithm on a previously determined seed value; determine a first number from using the secure hash algorithm on the new session identification value, the determined seed value, and a serial number of the slave device associated with the slave device circuitry; identify a slave number from a predetermined portion of a set of bits forming the first number; receive a host number from the host imaging apparatus; and calculate a session key using a hash-based algorithm computation on the host number, the slave number, the new session identification value, and an encryption key maintained in the memory, the session key being a single session key having a first portion for performing encryption and decryption operations on data to be transmitted and data received by the slave device, respectively, and a second portion for generating a new address value of the slave device for communicating with the host. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
20. A method for securely communicating with a host imaging apparatus by a removable supply item thereof, the removable supply item including circuitry and memory, the method comprising:
-
determining, by the circuitry, a new session identification value based upon a session identification value stored in the memory; updating, by the circuitry, a seed value stored in the memory to obtain an updated seed value; determining, by the circuitry, a first number from a result of calculating the new session identification value, the updated seed value, and a serial number of the removable supply item using a secure hash algorithm, the first number comprising a set of bits; identifying a slave number from a predetermined number of bits from the set of bits of the first number; receiving a host number from the host imaging apparatus; and calculating a session key using a hash-based algorithm on the host number, the slave number, the new session identification value, and a unique secret encryption key maintained in the memory, the session key being a single session key comprising a first predetermined set of bits and a second predetermined set of bits separate from the first predetermined set of bits, the first predetermined set of bits for performing encryption and decryption operations on data to be transmitted and data received by the removable supply item and the second predetermined set of bits for generating a new address value for the removable supply item to communicate with the host imaging apparatus, wherein the circuitry includes or performs as a pseudorandom number generator (PRNG) having an output, the second predetermined set of bits of the session key used for initializing the PRNG, predetermined bits of the output of the PRNG being used to form a portion of the new address value for the removable supply item. - View Dependent Claims (21)
-
Specification