Small form-factor cryptographic expansion device
First Claim
1. A device comprising:
- a first set of electrical contacts for interfacing to a communication device;
a second set of electrical contacts for interfacing to a communication component; and
a substrate including a hardware security module coupled to the first set of electrical contacts and the second set of electrical contacts,wherein the hardware security module includes a secure processing unit and a public processing unit,wherein the public processing unit includes a communication device interface coupled to the first set of electrical contacts, and a communication component interface coupled to the second set of electrical contacts, andwherein the public processing unit is configured to;
process messages received at the communication device interface and the communication component interface;
send requests to perform cryptographic operations to the secure processing unit in response to receiving messages on the communication device interface that are associated with secure operations; and
pass through messages that are associated with non-secure operations between the communication device interface and the communication component interface.
0 Assignments
0 Petitions
Accused Products
Abstract
A cryptographic expansion device that can be attached to a communication component of a communication device to enable the communication device to perform cryptographic operations on communications sent to and from the communication device is described. The cryptographic expansion device can be a small-form factor cryptographic expansion device that can be used with a small-form factor communication component such as a micro-SIM (subscriber identity module) card. When used with a communication device, the cryptographic expansion device enables the communication device to send and received end-to-end secure encrypted communications. The end-to-end secure communications enabled by the cryptographic expansion device can be utilized by a user of the communication device to perform financial and/or banking transactions.
45 Citations
19 Claims
-
1. A device comprising:
-
a first set of electrical contacts for interfacing to a communication device; a second set of electrical contacts for interfacing to a communication component; and a substrate including a hardware security module coupled to the first set of electrical contacts and the second set of electrical contacts, wherein the hardware security module includes a secure processing unit and a public processing unit, wherein the public processing unit includes a communication device interface coupled to the first set of electrical contacts, and a communication component interface coupled to the second set of electrical contacts, and wherein the public processing unit is configured to; process messages received at the communication device interface and the communication component interface; send requests to perform cryptographic operations to the secure processing unit in response to receiving messages on the communication device interface that are associated with secure operations; and pass through messages that are associated with non-secure operations between the communication device interface and the communication component interface. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A system comprising:
-
a communication component; and a cryptographic expansion device coupled to the communication component, the cryptographic expansion device comprising; a first set of electrical contacts for interfacing to a communication device; a second set of electrical contacts for interfacing to the communication component; and a substrate including a hardware security module coupled to the first set of electrical contacts and the second set of electrical contacts, wherein the hardware security module includes a processor and a cryptoprocessor, wherein the processor includes a communication device interface coupled to the first set of electrical contacts, and a communication component interface coupled to the second set of electrical contacts, and wherein the processor is configured to; process messages received at the communication device interface and the communication component interface; send requests to perform cryptographic operations to the cryptoprocessor in response to receiving messages on the communication device interface that are associated with encryption or decryption operations; and pass through messages that are associated with non-secure operations between the communication device interface and the communication component interface. - View Dependent Claims (15, 16, 17, 18, 19)
-
Specification