Smartcard formation with authentication

US 9,762,572 B2
Filed: 02/26/2015
Issued: 09/12/2017
Est. Priority Date: 08/31/2006
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

detecting a security token device that is un-formatted with respect to a security requirement pertaining to accessing an enterprise system, wherein the security token device comprises a first cryptographic authentication key; and

formatting, by a processor, the security token device, wherein formatting the security token device comprises;

determining format information for the security token device, wherein the format information comprises an access list associated with the enterprise system;

replacing the first cryptographic authentication key of the security token device with a second cryptographic authentication key that is associated with the security requirement pertaining to accessing the enterprise system; and

storing, on the security token device, the format information for the security token device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method includes detecting a security token device that is un-formatted with respect to an enterprise, wherein the security token device comprises a first cryptographic authentication key, and formatting, by a processor, the security token device by replacing the first cryptographic authentication key of the security token device with a second cryptographic authentication key that is specific to a security requirement of the enterprise.

212 Citations

17 Claims

1. A method comprising:
- detecting a security token device that is un-formatted with respect to a security requirement pertaining to accessing an enterprise system, wherein the security token device comprises a first cryptographic authentication key; and
  
  formatting, by a processor, the security token device, wherein formatting the security token device comprises;
  
  determining format information for the security token device, wherein the format information comprises an access list associated with the enterprise system;
  
  replacing the first cryptographic authentication key of the security token device with a second cryptographic authentication key that is associated with the security requirement pertaining to accessing the enterprise system; and
  
  storing, on the security token device, the format information for the security token device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1, wherein the format information comprises a group assignment associated with the enterprise system.
  - 3. The method of claim 1, further comprising receiving a notification of a completion of the formatting of the security token device.
  - 4. The method of claim 1, wherein formatting the security token device further comprises:
    - installing an applet on the security token device.
  - 5. The method of claim 1, wherein formatting the security token device further comprises:
    - creating a security domain for the security token device.
  - 6. The method of claim 1, wherein formatting the security token device further comprises:
    - creating a data area in the security token device to store format information.
  - 7. The method of claim 1, wherein formatting the security token device further comprises:
    - storing a plurality of encryption keys associated with the enterprise system in the security token device.
  - 8. The method of claim 1, wherein the security token device is coupled to a client device associated with the enterprise system.

9. An apparatus comprising:
- a memory; and
  
  a processor, operatively coupled to the memory, to;
  
  detect a security token device that is un-formatted with respect to a security requirement pertaining to accessing an enterprise system, wherein the security token device comprises a first cryptographic authentication key; and
  
  format the security token device, wherein to format the security token device, the processor is further to;
  
  determine format information for the security token device, wherein the format information comprises an access list associated with the enterprise system;
  
  replace the first cryptographic authentication key of the security token device with a second cryptographic authentication key that is associated with the security requirement pertaining to accessing the enterprise system; and
  
  store, on the security token device, the format information for the security token device.
- View Dependent Claims (10, 11, 12)
- - 10. The apparatus of claim 9, wherein the format information comprises a group assignment associated with the enterprise system.
  - 11. The apparatus of claim 9, wherein the processor is further to receive a notification of a completion of the formatting of the security token device.
  - 12. The apparatus of claim 9, wherein to format the security token, the processor is further to at least one of:
    - install an applet on the security token device;
      
      create a security domain for the security token device;
      
      create a data area in the security token device to embed format information;
      
      orstore, in the security token device, a plurality of encryption keys associated with the enterprise system.

13. A non-transitory computer-readable storage medium comprising computer-executable instructions that, when executed by a processor, cause the processor to:
- detect a security token device that is un-formatted with respect to a security requirement pertaining to accessing an enterprise system, wherein the security token device comprises a first cryptographic authentication key; and
  
  format, by the processor, the security token device, wherein to format the security token device, the processor is further to;
  
  determine format information for the security token device, wherein the format information comprises an access list associated with the enterprise system;
  
  replace the first cryptographic authentication key of the security token device with a second cryptographic authentication key that is associated with the security requirement pertaining to accessing the enterprise system; and
  
  store, on the security token device, the format information for the security token device.
- View Dependent Claims (14, 15, 16, 17)
- - 14. The non-transitory computer-readable storage medium of claim 13, wherein the format information comprises a group assignment associated with the enterprise system.
  - 15. The non-transitory computer-readable storage medium of claim 13, wherein the processor is further to receive a notification of a completion of the formatting of the security token device.
  - 16. The non-transitory computer-readable storage medium of claim 13, wherein the processor is further to at least one of:
    - install an applet on the security token device;
      
      create a security domain for the security token device;
      
      create a data area in the security token device to embed format information;
      
      orstore, in the security token device, encryption keys associated with the enterprise system.
  - 17. The non-transitory computer-readable storage medium of claim 13, wherein the security token device is coupled to a client device associated with the enterprise system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Red Hat, Inc. (International Business Machines Corporation)
Original Assignee
Red Hat, Inc. (International Business Machines Corporation)
Inventors
Lord, Robert B., Parkinson, Steven William
Primary Examiner(s)
Jeudy, Josnel

Application Number

US14/632,666
Publication Number

US 20150172284A1
Time in Patent Office

929 Days
Field of Search
US Class Current
CPC Class Codes

H04L 63/0853 using an additional device,...

Smartcard formation with authentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

212 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Smartcard formation with authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

212 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links