Product authentication using end-to-end cryptographic scheme

US 9,882,722 B2
Filed: 08/12/2014
Issued: 01/30/2018
Est. Priority Date: 09/22/2010
Status: Expired due to Fees

First Claim

Patent Images

1. A method for authenticating a first item based on a hierarchy of codes, comprising:

obtaining a first item code from the first item using an input device;

obtaining a second item code from a second item using the input device, where the second item is contained by the first item, wherein the first and second items are part of a hierarchy of items with each item code associated with a different item in the hierarchy of items and with the first item code cryptographically bound to the second item code; and

authenticating the first item using a processing circuit by using the second item code, wherein the first and second item codes are part of the hierarchy of codes and the first item code is recursively derived from the second item code, and wherein the first item is successfully authenticated if a cryptographic relationship between the first item code and the second item code is verified.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system is provided for inside-to-outside or outside-to-inside cryptographic coding that facilitates product authentication along a distribution channel. An association of authenticated, secured codes is generated between inner items (e.g., pharmaceutical doses such as pills, capsules, tablets) and outer items (e.g., packaging containing inner items). For instance, an inner code associated with a first item is used to generate (at least partially) an outer code associated with a second item that contains one or more first items. This process may be repeated multiple times with codes for outer items being a function of codes for inner items. The sequence of items may be authenticated by the dependent relationship between their codes.

10 Citations

View as Search Results

25 Claims

1. A method for authenticating a first item based on a hierarchy of codes, comprising:
- obtaining a first item code from the first item using an input device;
  
  obtaining a second item code from a second item using the input device, where the second item is contained by the first item, wherein the first and second items are part of a hierarchy of items with each item code associated with a different item in the hierarchy of items and with the first item code cryptographically bound to the second item code; and
  
  authenticating the first item using a processing circuit by using the second item code, wherein the first and second item codes are part of the hierarchy of codes and the first item code is recursively derived from the second item code, and wherein the first item is successfully authenticated if a cryptographic relationship between the first item code and the second item code is verified.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The method of claim 1, further comprising:
    - providing an indicator of whether the first item is successfully authenticated.
  - 3. The method of claim 1, further comprising:
    - obtaining a first forgery resistant tag from the first item, the first forgery resistant tag associated with the first item code; and
      
      verifying the authenticity of the first item code based on the first forgery resistant tag.
  - 4. The method of claim 1, wherein the first item is secured against forgery during distribution by virtue of the relationship between the first and second item codes and corresponding cryptographic forgery resistant tags for each item.
  - 5. The method of claim 1, comprising:
    - obtaining a third item code from a third item, where the third item is contained by the second item; and
      
      authenticating the second item by using the third item code, wherein the second item is successfully authenticated if a cryptographic relationship between the second item code and the third item code is verified.
  - 6. The method of claim 1, further comprising recursively generating the hierarchy of codes, wherein at least one code in the hierarchy of codes is recursively generated by deriving the code from a lower code from another level in the hierarchy of codes.
  - 7. The method of claim 6, further comprising non-recursively generating an initial set of codes for inclusion in the hierarchy of codes and wherein the recursively generated codes of the hierarchy of codes are recursively derived, at least in part, from the initial set of codes.
  - 8. The method of claim 1, wherein the hierarchy of codes includes a first hierarchy of codes associated with a first party and a second hierarchy of codes associated with a second party, wherein at least one code in the second hierarchy of codes is based on at least one code in the first hierarchy of codes.
  - 9. The method of claim 1, wherein a different item code from the hierarchy of codes and a corresponding cryptographic forgery resistant tag are physically appended to each item in the hierarchy of items according to corresponding levels in the hierarchy of codes and the hierarchy of items.
  - 10. The method of claim 1, wherein the first item code is signed using a private key (PrvK) and cryptographic hash function to generate a first forgery resistant tag for subsequent authentication by verifying the first forgery resistant tag using a corresponding public key.
  - 11. The method of claim 1, wherein there are a plurality of second items of a particular type and wherein the second item code is the same for all second items of the particular type.
  - 12. The method of claim 11, wherein the particular type of the plurality of second items is a dose.
  - 13. The method of claim 1, wherein the second item code is a date of manufacture of the second item.
  - 14. The method of claim 1, wherein the second item code is a packaging date.

15. An apparatus adapted to authenticate a first item based on a hierarchy of codes, comprising:
- an input device having circuitry forobtaining a first item code from the first item, andobtaining a second item code from a second item, where the second item is contained by the first item, wherein the first and second items are part of a hierarchy of items with each item code associated with a different item in the hierarchy of items and with the first item code cryptographically bound to the second item code; and
  
  a processing circuit coupled to the input device, the processing circuit for authenticating the first item by using the second item code, wherein the first and second item codes are part of the hierarchy of codes and the first item code is recursively derived from the second item code, and wherein the first item is successfully authenticated if a cryptographic relationship between the first item code and the second item code is verified.
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23)
- - 16. The apparatus of claim 15, further comprising:
    - an output device coupled to the processing circuit, the output device having circuitry for providing an indicator of whether the first item is successfully authenticated.
  - 17. The apparatus of claim 15, wherein the input device further includes circuitry for obtaining a first forgery resistant tag from the first item, the first forgery resistant tag associated with the first item code;
    - andthe processing circuit further includes circuitry for verifying the authenticity of the first item code based on the first forgery resistant tag.
  - 18. The apparatus of claim 15, wherein the first item is secured against forgery during distribution by virtue of the relationship between the first and second item codes and corresponding cryptographic forgery resistant tags for each item.
  - 19. The apparatus of claim 15, wherein the input device is a scanner.
  - 20. The apparatus of claim 15, wherein a different item code from the hierarchy of codes and a corresponding cryptographic forgery resistant tag are physically appended to each item in the hierarchy of items according to corresponding levels in the hierarchy of codes and the hierarchy of items.
  - 21. The apparatus of claim 15, wherein the first item code is signed using a private key (PrvK) and cryptographic hash function to generate a first forgery resistant tag for subsequent authentication by verifying the first forgery resistant tag using a corresponding public key.
  - 22. The apparatus of claim 15, wherein there are a plurality of second items of a particular type and wherein the second item code is the same for all second items of the particular type.
  - 23. The apparatus of claim 22, wherein the particular type of the plurality of second items is a dose.

24. An apparatus adapted to authenticate a first item based on a hierarchy of codes, comprising:
- means for obtaining a first item code from the first item;
  
  means for obtaining a second item code from a second item, where the second item is contained by the first item, wherein the first and second items are part of a hierarchy of items with each item code associated with a different item in the hierarchy of items and with the first item code cryptographically bound to the second item code; and
  
  means for authenticating the first item by using the second item code, wherein the first and second item codes are part of the hierarchy of codes and the first item code is recursively derived from the second item code, and wherein the first item is successfully authenticated if a cryptographic relationship between the first item code and the second item code is verified.

25. A non-transitory machine-readable medium comprising instructions for authenticating a first item based on a hierarchy of codes, which when executed by a processor causes the processor to:
- obtain a first item code from the first item;
  
  obtain a second item code from a second item, where the second item is contained by the first item, wherein the first and second items are part of a hierarchy of items with each item code associated with a different item in the hierarchy of items and with the first item code cryptographically bound to the second item code; and
  
  authenticate the first item by using the second item code, wherein the first and second item codes are part of the hierarchy of codes and the first item code is recursively derived from the second item code, and wherein the first item is successfully authenticated if a cryptographic relationship between the first item code and the second item code is verified.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Qualcomm, Inc.
Original Assignee
Qualcomm, Inc.
Inventors
Jozwiak, John, Rose, Gregory Gordon, Gantman, Alexander
Primary Examiner(s)
Pwu, Jeffrey
Assistant Examiner(s)
TRUONG, THONG P

Application Number

US14/457,912
Publication Number

US 20140351601A1
Time in Patent Office

1,267 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 21/16   Program or content traceabi...

H04L 9/3242   involving keyed hash functi...

H04L 9/3247   involving digital signatures

H04L 9/50   using hash chains, e.g. blo...

Product authentication using end-to-end cryptographic scheme

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

10 Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Product authentication using end-to-end cryptographic scheme

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

10 Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links