×

Secure PKI communications for “machine-to-machine” modules, including key derivation by modules and authenticating public keys

  • US 10,177,911 B2
  • Filed: 05/18/2018
  • Issued: 01/08/2019
  • Est. Priority Date: 09/10/2013
  • Status: Active Grant
First Claim
Patent Images

1. A method of generating keys for a module to securely communicate over a wireless network comprising the steps of:

  • (a) recording in memory of the module at least the following;

    (i) a first set of parameters for a secure hash algorithm;

    (ii) a second set of parameters for an elliptic curve algorithm; and

    (iii) a first public key which corresponds to a first private key;

    (b) deriving, by the module, a module private key and a corresponding module public key using the second set of parameters;

    (c) generating, by the module, a first shared secret key using a first elliptic curve Diffie-Hellman key exchange, and based at least in part, on the first public key;

    (d) sending, from the module to a first computing device which is connected to the wireless network, a first message including the derived module public key, wherein at least a portion of the first message is encrypted using a third set of parameters that is based on a symmetric ciphering algorithm and the derived first shared secret key;

    (e) receiving, by the module from the first computing device, a second message comprising encrypted data, which is encrypted, by the first computer device, using the symmetric ciphering algorithm and a derived second shared secret key, wherein the second shared secret key is derived by the first computer device using a second elliptic curve Diffie-Hellman key exchange based at least, in part, on the derived module public key; and

    (f) decrypting, by the module, the encrypted data using the third set of parameters and the derived second shared secret key.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×