System for accessing data from multiple devices

US 10,893,045 B2
Filed: 08/29/2014
Issued: 01/12/2021
Est. Priority Date: 08/29/2013
Status: Active Grant

First Claim

Patent Images

1. A method of accessing data at a device, wherein the device comprises a secure element, and wherein the data is stored in a partition associated with the device, and is stored in the device, remotely from the device, or in removable storage, the method comprising:

registering an identification code of the secure element with the stored data;

entering, by a user, a passcode or PIN of the partition at the device;

verifying the passcode or PIN entered by the user in the secure element of the device;

sending a request via a secure channel from the device to access the stored data, the request including information specifying the partition, an encrypted identification code of the secure element, and the result of verification of the passcode or PIN entered by the user at the device;

verifying, based at least partly on the identification code, whether access to the stored data is to be allowed or denied; and

allowing or denying the device access to the stored data accordingly;

wherein the stored data facilitates connection to a third party service, and wherein a plurality of identification codes for a corresponding plurality of secure elements can be associated with the stored data.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of accessing data at a device, wherein the data is stored remotely from the device or in removable storage. The method may the following steps: (i) sending a request from the device to access the data, the request including an identification code of a secure element or a memory card associated with the device, (ii) verifying, based at least partly on the identification code, whether access to the data is to be allowed or denied, and (iii) allowing or denying the device access to the data accordingly.

87 Citations

15 Claims

1. A method of accessing data at a device, wherein the device comprises a secure element, and wherein the data is stored in a partition associated with the device, and is stored in the device, remotely from the device, or in removable storage, the method comprising:
- registering an identification code of the secure element with the stored data;
  
  entering, by a user, a passcode or PIN of the partition at the device;
  
  verifying the passcode or PIN entered by the user in the secure element of the device;
  
  sending a request via a secure channel from the device to access the stored data, the request including information specifying the partition, an encrypted identification code of the secure element, and the result of verification of the passcode or PIN entered by the user at the device;
  
  verifying, based at least partly on the identification code, whether access to the stored data is to be allowed or denied; and
  
  allowing or denying the device access to the stored data accordingly;
  
  wherein the stored data facilitates connection to a third party service, and wherein a plurality of identification codes for a corresponding plurality of secure elements can be associated with the stored data.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 10)
- - 2. The method as claimed in claim 1, wherein the data is stored in a cloud.
  - 3. The method as claimed in claim 1, wherein the request includes data representing something inherent to the user of the device, and verifying whether access to the stored data is to be allowed or denied also comprises verifying based on the data representing something inherent to the user of the device whether access to the stored data is to be allowed or denied, and/orwherein the request includes data including a location, and verifying whether access to the stored data is to be allowed or denied also comprises verifying based on the location whether access to the stored data is to be allowed or denied;
    - and/orwherein the request includes data including a time, and verifying whether access to the stored data is to be allowed or denied also comprises verifying based on the time whether access to the stored data is to be allowed or denied; and
      
      /orwherein the request includes data indicating that the user is part of a group, and verifying whether access to the stored data is to be allowed or denied comprises verifying whether access to the stored data is to be allowed or denied based on whether another member of the group is accessing the stored data.
  - 4. The method as claimed in claim 3, wherein the data representing something inherent to the user of the device comprises data representing genetic and/or biometric information about the user.
  - 5. The method as claimed in claim 1, wherein the secure element is a SIM, virtual SIM, SIM software, TPM, SE, TEE, Micro SD, USB key or Smartcard associated with the device.
  - 6. The method as claimed in claim 1, wherein the information specifying the partition further comprises:
    - data representing something inherent to the user of the device.
  - 7. The method as claimed in claim 6, wherein the data representing something inherent to the user of the device comprises data representing genetic and/or biometric information about the user.
  - 8. The method as claimed in claim 1, wherein the device is a telephone, a tablet, a laptop computer, a desktop computer, a TV, a set top box, a camera, a car, a games console, glasses, a watch, Chromecast, a smart meter or any other device which is capable of sending and receiving data to remote devices.
  - 10. The method as claimed in claim 9, further comprising the features of claim 1.

9. A method of controlling access to data from a device, wherein the data is stored in a partition associated with the device, and is stored in the device, remotely from the device, or in removable storage, the method comprising the following steps:
- registering an identification code of a secure element of the device with the stored data;
  
  receiving a request via a secure channel from the device to access the stored data, the request including information specifying the partition, an encrypted identification code of the secure element of the device, and the result of verification of a passcode or PIN of the partition entered by a user, the verification of the passcode or PIN being carried out by the secure element of the device;
  
  verifying, based at least partly on the identification code, whether access to the stored data is to be allowed or denied; and
  
  allowing or denying the device access to the stored data accordingly;
  
  wherein the stored data facilitates connection to a third party service, and wherein a plurality of identification codes for a corresponding plurality of secure elements can be associated with the stored data.
- View Dependent Claims (11, 12)
- - 11. The method as claimed in claim 9, wherein the method is performed by a data access controller.
  - 12. The method as claimed in claim 11, wherein the data access controller is remote from the device.

13. A server comprising a data access controller for controlling access to data that is stored in a partition associated with a device, and is stored remotely from the device, or in removable storage, the server comprising memory and a processor, the processor being arranged to perform the following steps:
- register an identification code of a secure element of the device with the stored data;
  
  receive a request via a secure channel from the device to access the stored data, the request including information specifying the partition, an encrypted identification code of the secure element of the device, and the result of verification of a password or PIN of the partition entered by a user, the verification being carried out by the secure element of the device;
  
  verify, based at least partly on the identification code, whether access to the stored data is to be allowed or denied; and
  
  allow or deny the device access to the stored data accordingly;
  
  wherein the stored data facilitates connection to a third party service, and wherein the data access controller is remote from the device which wishes to access the data, and wherein a plurality of identification codes for a corresponding plurality of secure elements can be associated with the stored data.

14. A system comprising a device and a data access controller for controlling access from the device to data stored in a partition associated with the device, and stored in the device, remotely from the device, or in removable storage, the system comprises memory and a processor, wherein the device is arranged to send a request via a secure channel to access the stored data to the data access controller, the request including information specifying the partition, an encrypted identification code of a secure element of the device, and the result of verification of a password or PIN of the partition entered by a user, and the secure element of the device is arranged to verify the passcode or PIN;
- and the data access controller is arranged to register the identification code of the secure element of the device with the stored data; and
  
  verify, based at least partly on the identification code, whether access to the stored data is to be allowed or denied, and to allow or deny the device access to the stored data accordingly, wherein the stored data facilitates connection to a third party service, and wherein a plurality of identification codes for a corresponding plurality of secure elements can be associated with the stored data.

15. A non-transitory computer readable medium carrying computer-executable instructions thereon for controlling access to data stored in a partition associated with a device, and stored remotely from a device, or in removable storage, the program being configured to perform the following steps when executed by a processor:
- register an identification code of a secure element of the device with the stored data;
  
  receive a request via a secure channel from the device to access the stored data, the request including information specifying the partition, an encrypted identification code of the secure element of the device, and the result of verification of a password or PIN of the partition entered by a user, the verification being carried out by the secure element of the device;
  
  verify, based at least partly on the identification code, whether access to the data is to be allowed or denied; and
  
  allow or deny the device access to the stored data accordingly;
  
  wherein the stored data facilitates connection to a third party service, and wherein a plurality of identification codes for a corresponding plurality of secure elements can be associated with the stored data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Silicon Green Ltd
Original Assignee
Liberty Lane LLC (Allied Security Trust)
Inventors
Johnston, Christopher Iain, Leduc, Michel
Primary Examiner(s)
Pearson, David J
Assistant Examiner(s)
Champakesan, Badri

Application Number

US14/914,262
Publication Number

US 20160212129A1
Time in Patent Office

2,328 Days
Field of Search

726 4
US Class Current
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 21/34   involving the use of extern...

G06F 21/40   by quorum, i.e. whereby two...

G06F 21/73   by creating or determining ...

H04L 63/10   for controlling access to d...

H04L 63/123   received data contents, e.g...

Y04S 40/20   Information technology spec...

System for accessing data from multiple devices

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

87 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

System for accessing data from multiple devices

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

87 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links