CRYPTOGRAPHIC SECURITY FUNCTIONS BASED ON ANTICIPATED CHANGES IN DYNAMIC MINUTIAE

US 20150033027A1
Filed: 08/12/2014
Published: 01/29/2015
Est. Priority Date: 02/03/2011
Status: Active Grant

First Claim

Patent Images

1. A method for dynamic key cryptography, the method comprising:

selecting a combination of minutia from a plurality of dynamically changing minutia comprising hardware minutia, firmware minutia, software minutia, geo-location data, calling app data, user secrets, or biometric information;

for a particular device, sending a challenge to the device, wherein;

the challenge includes information from which the device can collect actual values of minutia corresponding to the selected combination of minutia chosen from the plurality of dynamically changing minutia and, based on the challenge and the collected actual values, compute an actual response to the challenge;

pre-processing a set of responses to the challenge based on anticipating changes to the plurality of dynamically changing minutia from which the selected combination of minutia is chosen, wherein;

the set of pre-processed responses covers a range of all actual responses possible to be received from the particular device, whether or not an anticipated change has occurred to one or more of the collected actual values, if the combination of the particular device with collected actual values of minutia is valid;

comparing the actual response from the particular device to the set of pre-processed responses; and

validating the combination of the particular device with the collected actual values if the actual response is included in the set of pre-processed responses for the particular device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Dynamic key cryptography validates mobile device users to cloud services by uniquely identifying the user'"'"'s electronic device using a very wide range of hardware, firmware, and software minutiae, user secrets, and user biometric values found in or collected by the device. Processes for uniquely identifying and validating the device include: selecting a subset of minutia from a plurality of minutia types; computing a challenge from which the user device can form a response based on the selected combination of minutia; computing a set of pre-processed responses that covers a range of all actual responses possible to be received from the device if the combination of the particular device with the device'"'"'s collected actual values of minutia is valid; receiving an actual response to the challenge from the device; determining whether the actual response matches any of the pre-processed responses; and providing validation, enabling authentication, data protection, and digital signatures.

Citations

21 Claims

1. A method for dynamic key cryptography, the method comprising:
- selecting a combination of minutia from a plurality of dynamically changing minutia comprising hardware minutia, firmware minutia, software minutia, geo-location data, calling app data, user secrets, or biometric information;
  
  for a particular device, sending a challenge to the device, wherein;
  
  the challenge includes information from which the device can collect actual values of minutia corresponding to the selected combination of minutia chosen from the plurality of dynamically changing minutia and, based on the challenge and the collected actual values, compute an actual response to the challenge;
  
  pre-processing a set of responses to the challenge based on anticipating changes to the plurality of dynamically changing minutia from which the selected combination of minutia is chosen, wherein;
  
  the set of pre-processed responses covers a range of all actual responses possible to be received from the particular device, whether or not an anticipated change has occurred to one or more of the collected actual values, if the combination of the particular device with collected actual values of minutia is valid;
  
  comparing the actual response from the particular device to the set of pre-processed responses; and
  
  validating the combination of the particular device with the collected actual values if the actual response is included in the set of pre-processed responses for the particular device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, wherein:
    - the selecting varies the combination of minutia selected each time the challenge is sent to the particular device.
  - 3. The method of claim 1, wherein:
    - the range of all actual responses possible to be to be received from the particular device is restricted to a range of allowable responses; and
      
      the set of pre-processed responses is restricted to the range of allowable responses.
  - 4. The method of claim 1, wherein:
    - the actual response contains no information as to what are the actual values of the minutiae corresponding to the selected combination of minutia for which the challenge includes information.
  - 5. The method of claim 1, wherein:
    - validating the combination of the particular device with the collected actual values enables one or more of authentication of the device, authentication of the user, validation of the software, data protection for data transmitted to or from the device, or digital signature of a message digest.
  - 6. The method of claim 1, wherein:
    - user customization of the particular device results in user-specific values for the collected actual values of minutia, wherein the actual response is computed based on the challenge and the collected actual values; and
      
      user customization of the particular device is used to differentiate the particular device from other devices based on the actual response due to the actual response depending on the user-specific values.
  - 7. The method of claim 5, wherein:
    - user customization of the particular device increases uniqueness of the device over time in terms of the number of user-specific values, which can be used to differentiate the particular device from other devices, on the device corresponding to minutia of the plurality of dynamically changing minutia.
  - 8. The method of claim 1, wherein:
    - validating the combination of the particular device with the collected actual values enables using a tracking of all known or projected updates of the plurality of dynamically changing minutia to be used to update a device image for the particular device, without the actual response carrying any information about the current device image.
  - 9. The method of claim 1, wherein:
    - validating the combination of the particular device with the collected actual values enables decrypting the actual response, without the actual response containing information as to what the actual values are.
  - 10. The method of claim 1, wherein:
    - an index of the plurality of dynamically changing minutia that enables the device to collect actual values of minutia corresponding to the selected combination of minutia chosen from the plurality of dynamically changing minutia varies from device to device.
  - 11. The method of claim 1, wherein pre-processing the set of responses possible to be received from the particular device further comprises:
    - applying knowledge from tracking all known or projected updates so that a change in actual values on the device can be detected from the actual response without the actual response carrying any information about the actual values.

12. A method for identifying a device, comprising:
- selecting a varying combination of minutia from a plurality of dynamically changing minutia reflecting user personalization associated with the device;
  
  for a particular device, sending a challenge to the device, wherein the challenge includes information from which the device can collect actual values of minutia corresponding to the selected combination of minutia chosen from the plurality of dynamically changing minutia and, based on the challenge and the collected actual values, compute an actual response to the challenge;
  
  pre-processing a set of responses to the challenge based on anticipating changes to the plurality of dynamically changing minutia from which the selected combination of minutia is chosen, wherein;
  
  the set of pre-processed responses covers a range of all actual responses possible to be received from the particular device if the combination of the particular device with collected actual values of minutia is valid;
  
  comparing the actual response from the particular device to the set of pre-processed responses; and
  
  validating the combination of the particular device with the collected actual values if the actual response is included in the set of pre-processed responses for the particular device.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
- - 13. The method of claim 12, wherein:
    - the plurality of dynamically changing minutia comprises hardware minutia, firmware minutia, software minutia, geo-location data, calling app data, user secrets, or biometric information.
  - 14. The method of claim 12, wherein:
    - the plurality of dynamically changing minutia comprises user customizations, including information specific to the user affecting software minutia values, geo-location data, calling app data, user secrets, or biometric information.
  - 15. The method of claim 12, wherein:
    - the plurality of dynamically changing minutia reflecting user personalization of the device comprises software minutia that changes dynamically via various individual instantiations of the user, including elements requiring predictable, constant change in normal situations, such elements comprising;
      
      frequently called phone numbers, contacts, email, or network connection data stored on the device.
  - 16. The method of claim 12, wherein:
    - the selecting varies the combination of minutia selected each time the challenge is sent to the device.
  - 17. The method of claim 12, wherein:
    - the collected actual values on the device are inferred from a pre-processed response that matches the actual response; and
      
      the actual response contains no information encrypting the collected actual values of the minutiae corresponding to the selected combination of minutia for which the challenge includes information.
  - 18. The method of claim 12, wherein:
    - the user personalization of the device results in user-specific values for the collected actual values of minutia, wherein the actual response is computed based on the challenge and the collected actual values; and
      
      the user personalization of the device is used to differentiate the device from other devices based on the actual response due to the actual response depending on the user-specific values.
  - 19. The method of claim 12, wherein:
    - the user personalization of the device increases uniqueness of the device over time in terms of the number of user-specific values, which can be used to differentiate the device from other devices, on the device corresponding to minutia of the plurality of dynamically changing minutia.
  - 20. The method of claim 12, further comprising:
    - anticipating changes to the plurality of dynamically changing minutia by tracking all known or projected updates; and
      
      applying knowledge from the updates for selecting the combination of minutia from the plurality of dynamically changing minutia so that a change to the collected actual values of minutia can be inferred from a preprocessed response that matches the actual response without the actual response carrying any information about the actual values.

21. A system comprising a server configured to communicate with a device, wherein:
- the server variably selects a combination of minutia from a plurality of dynamically changing minutia comprising hardware minutia, firmware minutia, software minutia, geo-location data, calling app data, user secrets, or biometric information;
  
  for a particular device, the server sends a challenge to the device, wherein;
  
  the challenge includes information from which the device can collect actual values of minutia corresponding to the selected combination of minutia chosen from the plurality of dynamically changing minutia and, based on the challenge and the collected actual values, compute an actual response to the challenge;
  
  the server pre-processes a set of responses to the challenge based on anticipating changes to the plurality of dynamically changing minutia from which the selected combination of minutia is chosen, wherein;
  
  the set of pre-processed responses covers a range of all actual responses possible to be received from the particular device if the combination of the particular device with collected actual values of minutia is valid; and
  
  processing the set of pre-processed responses applies knowledge from tracking all known or projected updates so that changes in the collected actual values are detected from the actual response without the actual response carrying any information about the actual values;
  
  the server compares the actual response from the particular device to the set of pre-processed responses; and
  
  the server validates the combination of the particular device with the collected actual values if the actual response is included in the set of pre-processed responses for the particular device, wherein the actual response contains no information as to what are the collected actual values.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
mSIGNIA, Inc.
Original Assignee
mSIGNIA, Inc.
Inventors
Miller, Paul Timothy, Tuvell, George Allen

Granted Patent

US 9,294,448 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/176
CPC Class Codes

H04L 63/0428   wherein the data content is...

H04L 63/0457   wherein the sending and rec...

H04L 63/06   for supporting key manageme...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

H04L 63/0861   using biometrical features,...

H04L 63/0876   based on the identity of th...

H04L 9/0861   Generation of secret inform...

H04L 9/0866   involving user or device id...

H04L 9/0872   using geo-location informat...

H04L 9/16   the keys or algorithms bein...

H04L 9/3231   Biological data, e.g. finge...

H04L 9/3247   involving digital signatures

H04L 9/3271   using challenge-response

CRYPTOGRAPHIC SECURITY FUNCTIONS BASED ON ANTICIPATED CHANGES IN DYNAMIC MINUTIAE

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

CRYPTOGRAPHIC SECURITY FUNCTIONS BASED ON ANTICIPATED CHANGES IN DYNAMIC MINUTIAE

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links