Secure integrated device with secure, dynamically-selectable capabilities

US 6,968,453 B2
Filed: 01/17/2001
Issued: 11/22/2005
Est. Priority Date: 01/17/2001
Status: Expired due to Fees

First Claim

Patent Images

1. A computer program product for providing a secure, integrated device with dynamically selectable capabilities, the computer program product embodied on one or more computer-usable media and comprising:

computer-readable program code that is configured to operate a security core which provides security functions;

computer-readable program code that is configured to establish a secure, operable connection of one or more components to the security core, such that the security core can vouch for authenticity of each securely operably connected component, wherein the security core and the operably connected components thereby comprise the secure integrated device; and

computer-readable program code that is configured to securely perform a transaction using the secure integrated device, wherein the computer-readable program code that is configured to securely perform a transaction further comprises computer-readable program code that is configured to digitally notarize, by the security core, an output data stream created by a selected one of the operably connected components of the secure integrated device, and wherein the computer-readable program code that is configured to digitally notarize further comprises;

computer-readable program code that is configured to authenticate the selected operably connected component to the security core;

computer-readable program code that is configured to compute, by the security core, a hash value over the output data stream;

computer-readable program code that is configured to hash, by the security core, a combination of (1) the hash value and (2) the unique identifier of the selected operably connected component, thereby creating a hashed data block;

computer-readable program code that is configured to digitally sign, by the security core, the hashed data block using a private key of the security core; and

computer-readable program code that is configured to provide the digitally signed hashed data block along with the combination as the digital notarization of the output data stream.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, system, computer program product, and method of doing business by providing a secure integrated device (such as a pervasive computing device) for which operating capabilities can be dynamically yet securely selected (including, but not limited to, pluggable connection of input/output devices and/or application processors that provide selected functions). Each input/output (I/O) device and application processor to be used is plugged in to a bus of a security core, and authenticates itself to the security core using public key infrastructure techniques, thereby creating a secure multi-function device. All of the multi-function device'"'"'s input and output interactions with its environment necessarily traverse an I/O bus under the sole control of the security core. The only communication path between an application processor and the external environment (such as an I/O device) is through an application processor bus, which is likewise under control of the security core. Thus a user may dynamically yet securely select the capabilities of a multi-function device, and because each I/O device and application processor in use by that multi-function device is authenticated, the security of transactions or network services performed when using such devices is improved.

215 Citations

30 Claims

1. A computer program product for providing a secure, integrated device with dynamically selectable capabilities, the computer program product embodied on one or more computer-usable media and comprising:
- computer-readable program code that is configured to operate a security core which provides security functions;
  
  computer-readable program code that is configured to establish a secure, operable connection of one or more components to the security core, such that the security core can vouch for authenticity of each securely operably connected component, wherein the security core and the operably connected components thereby comprise the secure integrated device; and
  
  computer-readable program code that is configured to securely perform a transaction using the secure integrated device, wherein the computer-readable program code that is configured to securely perform a transaction further comprises computer-readable program code that is configured to digitally notarize, by the security core, an output data stream created by a selected one of the operably connected components of the secure integrated device, and wherein the computer-readable program code that is configured to digitally notarize further comprises;
  
  computer-readable program code that is configured to authenticate the selected operably connected component to the security core;
  
  computer-readable program code that is configured to compute, by the security core, a hash value over the output data stream;
  
  computer-readable program code that is configured to hash, by the security core, a combination of (1) the hash value and (2) the unique identifier of the selected operably connected component, thereby creating a hashed data block;
  
  computer-readable program code that is configured to digitally sign, by the security core, the hashed data block using a private key of the security core; and
  
  computer-readable program code that is configured to provide the digitally signed hashed data block along with the combination as the digital notarization of the output data stream.
- View Dependent Claims (2, 6, 7, 8, 9, 10)
- - 2. The computer program product according to claim 1, wherein the computer-readable program code that is configured to authenticate further comprises computer-readable program code that is configured to use a unique identifier of the selected operably connected component, where the unique identifier is digitally signed by the selected operably connected component using a first private key associated with the selected operably connected component.
  - 6. The computer program product according to claim 1 or claim 3, further comprising:
    - computer-readable program code that is configured to authenticate a user of the secure integrated device; and
      
      computer-readable program code that is configured to include an identification of the authenticated user in the combination.
  - 7. The computer program product according to claim 1 or claim 3, wherein the private key of the security core is securely stored in the secure integrated device.
  - 8. The computer program product according to claim 1, further comprising computer-readable program code that is configured to verify authenticity of the output data stream by a receiver of the output data stream and the digitally signed hashed data block, using a public key of the security core, and to conclude that the output data stream is authentic if the verification succeeds.
  - 9. The computer program product according to claim 8, wherein the computer-readable program code that is configured to verify authenticity further comprises computer-readable program code that is configured to obtain the public key from a digital certificate of the security core.
  - 10. The computer program product according to claim 8, wherein the computer-readable program code that is configured to verify authenticity further comprises computer-readable program code that is configured to conclude that the output data stream has not been tampered with if the verification succeeds.

3. A computer program product for providing a secure, integrated device with dynamically selectable capabilities, the computer program product embodied on one or more computer-usable media and comprising:
- computer-readable program code that is configured to operate a security core which provides security functions;
  
  computer-readable program code that is configured to establish a secure, operable connection of one or more components to the security core, such that the security core can vouch for authenticity of each securely operably connected component, wherein the security core and the operably connected components thereby comprise the secure integrated device; and
  
  computer-readable program code that is configured to securely perform a transaction using the secure integrated device, wherein the computer-readable program code that is configured to securely perform a transaction further comprises computer-readable program code that is configured to digitally notarize, by the security core, an output data stream created by a selected one of the operably connected components of the secure integrated device, and wherein the computer-readable program code that is configured to digitally notarize further comprises;
  
  computer-readable program code that is configured to authenticate the selected operably connected component to the security core;
  
  computer-readable program code that is configured to compute, by the security core, a hash value over each of a plurality of segments of the output data stream, wherein a boundary between segments is determined by an elapsed time value;
  
  computer-readable program code that is configured to hash, by the security core, a combination of (1) the hash value for each segment and (2) the unique identifier of the selected operably connected component, thereby creating a hashed data block for each segment;
  
  computer-readable program code that is configured to digitally sign, by the security core, the hashed data block for each segment using a private key of the security core; and
  
  computer-readable program code that is configured to provide the digitally signed hashed data block for each segment along with the combination for each segment as the digital notarization of the segments which comprise the output data stream.
- View Dependent Claims (4, 5)
- - 4. The computer program product according to claim 3, wherein the computer-readable program code that is configured to authenticate further comprises computer-readable program code that is configured to use a unique identifier of the selected operably connected component, where the unique identifier is digitally signed by the selected operably connected component using a first private key associated with the selected operably connected component.
  - 5. The computer program product according to claim 3, wherein authenticity of selected ones of the digitally notarized segments of the output data stream may be separately verified using a public key of the security core.

11. A system for providing a secure, integrated device with dynamically selectable capabilities, comprising:
- a security core which provides security functions;
  
  one or more components;
  
  means for operating the security core;
  
  means for establishing a secure, operable connection of the components to the security core;
  
  such that the security core can vouch for authenticity of each securely operably connected component, wherein the security core and the operably connected components thereby comprise the secure integrated device; and
  
  means for securely performing a transaction using the secure integrated device, wherein the means for securely performing a transaction further comprises means for digitally notarizing, by the security core, an output data stream created by a selected one of the operably connected components of the secure integrated device, and wherein the means for digitally notarizing further comprises;
  
  means for authenticating the selected operably connected component to the security core;
  
  means for computing, by the security core, a hash value over the output data stream;
  
  means for hashing, by the security core, a combination of (1) the hash value and (2) the unique identifier of the selected operably connected component, thereby creating a hashed data block;
  
  means for digitally signing, by the security core, the hashed data block using a private key of the security core; and
  
  means for providing the digitally signed hashed data block along with the combination as the digital notarization of the output data stream.
- View Dependent Claims (12, 16)
- - 12. The system according to claim 11, wherein the means for authenticating further comprises means for using a unique identifier of the selected operably connected component, where the unique identifier is digitally signed by the selected operably connected component using a first private key associated with the selected operably connected component.
  - 16. The system according to claim 11, further comprising:
    - means for authenticating a user of the secure integrated device; and
      
      means for including an identification of the authenticated user in the combination.

13. A system for providing a secure, integrated device with dynamically selectable capabilities, comprising:
- a security core which provides security functions;
  
  one or more components;
  
  means for operating the security core;
  
  means for establishing a secure, operable connection of the components to the security core, such that the security core can vouch for authenticity of each securely operably connected component, wherein the security core and the operably connected components thereby comprise the secure integrated device; and
  
  means for securely performing a transaction using the secure integrated device, wherein the means for securely performing a transaction further comprises means for digitally notarizing, by the security core, an output data stream created by a selected one of the operably connected components of the secure integrated device, and wherein the means for digitally notarizing further comprises;
  
  means for authenticating the selected operably connected component to the security core;
  
  means for computing, by the security core, a hash value over each of a plurality of segments of the output data stream, wherein a boundary between segments is determined by an elapsed time value;
  
  means for hashing, by the security core, a combination of (1) the hash value for each segment and (2) the unique identifier of the selected operably connected component, thereby creating a hashed data block for each segment;
  
  means for digitally signing, by the security core, the hashed data block for each segment using a private key of the security core; and
  
  means for providing the digitally signed hashed data block for each segment along with the combination for each segment as the digital notarization of the segments which comprise the output data stream.
- View Dependent Claims (14, 15, 17, 18, 19, 20)
- - 14. The system according to claim 13, wherein the means for authenticating further comprises means for using a unique identifier of the selected operably connected component, where the unique identifier is digitally signed by the selected operably connected component using a first private key associated with the selected operably connected component.
  - 15. The system according to claim 13, wherein authenticity of selected ones of the digitally notarized segments of the output data stream may be separately verified using a public key of the security core.
  - 17. The system according to claim 13, wherein the private key of the security core is securely stored in the secure integrated device.
  - 18. The system according to claim 13, further comprising means for verifying authenticity of the segments of the output data stream by a receiver of the segments of the output data stream and the digitally signed hashed data blocks for the segments, using a public key of the security core, and for concluding that each segment of the output data stream is authentic if the verification succeeds.
  - 19. The system according to claim 18, wherein the means for verifying authenticity further comprises obtaining the public key from a digital certificate of the security core.
  - 20. The system according to claim 18, wherein the means for verifying authenticity further comprises concluding that the output data stream has not been tampered with if the verification succeeds.

21. A method of providing a secure, integrated device with dynamically selectable capabilities, comprising:
- operating a security core which provides security functions;
  
  establishing a secure, operable connection of one or more components to the security core, such that the security core can vouch for authenticity of each secure operably connected component, wherein the security core and the operably connected components thereby comprise the secure integrated device; and
  
  securely performing a transaction using the secure integrated device, wherein securely performing a transaction further comprises digitally notarizing, by the security core, an output data stream created by a selected one of the operably connected components of the secure integrated device, wherein digitally notarizing further comprises;
  
  authenticating the selected operably connected component to the security core;
  
  computing, by the security core, a hash value over the output data stream;
  
  hashing, by the security core, a combination of (1) the hash value and (2) the unique identifier of the selected operably connected component, thereby creating a hashed data block;
  
  digitally signing, by the security core, the hashed data block using a private key of the security core; and
  
  providing the digitally signed hashed data block along with the combination as the digital notarization of the output data stream.
- View Dependent Claims (22, 27)
- - 22. The method according to claim 21, wherein authenticating further comprises using a unique identifier of the selected operably connected component, where the unique identifier is digitally signed by the selected operably connected component using a first private key associated with the selected operably connected component.
  - 27. The method according to claim 21, wherein the private key of the security core is securely stored in the secure integrated device.

23. A method of providing a secure, integrated device with dynamically selectable capabilities, comprising:
- operating a security core which provides security functions;
  
  establishing a secure, operable connection of one or more components to the security core, such that the security core can vouch for authenticity of each secure operably connected component, wherein the security core and the operably connected components thereby comprise the secure integrated device; and
  
  securely performing a transaction using the secure integrated device, wherein securely performing a transaction further comprises digitally notarizing, by the security core, an output data stream created by a selected one of the operably connected components of the secure integrated device, wherein the digitally notarizing further comprises;
  
  authenticating the selected operably connected component to the security core;
  
  computing, by the security core, a hash value over each of a plurality of segments of the output data stream, wherein a boundary between segments is determined by an elapsed time value;
  
  hashing, by the security core, a combination of (1) the hash value for each segment and (2) the unique identifier of the selected operably connected component, thereby creating a hashed data block for each segment;
  
  digitally signing, by the security core, the hashed data block for each segment using a private key of the security core; and
  
  providing the digitally signed hashed data block for each segment along with the combination for each segment as the digital notarization of the segments which comprise the output data stream.
- View Dependent Claims (24, 25, 26, 28, 29, 30)
- - 24. The method according to claim 23, wherein the authenticating further comprises using a unique identifier of the selected operably connected component, where the unique identifier is digitally signed by the selected operably connected component using a first private key associated with the selected operably connected component.
  - 25. The method according to claim 23, wherein authenticity of selected ones of the digitally notarized segments of the output data stream may be separately verified using a public key of the security core.
  - 26. The method according to claim 23, further comprising:
    - authenticating a user of the secure integrated device; and
      
      including an identification of the authenticated user in the combination.
  - 28. The method according to claim 23, further comprising verifying authenticity of the segments of the output data stream by a receiver of the segments of the output data stream and the digitally signed hashed data blocks for the segments, using a public key of the security core, and concluding that each segment of the output data stream is authentic if the verification succeeds.
  - 29. The method according to claim 28, wherein verifying authenticity further comprises obtaining the public key from a digital certificate of the security core.
  - 30. The method according to claim 28, wherein verifying authenticity further comprises concluding that the output data stream has not been tampered with if the verification succeeds.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Doyle, Ronald P., Hind, John R., Peters, Marcia L.
Primary Examiner(s)
Sheikh, Ayaz
Assistant Examiner(s)
HOFFMAN, BRANDON S

Application Number

US09/761,906
Publication Number

US 20030159044A1
Time in Patent Office

1,770 Days
Field of Search

713200-201, 713168-170, 713/181, 713/189, 713/192, 380/200, 380/212, 380/217, 380/258, 380/262, 380/270, 380/282, 380/285
US Class Current

713/168
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 21/445   by mutual authentication, e...

G06F 21/57   Certifying or maintaining t...

G06F 21/64   Protecting data integrity, ...

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/40145   Biometric identity checks

G07F 7/1008   Active credit-cards provide...

H04L 2463/082   applying multi-factor authe...

H04L 63/08   for authentication of entit...

Secure integrated device with secure, dynamically-selectable capabilities

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

215 Citations

30 Claims

Specification

Solutions

Use Cases

Quick Links

Secure integrated device with secure, dynamically-selectable capabilities

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

215 Citations

30 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links