Challenge-response badge
US-10521984-B1 · Dec 31, 2019 · US
Methods and apparatus for validating wireless access card authenticity and proximity
US2023260347A1 · US · A1
| Field | Value |
|---|---|
| Publication number | US-2023260347-A1 |
| Application number | US-202318138608-A |
| Country | US |
| Kind code | A1 |
| Filing date | Apr 24, 2023 |
| Priority date | Mar 11, 2021 |
| Publication date | Aug 17, 2023 |
| Grant date | — |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A method includes performing, by a terminal with an access card, a first relay attack check for the access card in accordance with a local value associated with the terminal and a local value associated with the access card; determining, by the terminal, that the access card has passed the first relay attack check, and based thereon, performing, by the terminal with the access card, an authentication check of the access card in accordance with the local value associated with the terminal, the local value associated with the access card, and a local challenge value associated with the terminal; and determining, by the terminal, that the access card has passed the first relay attack check and the authentication check, and based thereon, validating, by the terminal, the access card.
First claim
Opening claim text (preview).
What is claimed is: 1 . A method, comprising: transmitting, by a proximity coupling device to a proximity integrated circuit card, a terminal enabler value that is a unique randomly generated value associated with the proximity coupling device; receiving, by the proximity coupling device, a remote enabler value that is a unique randomly generated value associated with the proximity integrated circuit card; and detecting a relay attack in response to a duration between transmitting the terminal enabler value and receiving the remote enabler value being less than or equal to a maximum time threshold. 2 . The method of claim 1 , further comprising: transmitting, by the proximity coupling device, a first authentication message comprising a local challenge value associated with the proximity coupling device; receiving, by the proximity coupling device, an enabler value of a device initiating the relay attack; receiving, by the proximity coupling device, a second authentication message; and detecting a relay attack in response to determining that a signature of the second authentication message is generated in accordance with the enabler value of the device initiating the relay attack, the terminal enabler value, and a remote challenge value associated with the proximity coupling device. 3 . The method of claim 1 , further comprising: transmitting, by the proximity coupling device, a first authentication message comprising a local challenge value associated with the proximity coupling device; receiving, by the proximity coupling device, an enabler value of a device initiating the relay attack; receiving, by the proximity coupling device, a second authentication message; and detecting a relay attack in response to determining that a signature of the second authentication message is generated in accordance with the enabler value of the device initiating the relay attack, the terminal enabler value, and a remote challenge value associated with the device initiating the relay attack. 4 . The method of claim 1 , further comprising: transmitting, by the proximity coupling device, a first authentication message comprising a local challenge value associated with the proximity coupling device; receiving, by the proximity coupling device, a second authentication message; and detecting a relay attack in response to determining that a signature of the second authentication message is generated in accordance with the remote enabler value, the terminal enabler value, and a remote challenge value associated with a device initiating the relay attack. 5 . The method of claim 1 , wherein the proximity coupling device and the proximity integrated circuit card are part of a system for gaining access to an automobile system, the method further comprising denying access to the automobile system in response to detecting the relay attack. 6 . The method of claim 1 , further comprising: receiving a remote enabler value from the proximity integrated circuit card; and authenticating the proximity integrated circuit card in response to: validating values associated with the terminal enabler value, the remote enabler value, and a local challenge value associated with a system comprising the proximity coupling device and the proximity integrated circuit card, and a duration between transmitting the terminal enabler value and receiving the remote enabler value being less than or equal to a maximum time threshold. 7 . The method of claim 6 , further comprising: transmitting, by the proximity coupling device to the proximity integrated circuit card, a first authentication message comprising the local challenge value; receiving, by the proximity coupling device from the proximity integrated circuit card, a second authentication message comprising a signature generated in accordance with a first key of the proximity integrated circuit card, the remote enabler value, the terminal enabler value, and a remote challenge value associated with the system; and verify the signature in accordance with a second key of the proximity integrated circuit card, the terminal enabler value, the remote enabler value, and the local challenge value. 8 . A method, comprising: transmitting, by a proximity coupling device to a proximity integrated circuit card, a terminal enabler value that is a unique randomly generated value associated with the proximity coupling device; receiving, by the proximity coupling device, a remote enabler value that is a unique randomly generated value associated with the proximity integrated circuit card; and detecting a relay attack in response to a duration between transmitting the terminal enabler value and receiving the remote enabler value being less than or equal to a minimum time threshold. 9 . The method of claim 8 , further comprising: transmitting, by the proximity coupling device, a first authentication message comprising a local challenge value associated with the proximity coupling device; receiving, by the proximity coupling device, an enabler value of a device initiating the relay attack; receiving, by the proximity coupling device, a second authentication message; and detecting a relay attack in response to determining that a signature of the second authentication message is generated in accordance with the enabler value of the device initiating the relay attack, the terminal enabler value, and a remote challenge value associated with the proximity coupling device. 10 . The method of claim 8 , further comprising: transmitting, by the proximity coupling device, a first authentication message comprising a local challenge value associated with the proximity coupling device; receiving, by the proximity coupling device, a second authentication message; and detecting a relay attack in response to determining that a signature of the second authentication message is generated in accordance with an enabler value of a device initiating the relay attack, the terminal enabler value, and a remote challenge value associated with the device initiating the relay attack. 11 . The method of claim 8 , further comprising: transmitting, by the proximity coupling device, a first authentication message comprising a local challenge value associated with the proximity coupling device; receiving, by the proximity coupling device, a second authentication message; and detecting a relay attack in response to determining that a signature of the second authentication message is generated in accordance with the remote enabler value, the terminal enabler value, and a remote challenge value associated with a device initiating the relay attack. 12 . The method of claim 8 , wherein the proximity coupling device and the proximity integrated circuit card are part of a system for gaining access to an automobile system, the method further comprising denying access to the automobile system in response to detecting the relay attack. 13 . The method of claim 8 , further comprising: receiving a remote enabler value from the proximity integrated circuit card; and authenticating the proximity integrated circuit card in response to: validating values associated with the terminal enabler value, the remote enabler value, and a local challenge value associated with a system comprising the proximity coupling device and the proximity integrated circuit card, and a duration between transmitting the terminal enabler value and receiving the remote enabler value being less than or equal to a maximum time threshold. 14 . The method of claim 13 , further comprising: transmitting, by the proximity coupling device to the proximi
Assignees
Inventors
Classifications
- G07C9/22Primary
in combination with an identity check of the pass holder · CPC title
- G06F21/35Primary
communicating wirelessly · CPC title
Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys (mechanical locks with electric permutation E05B49/00; arrangements for sensing or reading record carriers G06K7/00; electronic switching H03K17/00) · CPC title
operated with bidirectional data transmission between data carrier and locks · CPC title
Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US2023260347A1 cover?
- A method includes performing, by a terminal with an access card, a first relay attack check for the access card in accordance with a local value associated with the terminal and a local value associated with the access card; determining, by the terminal, that the access card has passed the first relay attack check, and based thereon, performing, by the terminal with the access card, an authenti…
- Who is the assignee on this patent?
- St Microelectronics Srl
- What technology area does this patent fall under?
- Primary CPC classification G07C9/22. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Thu Aug 17 2023 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 4 related publications on this page (citations in our corpus or others sharing the same primary CPC).