Virtual smart card to perform security-critical operations
US-9323914-B1 · Apr 26, 2016 · US
Virtual smart card to perform security-critical operations
US9602507B1 · US · B1
| Field | Value |
|---|---|
| Publication number | US-9602507-B1 |
| Application number | US-201615137588-A |
| Country | US |
| Kind code | B1 |
| Filing date | Apr 25, 2016 |
| Priority date | Mar 12, 2013 |
| Publication date | Mar 21, 2017 |
| Grant date | Mar 21, 2017 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A portable data or information carrier in the form of a smart card with partially or fully virtualized components. To maximize the confidentiality of information stored in the carrier, and more specifically to limit the amount of information available to a potential defrauder, electronic components such as circuits, I/O, cryptographic, memory and dummy objects are built, modified or influenced on demand from physical characteristics of an eligible person or device. Digitized unique biometric or hardware identifiers are read upon start-up and runtime of the device and, in case of an eligible person or device, subsequently supply all values necessary for determination of the characteristics of the user specific virtual smart cards objects, their placement and connections. By multi-factor authentication, the end-user or device will retain sole control of its keys and use them for authentication, signature or encryption purposes as if he had a physical smart card in his hand.
First claim
Opening claim text (preview).
What is claimed is: 1. A method, comprising: initializing a virtual smart card in response to a received unique identifier; reading data associated with the unique identifier via a reader device, wherein the data comprises a key stream of digital data bits associated with the unique identifier; identifying a user's smart card base address from a first portion of the digital data bits of the key stream; and authenticating the user based on the unique identifier and results of the read data. 2. The method of claim 1 , wherein the unique identifier comprises digital biometric data. 3. The method of claim 2 , wherein the digital biometric data is part of the key stream and is associated with a digitized fingerprint. 4. The method of claim 3 , wherein the reader device uses its own clock cycles to compute a defined part of the key stream of the digitized fingerprint. 5. The method of claim 4 , wherein a subsequent portion of bits of the key stream are offsets of corresponding objects. 6. The method of claim 1 , further comprising: loading a secret 48-bit key into a shift register; and shifting a string into a state that the received unique identifier matches an identifier of a corresponding tag. 7. The method of claim 6 , further comprising: generating a random number; and sending the random number to the reader device and proving that the tag and reader have knowledge of the secret 48-bit key. 8. An apparatus, comprising: a processor configured to: initialize a virtual smart card in response to a received unique identifier, read data associated with the unique identifier via a reader device, wherein the data comprises a key stream of digital data bits associated with the unique identifier; identify a user's smart card base address from a first portion of the digital data bits of the key stream; and authenticate the user based on the unique identifier and results of the read data. 9. The apparatus of claim 8 , wherein the unique identifier comprises digital biometric data. 10. The apparatus of claim 9 , wherein the digital biometric data is part of the key stream and is associated with a digitized fingerprint. 11. The apparatus of claim 10 , wherein the reader device uses its own clock cycles to compute a defined part of the key stream of the digitized fingerprint. 12. The apparatus of claim 11 , wherein a subsequent portion of bits of the key stream are offsets of corresponding objects. 13. The apparatus of claim 8 , wherein the processor is further configured to load a secret 48-bit key into a shift register, and shift a string into a state that the received unique identifier matches an identifier of a corresponding tag. 14. A non-transitory computer readable storage medium configured to store instructions that when executed cause a processor to perform: initializing a virtual smart card in response to a received unique identifier; reading data associated with the unique identifier via a reader device, wherein the data comprises a key stream of digital data bits associated with the unique identifier; identifying a user's smart card base address from a first portion of the digital data bits of the key stream; and authenticating the user based on the unique identifier and results of the read data. 15. The non-transitory computer readable storage medium of claim 14 , wherein the unique identifier comprises digital biometric data. 16. The non-transitory computer readable storage medium of claim 15 , wherein the digital biometric data is part of the key stream and is associated with a digitized fingerprint. 17. The non-transitory computer readable storage medium of claim 16 , wherein the reader device uses its own clock cycles to compute a defined part of the key stream of the digitized fingerprint. 18. The non-transitory computer readable storage medium of claim 17 , wherein subsequent bits of the key stream are offsets of corresponding objects. 19. The non-transitory computer readable storage medium of claim 14 , further comprising: loading a secret 48-bit key into a shift register; and shifting a string into a state that the received unique identifier matches an identifier of a corresponding tag. 20. The non-transitory computer readable storage medium of claim 19 , further comprising: generating a random number; and sending the random number to the reader device and proving that the tag and reader have knowledge of the secret 48-bit key.
Assignees
Inventors
Classifications
in smart cards · CPC title
using certificates (cryptographic mechanisms or cryptographic arrangements for entity authentication involving certificates H04L9/3263) · CPC title
in cryptographic circuits · CPC title
Authentication · CPC title
wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption (cryptographic mechanisms or cryptographic arrangements for public-key encryption H04L9/30) · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9602507B1 cover?
- A portable data or information carrier in the form of a smart card with partially or fully virtualized components. To maximize the confidentiality of information stored in the carrier, and more specifically to limit the amount of information available to a potential defrauder, electronic components such as circuits, I/O, cryptographic, memory and dummy objects are built, modified or influenced …
- Who is the assignee on this patent?
- Open Invention Network Llc
- What technology area does this patent fall under?
- Primary CPC classification G06F21/34. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Mar 21 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 2 related publications on this page (citations in our corpus or others sharing the same primary CPC).