Network-enabled RFID tag endorsement
US-9405945-B1 · Aug 2, 2016 · US
Enhanced RFID tag authentication
US9940490B1 · US · B1
| Field | Value |
|---|---|
| Publication number | US-9940490-B1 |
| Application number | US-201314106522-A |
| Country | US |
| Kind code | B1 |
| Filing date | Dec 13, 2013 |
| Priority date | Nov 30, 2011 |
| Publication date | Apr 10, 2018 |
| Grant date | Apr 10, 2018 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
An authentication method includes RFID tags authenticating RFID readers. A tag sends a tag identifier and a reader challenge to a reader in response to one or more commands from the reader. The reader then either derives a response to the reader challenge itself or has a verification authority derive the response. The response may be derived from parameter(s) in the reader challenge, and may be derived using a cryptographic key. The reader then sends the response to the tag along with another command. The tag verifies the response before executing instruction(s) included in the command.
First claim
Opening claim text (preview).
We claim: 1. A method for a Radio Frequency Identification (RFID) system to cause an RFID tag having a first parameter to execute an instruction, the method comprising: sending a first command to the tag; receiving from the tag at least an identifier and an encrypted version of the first parameter; determining a key using the received identifier; recovering the first parameter from the encrypted version using the key; sending, at a first time, to the tag a single second command including the first parameter and a tag instruction; and causing the tag to execute the tag instruction upon verifying the first parameter. 2. The method of claim 1 , wherein the first parameter is not based on the tag instruction. 3. The method of claim 1 , wherein the second command further includes a command code indicating the tag instruction. 4. The method of claim 1 , further comprising: sending the encrypted version of the first parameter to a verification authority; and receiving a derived second parameter from the verification authority, wherein the verification authority determines the key and recovers the first parameter from the encrypted version. 5. The method of claim 1 , further comprising: sending a random number to the tag with the first command; receiving a cryptographic function of the random number from the tag; verifying an authenticity of the tag using the random number; and sending the second command to the tag only if the authenticity of the tag is verified. 6. The method of claim 1 , wherein the tag instruction includes at least one of: reading from a tag memory; writing to a tag memory; adjusting a tag counter value; adjusting a pointer to a memory location; adjusting a pointer to a key; adjusting a value of a key; and causing the tag to change state. 7. The method of claim 1 , wherein causing the tag to execute the tag instruction includes at least one of: sending the second command; sending a third command; and specifying a trigger event. 8. A method for a Radio Frequency Identification (RFID) system to cause an RFID tag having a first parameter to execute an instruction, the method comprising: sending a first command to the tag; receiving from the tag at least an identifier and an encrypted version of the first parameter; determining a key using the received identifier; recovering the first parameter from the encrypted version using the key; deriving a second parameter from the first parameter using a deriving operation that includes one of: setting the second parameter equal to the first parameter; incorporating the first parameter into a string; and computing an arithmetic function of at least the first parameter; sending, at a first time, to the tag a single second command including the second parameter and a tag instruction, wherein the first parameter and the second parameter are independent of the tag instruction; and causing the tag to, upon verifying the second parameter using the deriving operation and the first parameter, execute the tag instruction. 9. The method of claim 8 , wherein the second command further includes a command code indicating the tag instruction. 10. The method of claim 4 , further comprising: sending the encrypted version of the first parameter to a verification authority; and receiving the derived second parameter from the verification authority, wherein the verification authority determines the key, recovers the first parameter from the encrypted version, and derives the second parameter from the first parameter. 11. The method of claim 8 , further comprising: sending a random number to the tag with the first command; receiving a cryptographic function of the random number from the tag; verifying an authenticity of the tag using the random number; and sending the second command to the tag only if the authenticity of the tag is verified. 12. The method of claim 11 , wherein verifying the authenticity of the tag comprises: sending the cryptographic function and the random number to a verification authority; and receiving an indication of tag authenticity from the verification authority. 13. The method of claim 8 , wherein the tag instruction includes at least one of: reading from a tag memory; writing to a tag memory; adjusting a tag counter value; adjusting a pointer to a memory location; adjusting a pointer to a key; adjusting a value of a key; and causing the tag to change state. 14. The method of claim 8 , wherein causing the tag to execute the tag instruction includes at least one of: sending the second command; sending a third command; and specifying a trigger event. 15. A method for a Radio Frequency Identification (RFID) system to cause an RFID tag having a first parameter to execute an instruction, the method comprising: sending a first command to the tag; receiving from the tag at least an identifier and an encrypted version of the first parameter; determining a key using the received identifier; recovering the first parameter from the encrypted version using the key; deriving a second parameter from the first parameter; sending, at a first time, to the tag a single second command including the second parameter and a tag instruction, wherein the first parameter and the second parameter are independent of the tag instruction; and causing the tag to, upon verifying the second parameter using the deriving operation and the first parameter, execute the tag instruction. 16. The method of claim 15 , wherein the second command further includes a command code indicating the tag instruction. 17. The method of claim 15 , further comprising: sending the encrypted version of the first parameter to a verification authority; and receiving the derived second parameter from the verification authority, wherein the verification authority determines the key, recovers the first parameter from the encrypted version, and derives the second parameter from the first parameter. 18. The method of claim 15 , further comprising: sending a random number to the tag with the first command; receiving a cryptographic function of the random number from the tag; verifying an authenticity of the tag using the random number; and sending the second command to the tag only if the authenticity of the tag is verified. 19. The method of claim 15 , wherein the tag instruction includes at least one of: reading from a tag memory; writing to a tag memory; adjusting a tag counter value; adjusting a pointer to a memory location; adjusting a pointer to a key; adjusting a value of a key; and causing the tag to change state. 20. The method of claim 15 , wherein causing the tag to execute the tag instruction includes at least one of: sending the second command; sending a third command; and specifying a trigger event.
Assignees
Inventors
Classifications
Lightweight hardware, e.g. radio-frequency identification [RFID] or sensor · CPC title
for mutual authentication (network architectures or network communication protocols for achieving mutual authentication in a packet data network H04L63/0869) · CPC title
- G06K7/10257Primary
arrangements for protecting the interrogation against piracy attacks (computer security in general G06F21/00; jamming of communication, countermeasures H04K3/00; secret communication H04K1/00) · CPC title
involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements (network architectures or network communication protocols for supporting authentication of entities using certificates in a packet data network H04L63/0823) · CPC title
involving digital signatures · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9940490B1 cover?
- An authentication method includes RFID tags authenticating RFID readers. A tag sends a tag identifier and a reader challenge to a reader in response to one or more commands from the reader. The reader then either derives a response to the reader challenge itself or has a verification authority derive the response. The response may be derived from parameter(s) in the reader challenge, and may be…
- Who is the assignee on this patent?
- Impinj Inc
- What technology area does this patent fall under?
- Primary CPC classification G06K7/10257. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Apr 10 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (B1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 3 related publications on this page (citations in our corpus or others sharing the same primary CPC).