Apparatus and method for encrypting and decrypting data recorded on portable cryptographic tokens

Number of patents in Portfolio can not be more than 2000

United States of America Patent

APP PUB NO 20020129261A1
SERIAL NO

09802200

Stats

ATTORNEY / AGENT: (SPONSORED)

Importance

Loading Importance Indicators... loading....

Abstract

See full text

A number of client systems receive a common secure transfer key pair from a server during initialization. The secure transfer private key is encrypted in the server with a platform public key sent to the server from the client system. Each client system is then able to encrypt data, using a secure transfer public key, to be recorded on a computer readable medium, and subsequently to decrypt such data using a secure transfer private key. Preferably, each client system includes an embedded security subsystem (ESS) performing cryptographic processes and providing secure key storage. Then, the secure transfer private key is stored as encrypted, and is decrypted using a private key within the ESS. Preferably, the platform private key is also stored encrypted, to be decrypted within the ESS using a hardware private key.

Loading the Abstract Image... loading....

First Claim

See full text

Family

Loading Family data... loading....

Patent Owner(s)

Patent OwnerAddressTotal Patents
INTERNATIONAL BUSINESS MACHINES CORPORATIONARMONK, NY45084

International Classification(s)

  • [Classification Symbol]
  • [Patents Count]

Inventor(s)

Inventor Name Address # of filed Patents Total Citations
Cromer, Daryl Carvis Apex, NC 196 3412
Locker, Howard Jeffrey Cary, NC 146 2056
Trotter, Andy Lloyd Raleigh, NC 20 359
Ward, James Peter Raleigh, NC 110 2694

Cited Art Landscape

Patent Info (Count) # Cites Year
 
INTERNATIONAL BUSINESS MACHINES CORPORATION (1)
* 4817140 Software protection system using a single-key cryptosystem, a hardware-based authorization system and a secure coprocessor 380 1986
 
CERTCO, INC. (1)
* 5799086 Enhanced cryptographic system and method with key escrow feature 241 1997
 
Other [Check patent profile for assignment information] (1)
* 4747139 Software security method and systems 289 1986
 
EMC CORPORATION (1)
* 6189098 Client/server protocol for proving authenticity 356 2000
 
NOT APPLICABLE (1)
* 5889941 System and apparatus for smart card personalization 194 1996
 
MICROSOFT TECHNOLOGY LICENSING, LLC (1)
* 6230269 Distributed authentication system and method 168 1998
 
COMCAST CABLE COMMUNICATIONS, LLC (1)
* 5787172 Apparatus and method for establishing a cryptographic link between elements of a system 237 1994
 
Hush Communication Corporation (1)
* 6154543 Public key cryptosystem with roaming user capability 70 1998
 
PLANO ENCRYPTION TECHNOLOGIES LLC (1)
* 5991399 Method for securely distributing a conditional use private key to a trusted entity on a remote system 531 1997
* Cited By Examiner

Patent Citation Ranking

Forward Cite Landscape

Patent Info (Count) # Cites Year
 
Other [Check patent profile for assignment information] (1)
* 2009/0083,539 Method for Securely Creating an Endorsement Certificate in an Insecure Environment 4 2007
 
INTERNATIONAL BUSINESS MACHINES CORPORATION (10)
* 7890758 Apparatus and method for generating keys in a network computing environment 2 2003
* 2004/0190,724 Apparatus and method for generating keys in a network computing environment 0 2003
* 2005/0108,528 Computer network and method for transmitting and authenticating data in the computer network 2 2003
* 7751568 Method for securely creating an endorsement certificate utilizing signing key pairs 8 2003
* 2005/0149,733 Method for securely creating an endorsement certificate utilizing signing key pairs 12 2003
* 2006/0210,071 Encryption of security-sensitive data 24 2005
8495361 Securely creating an endorsement certificate in an insecure environment 0 2007
8200972 Encryption of security-sensitive data by re-using a connection 0 2010
* 2011/0055,563 ENCRYPTION OF SECURITY-SENSITIVE DATA BY RE-USING A CONNECTION 3 2010
9111123 Firmware for protecting data from software threats 0 2013
 
FELICA NETWORKS, INC. (2)
* 7882208 Information management apparatus, information management method, and program for managing an integrated circuit 0 2005
* 2006/0101,136 Information management apparatus, information management method, and program 17 2005
 
LENOVO PC INTERNATIONAL (1)
* 8024579 Authenticating suspect data using key tables 3 2006
 
HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. (1)
* 2005/0015,602 Method and apparatus for passing data securely between parties 4 2004
 
DYNASIG CORPORATION (1)
* 2009/0060,183 PRIVATE LOCK INFRASTRUCTURE 4 2008
 
NOKIA TECHNOLOGIES OY (2)
* 9032215 Management of access control in wireless networks 0 2005
* 2006/0288,227 Management of access control in wireless networks 9 2005
 
PFU LIMITED (1)
* 2010/0316,222 IMAGE PROCESSING SYSTEM 3 2010
 
FUJI XEROX CO., LTD. (2)
* 7770026 Document management system, information processing device and method, and computer program 1 2005
* 2006/0190,742 Document management system, information processing device and method, and computer program 4 2005
 
NEDERLANDSE ORGANISATIE VOOR TOEGEPAST-NATUURWETENSCHAPPELIJK ONDERZOEK TNO (2)
* 7565554 Method and system for a service process to provide a service to a client 61 2002
* 2004/0221,045 Method and system for a service process to provide a service to a client 28 2004
 
NXP B.V. (4)
* 7925892 Method to grant modification rights for a smart card 2 2004
* 2006/0280,299 Method to grant modification rights for a smart card 7 2004
* 8826039 Apparatus and method for providing hardware security 0 2010
* 2011/0191,599 Apparatus and method for providing hardware security 8 2010
 
INTEL CORPORATION (6)
* 7318235 Attestation using both fixed token and portable token 18 2002
* 2004/0117,625 Attestation using both fixed token and portable token 8 2002
7809957 Trusted platform module for generating sealed data 8 2005
9544141 Secure key storage using physically unclonable functions 0 2011
8885819 Fuse attestation to secure the provisioning of secret keys during integrated circuit manufacturing 0 2012
8938792 Device authentication using a physically unclonable functions based key generation system 3 2012
 
SPYRUS, INC. (2)
* 2008/0263,363 Portable Data Encryption Device with Configurable Security Functionality and Method for File Encryption 107 2008
9049010 Portable data encryption device with configurable security functionality and method for file encryption 55 2012
 
MICROSOFT TECHNOLOGY LICENSING, LLC (6)
* 8284942 Persisting private/public key pairs in password-encrypted files for transportation to local cryptographic store 2 2004
* 2006/0059,350 Strong names 4 2004
* 7562395 System and method for accessing protected content in a rights-management architecture 2 2005
* 2005/0188,228 System and method for accessing protected content in a rights-management architecture 12 2005
8032943 Accessing protected content in a rights-management architecture 5 2009
* 2009/0293,116 Accessing Protected Content In A Rights-Management Architecture 36 2009
 
CONDEL INTERNATIONAL TECHNOLOGIES INC. (1)
* 2012/0042,173 Digital Content and Right Object Management Systems and Methods 2 2010
 
SAFENET, INC. (1)
* 2006/0149,962 Network attached encryption 24 2003
 
CANON KABUSHIKI KAISHA (1)
* 2004/0186,997 Encrypted data sharing system and encrypted data sharing method 7 2004
* Cited By Examiner