IPC분류정보
국가/구분 |
United States(US) Patent
등록
|
국제특허분류(IPC7판) |
|
출원번호 |
UP-0858287
(2004-06-01)
|
등록번호 |
US-7587611
(2009-09-22)
|
발명자
/ 주소 |
- Johnson, Barry W.
- Olvera, Kristen R.
- Russell, David C.
- Tillack, Jonathan A.
|
출원인 / 주소 |
|
인용정보 |
피인용 횟수 :
25 인용 특허 :
105 |
초록
▼
The invention disclosed herein is an in-circuit security system for electronic devices. The in-circuit security system incorporates identity credential verification, secure data and instruction storage, and secure data transmission capabilities. It comprises a single semiconductor chip, and is secur
The invention disclosed herein is an in-circuit security system for electronic devices. The in-circuit security system incorporates identity credential verification, secure data and instruction storage, and secure data transmission capabilities. It comprises a single semiconductor chip, and is secured using industry-established mechanisms for preventing information tampering or eavesdropping, such as the addition of oxygen reactive layers. This invention also incorporates means for establishing security settings, profiles, and responses for the in-circuit security system and enrolled individuals. The in-circuit security system can be used in a variety of electronic devices, including handheld computers, secure facility keys, vehicle operation/ignition systems, and digital rights management.
대표청구항
▼
We claim: 1. An in-circuit security system for electronic devices, comprising: a processor; a memory, coupled to the processor; a real-time clock, coupled to the processor; a cryptographic subsystem, coupled to the processor and the real-time clock; a random number generator, coupled to the cryptog
We claim: 1. An in-circuit security system for electronic devices, comprising: a processor; a memory, coupled to the processor; a real-time clock, coupled to the processor; a cryptographic subsystem, coupled to the processor and the real-time clock; a random number generator, coupled to the cryptographic subsystem; an identity credential verification subsystem, coupled to the processor, the processor is configured to halt operation of the real-time clock when the identity credential verification subsystem denies access for a predetermined number within a predetermined period of time; a power source, coupled to the real-time clock; at least three input/output interfaces; wherein, said processor provides means for load and execution of instructions and associated data; wherein, said memory provides means for storage of instructions and data, including security settings and profiles; wherein, said real-time clock provides means for generating an accurate time; wherein, the power source is configured to provide power to the real-time clock; wherein, said cryptographic subsystem provides means for performing encryption, decryption, digital signing, and digital signature verification; wherein, said random number generator provides means for randomly producing a number with statistical randomness sufficient to meet a pre-determined level; wherein, said identity credential verification subsystem provides means for identity credential acquisition, analysis, storage and matching, the in-circuit security system excluding the identity credential verification subsystem is disabled until a user is matched based on an acquired identity credential from the user and verified based on the security settings and the profiles for that user; wherein, a first input/output interface is used for connection between the identity credential verification subsystem and an external identity credential sensor; wherein, a second input/output interface is used for transmission and receipt of data to and from a remote connection device; and wherein, a third input/output line is used for connection to at least one peripheral device. 2. The in-circuit security system of claim 1, wherein the input/output interface for transmission and receipt of data to and from a remote connection device connects the processor to a transceiver. 3. The in-circuit security system of claim 2, wherein said transceiver is a wireless communications transceiver. 4. The in-circuit security system of claim 2, further comprising a connection from said transceiver to an antenna. 5. The in-circuit security system of claim 2, wherein the transceiver is used for RFID communication. 6. The in-circuit security system of claim 2, wherein the transceiver is used for Bluetooth communication. 7. The in-circuit security system of claim 2, wherein the transceiver is used for infrared communication. 8. The in-circuit security system of claim 1, wherein the input/output interface for transmission and receipt of data to and from a remote connection device connects the processor to a transceiver used for wired communication. 9. The in-circuit security system of claim 8, wherein the transceiver is used for serial communication. 10. The in-circuit security system of claim 8, wherein the transceiver is used for USB communication. 11. The in-circuit security system of claim 1, wherein the identity credential verification subsystem uses biometric authentication. 12. An apparatus, comprising: a single integrated circuit having a processor; a real-time clock coupled to the processor; a memory coupled to the processor and configured to store an identity credential and a security data associated with the identity credential; an identity credential verification subsystem coupled to the processor and configured to identify a user based on an identity credential; and a cryptographic subsystem coupled to the processor and configured to encrypt the security data associated with the identity credential to produce encrypted security data when the identity credential verification subsystem verifies the user, the processor being configured to halt operation of the real-time clock when the identity credential verification subsystem denies access for a predetermined number within a predetermined period of time, the single integrated circuit having a first portion associated with a functionality of the identity credential verification subsystem, the single integrated circuit having a second portion not associated with the functionality of the identity credential verification subsystem, the second portion of the single integrated circuit being disabled until the user is identified based on the identity credential and verified based on the security data associated with the identity credential. 13. The apparatus of claim 12, wherein the single integrated circuit further has a random number generator coupled to the cryptographic subsystem and configured to seed a cryptographic algorithm associated with the cryptographic subsystem. 14. The apparatus of claim 12, wherein the cryptographic subsystem is configured to produce a digital signature based on the security data associated with the identity credential. 15. The apparatus of claim 12, further comprising: a biometric sensor operably coupled to the single integrated circuit, the biometric sensor configured to send biometric data associated with the user to the single integrated circuit, the identity credential verification subsystem configured to identify the user based on the identity credential and the biometric data. 16. The apparatus of claim 12, further comprising: a transmitter operably coupled to the single integrated circuit, the transmitter configured to receive the encrypted security data, the transmitter configured to send an authorization signal based on the encrypted security data to a remote device. 17. The apparatus of claim 12, wherein the memory is configured to erase the identity credential and the security data associated with the identity credential when the single integrated circuit is tampered with. 18. An apparatus, comprising: a single integrated circuit having an identity credential verification subsystem configured to identify a user based on an identity credential and user data; a processor; a real-time clock coupled to the processor, the processor is configured to halt operation of the real-time clock when the identity credential verification subsystem denies access for a predetermined number within a predetermined period of time; a cryptographic subsystem configured to encrypt a security data associated with the identity credential to produce encrypted security data when the identity credential verification subsystem verifies the user; an input/output interface configured to send the encrypted security data from the single integrated circuit; and a memory configured to erase the identity credential and the security data associated with the identity credential when the single integrated circuit is tampered with, functionality of the single integrated circuit not used during operation of the identity credential verification subsystem being disabled until the user is identified by the identity credential verification subsystem based on the identity credential. 19. The apparatus of claim 18, wherein the single integrated circuit further has a random number generator coupled to the cryptographic subsystem and configured to seed a cryptographic algorithm associated with the cryptographic subsystem. 20. The apparatus of claim 18, wherein the cryptographic subsystem is configured to produce a digital signature based on the security data associated with the identity credential. 21. The apparatus of claim 18, wherein the user data is biometric data received from a biometric sensor operatively coupled to the single integrated circuit. 22. The apparatus of claim 18, further comprising: a transmitter operably coupled to the single integrated circuit, the transmitter configured to receive the encrypted security data, the transmitter configured to send an authorization signal based on the encrypted security data to a remote device. 23. The apparatus of claim 1, wherein the processor is configured to monitor clock frequency and reset clock frequency. 24. The apparatus of claim 12, wherein the single integrated circuit includes a power source coupled to the real-time clock, the power source being configured to provide power to the real-time clock. 25. The apparatus of claim 12, wherein the processor is configured to monitor clock frequency and reset clock frequency. 26. The apparatus of claim 18, wherein the single integrated circuit includes a power source, the real-time clock being configured to produce time, the power source being coupled to the real-time clock, the power source being configured to provide power to the real-time clock such that the time is constantly maintained by the real-time clock. 27. The apparatus of claim 18, wherein the single integrated circuit is configured to monitor clock frequency and reset clock frequency.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.