US20190165947A1 - Signatures for near field communications - Google Patents
Signatures for near field communicationsDownload PDFInfo
- Publication number
- US20190165947A1 US20190165947A1US16/265,188US201916265188AUS2019165947A1US 20190165947 A1US20190165947 A1US 20190165947A1US 201916265188 AUS201916265188 AUS 201916265188AUS 2019165947 A1US2019165947 A1US 2019165947A1
- Authority
- US
- United States
- Prior art keywords
- data
- carrying device
- signature
- ndef
- nfc
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Abandoned
Links
- 238000004891communicationMethods0.000titleclaimsabstractdescription18
- 238000000034methodMethods0.000claimsabstractdescription49
- 230000004044responseEffects0.000claimsdescription4
- 238000010295mobile communicationMethods0.000claims1
- 230000008569processEffects0.000description18
- 238000010586diagramMethods0.000description11
- 230000006870functionEffects0.000description8
- 238000005516engineering processMethods0.000description6
- 230000007246mechanismEffects0.000description5
- 230000003068static effectEffects0.000description5
- 230000009471actionEffects0.000description3
- 230000005540biological transmissionEffects0.000description3
- 230000001413cellular effectEffects0.000description2
- 238000010367cloningMethods0.000description2
- 230000003287optical effectEffects0.000description2
- 238000012795verificationMethods0.000description2
- 230000004913activationEffects0.000description1
- 238000004364calculation methodMethods0.000description1
- 230000001010compromised effectEffects0.000description1
- 230000000977initiatory effectEffects0.000description1
- 230000002452interceptive effectEffects0.000description1
- 238000000682scanning probe acoustic microscopyMethods0.000description1
- 239000013545self-assembled monolayerSubstances0.000description1
- 238000010200validation analysisMethods0.000description1
Images
Classifications
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/12—Applying verification of the received information
- H04L63/126—Applying verification of the received information the source of the received data
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
- H04L9/3268—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/069—Authentication using certificates or pre-shared keys
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/10—Integrity
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/10—Integrity
- H04W12/106—Packet or message integrity
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/10—Integrity
- H04W12/108—Source integrity
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/80—Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/72—Signcrypting, i.e. digital signing and encrypting simultaneously
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/80—Wireless
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/80—Wireless
- H04L2209/805—Lightweight hardware, e.g. radio-frequency identification [RFID] or sensor
Definitions
- the present disclosureis generally directed toward creating and managing signatures for Near Field Communications (NFC) Data Exchange Format (NDEF) records.
- NFCNear Field Communications
- NDEFData Exchange Format
- NFCNear Field Communications
- RFIDradio-frequency identification
- Bluetoothis a wireless technology standard for exchanging data over short distances (using short-wavelength radio transmissions in the ISM band from 2400-2480 MHz) from fixed and mobile devices, creating personal area networks (PANs) with high levels of security.
- PANspersonal area networks
- the primary difference between NFC technologies and Bluetooth technologiesis that Bluetooth relies on powered devices for both sides of the communication whereas NFC facilitates communications between a powered device and a passive device (e.g., an NFC tag or credential). In other words, under NFC standards, one device can operate without an internal power source, such as a battery.
- Card Emulation Modean NFC-enabled phone emulates a contactless card in accordance with ISO 14443 and/or ISO 15693, each of which are hereby incorporated herein by reference in their entirety.
- Typical applications of the Card Emulation Modeinclude payment, ticketing, and access control applications.
- the NFC-enabled phonereads a tag and typically performs some function based on the information obtained from the read tag.
- Typical applications of the Reader/Writer Modeinclude reading posters with an NFC tag in proximity thereto, interactive advertising, launching mobile Internet (e.g., automated web-browser activation), automated Short Message Service (SMS), and automated call initiation.
- mobile Internete.g., automated web-browser activation
- SMSShort Message Service
- Peer-to-Peer Modetwo NFC-enabled phones, or similar types of devices, are allowed to exchange data with one another.
- Typical applications of the Peer-to-Peer Modeinclude setting up wireless settings (e.g., Bluetooth, Wi-Fi, etc.), sharing business cards, or sharing information between NFC-enabled phones.
- NFC tagscarry NFC Data Exchange Format (NDEF) records, which have a static cryptographic signature to ensure the integrity of the data written to the tag.
- NDEFNFC Data Exchange Format
- an NDEF recordis disclosed that can be created with information about the tag itself including a non-random Unique Identifier (UID) (e.g., MAC address, SIM card number, tag ID, IP address, etc.).
- UIDnon-random Unique Identifier
- this datacan be included in the signature that is calculated for the NDEF record such that the verifier of the NDEF record could compare the record and UID read from the tag to validate the binding via the signature.
- Another mechanism to prevent against cloning and replay attacksis disclosed whereby a dynamic signature (which can be based on a nonce sent by the reading device) can be calculated by the tag itself. Since this mechanism is independent of the tag UID, it allows for tags with random UIDs.
- a noncecan be provided to the tag, which is ultimately included in the signature calculation. This nonce could be provided in the request to read the tag data or during a separate authenticate command.
- the tag dynamic signaturemay be based on a Public Key Infrastructure (PKI) solution (e.g., RSA, ECDS, etc.) and hence also introduces the concept of a tag certificate.
- PKIPublic Key Infrastructure
- This certificatecan be added into the standard NDEF security certificate chain so that the returned NDEF data containing the dynamic signature can be verified without any changes to the verification process of current standard NDEF specifications.
- the tag certificatecould include the unique identifier of the tag (e.g., static UID).
- the response signaturemight also return the tag certificate.
- the introduction of the tag certificatewould also allow the concept of a Tag Revocation Service (e.g., a Tag Revocation List distributed and used to check the validity of tag certificates) or Online Certificate Status Protocol (OCSP) online services. Since a reading device might be desirable to check the revocation status of a tag (e.g., without performing authentication), embodiments of the present disclosure also contemplate a command or combination of commands that simply returns the tag certificate without performing any other processes.
- a Tag Revocation Servicee.g., a Tag Revocation List distributed and used to check the validity of tag certificates
- OCSPOnline Certificate Status Protocol
- FIG. 1is a block diagram depicting a transaction system in accordance with embodiments of the present disclosure
- FIG. 2is a flow diagram depicting a method of generating a signature for an NDEF record in accordance with embodiments of the present disclosure
- FIG. 3is a flow diagram depicting an authentication process in accordance with embodiments of the present disclosure
- FIG. 4is a diagram depicting a first data structure in accordance with embodiments of the present disclosure.
- FIG. 5is a diagram depicting a second data structure in accordance with embodiments of the present disclosure.
- FIG. 6is a flow diagram depicting a certification method in accordance with embodiments of the present disclosure.
- a transaction system 100is depicted in accordance with embodiments of the present disclosure.
- the transaction system 100is shown to include a reading device 104 and a data-carrying device 108 .
- the reading device 104 and data-carrying device 108may be configured to exchange data over a wireless communication path 116 using any type of known or yet to be developed wireless communication protocol.
- the devices 104 , 108may be configured to exchange data 112 with one another using an NFC protocol, a Bluetooth standard (e.g., Bluetooth 4), infrared, or the like. Where an NFC protocol is used, the data 112 may be stored as an NDEF record or collection of NDEF records.
- the communication path 116does not necessarily have to be wireless.
- a wire or cablee.g., Universal Serial Bus (USB) cable
- USBUniversal Serial Bus
- the reading device 104 and data-carrying device 108may each be equipped with NFC interfaces that enable the devices 104 , 108 to exchange data in accordance with the NFC protocol.
- the devices 104 , 108may exchange data using any type of NFC communication mode (e.g., a Card Emulation Mode, a Reader/Writer Mode, or a Peer-to-Peer Mode).
- the data-carrying device 108may emulate a card and the reading device 104 may correspond to a reader of the data-carrying device.
- the reading device 104When operating in the Reader/Writer Mode, the reading device 104 may write data to the data-carrying device 108 or the data-carrying device may write data to the reading device 104 .
- the devices 104 , 108may only be allowed to communicate data with one another when the physical distance between the devices 104 , 108 is less than a predetermined distance.
- the devices 104 , 108can be configured to exchange wireless communications with one another via NFC as long as the devices are close enough to support such communications (e.g., between approximately 0.01 m and 0.5 m).
- the mobile devices 104 , 108may communicate with one another as long as the devices are between approximately 0.01 m and 2.0 m of one another.
- other protocolssuch as Wi-Fi, Zigbee, Wi-Max, and the like may be used to exchange data between devices 104 , 108 .
- the data-carrying device 108may correspond to any type of communication device such as a telephone, a mobile telephone, a cellular phone, a Personal Digital Assistant (PDA), a tablet, a thin client computing device, a netbook, a watch, a key fob, a portable card-shaped credential, or the like.
- the reading device 104may correspond to a telephone, a mobile telephone, a cellular phone, a PDA, a tablet, a thin client computing device, a netbook, a watch, a key fob, or the like.
- the reading device 104may correspond to a traditional access control reader that may or may not be mounted to a wall or permanent location.
- the reading device 104may correspond to a mobile access control reader and/or writer.
- the data-carrying device 108may have data 112 maintained thereon (e.g., stored in memory of the data-carrying device 108 ).
- the reading device 104may also comprise data 112 stored thereon.
- the data 112may be used by the data-carrying device 108 to obtain access to one or more assets (e.g., logical and/or physical assets) protected by the reading device 104 .
- the data-carrying device 108may provide some or all of the data 112 to the reading device 104 to access one or more assets protected by the reading device 104 .
- the data 112may be stored in a secure area of memory, such as a Secure Element (SE), a Secure Access Module (SAM), a Subscriber Identity Module (SIM) card, an Integrated Circuit (IC) card, or any other computer memory that is encrypted and/or physically tamper-proof.
- SESecure Element
- SAMSecure Access Module
- SIMSubscriber Identity Module
- ICIntegrated Circuit
- the data 112be stored as an NDEF record or collection of NDEF records along with one or more signatures that can validate the NDEF record or NDEF records.
- NDEF recordsare a light-weight binary format, used to encapsulate typed data. NDEF records are specified by the NFC Forum, for transmission and storage with NFC, however, NDEF records are transport agnostic.
- an NDEF recordmay include one or more of: typed data, such as MIME-type media, a URI, or a custom application payload. More specifically, an NDEF record may be configured to contain a 3-bit TNF (Type Name Field) that provides high level typing for the rest of the record. The remaining fields are variable length and not necessarily present: type—detailed typing for the payload; id—identifier meta-data; and/or payload—the actual payload.
- typed datasuch as MIME-type media, a URI, or a custom application payload.
- a NDEF recordmay be configured to contain a 3-bit TNF (Type Name Field) that provides high level typing for the rest of the record. The remaining fields are variable length and not necessarily present: type—detailed typing for the payload; id—identifier meta-data; and/or payload—the actual payload.
- TNFType Name Field
- the methodbegins when it is determined that a new NDEF record is to be created and/or an NDEF record is to be updated (step 204 ). Thereafter, the method continues by determining information about the device (e.g., data-carrying device 108 ) on which the NDEF record will be stored (step 208 ).
- the devicee.g., data-carrying device 108
- the determining stepmay include determining a UID, a site code, a card type, information about a user of the device, a hash value generated with one or a combination of such information, an XOR value generated with one or a combination of such information, some other non-random data, or some other value generated from non-random data.
- the information determined in step 208is then used to calculate a signature for the NDEF record (step 212 ).
- the signature generated for the NDEF record or collection of NDEF recordsis generated by combining the determined information with some or all of the NDEF record.
- the determined informationmay be a hash value generated with a combination of the determined information and the NDEF record.
- the signaturecan simply be generated by calculating a hash value with the determined information only.
- the signaturecan simply correspond to a concantenation of the different information obtained in step 208 or a concantenation of the determined information with the NDEF record. It should be appreciated that the mechanism(s) used to generate the signature can vary without departing from the scope of the present disclosure.
- the signatureis stored in the data-carrying device 108 along with the NDEF record (step 216 ).
- both the NDEF record and signaturemay be stored in a secure area of memory.
- the NDEF recordmay be stored in a secure area of memory while the signature may be stored in a non-secure area of memory.
- the signaturecan be used to validate the binding of the NDEF record with the device on which the NDEF record is stored.
- the reading device 104can validate the data-carrying device 108 as being the intended (and possibly sole) keeper of the NDEF record because the NDEF record was bound with the data-carrying device 108 via the signature. The utilization of such a signature effectively prevents the unauthorized moving valid data 112 from an authorized data-carrying device 108 to an unauthorized data-carrying device.
- the methodbegins when either the reading device 104 or the data-carrying device 108 initiate an authentication process (step 304 ).
- the authentication processis initiated by the reading device 104 when the data-carrying device 108 is placed within a predetermined distance from the reading device 104 (e.g., within a read range of the reading device 104 ).
- the methodcontinues with the reading device 104 providing the data-carrying device with a nonce value, for example (step 308 ). While a nonce value may correspond to a random or pseudo-random number generated at the reading device 104 , a nonce word may be used instead of a nonce value. In other words, any arbitrary number or string may be provided to the data-carrying device 108 to perform the authentication process. It should also be noted that the nonce value can be provided in the request to read data from the data-carrying device 108 or it can be provided in a separate authenticate command (e.g., before or after the data 112 is read from the data-carrying device 108 ).
- the data-carrying device 108may use the nonce value to generate a dynamic signature (step 312 ).
- the nonce valueis brought within a secure element (SE) of the data-carrying device 108 and the signature is calculated within the SE.
- SEsecure element
- the dynamically-generated signatureis then provided back to the reading device 104 (step 316 ). It should be noted that since this mechanism can be independent of the data-carrying device 108 , this authentication protocol can be used for devices having random UIDs whereas the signature-creation process described in FIG. 2 is suited for devices having non-random UIDs.
- the methodcontinues with the data-carrying device 108 providing one or more NDEF records to the reading device 104 (step 320 ) and then the reading device 104 analyzing the NDEF record(s) and dynamically-generated signature (step 324 ).
- the reading device 104may first ask the data-carrying device 108 for one or more NDEF records and then ask the reading device 104 for a signature.
- the nonce value used by the data-carrying device 108 to generate the signaturemay be provided before or after the reading device 104 receives the NDEF records.
- the reading device 104may first perform the authentication process (e.g., provide a nonce value to the data-carrying device and verify authenticity of the dynamic signature received back from the data-carrying device 108 ) prior to obtaining an NDEF record from the data-carrying device 108 .
- the signature and NDEF recordmay be provided at the same time and the reading device 104 may validate both the signature and NDEF record at the same time.
- the data-carrying device 108may be configured to embed the nonce in the NDEF record and dynamically generate a signature. Other variants of timing will become apparent to those of ordinary skill in the art and it should be appreciated that the claims are not confined by the illustrative examples described herein.
- FIGS. 4 and 5depict two examples of the structure in which the data 112 may be stored on the data-carrying device 108 .
- FIG. 4depicts a data structure having four data fields: a first data field 404 for a first NDEF record that describes the information obtained in step 208 (e.g., tag data, tag UID, etc.); a second data field 408 for a second NDEF record that include the nonce value; a third data field 412 for the actual data to be analyzed by the reading device 104 ; and a fourth data field 416 for the signature.
- the NDEF signature stored in the fourth data field 416may be used to validate one of the other NDEF records stored in the data structure.
- the NDEF signatureprovides a validation that the NDEF records are used to validate the data-carrying device 108 .
- the NDEF signature(whether dynamic or based on non-random data) can validate the binding between the NDEF record and the data-carrying device 108 that is intended or authorized to store the NDEF record.
- FIG. 5depicts a data structure having three data fields: a first data field 504 for a first NDEF record that describes the information obtained in step 208 along with a nonce value (or some combination of the two values); a second data field 508 for the actual data to be analyzed by the reading device 104 ; and a third data field 512 for the signature.
- the data structure depicted in FIG. 5may correspond to a compressed version of the data structure depicted in FIG. 4 .
- the methodbegins when the reading device 104 transmits a command to the data-carrying device for a tag certificate (step 604 ).
- the data-carrying device 108In response to receiving the command from the reading device 104 , the data-carrying device 108 generates and transmits a tag certificate to the reading device 104 (step 608 ).
- the tag certificatemay correspond to a dynamically-generated signature, such as those described above.
- the tag certificatemay correspond to a public signature from a public-private key pair.
- the reading device 104may maintain the private key and the data-carrying device 108 may provide the public key corresponding to the private key in a key pair.
- the tag certificatemay have been added to the standard NDEF security certificate chain, so that an NDEF record containing the dynamic signature can be verified by the reading device 104 without any changes to the verification process defined in current NDEF specifications.
- the tag certificatecould include the non-random data (e.g., static UID). It should also be appreciated that the tag certificate could be provided to the reading device 104 during authentication (e.g., in step 316 or 320 ).
- the reading device 104may compare the tag certificate with a revocation list that has been provided or made available to the reading device 104 (step 612 ). In other embodiments, the reading device 104 may provide the tag certificate to a third party for comparison with a revocation list. Based on the comparison of the tag certificate with the revocation list, the reading device 104 or some other device may determine and execute one or more actions or decide to perform no action (step 616 ).
- the reading device 104 or some other devicemay cause an alarm to be sounded, light one or more lights, the presenting data-carrying device 108 may be considered and treated as untrusted, security personnel may be notified, etc.
- the tag revocation listmay contain an identification of tag certificates that are either revoked or on hold. A tag certificate may be revoked irreversibly if it is discovered that the certificate authority improperly issued a certificate or if a private key is thought to be compromised. If this is the case, then the tag certificate may be added to the certificate revocation list.
- a tag certificatemay also be considered temporarily invalid if the whereabouts of the certificate are unknown.
- the revocation listmay also list these types of certificates that are currently being held. If a data-carrying device 108 presents a tag certificate that is listed on the revocation list, then actions consistent with identifying an untrusted data-carrying device 108 may be performed.
- machine-executable instructionsmay be stored on one or more machine readable mediums, such as CD-ROMs or other type of optical disks, floppy diskettes, ROMs, RAMs, EPROMs, EEPROMs, SIMs, SAMs, magnetic or optical cards, flash memory, or other types of machine-readable mediums suitable for storing electronic instructions.
- machine readable mediumssuch as CD-ROMs or other type of optical disks, floppy diskettes, ROMs, RAMs, EPROMs, EEPROMs, SIMs, SAMs, magnetic or optical cards, flash memory, or other types of machine-readable mediums suitable for storing electronic instructions.
- the methodsmay be performed by a combination of hardware and software.
- a flowchartmay describe the operations as a sequential process, many of the operations can be performed in parallel or concurrently. In addition, the order of the operations may be re-arranged.
- a processis terminated when its operations are completed, but could have additional steps not included in the figure.
- a processmay correspond to a method, a function, a procedure, a subroutine, a subprogram, etc. When a process corresponds to a function, its termination corresponds to a return of the function to the calling function or the main function.
- embodimentsmay be implemented by hardware, software, firmware, middleware, microcode, hardware description languages, or any combination thereof.
- the program code or code segments to perform the necessary tasksmay be stored in a machine readable medium such as storage medium.
- a processor(s)may perform the necessary tasks.
- a code segmentmay represent a procedure, a function, a subprogram, a program, a routine, a subroutine, a module, a software package, a class, or any combination of instructions, data structures, or program statements.
- a code segmentmay be coupled to another code segment or a hardware circuit by passing and/or receiving information, data, arguments, parameters, or memory contents. Information, arguments, parameters, data, etc. may be passed, forwarded, or transmitted via any suitable means including memory sharing, message passing, token passing, network transmission, etc.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Storage Device Security (AREA)
Abstract
Description
- The present disclosure is generally directed toward creating and managing signatures for Near Field Communications (NFC) Data Exchange Format (NDEF) records.
- One type of identification technology employs Near Field Communications (NFC). NFC is a set of short-range wireless communication technologies that have devices operate at approximately 13.56 MHz and at rates ranging from 106 kbit/s to 848 kbit/s. NFC standards cover communications protocols and data exchange formats, and are based on existing radio-frequency identification (RFID) standards including ISO/IEC 14443 and FeliCa, each of which are hereby incorporated herein by reference in their entirety. The standards include ISO/IEC 18092, which is also incorporated herein by reference in its entirety, and those defined by the NFC Forum.
- Another type of technology currently gaining traction and emerging as a viable alternative to NFC is newer versions of the Bluetooth standard (e.g., Bluetooth 4), the entire contents of which are hereby incorporated herein by reference. Bluetooth is a wireless technology standard for exchanging data over short distances (using short-wavelength radio transmissions in the ISM band from 2400-2480 MHz) from fixed and mobile devices, creating personal area networks (PANs) with high levels of security. The primary difference between NFC technologies and Bluetooth technologies is that Bluetooth relies on powered devices for both sides of the communication whereas NFC facilitates communications between a powered device and a passive device (e.g., an NFC tag or credential). In other words, under NFC standards, one device can operate without an internal power source, such as a battery.
- There are currently three NFC operating modes defined by the NFC Forum: (1) Card Emulation Mode; (2) Reader/Writer Mode; and (3) Peer-to-Peer Mode. In the Card Emulation Mode, an NFC-enabled phone emulates a contactless card in accordance with ISO 14443 and/or ISO 15693, each of which are hereby incorporated herein by reference in their entirety. Typical applications of the Card Emulation Mode include payment, ticketing, and access control applications.
- In the Reader/Writer Mode, the NFC-enabled phone reads a tag and typically performs some function based on the information obtained from the read tag. Typical applications of the Reader/Writer Mode include reading posters with an NFC tag in proximity thereto, interactive advertising, launching mobile Internet (e.g., automated web-browser activation), automated Short Message Service (SMS), and automated call initiation.
- In the Peer-to-Peer Mode, two NFC-enabled phones, or similar types of devices, are allowed to exchange data with one another. Typical applications of the Peer-to-Peer Mode include setting up wireless settings (e.g., Bluetooth, Wi-Fi, etc.), sharing business cards, or sharing information between NFC-enabled phones.
- Current NFC tags carry NFC Data Exchange Format (NDEF) records, which have a static cryptographic signature to ensure the integrity of the data written to the tag. Unfortunately, this current approach has several weaknesses including clonability (moving the same data to another tag) and replay attacks (playing back the same static message again).
- It is one aspect of the present disclosure to solve the problem of moving valid data from one standard NFC tag to another. In particular, an NDEF record is disclosed that can be created with information about the tag itself including a non-random Unique Identifier (UID) (e.g., MAC address, SIM card number, tag ID, IP address, etc.). In some embodiments, this data can be included in the signature that is calculated for the NDEF record such that the verifier of the NDEF record could compare the record and UID read from the tag to validate the binding via the signature.
- Another mechanism to prevent against cloning and replay attacks is disclosed whereby a dynamic signature (which can be based on a nonce sent by the reading device) can be calculated by the tag itself. Since this mechanism is independent of the tag UID, it allows for tags with random UIDs.
- In some embodiments, to perform a challenge response authentication, a nonce can be provided to the tag, which is ultimately included in the signature calculation. This nonce could be provided in the request to read the tag data or during a separate authenticate command.
- In some embodiments, the tag dynamic signature may be based on a Public Key Infrastructure (PKI) solution (e.g., RSA, ECDS, etc.) and hence also introduces the concept of a tag certificate. This certificate can be added into the standard NDEF security certificate chain so that the returned NDEF data containing the dynamic signature can be verified without any changes to the verification process of current standard NDEF specifications.
- The tag certificate could include the unique identifier of the tag (e.g., static UID). The response signature might also return the tag certificate. The introduction of the tag certificate would also allow the concept of a Tag Revocation Service (e.g., a Tag Revocation List distributed and used to check the validity of tag certificates) or Online Certificate Status Protocol (OCSP) online services. Since a reading device might be desirable to check the revocation status of a tag (e.g., without performing authentication), embodiments of the present disclosure also contemplate a command or combination of commands that simply returns the tag certificate without performing any other processes.
- The present disclosure will be further understood from the drawings and the following detailed description. Although this description sets forth specific details, it is understood that certain embodiments of the invention may be practiced without these specific details. It is also understood that in some instances, well-known circuits, components and techniques have not been shown in detail in order to avoid obscuring the understanding of the invention.
- The present disclosure is described in conjunction with the appended figures:
FIG. 1 is a block diagram depicting a transaction system in accordance with embodiments of the present disclosure;FIG. 2 is a flow diagram depicting a method of generating a signature for an NDEF record in accordance with embodiments of the present disclosure;FIG. 3 is a flow diagram depicting an authentication process in accordance with embodiments of the present disclosure;FIG. 4 is a diagram depicting a first data structure in accordance with embodiments of the present disclosure;FIG. 5 is a diagram depicting a second data structure in accordance with embodiments of the present disclosure; andFIG. 6 is a flow diagram depicting a certification method in accordance with embodiments of the present disclosure.- The ensuing description provides embodiments only, and is not intended to limit the scope, applicability, or configuration of the claims. Rather, the ensuing description will provide those skilled in the art with an enabling description for implementing the described embodiments. It being understood that various changes may be made in the function and arrangement of elements without departing from the spirit and scope of the appended claims.
- Referring initially to
FIG. 1 , atransaction system 100 is depicted in accordance with embodiments of the present disclosure. Thetransaction system 100 is shown to include areading device 104 and a data-carryingdevice 108. Thereading device 104 and data-carryingdevice 108 may be configured to exchange data over awireless communication path 116 using any type of known or yet to be developed wireless communication protocol. In some embodiments, thedevices data 112 with one another using an NFC protocol, a Bluetooth standard (e.g., Bluetooth 4), infrared, or the like. Where an NFC protocol is used, thedata 112 may be stored as an NDEF record or collection of NDEF records. - It should also be appreciated that the
communication path 116 does not necessarily have to be wireless. For instance, a wire or cable (e.g., Universal Serial Bus (USB) cable) may be used to carry data between thedevices - In some embodiments, the
reading device 104 and data-carryingdevice 108 may each be equipped with NFC interfaces that enable thedevices devices device 108 may emulate a card and thereading device 104 may correspond to a reader of the data-carrying device. When operating in the Reader/Writer Mode, thereading device 104 may write data to the data-carryingdevice 108 or the data-carrying device may write data to thereading device 104. - In accordance with NFC standards, the
devices devices devices mobile devices devices - The data-carrying
device 108 may correspond to any type of communication device such as a telephone, a mobile telephone, a cellular phone, a Personal Digital Assistant (PDA), a tablet, a thin client computing device, a netbook, a watch, a key fob, a portable card-shaped credential, or the like. Similarly, thereading device 104 may correspond to a telephone, a mobile telephone, a cellular phone, a PDA, a tablet, a thin client computing device, a netbook, a watch, a key fob, or the like. In some embodiments, thereading device 104 may correspond to a traditional access control reader that may or may not be mounted to a wall or permanent location. In still other embodiments, thereading device 104 may correspond to a mobile access control reader and/or writer. - As shown in
FIG. 1 , the data-carryingdevice 108 may havedata 112 maintained thereon (e.g., stored in memory of the data-carrying device108). Although not depicted, thereading device 104 may also comprisedata 112 stored thereon. In some embodiments, thedata 112 may be used by the data-carryingdevice 108 to obtain access to one or more assets (e.g., logical and/or physical assets) protected by thereading device 104. For instance, the data-carryingdevice 108 may provide some or all of thedata 112 to thereading device 104 to access one or more assets protected by thereading device 104. - In some embodiments, some or all of the
data 112 may be stored in a secure area of memory, such as a Secure Element (SE), a Secure Access Module (SAM), a Subscriber Identity Module (SIM) card, an Integrated Circuit (IC) card, or any other computer memory that is encrypted and/or physically tamper-proof. As a non-limiting example, thedata 112 be stored as an NDEF record or collection of NDEF records along with one or more signatures that can validate the NDEF record or NDEF records. Specifically, NDEF records are a light-weight binary format, used to encapsulate typed data. NDEF records are specified by the NFC Forum, for transmission and storage with NFC, however, NDEF records are transport agnostic. In some embodiments, an NDEF record may include one or more of: typed data, such as MIME-type media, a URI, or a custom application payload. More specifically, an NDEF record may be configured to contain a 3-bit TNF (Type Name Field) that provides high level typing for the rest of the record. The remaining fields are variable length and not necessarily present: type—detailed typing for the payload; id—identifier meta-data; and/or payload—the actual payload. - With reference now to
FIG. 2 a method of generating a signature for an NDEF record will be described in accordance with at least some embodiments of the present disclosure. The method begins when it is determined that a new NDEF record is to be created and/or an NDEF record is to be updated (step204). Thereafter, the method continues by determining information about the device (e.g., data-carrying device108) on which the NDEF record will be stored (step208). In some embodiments, the determining step may include determining a UID, a site code, a card type, information about a user of the device, a hash value generated with one or a combination of such information, an XOR value generated with one or a combination of such information, some other non-random data, or some other value generated from non-random data. - The information determined in
step 208 is then used to calculate a signature for the NDEF record (step212). In some embodiments, the signature generated for the NDEF record or collection of NDEF records is generated by combining the determined information with some or all of the NDEF record. As a non-limiting example, the determined information may be a hash value generated with a combination of the determined information and the NDEF record. In other embodiments, the signature can simply be generated by calculating a hash value with the determined information only. In other embodiments, the signature can simply correspond to a concantenation of the different information obtained instep 208 or a concantenation of the determined information with the NDEF record. It should be appreciated that the mechanism(s) used to generate the signature can vary without departing from the scope of the present disclosure. - Once the signature has been generated for the NDEF record, the signature is stored in the data-carrying
device 108 along with the NDEF record (step216). In some embodiments, both the NDEF record and signature may be stored in a secure area of memory. In other embodiments, the NDEF record may be stored in a secure area of memory while the signature may be stored in a non-secure area of memory. In some embodiments, the signature can be used to validate the binding of the NDEF record with the device on which the NDEF record is stored. As an example, thereading device 104 can validate the data-carryingdevice 108 as being the intended (and possibly sole) keeper of the NDEF record because the NDEF record was bound with the data-carryingdevice 108 via the signature. The utilization of such a signature effectively prevents the unauthorized movingvalid data 112 from an authorized data-carryingdevice 108 to an unauthorized data-carrying device. - Another mechanism that can be used to prevent cloning and/or replay attacks is to enable the data-carrying
device 108 to generate a dynamic signature during an authentication process. With reference now toFIG. 3 an authentication process will be described in accordance with at least some embodiments of the present disclosure. The method begins when either thereading device 104 or the data-carryingdevice 108 initiate an authentication process (step304). In some embodiments, the authentication process is initiated by thereading device 104 when the data-carryingdevice 108 is placed within a predetermined distance from the reading device104 (e.g., within a read range of the reading device104). - The method continues with the
reading device 104 providing the data-carrying device with a nonce value, for example (step308). While a nonce value may correspond to a random or pseudo-random number generated at thereading device 104, a nonce word may be used instead of a nonce value. In other words, any arbitrary number or string may be provided to the data-carryingdevice 108 to perform the authentication process. It should also be noted that the nonce value can be provided in the request to read data from the data-carryingdevice 108 or it can be provided in a separate authenticate command (e.g., before or after thedata 112 is read from the data-carrying device108). - Upon receiving the nonce value, the data-carrying
device 108 may use the nonce value to generate a dynamic signature (step312). In some embodiments, the nonce value is brought within a secure element (SE) of the data-carryingdevice 108 and the signature is calculated within the SE. The dynamically-generated signature is then provided back to the reading device104 (step316). It should be noted that since this mechanism can be independent of the data-carryingdevice 108, this authentication protocol can be used for devices having random UIDs whereas the signature-creation process described inFIG. 2 is suited for devices having non-random UIDs. - The method continues with the data-carrying
device 108 providing one or more NDEF records to the reading device104 (step320) and then thereading device 104 analyzing the NDEF record(s) and dynamically-generated signature (step324). Many variations may occur in the execution ofsteps reading device 104 may first ask the data-carryingdevice 108 for one or more NDEF records and then ask thereading device 104 for a signature. The nonce value used by the data-carryingdevice 108 to generate the signature may be provided before or after thereading device 104 receives the NDEF records. As another example, thereading device 104 may first perform the authentication process (e.g., provide a nonce value to the data-carrying device and verify authenticity of the dynamic signature received back from the data-carrying device108) prior to obtaining an NDEF record from the data-carryingdevice 108. As still another example, the signature and NDEF record may be provided at the same time and thereading device 104 may validate both the signature and NDEF record at the same time. As still another example, the data-carryingdevice 108 may be configured to embed the nonce in the NDEF record and dynamically generate a signature. Other variants of timing will become apparent to those of ordinary skill in the art and it should be appreciated that the claims are not confined by the illustrative examples described herein. FIGS. 4 and 5 depict two examples of the structure in which thedata 112 may be stored on the data-carryingdevice 108.FIG. 4 depicts a data structure having four data fields: afirst data field 404 for a first NDEF record that describes the information obtained in step208 (e.g., tag data, tag UID, etc.); asecond data field 408 for a second NDEF record that include the nonce value; athird data field 412 for the actual data to be analyzed by thereading device 104; and afourth data field 416 for the signature. As discussed above, the NDEF signature stored in thefourth data field 416 may be used to validate one of the other NDEF records stored in the data structure. Additionally or alternatively, the NDEF signature provides a validation that the NDEF records are used to validate the data-carryingdevice 108. Specifically, the NDEF signature (whether dynamic or based on non-random data) can validate the binding between the NDEF record and the data-carryingdevice 108 that is intended or authorized to store the NDEF record.FIG. 5 depicts a data structure having three data fields: afirst data field 504 for a first NDEF record that describes the information obtained instep 208 along with a nonce value (or some combination of the two values); asecond data field 508 for the actual data to be analyzed by thereading device 104; and athird data field 512 for the signature. The data structure depicted inFIG. 5 may correspond to a compressed version of the data structure depicted inFIG. 4 .- With reference now to
FIG. 6 , a certification method will be described in accordance with embodiments of the present disclosure. The method begins when thereading device 104 transmits a command to the data-carrying device for a tag certificate (step604). In response to receiving the command from thereading device 104, the data-carryingdevice 108 generates and transmits a tag certificate to the reading device104 (step608). In some embodiments, the tag certificate may correspond to a dynamically-generated signature, such as those described above. In some embodiments, the tag certificate may correspond to a public signature from a public-private key pair. The reading device104 (or a certification agency in communication with the reading device104) may maintain the private key and the data-carryingdevice 108 may provide the public key corresponding to the private key in a key pair. In some embodiments, the tag certificate may have been added to the standard NDEF security certificate chain, so that an NDEF record containing the dynamic signature can be verified by thereading device 104 without any changes to the verification process defined in current NDEF specifications. In some embodiments, the tag certificate could include the non-random data (e.g., static UID). It should also be appreciated that the tag certificate could be provided to thereading device 104 during authentication (e.g., instep 316 or320). - Upon receiving the tag certificate, the
reading device 104 may compare the tag certificate with a revocation list that has been provided or made available to the reading device104 (step612). In other embodiments, thereading device 104 may provide the tag certificate to a third party for comparison with a revocation list. Based on the comparison of the tag certificate with the revocation list, thereading device 104 or some other device may determine and execute one or more actions or decide to perform no action (step616). As an example, if the tag certificate received from the data-carryingdevice 108 matches a tag certificate in a revocation list, then thereading device 104 or some other device may cause an alarm to be sounded, light one or more lights, the presenting data-carryingdevice 108 may be considered and treated as untrusted, security personnel may be notified, etc. More specifically, the tag revocation list may contain an identification of tag certificates that are either revoked or on hold. A tag certificate may be revoked irreversibly if it is discovered that the certificate authority improperly issued a certificate or if a private key is thought to be compromised. If this is the case, then the tag certificate may be added to the certificate revocation list. A tag certificate may also be considered temporarily invalid if the whereabouts of the certificate are unknown. The revocation list may also list these types of certificates that are currently being held. If a data-carryingdevice 108 presents a tag certificate that is listed on the revocation list, then actions consistent with identifying an untrusted data-carryingdevice 108 may be performed. - It should be appreciated that while embodiments of the present disclosure have been described in connection with a revocation list, the present disclosure is not so limited. For instance, a white list may be used instead of or in combination with a revocation list. Any other type of black or white listing processes may be performed in connection with the tag certificates, dynamic signatures, and static signatures described herein.
- In the foregoing description, for the purposes of illustration, methods were described in a particular order. It should be appreciated that in alternate embodiments, the methods and steps thereof may be performed in a different order than that described. It should also be appreciated that the methods described above may be performed by hardware components or may be embodied in sequences of machine-executable instructions, which may be used to cause a machine, such as a general-purpose or special-purpose processor or logic circuits programmed with the instructions to perform the methods. These machine-executable instructions may be stored on one or more machine readable mediums, such as CD-ROMs or other type of optical disks, floppy diskettes, ROMs, RAMs, EPROMs, EEPROMs, SIMs, SAMs, magnetic or optical cards, flash memory, or other types of machine-readable mediums suitable for storing electronic instructions. Alternatively, the methods may be performed by a combination of hardware and software.
- Specific details were given in the description to provide a thorough understanding of the embodiments. However, it will be understood by one of ordinary skill in the art that the embodiments may be practiced without these specific details. For example, circuits may be shown in block diagrams in order not to obscure the embodiments in unnecessary detail. In other instances, well-known circuits, processes, algorithms, structures, and techniques may be shown without unnecessary detail in order to avoid obscuring the embodiments.
- Also, it is noted that the embodiments were described as a process which is depicted as a flowchart, a flow diagram, a data flow diagram, a structure diagram, or a block diagram. Although a flowchart may describe the operations as a sequential process, many of the operations can be performed in parallel or concurrently. In addition, the order of the operations may be re-arranged. A process is terminated when its operations are completed, but could have additional steps not included in the figure. A process may correspond to a method, a function, a procedure, a subroutine, a subprogram, etc. When a process corresponds to a function, its termination corresponds to a return of the function to the calling function or the main function.
- Furthermore, embodiments may be implemented by hardware, software, firmware, middleware, microcode, hardware description languages, or any combination thereof. When implemented in software, firmware, middleware or microcode, the program code or code segments to perform the necessary tasks may be stored in a machine readable medium such as storage medium. A processor(s) may perform the necessary tasks. A code segment may represent a procedure, a function, a subprogram, a program, a routine, a subroutine, a module, a software package, a class, or any combination of instructions, data structures, or program statements. A code segment may be coupled to another code segment or a hardware circuit by passing and/or receiving information, data, arguments, parameters, or memory contents. Information, arguments, parameters, data, etc. may be passed, forwarded, or transmitted via any suitable means including memory sharing, message passing, token passing, network transmission, etc.
- While illustrative embodiments of the disclosure have been described in detail herein, it is to be understood that the inventive concepts may be otherwise variously embodied and employed, and that the appended claims are intended to be construed to include such variations, except as limited by the prior art.
Claims (15)
1. A method, comprising:
receiving a first input at a data-carrying device that is storing one or more Near Field Communications (NFC) Data Exchange Format (NDEF) records;
generating a signature for the one or more NDEF records, the data-carrying device using the first input to generate the signature; and
providing the signature from the data-carrying device to a reading device so that the reading device can validate that the data-carrying device is authorized to store the one or more NDEF records.
2. The method ofclaim 1 , wherein the signature is generated in a Secure Element (SE) of the data-carrying device.
3. The method ofclaim 2 , wherein the data-carrying device comprises an NFC-enabled mobile communication device.
4. The method ofclaim 1 , wherein the first input comprises non-random data that describes at least one of the data-carrying device and a user of the data-carrying device.
5. The method ofclaim 4 , wherein the non-random data comprises a Unique Identifier (UID) assigned to the data-carrying device.
6. The method ofclaim 1 , wherein the first input comprises a nonce value.
7. The method ofclaim 6 , wherein the data-carrying device dynamically generates the signature in response to receiving the nonce value from the reading device and wherein the nonce value is embedded in the one or more NDEF records.
8. The method ofclaim 1 , further comprising:
comparing the signature received from the data-carrying device with a tag revocation list; and
based on the comparison of the signature with the tag revocation list, determining whether or not the signature corresponds to a revoked tag certificate.
9. The method ofclaim 1 , wherein the one or more NDEF records are stored in a Secure Element (SE) of the data-carrying device.
10. The method ofclaim 9 , wherein the signature is also stored in the SE of the data-carrying device.
11. A data-carrying device, comprising:
a Near Field Communications (NFC) interface, which enables the data-carrying device to exchange NFC Data Exchange Format (NDEF) records with other NFC-enabled devices; and
memory in which at least one NDEF record is stored along with a signature which provides proof that the data-carrying device is authorized to store the at least one NDEF record.
12. The device ofclaim 11 , wherein the signature is generated with non-random data that describes the data-carrying device.
13. The device ofclaim 12 , wherein the non-random data comprises a Unique Identifier (UID) assigned to the data-carrying device.
14. The device ofclaim 11 , wherein the signature is generated with a randomly or pseudo-randomly generated number.
15. The device ofclaim 11 , wherein the memory comprises a Secure Element (SE).
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US16/265,188US20190165947A1 (en) | 2013-07-01 | 2019-02-01 | Signatures for near field communications |
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| PCT/IB2013/001949WO2015001376A1 (en) | 2013-07-01 | 2013-07-01 | Signatures for near field communications |
| US201514897708A | 2015-12-11 | 2015-12-11 | |
| US16/265,188US20190165947A1 (en) | 2013-07-01 | 2019-02-01 | Signatures for near field communications |
Related Parent Applications (2)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US14/897,708ContinuationUS10237072B2 (en) | 2013-07-01 | 2013-07-01 | Signatures for near field communications |
| PCT/IB2013/001949ContinuationWO2015001376A1 (en) | 2013-07-01 | 2013-07-01 | Signatures for near field communications |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| US20190165947A1true US20190165947A1 (en) | 2019-05-30 |
Family
ID=49354705
Family Applications (2)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US14/897,708ActiveUS10237072B2 (en) | 2013-07-01 | 2013-07-01 | Signatures for near field communications |
| US16/265,188AbandonedUS20190165947A1 (en) | 2013-07-01 | 2019-02-01 | Signatures for near field communications |
Family Applications Before (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US14/897,708ActiveUS10237072B2 (en) | 2013-07-01 | 2013-07-01 | Signatures for near field communications |
Country Status (3)
| Country | Link |
|---|---|
| US (2) | US10237072B2 (en) |
| EP (1) | EP3017580B1 (en) |
| WO (1) | WO2015001376A1 (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20240089103A1 (en)* | 2022-09-12 | 2024-03-14 | Embracer Freemode Inc. | Verifying electronic device authenticity via near-field communication |
Families Citing this family (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2014037812A1 (en) | 2012-09-10 | 2014-03-13 | Assa Abloy Ab | Method, apparatus, and system for providing and using a trusted tag |
| WO2014140807A2 (en) | 2013-03-15 | 2014-09-18 | Assa Abloy Ab | Method, system, and device for generating, storing, using, and validating nfc tags and data |
| EP3086253B1 (en)* | 2013-12-16 | 2017-12-13 | Panasonic Intellectual Property Management Co., Ltd. | Authentication system, and authentication method |
| US9703968B2 (en) | 2014-06-16 | 2017-07-11 | Assa Abloy Ab | Mechanisms for controlling tag personalization |
| EP3170292B1 (en) | 2014-07-15 | 2022-03-30 | Assa Abloy Ab | Cloud card application platform |
| CN105657647B (en)* | 2016-03-18 | 2019-04-26 | 中国联合网络通信集团有限公司 | NFC-based data transmission method and system |
| EP3232399A1 (en) | 2016-04-12 | 2017-10-18 | Visa Europe Limited | System for performing a validity check of a user device |
| US10462666B2 (en)* | 2016-08-19 | 2019-10-29 | Jason Dean Hart | Method of communicating and authenticating credentials between a portable computing device and multiple radio frequency identification enabled readers |
| WO2018187596A1 (en)* | 2017-04-06 | 2018-10-11 | Walmart Apollo, Llc | Authentication system using nfc tags |
| US11363455B2 (en)* | 2019-01-11 | 2022-06-14 | Qualcomm Incorporated | Near field communication forum data exchange format (NDEF) messages with authenticated encryption |
| US10643420B1 (en)* | 2019-03-20 | 2020-05-05 | Capital One Services, Llc | Contextual tapping engine |
| EP3745373A1 (en)* | 2019-05-27 | 2020-12-02 | Televic Healthcare NV | Method and system for identifying a signalling unit user |
| US11777709B2 (en) | 2019-09-19 | 2023-10-03 | Visa International Service Association | System and method for using dynamic tag content |
| US20230125567A1 (en)* | 2021-10-22 | 2023-04-27 | Sap Se | Application security through global lockout and capture |
| CN119483960B (en)* | 2025-01-17 | 2025-07-04 | 珠海信和友科技有限公司 | SAM card control system and method |
Family Cites Families (67)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7743248B2 (en) | 1995-01-17 | 2010-06-22 | Eoriginal, Inc. | System and method for a remote access service enabling trust and interoperability when retrieving certificate status from multiple certification authority reporting components |
| US6961000B2 (en) | 2001-07-05 | 2005-11-01 | Amerasia International Technology, Inc. | Smart tag data encoding method |
| US9031880B2 (en) | 2001-07-10 | 2015-05-12 | Iii Holdings 1, Llc | Systems and methods for non-traditional payment using biometric data |
| US20050061875A1 (en) | 2003-09-10 | 2005-03-24 | Zai Li-Cheng Richard | Method and apparatus for a secure RFID system |
| CN1894923A (en) | 2003-10-08 | 2007-01-10 | 史蒂芬·J·英格博格 | Method and system for establishing communications using improved privacy techniques |
| WO2006005773A1 (en) | 2004-06-09 | 2006-01-19 | Microelectronica Española, S.A.U | Method and device for sharing information between memory parcels in limited resource environments |
| US7647024B2 (en) | 2005-10-03 | 2010-01-12 | Sellerbid, Inc. | Method and system for improving client server transmission over fading channel with wireless location and authentication technology via electromagnetic radiation |
| US8049594B1 (en) | 2004-11-30 | 2011-11-01 | Xatra Fund Mx, Llc | Enhanced RFID instrument security |
| US7295114B1 (en) | 2005-01-21 | 2007-11-13 | Alien Technology Corporation | Location management for radio frequency identification readers |
| EP1710764A1 (en) | 2005-04-07 | 2006-10-11 | Sap Ag | Authentication of products using identification tags |
| WO2006130481A2 (en) | 2005-05-27 | 2006-12-07 | T3C Inc | Certifying and securing custody in product supply chains |
| NL1030164C2 (en) | 2005-10-11 | 2007-04-12 | Ideatics B V | System and method for obtaining object data. |
| US20070174429A1 (en) | 2006-01-24 | 2007-07-26 | Citrix Systems, Inc. | Methods and servers for establishing a connection between a client system and a virtual machine hosting a requested computing environment |
| US7492258B1 (en) | 2006-03-21 | 2009-02-17 | Radiofy Llc | Systems and methods for RFID security |
| US8344853B1 (en) | 2006-05-16 | 2013-01-01 | Eigent Technologies, Llc | Secure RFID system and method |
| US8074271B2 (en) | 2006-08-09 | 2011-12-06 | Assa Abloy Ab | Method and apparatus for making a decision on a card |
| EP2076799A4 (en)* | 2006-09-08 | 2011-03-09 | Certicom Corp | Authenticated radio frequency identification and key distribution system therefor |
| JP5023673B2 (en) | 2006-11-24 | 2012-09-12 | 富士通株式会社 | Information access system, read / write device, and active contactless information storage device |
| DE102007009023B4 (en) | 2007-02-23 | 2011-12-22 | Siemens Ag | Device and method for providing RFID identification data for an authentication server |
| US9311766B2 (en)* | 2007-09-12 | 2016-04-12 | Devicefidelity, Inc. | Wireless communicating radio frequency signals |
| EP2223460A4 (en) | 2007-12-20 | 2011-12-28 | Bce Inc | Contact-less tag with signature, and applications thereof |
| US8078534B1 (en) | 2008-06-16 | 2011-12-13 | Bank Of America Corporation | Cash supply chain surveillance |
| KR101508794B1 (en)* | 2008-07-09 | 2015-04-06 | 삼성전자주식회사 | A method for selectively securing records in an NDEF message |
| US20110025473A1 (en) | 2009-08-01 | 2011-02-03 | Rfmicron, Inc. | Method and apparatus for linking an rfid tag to an object |
| EP2483875A4 (en) | 2009-09-29 | 2013-12-11 | Savi Techn Inc | Apparatus and method for advanced communication in low-power wireless applications |
| GB2476989A (en) | 2010-01-19 | 2011-07-20 | Proxama Ltd | Activation of secure function in mobile computing device using authentication tag |
| US8532571B2 (en) | 2010-03-26 | 2013-09-10 | Broadcom Corporation | Method and system for determining a location for a RF communication device based on its proximity to a mobile device |
| AU2010230088B2 (en) | 2010-02-25 | 2012-09-20 | Idondemand, Inc. | Authentication system and method in a contactless environment |
| US8218557B2 (en) | 2010-04-09 | 2012-07-10 | Telefonaktiebolaget L M Ericsson (Publ) | Scalable distributed user plane partitioned two-stage forwarding information base lookup for subscriber internet protocol host routes |
| US20130102252A1 (en) | 2010-04-21 | 2013-04-25 | Eth Zurich | Method for communicating and distance bounding system |
| US8621168B2 (en) | 2010-12-17 | 2013-12-31 | Google Inc. | Partitioning the namespace of a contactless smart card |
| AU2011200445B8 (en) | 2011-02-03 | 2013-03-07 | Idondemand Pty Ltd | Method and apparatus for dynamic authentication |
| EP2487629B1 (en)* | 2011-02-10 | 2016-11-30 | Nxp B.V. | Secure smart poster |
| CN102609846B (en) | 2011-03-18 | 2014-02-05 | 诺美网讯应用技术有限公司 | Anti-false verification method and system based on communication network |
| US8789146B2 (en) | 2011-04-14 | 2014-07-22 | Yubico Inc. | Dual interface device for access control and a method therefor |
| EP2518657A1 (en) | 2011-04-27 | 2012-10-31 | Gemalto SA | Method and system for communicating data to a contact-less communicating device |
| US20130039634A1 (en) | 2011-08-12 | 2013-02-14 | Honeywell International Inc. | System and method of creating an intelligent video clip for improved investigations in video surveillance |
| WO2013034681A1 (en) | 2011-09-08 | 2013-03-14 | Ehrensvaerd Jakob | Devices and methods for identification, authentication and signing purposes |
| WO2013072437A1 (en) | 2011-11-18 | 2013-05-23 | Famoco | Key protected nfc tag method and system, and a method for diversify coupon on a viral distribution chain by nfc |
| US8583933B2 (en) | 2011-12-23 | 2013-11-12 | Ebay Inc. | Authenticated checkin via passive NFC |
| US8880027B1 (en) | 2011-12-29 | 2014-11-04 | Emc Corporation | Authenticating to a computing device with a near-field communications card |
| WO2013110074A1 (en) | 2012-01-20 | 2013-07-25 | Identive Group, Inc. | Cloud secure channel access control |
| EP2817708B1 (en) | 2012-02-21 | 2020-08-26 | Zebra Technologies Corporation | Method and apparatus for implementing near field communications with a printer |
| US9253589B2 (en)* | 2012-03-12 | 2016-02-02 | Blackberry Limited | Wireless local area network hotspot registration using near field communications |
| CN102663591A (en)* | 2012-03-19 | 2012-09-12 | 樊俊锋 | Product anti-counterfeiting method and system based on electronic tag |
| US9842335B2 (en) | 2012-03-23 | 2017-12-12 | The Toronto-Dominion Bank | System and method for authenticating a payment terminal |
| US8429409B1 (en)* | 2012-04-06 | 2013-04-23 | Google Inc. | Secure reset of personal and service provider information on mobile devices |
| EP2663110A1 (en)* | 2012-05-11 | 2013-11-13 | BlackBerry Limited | Near Field Communication Tag Data Management |
| US10103784B2 (en)* | 2012-05-24 | 2018-10-16 | Blackberry Limited | Creation and management of near field communications tags |
| US20130314334A1 (en)* | 2012-05-24 | 2013-11-28 | Research In Motion Limited | Device, System, and Method for Logging Near Field Communications Tag Interactions |
| US20130344804A1 (en)* | 2012-06-22 | 2013-12-26 | Research In Motion Limited | Nfc transport auto discovery |
| US9436940B2 (en) | 2012-07-09 | 2016-09-06 | Maxim Integrated Products, Inc. | Embedded secure element for authentication, storage and transaction within a mobile terminal |
| US20140023195A1 (en) | 2012-07-23 | 2014-01-23 | Electronics And Telecommunications Research Institute | Radio frequency identification (rfid) tag, interrogator, and method for authentication between the rfid tag and the interrogator |
| US9514323B2 (en) | 2012-08-30 | 2016-12-06 | Intelleflex Corporation | RFID system with segmented RFID data ownership |
| WO2014037812A1 (en) | 2012-09-10 | 2014-03-13 | Assa Abloy Ab | Method, apparatus, and system for providing and using a trusted tag |
| US8922344B2 (en) | 2012-10-25 | 2014-12-30 | Symbol Technologies, Inc. | Detecting rogue radio frequency based tags based on locationing |
| US9323412B2 (en) | 2012-10-26 | 2016-04-26 | Cellco Partnership | Briefing tool having self-guided discovery and suggestion box features |
| US9038149B2 (en) | 2012-12-18 | 2015-05-19 | Virtual Keyring, LLC | Cloud based password management |
| US9406046B2 (en) | 2013-03-07 | 2016-08-02 | Intelleflex Corporation | RFID systems and methods for associating images of documents with RFID tag-related data |
| US10152706B2 (en)* | 2013-03-11 | 2018-12-11 | Cellco Partnership | Secure NFC data authentication |
| CN105378774A (en) | 2013-03-12 | 2016-03-02 | 英特托拉斯技术公司 | Secure transaction system and method |
| US9685057B2 (en) | 2013-03-15 | 2017-06-20 | Assa Abloy Ab | Chain of custody with release process |
| WO2014140807A2 (en) | 2013-03-15 | 2014-09-18 | Assa Abloy Ab | Method, system, and device for generating, storing, using, and validating nfc tags and data |
| US8706557B1 (en) | 2013-05-08 | 2014-04-22 | Visa International Service Association | Systems and methods to identify merchants |
| US20150103383A1 (en) | 2013-10-10 | 2015-04-16 | Eric Morgan Dowling | Network scanner for global document creation, transmission and management |
| US9703968B2 (en) | 2014-06-16 | 2017-07-11 | Assa Abloy Ab | Mechanisms for controlling tag personalization |
| EP3170292B1 (en) | 2014-07-15 | 2022-03-30 | Assa Abloy Ab | Cloud card application platform |
- 2013
- 2013-07-01USUS14/897,708patent/US10237072B2/enactiveActive
- 2013-07-01WOPCT/IB2013/001949patent/WO2015001376A1/enactiveApplication Filing
- 2013-07-01EPEP13776554.1Apatent/EP3017580B1/enactiveActive
- 2019
- 2019-02-01USUS16/265,188patent/US20190165947A1/ennot_activeAbandoned
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20240089103A1 (en)* | 2022-09-12 | 2024-03-14 | Embracer Freemode Inc. | Verifying electronic device authenticity via near-field communication |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2015001376A1 (en) | 2015-01-08 |
| EP3017580B1 (en) | 2020-06-24 |
| US10237072B2 (en) | 2019-03-19 |
| EP3017580A1 (en) | 2016-05-11 |
| US20160142210A1 (en) | 2016-05-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20190165947A1 (en) | Signatures for near field communications | |
| US20250014021A1 (en) | Cryptographic mechanisms including means for verifying the identity of a user of a system utilising key distribution involving additional devices | |
| US10826707B2 (en) | Privacy preserving tag | |
| EP2893736B1 (en) | Method, apparatus, and system for providing and using a trusted tag | |
| US8112787B2 (en) | System and method for securing a credential via user and server verification | |
| CA2838763C (en) | Credential authentication methods and systems | |
| JP6092415B2 (en) | Fingerprint authentication system and fingerprint authentication method based on NFC | |
| JP5601729B2 (en) | How to log into a mobile radio network | |
| US20140365781A1 (en) | Receiving a Delegated Token, Issuing a Delegated Token, Authenticating a Delegated User, and Issuing a User-Specific Token for a Resource | |
| EP3128696B1 (en) | Entity authentication method and device | |
| CN103259667A (en) | Method and system for eID authentication on mobile terminal | |
| CN110278084B (en) | eID establishment method, related equipment and system | |
| CN110290134A (en) | A kind of identity identifying method, device, storage medium and processor | |
| CN106096947A (en) | Half off-line anonymous method of payment based on NFC | |
| CN102523095A (en) | User digital certificate remote update method with intelligent card protection function | |
| Cooijmans et al. | Secure key storage and secure computation in Android | |
| CN106779672A (en) | The method and device that mobile terminal safety pays | |
| Bolhuis | Using an NFC-equipped mobile phone as a token in physical access control | |
| CN104205900B (en) | Wireless Storage Device Certification | |
| Kilani et al. | Mobile authentication with NFC enabled smartphones | |
| KR102078319B1 (en) | Method for Processing Electronic Signature based on Universal Subscriber Identity Module at a Telegraph Operator | |
| KR102149313B1 (en) | Method for Processing Electronic Signature based on Universal Subscriber Identity Module | |
| Kasper et al. | Rights management with NFC smartphones and electronic ID cards: A proof of concept for modern car sharing | |
| Faridoon et al. | Security Protocol for NFC Enabled Mobile Devices Used in Financial Applications | |
| Oliveira | Dynamic QR codes for Ticketing Systems |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| AS | Assignment | Owner name:ASSA ABLOY AB, SWEDEN Free format text:ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:HOYER, PHILLIP;ROBINTON, MARK;SIGNING DATES FROM 20170726 TO 20171120;REEL/FRAME:048219/0764 | |
| STPP | Information on status: patent application and granting procedure in general | Free format text:DOCKETED NEW CASE - READY FOR EXAMINATION | |
| STPP | Information on status: patent application and granting procedure in general | Free format text:NON FINAL ACTION COUNTED, NOT YET MAILED | |
| STPP | Information on status: patent application and granting procedure in general | Free format text:NON FINAL ACTION MAILED | |
| STCB | Information on status: application discontinuation | Free format text:ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION |