Data processing: database and file management or data structures – Database design – Data structure types
Reexamination Certificate
1999-09-21
2002-11-05
Alam, Hosain T. (Department: 2172)
Data processing: database and file management or data structures
Database design
Data structure types
C707S793000, C707S793000, C380S239000
Reexamination Certificate
active
06477547
ABSTRACT:
BACKGROUND OF THE INVENTION
1. Field of the Invention
The present invention relates to processing systems comprised of a data processing device and a data access device, and data processing and data access devices used in processing systems. The present invention relates particularly to processing systems comprised of data processing and data access devices capable of preventing improper access, and data processing and data access devices used in processing systems capable of preventing improper access.
2. Description of the Background Art
A hard disk device and a PC card ATA (Personal Computer Card Advance Technology Attachment) which are used in a terminal device such as a notebook-type personal computer can readily be removed from the terminal device and thus often used for carrying data. However, the data stored therein can be improperly stolen or changed by a third party and they are thus not suitable for storing classified information. Thus it is essential for such storage devices to have a mechanism which protects the security of data. It is also important for IC (Integrated Circuit) cards to have a data security protection mechanism.
Japanese Patent Laying-Open No. 61-43376 discloses a method of virtual authentication between an IC card and a device that can prevent a third party, e.g., from improperly stealing or changing the data stored therein. Referring to
FIG. 11
, an IC card
62
and a device
60
, which communicate data mutually, each have system-specific functions F
1
and F
2
. Device
60
and IC card
62
generate random numbers a
1
and a
2
, respectively, and transmit their respective random numbers to each other. Device
60
and IC card
62
each use random numbers a
1
and a
2
as arguments to calculate values F
1
(a
1
, a
2
) and F
2
(a
1
, a
2
) of the respective functions F
1
and F
2
. Device
60
transmits value F
2
(a
1
, a
2
) to IC card
62
. IC card
62
compares the received value F
2
(a
1
, a
2
) with a value F
2
(a
1
, a
2
) calculated by IC card
62
and, if the values are equal, regards device
60
as a regular device. When IC card
62
recognizes device
60
as a regular device, IC card
62
transmits value F
1
(a
1
, a
2
) to device
60
. Device
60
compares the received value F
1
(a
1
, a
2
) with a value F
1
(a
1
, a
2
) calculated by device
60
and, if the values are equal, regards IC card
62
as a regular card and issues to IC card
62
a command for access. Once the command for access has been issued, device
60
and IC card
62
mutually communicate data, as desired. Device
60
and IC card
62
having common functions and comparing values of the functions thus allow device
60
to determine whether card
62
is a regular card and card
62
to determine whether device
60
is a regular device.
However, if a third party could improperly steal data communicated between regular device
60
and regular IC card
62
, the third party can obtain random numbers a
1
and a
2
and values F
1
(a
1
, a
2
) and F
2
(a
1
, a
2
) of functions F
1
and F
2
. Thus the third party can construct a false device
60
to improperly steal data of IC card
62
.
It should also be noted that if possible values of random numbers a
1
and a
2
can widely range and such a round-robin system as mentioned above cannot be carried out in a reasonable time, a portion of data can be used to conjecture function F
2
. Thus a third party can construct a false device
60
which outputs value F
2
(a
1
, a
2
) of function F
2
so that IC card
62
regards false device
60
as a regular device. Thus the third party can improperly steal data stored in IC card
62
.
SUMMARY OF THE INVENTION
The present invention has been made to overcome the above disadvantages.
One object of the present invention is to provide a processing system capable of preventing third parties from carrying out improper processings.
Another object of the present invention is to provide a processing system capable of preventing third parties from carrying out improper processings if the third parties could improperly steal data communicated between devices.
Still another object of the present invention is to provide a data processing device used in a processing system that can prevent third parties from carrying out improper processings.
Still another object of the present invention is to provide a data processing device used in a processing system that can prevent third parties from carrying out improper processings if the third parties could improperly steal data communicated between devices.
Still another object of the present invention is to provide a data access device used in a processing system that can prevent third parties from carrying out improper processings.
Still another object of the present invention is to provide a data access device used in a processing system that can prevent third parties from carrying out improper processings if the third parties could improperly steal data communicated between devices.
In one aspect of the present invention, a processing system includes a data processing device and a data access device which are mutually connected to implement a predetermined function. The data processing device includes a data select unit disposed to select data, a first conversion unit connected to the data select unit to convert selected data according to a predetermined method, a first transmission unit connected to the first conversion unit to transmit converted data to the data access device, a first reception unit receiving data from the data access device, a second conversion unit connected to the data select unit to convert the selected data according to a predetermined method, and a first operation determining unit connected to the first reception unit and the second conversion unit to compare outputs from the first reception unit and the second conversion unit and respond to a result of the comparison between the outputs from the first reception unit and the second conversion unit by determining an operation of the data processing device. The data access device includes a second reception unit connected to the first transmission unit to receive an output from the first transmission unit, a third conversion unit connected to the second reception unit to convert an output from the second reception unit in accordance with a predetermined method, a first comparator unit connected to the second reception unit and the third conversion unit to compare an output from the third conversion unit and data defined by the output from the second reception unit, a fourth conversion unit connected to the second reception unit to convert the output from the second reception unit in accordance with a predetermined method, and a second operation determining unit connected to the first comparator unit and the fourth conversion unit and respond to a result of the comparison by determining an operation of the data access device and transmitting an output from the fourth conversion unit to the data processing device.
A third party who has obtained a relationship between selected data and the output from the fourth conversion unit that is transmitted from the second operation determining unit may improperly construct a false data access device which can transmit to the data processing device the data identical to the output from the fourth conversion unit associated with the selected data once the false device has received the selected data. Thus the third party may improperly combine the false data access device with the regular data processing device to implement a predetermined function. For example, if the data processing device is a storage device the third party may improperly steal data stored in the storage device. In effect, however, the selected data is previously converted by the first conversion unit before it is transmitted to the data access device. Thus, if the third party could improperly steal communication between the data processing device and the data access device, the party could hardly extract only the selected data. Thus the third party cannot engage the pro
Alam Hosain T.
Fleurantin Jean Bolte
LandOfFree
Processing system comprised of data processing device and... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Processing system comprised of data processing device and..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Processing system comprised of data processing device and... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2954414