Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Particular communication authentication technique
Reexamination Certificate
2000-08-09
2002-11-12
Peeso, Thomas R. (Department: 2132)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Particular communication authentication technique
C713S182000, C380S277000
Reexamination Certificate
active
06480957
ABSTRACT:
REFERENCE TO A “MICROFICHE APPENDIX”
Appendix, which is a part of the present disclosure, is a microfiche appendix consisting of 3 sheets of microfiche having a total of 176 frames. The microfiche Appendix is a source code listing of one embodiment of the present invention, which is described more completely in the sequel.
A Portion of the disclosure of this patent document contains material that is subject to copyright protection. The copyright owner has no objection to the facsimile reproduction by anyone of the patent document or the patent disclosure, as it appears in the Patent and Trademark Office patent file or records, but otherwise reserves all copyrights whatsoever.
BACKGROUND OF THE INVENTION
1. Field of Invention
The invention relates to wireless data communications, and more particularly relates to secure lightweight transactions between mobile devices and landline servers over wireless data networks; wherein the mobile devices have very limited computing power, memory and graphical display capability.
2. Description of the Related Art
A fast-growing trend on the Internet is electronic commerce. The electronic commerce is an integrative concept designed to draw together a wide range of business support services, trading support systems for commodities, products, customized products and custom-built goods and services; ordering and logistic support systems; settlement support systems; and management information and statistical reporting systems, all via the Internet. It is well known, however, that the Internet is a wide open, public and international network of interconnected computers and electronic devices around the world. Anyone who has access to a computer in the network can intercept signals carrying proprietary information traveling along the network. To transact business over the open network, companies or individuals must have an efficient, reliable and secured manner to conduct private communications therebetween. Security thus becomes a primary concern over the open Internet and there have been many efforts in progress aimed at protecting the proprietary information travelling in the Internet. One of the efforts is to use cryptographic techniques to secure a private communication between two parties. The cryptographic techniques provide a way to transmit information across untrusted communication channel without disclosing the contents of the information to anyone accessing the communication channel.
U.S. Pat. No. 5,671,279 to Taher Elgamal discloses a courier electronic payment system for conducting the electronic commerce using a secure courier system. The system governs the relationship between a customer, merchant, and acquirer gateway to perform credit card purchases over the open network by using a secure connection to simplify the problem of Internet-based financial transactions. Visa International Service Association, in collaboration with Microsoft Corporation, provides a secured transaction technology using digital signature to authenticate a credit card and merchant decal, referring to http://www.visa.com for detail. The technologies developed by RSA Data Security, Inc. are the global de facto standard for public key encryption and digital signature and may be part of existing and proposed standards for the Internet as well as business and financial networks around the world. More information about the Internet security can be found at http://www.rsa.com.
The above and other ongoing efforts are all primarily targeted at the Internet that is a plurality of landline or wired networks. To use the Internet, one has to have a physical access to a computer wired into the network. To provide the mobility of the network, wireless data networks were introduced, as such the landline networks become an integral part of the wireless data networks. With the wireless data networks, people, as they travel or move about, are able to perform, through wireless computing devices or handheld communication devices, exactly the same tasks as they could do with computers in the landline networks. Similar to the Internet, however, the nature of the wireless communications provides an opportunity for intrusion since the mobile data is sent through the air. Anyone who has an appropriate receiver with a designed antenna can intercept signals being communicated between a wireless computing device and a landline base-station or network. Privacy, authentication, authorization, and integrity are thus deemed the important elements in a wireless data network. Therefore additional efforts have been started to ensure that the proprietary information is sent via wireless networks that must be restricted only to those with a need to know.
Many networks employ encryption and other security measures to protect mobile data from access by an unauthorized third party. Certain technologies and access methods contribute to network security. Spread spectrum technology, for example, is inherently secure, but it only provides a link level security. There is no guarantee that a mobile device has a secure communication to a landline device through a complete wireless network that generally comprises an airnet, the Internet and a gateway therebetween. U.S. Pat. No. 5,604,806 to Hassan, et al, discloses an apparatus and method for secure radio communication by using key sequences derived from the short-term reciprocity and radio spatial decorrelation of phase of the radio channel. U.S. Pat. No. 5,371,794 to Whitfield, et al, shows another method and apparatus for providing a secure communication between a mobile wireless data processing device and a base data processing device. The mobile device sends the base device a digitally signed mutually trusted certificate according to a public encryption key and the base device sends a modified version to the mobile device upon successfully recovering the certificate. If the mobile device recovers the modified version, both devices enter a secure data communication. The disclosed system by Whitfield may work well with mobile devices that have competitive computing resources to satisfy the public-key-based encryption speed. Nevertheless the connection time in an airnet is expensively measured and many mobile devices such as mobile phones have a small fraction of the computing resources provided in a typical desktop or portable computer. The computing power in a typical cellular phone is less than one percent of what is in a regular desktop computer, the memory capacity thereof is generally less than 250 kilobytes and the LCD display is perhaps four lines high by twelve or twenty characters, the graphics capabilities thereof are very limited or nearly nonexistent. There has been thus a great need for a generic solution that provides a secure communication with competitive performance between mobile devices of limited computing resources and landline devices through an open network.
Further many current networks operate based on Hypertext Transfer Protocol (HTTP) that is built on the Transmission Control Protocol/Internet Protocol (TCP/IP). But the TCP protocol requires considerable computing power and network bandwidth resources. A single connection, for example, may require an exchange of more than ten packets between a sender and a receiver in the Internet. Therefore there has been further a need for a generic method and system that provide a secure communication between mobile devices and landline devices using fewer number of packets so as to increase transmission efficiency in mobile devices of limited computing resources.
SUMMARY OF THE INVENTION
The present invention has been made in consideration of the above described problems. According to a preferred embodiment, the present invention is a method and system for establishing an authenticated and secure communication session for transactions between a server and a client in a wireless data network that generally comprises an airnet, a landline network and a link server therebetween. The client is remotely located with respect to the server and communicates to the server through the wireless da
Boyle Stephen S.
King Peter F.
Liao Hanqing
Schwartz Bruce V.
Beyer Weaver & Thomas LLP
Openwave Systems Inc.
Peeso Thomas R.
LandOfFree
Method and system for secure lightweight transactions in... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and system for secure lightweight transactions in..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and system for secure lightweight transactions in... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2972515