USRE38899E1 - Method for providing location certificates - Google Patents
Method for providing location certificates Download PDFInfo
- Publication number
- USRE38899E1 USRE38899E1 US09/377,724 US37772499A USRE38899E US RE38899 E1 USRE38899 E1 US RE38899E1 US 37772499 A US37772499 A US 37772499A US RE38899 E USRE38899 E US RE38899E
- Authority
- US
- United States
- Prior art keywords
- location
- beacon
- time
- sensor
- unit
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Lifetime
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3271—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3297—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving time stamps, e.g. generation of time stamps
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/80—Wireless
- H04L2209/805—Lightweight hardware, e.g. radio-frequency identification [RFID] or sensor
Definitions
- the invention relates to methods and apparatus for providing reliable location certificates which are used to prove the geographic location of a particular object or event. More particularly, the invention relates to establishing to a requestor that an object is being used in its restricted area of use, that an object being tracked is in a particular geographical location, or that an event is confined to a particular area.
- the object may be highly mobile or relegated to use in a confined area or confined areas.
- Objects being transported by vehicle are highly mobile. With respect to such objects which are dangerous or controlled, as for example toxic waste and nuclear materials, it is desirable to be able to reliably monitor their location during transport between locations. Such monitoring may be continuous or may be from point-to-point.
- Digital signatures represent objects which may be intended to be used only in Highly localized areas. Digital signatures involve the use of cryptographic keys to sign messages. For legal or security reasons it is at times important to prove or establish that these digital signatures are being generated within a particular jurisdiction, a specific complex, building or room. For example, a digital signature of a bank employee that is used in various bank transactions would advantageously be confined to the location of a guarded bank facility. An employee's computer sign-on token may be limited to use at a specified location such as home or the office. For audit and billing purposes the location of requestors for access to sensitive material or databases is needed.
- a supplier of electronic broadcasts may need to screen certain locales to black-out reception of certain sports broadcasts, concerts, etc., or other signals such as electronic gambling events.
- satellite decoder boxes limited to use in licensed areas are needed.
- the present invention uses unique location certificates to track goods and wares during shipment, establish the location of participants in a network, determine the location at which a digital signature was performed, ascertain the validity of objects which are expected or mandated to be present within certain geographic bounds and control the use of security or sensitive devices by limiting their operation to certain locations.
- Determining the location of an object or event involves the employment of a position determination unit.
- the position determination unit operates on the reception of Loran or Global Positioning System (GPS) signals to establish its location.
- GPS Global Positioning System
- the unit may continuously determine its position or compute its position on request.
- a secure authorization unit functions to authenticate the location information reported to a requestor. Specifically, the secure authorization unit, through the use of its private digital signature key and a certificate authenticates that the requested position information is provided by a trusted location certification unit.
- FIG. 1 shows a first illustrative embodiment of a location certification unit
- FIG. 2 shows another illustrative embodiment with a mobile object
- FIG. 3 shows a further illustrative embodiment operating with a two-way communication link between a beacon and a sensor at the LCU;
- FIG. 4 illustrates the signal timing between and within units of the embodiment of FIG. 3 ;
- FIG. 5 is a flow chart delineating the sequence of operations performed in the FIG. 3 embodiment.
- the public keys of a user are the encryption keys published by the user that may be used for privately communicating with the user.
- anyone wanting to privately communicate with the user simply encrypts the message employing the users public encryption key. Only that user's secret decryption key can be used to decipher the encrypted message.
- Certificates can be thought of as brief messages which are signed by the trusted authority, and which contain, either explicitly or implicitly, a reference to the public key which is being therein certified, and the identity of the public key's owner. In such an implementation, if “C” has provided a certificate for “A”; then recipient “B” can trust the use of “A's” public key, provided that “B” trusts “C”.
- a location certification unit (LCU) as shown if FIG. 1 includes a position determination unit (PDU) I coupled to a secure authorization unit (SAU) 2 .
- the units 1 and 2 or at least the sensitive components of the units, are contained in a tamper resistant enclosure in such a manner that tampering will trigger an alert signal and erasure of sensitive information such as authenticating keys stored in the unit.
- Acceleration fuses can be used to prevent tampering through subjecting the unit to acceleration or gravitational forces to disturb a clock, if included in the unit.
- the nature and degree of security and tamper resistant expedients incorporated into the system and components will correspond to the anticipated risks.
- the PDU 1 includes conventional position determining apparatus for receiving Loran and/or GPS signals and for computing its position.
- the current location or position may be continuously computed and maintained, or it may be computed only in response to a request.
- SAU 2 contains its own private digital signature key stored in a secure probe-resistant memory 3 .
- This private key has a public aspect which is digitally signed by the manufacturer, using its well guarded private key, thus providing a certificate indicating to the requestor that the public key used to communicate with the SAU belongs to a trusted LCU.
- This certificate may be presented to the requestor R as a part of the location certificate.
- the SAU includes a processor 4 for processing data and control of internal functions, and a send/receive unit 5 for communicating with the requestor R.
- an intended receiver's public key is made available to the sender, i.e., requestor, and is used for sending an encrypted message. Only the private decryption key at the LCU's receiver can decipher the message. The decryption key is then used to digitally sign a message which is sent to the original sender or requestor. The recipient or requestor can verify the signature by encrypting it with the LCU's public key. While anyone having the LCU's public key can read the signature, only the LCU signing the message could have created it.
- the certification is provided by the manufacturer's digital signature which may be stored in memory at the SAU and sent to the requestor. That is, the manufacture provides a digital signature indicating that the public key, used by the requestor, belongs to a trusted LCU, as described, for example, in U.S. Pat. No. 5,214,702 issued to the inventor (which is hereby incorporated by reference).
- This certificate presented to the requestor serves as a part of the authenticated location certificate.
- the LCU in response to a request computes or determines its current position in the PDU 1 , authenticates the reported position by supplying a digital signature 3 a and a certificate 3 b in the SAU 2 , and sends the message to the requestor R.
- Additional information 3 c may be provided in the signed message, as for example, the current time/date stamp, the identity of an associate user, and the challenge response information supplied by another entity, e.g., requestor.
- Verification of the digitally signed message is effected by use of the trusted manufacturer's public key.
- the manufacturer's public key is used by the requestor to determine that a unit's public key is, in fact, in a certification hierarchy and is associated with a trusted LCU. This validation of the unit's public key is then used to verify the digital signature. Any alteration of the digital signature is immediately detected.
- the trusted key is used to chain through the certification hierarchy to ultimately determine that the unit's public key is, in fact, associated with a trusted LCU.
- Installing LCUs in objects e.g., digital signing devices, computer log-on cards, controls for broadcast receivers, or smart cards for use with broadcast receivers, in combination with means for disabling the use of such objects, provides for control over the location at which the objects can be used.
- Incorporating a LCU in a computer log-on card designed to be limited to use at either the office or home, means that the defeat of the LCU would require sophisticated techniques such as generating false Loran or GPS signals to cause the PDU of the LCU to compute a false position.
- the presence of other conventional safe-guards such as personal identification number (PIN) or password requirements to activate the card would provide significant layers of protection against the ordinary thief successfully using the card.
- PIN personal identification number
- a second embodiment of a LCU is particularly useful for monitoring the location of a moving object. Illustrated in F 1 G. 2 , the LCU is incorporated in a system having features which make the location certificate spoof resistant, i.e., resistant to being deceived into computing a false position.
- the use of a highly accurate clock 6 in the sensor 7 of the LCU synchronized with a clock 12 of the beacon 10 serves to defeat spoofing of the system.
- each beacon 10 is equipped with a private key or a shared private key that is common among the beacons. Where beacons share a common key, then each beacon is provided with its own unique identification. The keys or identifications are maintained in a memory associated with processor 11 .
- the LCU has one or more sensors 7 that have access to the beacons' public keys.
- a beacon's transmission includes digital authentication of the broadcast time and an indicator of the beacon's identity.
- beacons When beacons are in orbiting satellites as in the GPS or are in Loran stations, position is determined using two, three or more beacons. A delayed rebroadcast of a true satellite beacon's message from a false beacon would mean that the false beacon is located further out in space or on the other side of the Earth. In the latter case, sensing a different beacon lying in a direction away from the apparent position of the first observed beacons suffices to determine whether the computed position is true or false. In the former case, the aforementioned synchronized clocks are used to inhibit the reception and use of the false beacon.
- each beacon pre-computes the digital signature and its time duration that is due to be transmitted at some precise time in the future.
- the first bit of the precomputed digital signature is transmitted.
- the balance of the message, including an authenticated time stamp is of predictable duration and is transmitted with each bit coming at a precisely timed interval.
- the sensor or receiver at the LCU determines, based on its internal clock, the exact moment the transmission was received, and that each bit after the first bit arrived on schedule. This need not be done in real time but the message may be stored and processed after it has been fully received.
- the authenticated time stamps are verified using the public key associated with each beacon and compared with the sensor clocked time of receipt of the message.
- An additional time check can be made by considering the differentials between beacons.
- the position of the LCU is determined by using the time differentials between each of the beacons, and the result is checked for consistency.
- the position computed by the differentials must agree with the time difference between the sensor's internal clock and that time broadcast by each of the beacons.
- the position of each beacon is known, from authenticated broadcasts or tables stored in the sensor, the speed of the transmitted radio signal is known, then the purported distance/time to each beacon can be calculated. The calculated times and the measured time differentials are compared to see that they are the same.
- the degree of accuracy of the clocks sets the degree of accuracy to which true or false signals can be detected. Therefore, the clocks must have accurate time intervals and must not drift over long periods of time. Drift problems can be minimized by resetting the clocks periodically, recalibrating the sensor clocks from master clocks at the beacons, using temperature controlled clock environments, and using very high quality accurate clocks or a multiple clock system. Where the clocks are subject to strong gravitational fields or acceleration and run slower, the fact that the clock runs slower can be taken into consideration. Since the speed of light is one foot per nanosecond, the degree to which spoofing can be controlled is one mile per 5 microseconds of drift.
- the sensor 7 relies on a beacon 10 with a confirmed position and the PDU 1 determines its position as a function of being on a radius of the beacon.
- each sensor has a clock 6 synchronized with the clock 12 of the beacon, and maximum position is determined by measuring the time required to receive the beacon's signal.
- the need for the high synchronization of the previous embodiment is reduced by using a two way communication path between a beacon and a sensor.
- the sensor 7 is provided with a transmitter 8 compatible for communicating with a receiver 14 in the beacon 10 .
- the beacon is provided with a processor 11 for controlling the transmission and formulating a response.
- the sensor generates a random challenge number and transmits it to the beacon.
- the beacon constructs a response, including its digital signature, the sensor's random challenge number and the beacon's position.
- the beacon's clock value and other beacon operating characteristics may also be included in the response.
- each signal exchanged by the sensor and the beacon has a mark pulse which is the signal to which the time of transmission is associated and calibrated.
- the mark pulse can be the first, the last or at any other distinguishable point in the transmission.
- the response includes the beacon's certificate in its transmission.
- the beacon's public key may be embedded in the sensor, or may be ascertained in other manners.
- Other authenticated digital information may include, the beacon's identity, expected response time, means by which the location information has been determined, the expected accuracy of the positional information, the authority responsible for determining the beacon's position, the level of security ascribed to the device, the time associated with the response mark signal, and the authority responsible for determining the beacon's clock.
- the precise position of the beacon is a limiting factor on the correctness of determined position of the PDU.
- the position of the beacon can be determined by Loran, GPS or other radio based techniques, and it can be confirmed by a trusted calibrating authority. To insure that the beacon remains stationary once its position is established, movement sensors may be provided to generate an alert signal upon the sensing of movement or tampering. Where such a stationary beacon is moved for any reason, deliberately or by an earthquake, then the position must be redetermined and reconfirmed.
- the authority is responsible for certifying the accuracy of the position information. If the beacon determines it own position from radio signals, then the calibrating authority can only be viewed as a confirming entity that the beacon is a trusted beacon, and not one that may have been spoofed. Hence, certificates by calibrating authorities are constructed and appraised in accordance with the function of the calibrating authority, which may be indicated in the certificate. Moreover, identification of the calibrating authority in the certificate serve to inform the user of same the degree to which position information may be trustworthy.
- a stationary beacon may advantageously be used as a source to set a highly accurate clock in mobile LCUs.
- the beacon includes its clock value B 4 as part of its response, then the mobile LCU can set its clock to a trusted accuracy with known error. With reject respect to high acceleration of the LCUs, an acceleration fuse would provide a part of the tamper resistant construction.
Abstract
Methods and apparatus for providing location certificates to certify the position or location of an object are disclosed. The position of the object is computed using radio signals and the secure transmission of the computed position is achieved using public key encryption techniques.
Description
The invention relates to methods and apparatus for providing reliable location certificates which are used to prove the geographic location of a particular object or event. More particularly, the invention relates to establishing to a requestor that an object is being used in its restricted area of use, that an object being tracked is in a particular geographical location, or that an event is confined to a particular area.
It is frequently desirable or imperative to reliably know the precise location of an object, and to be able to determine that location on a reoccurring basis. The object may be highly mobile or relegated to use in a confined area or confined areas.
Objects being transported by vehicle are highly mobile. With respect to such objects which are dangerous or controlled, as for example toxic waste and nuclear materials, it is desirable to be able to reliably monitor their location during transport between locations. Such monitoring may be continuous or may be from point-to-point.
Digital signatures represent objects which may be intended to be used only in Highly localized areas. Digital signatures involve the use of cryptographic keys to sign messages. For legal or security reasons it is at times important to prove or establish that these digital signatures are being generated within a particular jurisdiction, a specific complex, building or room. For example, a digital signature of a bank employee that is used in various bank transactions would advantageously be confined to the location of a guarded bank facility. An employee's computer sign-on token may be limited to use at a specified location such as home or the office. For audit and billing purposes the location of requestors for access to sensitive material or databases is needed.
There are other environments in which it is important to reliably know the location of an object. A supplier of electronic broadcasts may need to screen certain locales to black-out reception of certain sports broadcasts, concerts, etc., or other signals such as electronic gambling events. In other instances, satellite decoder boxes limited to use in licensed areas are needed.
The present invention uses unique location certificates to track goods and wares during shipment, establish the location of participants in a network, determine the location at which a digital signature was performed, ascertain the validity of objects which are expected or mandated to be present within certain geographic bounds and control the use of security or sensitive devices by limiting their operation to certain locations.
Determining the location of an object or event involves the employment of a position determination unit. In accordance with an exemplary embodiment of the present invention, the position determination unit operates on the reception of Loran or Global Positioning System (GPS) signals to establish its location. The unit may continuously determine its position or compute its position on request. A secure authorization unit functions to authenticate the location information reported to a requestor. Specifically, the secure authorization unit, through the use of its private digital signature key and a certificate authenticates that the requested position information is provided by a trusted location certification unit.
Three basic systems are set forth as exemplary embodiments of the present invention, one with a basic location certification unit (LCU), a second using a sensor, and a third operating on a two-way communication link between beacons and a sensor in the LCU. In addition, many variations and modifications of these systems are disclosed, and others would be readily apparent to those skilled in this art. In these systems, there is the ever present danger of attempts by unauthorized individuals to breach the security of the system, as for example, by the use of sophisticated spoofing techniques where false radio broadcasts on Loran or GPS frequencies may be employed to cause the position determination unit to compute a position other than its actual position. The systems of the present invention use techniques and procedures to safeguard against such eventualities.
In public key encryption systems, the public keys of a user are the encryption keys published by the user that may be used for privately communicating with the user. Anyone wanting to privately communicate with the user simply encrypts the message employing the users public encryption key. Only that user's secret decryption key can be used to decipher the encrypted message.
In order to ensure that a specified public key is one that has actually been created by the specified individual, certificates are provided. Certificates can be thought of as brief messages which are signed by the trusted authority, and which contain, either explicitly or implicitly, a reference to the public key which is being therein certified, and the identity of the public key's owner. In such an implementation, if “C” has provided a certificate for “A”; then recipient “B” can trust the use of “A's” public key, provided that “B” trusts “C”.
A location certification unit (LCU) as shown if FIG. 1 includes a position determination unit (PDU) I coupled to a secure authorization unit (SAU) 2. The units 1 and 2, or at least the sensitive components of the units, are contained in a tamper resistant enclosure in such a manner that tampering will trigger an alert signal and erasure of sensitive information such as authenticating keys stored in the unit. Acceleration fuses can be used to prevent tampering through subjecting the unit to acceleration or gravitational forces to disturb a clock, if included in the unit. As will be appreciated by those skilled in the art, the nature and degree of security and tamper resistant expedients incorporated into the system and components will correspond to the anticipated risks.
The PDU 1 includes conventional position determining apparatus for receiving Loran and/or GPS signals and for computing its position. The current location or position may be continuously computed and maintained, or it may be computed only in response to a request.
SAU 2 contains its own private digital signature key stored in a secure probe-resistant memory 3. This private key has a public aspect which is digitally signed by the manufacturer, using its well guarded private key, thus providing a certificate indicating to the requestor that the public key used to communicate with the SAU belongs to a trusted LCU. This certificate may be presented to the requestor R as a part of the location certificate. The SAU includes a processor 4 for processing data and control of internal functions, and a send/receive unit 5 for communicating with the requestor R.
While the invention is not limited to any particular digital signature key technique, one technique which can be used is the RSA technique of using a private digital signature key to sign a message which the requestor or receiving party can validate using the originator's public key, as described in U.S. Pat. No. 4,405,829 issued to Rivest et al. In brief, an intended receiver's public key is made available to the sender, i.e., requestor, and is used for sending an encrypted message. Only the private decryption key at the LCU's receiver can decipher the message. The decryption key is then used to digitally sign a message which is sent to the original sender or requestor. The recipient or requestor can verify the signature by encrypting it with the LCU's public key. While anyone having the LCU's public key can read the signature, only the LCU signing the message could have created it.
The certification is provided by the manufacturer's digital signature which may be stored in memory at the SAU and sent to the requestor. That is, the manufacture provides a digital signature indicating that the public key, used by the requestor, belongs to a trusted LCU, as described, for example, in U.S. Pat. No. 5,214,702 issued to the inventor (which is hereby incorporated by reference). This certificate presented to the requestor serves as a part of the authenticated location certificate.
In operation, the LCU (FIG. 1 ) in response to a request computes or determines its current position in the PDU 1, authenticates the reported position by supplying a digital signature 3a and a certificate 3b in the SAU 2, and sends the message to the requestor R. Additional information 3c may be provided in the signed message, as for example, the current time/date stamp, the identity of an associate user, and the challenge response information supplied by another entity, e.g., requestor.
Verification of the digitally signed message is effected by use of the trusted manufacturer's public key. The manufacturer's public key is used by the requestor to determine that a unit's public key is, in fact, in a certification hierarchy and is associated with a trusted LCU. This validation of the unit's public key is then used to verify the digital signature. Any alteration of the digital signature is immediately detected. Where multiple levels of certification are used, as in inventor's U.S. Pat. No. 5,005,002 (which is hereby incorporated by reference), the trusted key is used to chain through the certification hierarchy to ultimately determine that the unit's public key is, in fact, associated with a trusted LCU.
Installing LCUs in objects, e.g., digital signing devices, computer log-on cards, controls for broadcast receivers, or smart cards for use with broadcast receivers, in combination with means for disabling the use of such objects, provides for control over the location at which the objects can be used. Incorporating a LCU in a computer log-on card designed to be limited to use at either the office or home, means that the defeat of the LCU would require sophisticated techniques such as generating false Loran or GPS signals to cause the PDU of the LCU to compute a false position. Moreover, the presence of other conventional safe-guards such as personal identification number (PIN) or password requirements to activate the card would provide significant layers of protection against the ordinary thief successfully using the card.
A second embodiment of a LCU is particularly useful for monitoring the location of a moving object. Illustrated in F1G. 2, the LCU is incorporated in a system having features which make the location certificate spoof resistant, i.e., resistant to being deceived into computing a false position. The use of a highly accurate clock 6 in the sensor 7 of the LCU synchronized with a clock 12 of the beacon 10 serves to defeat spoofing of the system. In this embodiment, each beacon 10 is equipped with a private key or a shared private key that is common among the beacons. Where beacons share a common key, then each beacon is provided with its own unique identification. The keys or identifications are maintained in a memory associated with processor 11. The LCU has one or more sensors 7 that have access to the beacons' public keys. A beacon's transmission includes digital authentication of the broadcast time and an indicator of the beacon's identity.
Under the foregoing conditions, and without the synchronized highly accurate clocks, a would-be spoofer, cannot substitute or cause a sensor to confuse one beacon's signal with that of another, nor accelerate or formulate signals. One can, however, copy a beacon's transmission and rebroadcast it at some delayed interval or intervals. The system then has need of means to prevent the reception or action on signals that are too distant or at wrong angular locations. This is the function of the synchronized clocks.
When beacons are in orbiting satellites as in the GPS or are in Loran stations, position is determined using two, three or more beacons. A delayed rebroadcast of a true satellite beacon's message from a false beacon would mean that the false beacon is located further out in space or on the other side of the Earth. In the latter case, sensing a different beacon lying in a direction away from the apparent position of the first observed beacons suffices to determine whether the computed position is true or false. In the former case, the aforementioned synchronized clocks are used to inhibit the reception and use of the false beacon.
With the synchronized clock system, each beacon pre-computes the digital signature and its time duration that is due to be transmitted at some precise time in the future. At the prescribed moment, the first bit of the precomputed digital signature is transmitted. The balance of the message, including an authenticated time stamp, is of predictable duration and is transmitted with each bit coming at a precisely timed interval. The sensor or receiver at the LCU determines, based on its internal clock, the exact moment the transmission was received, and that each bit after the first bit arrived on schedule. This need not be done in real time but the message may be stored and processed after it has been fully received. The authenticated time stamps are verified using the public key associated with each beacon and compared with the sensor clocked time of receipt of the message. An additional time check can be made by considering the differentials between beacons. The position of the LCU is determined by using the time differentials between each of the beacons, and the result is checked for consistency. The position computed by the differentials must agree with the time difference between the sensor's internal clock and that time broadcast by each of the beacons. The position of each beacon is known, from authenticated broadcasts or tables stored in the sensor, the speed of the transmitted radio signal is known, then the purported distance/time to each beacon can be calculated. The calculated times and the measured time differentials are compared to see that they are the same.
The degree of accuracy of the clocks sets the degree of accuracy to which true or false signals can be detected. Therefore, the clocks must have accurate time intervals and must not drift over long periods of time. Drift problems can be minimized by resetting the clocks periodically, recalibrating the sensor clocks from master clocks at the beacons, using temperature controlled clock environments, and using very high quality accurate clocks or a multiple clock system. Where the clocks are subject to strong gravitational fields or acceleration and run slower, the fact that the clock runs slower can be taken into consideration. Since the speed of light is one foot per nanosecond, the degree to which spoofing can be controlled is one mile per 5 microseconds of drift.
In a third embodiment, illustrated in FIG. 3 , the sensor 7 relies on a beacon 10 with a confirmed position and the PDU 1 determines its position as a function of being on a radius of the beacon. As in the previous embodiment, each sensor has a clock 6 synchronized with the clock 12 of the beacon, and maximum position is determined by measuring the time required to receive the beacon's signal. The need for the high synchronization of the previous embodiment is reduced by using a two way communication path between a beacon and a sensor. Thus, the sensor 7 is provided with a transmitter 8 compatible for communicating with a receiver 14 in the beacon 10. In addition, the beacon is provided with a processor 11 for controlling the transmission and formulating a response.
The sensor generates a random challenge number and transmits it to the beacon. The beacon constructs a response, including its digital signature, the sensor's random challenge number and the beacon's position. The beacon's clock value and other beacon operating characteristics may also be included in the response.
As illustrated in FIG. 4 , each signal exchanged by the sensor and the beacon has a mark pulse which is the signal to which the time of transmission is associated and calibrated. The mark pulse can be the first, the last or at any other distinguishable point in the transmission. The signal parts illustrated in FIG. 4 are identified as follows.
-
- SO—The observed value of the sensor's clock when the request is started.
- VO—The sensor emission time: the (known, previously calibrated) time interval between SO and the moment the mark pulse physically escapes from the sensor. This includes whatever processing time is required to read the clock, store the clock value, construct the request, etc.
- TO—The duration of the request signal.
- T1—The time for the request signal to move from sensor to beacon.
- D1—The distance which the request signal traverses.
- M1—The moment the request's mark pulse impinges on the beacon.
- V1—The beacon reaction time—the (known, calibrated) time required between M1 and the moment the beacon's clock value is observed.
- B1—The beacon clock value determined after the mark pulse is determined.
- B2—The beacon clock value at the end of transmission receipt.
- V2—The beacon trailing reaction time (to determine the clock value after the transmission is recognized as complete).
- BO—The overall beacon “processing time”—from the time a request signal impinges on the beacon, to the moment the response signal escapes. In the preferred embodiment, this time is known before the signal is actually computed—it is actually taken as a “given” which the beacon works to provide.
- Px—The time required by the beacon to process the signal, perform the digital signature, prepare the response, and schedule it for transmission.
- B3—The internal clock time which the beacon must observe in order to commence response emission.
- V3—The (known, calibrated) time which is spent by the beacon after observing a trigger clock value (say B3) until the response's mark pulse actually escapes the beacon.
- B4—The moment the mark pulse escapes the beacon.
- T2—The time for the response signal to move from beacon to sensor.
- D2—The distance which the response signal traverses.
- V4—The (known, calibrated) sensor time reaction between the receipt of the response mark pulse, and the observation of the sensor's clock.
- S2—The sensor clock value observed after receiving the response mark pulse.
- V5—The (known, calibrated) sensor time reaction between the receipt of end of response, and the observation of the sensor's clock.
- S3—The sensor's clock value after recognizing the end of the response.
- RO—The expected duration of the response transmission.
Given these variables, the timing, illustrated in FIG. 4 , and the processing, illustrated in FIG. 5 , are as follows:
-
- 1010 The sensor computes a challenge value, constructs the transmission request (of known length and duration TO).
- 1020 The sensor observes its clock (SO).
- 1030 The sensor emits the request. The calibrated time between
step 1020 and the eventual emission of the mark pulse is a calibrated constant (VO). - 1040 The signal impinges on the beacon at M1.
- 1050 After recognizing the signal, the beacon observes its clock value (B1). The process requires known calibrated time (V1=B1−M1).
- 1060 The beacon receives the balance of the transmission, and observes its clock value (B2) at the end. Checks may also be done to all intermediate transmission pulses to see that they are properly timed.
- 1070 Validity checks are done. For example, the expected request transmission time (TO) is checked against the observed time (B2−V2−(B1−V1)).
- 1080 The beacon is designated to emit its response after a predictable duration (BO). Such duration must always exceed all possible expected intermediate computations and processing (preferably by some comfortable margin). BO can be constant, and characteristic of a class of beacons; or can be constant for each specific beacon; or can be determined as part of each response (and therefore must be included as information as part of the response). In any event, whether constant or variable, the beacon must know (or compute) it prior to constructing the response.
- 1090 The beacon constructs the response, consisting of, e.g.,
- a. The sensor's received challenge value.
- b. The beacon's Location.
- c. An indication of the Authority which Confirms the the Location; possibly including a digital signature.
- Other information, such as, e.g.,
- d. Any clock value corresponding to a distinguishable beacon event. In the embodiment shown, this is B4—the time the mark pulse is expected to escape. This is computed as:
B4=B1−V1+BO - e. The beacon's public key and certificate.
- f. An indication of the beacon's certifying authority.
- g. The beacon's identifier.
- h. The beacon's processing time BO.
- i. The beacon clock's accuracy, granularity, etc.
- j. The expected length of the response transmission.
- k. When the location was set.
- l. Other beacon characteristics.
- m. Characteristics, or facts, about the Confirming Authority; including, for example, a digital signature.
- The beacon then digitally signs at least transmission fields a, b, c using the beacon's private key.
- 1100 The beacon computes the moment
B3=B1−V1+BO−V3 - when emission processing should commence for this response.
- 1110 If the beacon handles multiple signals in parallel, then the response is queued until time B3; if the beacon handles requests serially, then the beacon simply waits until it observes clock value B3.
- 1120 On observing clock value B3, the beacon commences to emit the already computed response, with expected duration of RO.
- 1130 The mark pulse associated with the response escapes the beacon at time B4, since the calibrated emission processing time after observing time B3 until mark pulse escape is known to be V3.
- 1140 The mark pulse impinges the sensor.
- 1150 After recognizing the mark pulse, the sensor observes its clock and obtains reading S2. The time required to do this has been calibrated as V4.
- The balance of the response is accepted and verified as arriving under the expected time and signal constraints.
- 1160 After receiving the end of the response, the sensor takes observed clock reading S3, which is calibrated as requiring V5 seconds to accomplish.
- 1170 The sensor then computes the response transmission duration
(S3−V5)−(S2−V4) - and compares it with expected duration RO.
- 1180 If there is a mismatch, a fault is indicated, and the location operation may be re-performed.
- 1190 The sensor validates the response:
- Verifies the beacon's digital signature.
- Verifies the beacon's public key (using, e.g., the beacon's certificate)
- Insures it trusts the beacon or its certifier.
- Identifies and insures it trusts the Confirming Authority.
- Extracts the authenticated beacon position.
- 1200 Using information about the beacon, supplied by the beacon or elsewhere, the sensor computes the signal transmit time:
Sn=(S2−V4)−B4+M1−(SO+VO)=S2−V4−BO−SO−VO - 1210 Assuming the sensor was stationary during the signal exchange, and assuming the signal traveled at “c”, the speed of light, then
(stt/2)(c) - reasonably estimates the distance of the sensor from the beacon's known authenticated location. Even if the sensor moved during the exchange, the sensor must have been at least within this distance at some moment during the exchange. This estimate may need to be tempered using error estimates based on clock granularities, wavelengths used by the transmissions, and inherent clock error bounds.
- 1300 Based on this exchange, provided the beacon included its clock reading, say B4 (see (d) in step 1090), the sensor is able to update its clock by an additive amount:
B4+(stt/2)(c)−(S2−V4)- with an accuracy of:
- plus-or-minus (stt/2)(c)
- +inherent clock granularities & errors
- +transmission signal frequency
- Where the first error term arises from the possibility that the sensor was moving toward or away from the beacon during the exchange. If the sensor is known to be fixed, such as using motion detectors to insure no movement occurs during the exchange, then the first error term can be omitted.
In the above example of this embodiment, the response includes the beacon's certificate in its transmission. However, the beacon's public key may be embedded in the sensor, or may be ascertained in other manners. Other authenticated digital information may include, the beacon's identity, expected response time, means by which the location information has been determined, the expected accuracy of the positional information, the authority responsible for determining the beacon's position, the level of security ascribed to the device, the time associated with the response mark signal, and the authority responsible for determining the beacon's clock.
In this embodiment, the precise position of the beacon is a limiting factor on the correctness of determined position of the PDU. The position of the beacon can be determined by Loran, GPS or other radio based techniques, and it can be confirmed by a trusted calibrating authority. To insure that the beacon remains stationary once its position is established, movement sensors may be provided to generate an alert signal upon the sensing of movement or tampering. Where such a stationary beacon is moved for any reason, deliberately or by an earthquake, then the position must be redetermined and reconfirmed.
Where the beacon's position is confirmed by a calibrating authority, then the authority is responsible for certifying the accuracy of the position information. If the beacon determines it own position from radio signals, then the calibrating authority can only be viewed as a confirming entity that the beacon is a trusted beacon, and not one that may have been spoofed. Hence, certificates by calibrating authorities are constructed and appraised in accordance with the function of the calibrating authority, which may be indicated in the certificate. Moreover, identification of the calibrating authority in the certificate serve to inform the user of same the degree to which position information may be trustworthy.
A stationary beacon may advantageously be used as a source to set a highly accurate clock in mobile LCUs. As in the example above, where the beacon includes its clock value B4 as part of its response, then the mobile LCU can set its clock to a trusted accuracy with known error. With reject respect to high acceleration of the LCUs, an acceleration fuse would provide a part of the tamper resistant construction.
While the digital signature has been described using the RSA algorithm, other algorithms such as DSA, symmetric, or the protocols developed by Goldwasser and Micali or by Chaum may be employed. Moreover, the algorithms and/or protocols may be used in combination.
While the invention has been described in connection with what is presently considered to be the most practical and preferred embodiment, it is to be understood that the invention is not to be limited to the disclosed embodiment, but on the contrary, is intended to cover various modifications and equivalent arrangements included within the spirit and scope of the appended claims.
Claims (35)
1. A secure method of establishing the location of an object by calculating in-situ the location of the object from received radio signals wherein the radio signals are received from a beacon via a two-way communication between the beacon and a sensor on the object, comprising
computing and transmitting at said sensor a signal including a challenge value and observing a clock associated with said sensor,
recognizing at said beacon the transmitted sensor signal, observing at the beacon a clock associated with the beacon, constructing a response message including the sensor's received challenge value, the beacon's location, its location certificate and a time stamp, and transmitting the response message to said sensor,
recognizing at said sensor said transmitted response message, observing the sensor clock, and validating the response message, computing the signal transit time and estimating the distance to the beacon, and based on the location of the beacon and the distance, calculating the location of the sensor and thereby the location of the object, and
transmitting in response to a request from a requestor a message comprising the digitally signed calculated location of the object.
2. A method as in claim 1 and including transmitting a certificate for the object in the message comprising the digitally signed calculated location of the object.
3. A method as in claim 1 wherein the clocks associated with the beacon and the sensor are synchronized and including,
calculating the transit time from the time stamp and the observed time for receipt of the response message at the sensor and comparing this time with the computed signal transit time.
4. A method as in claim 1 wherein said object includes a sensor with a accurate clock synchronized with a beacon clock and includes the step of receiving a time stamp from the beacon and comparing it with the sensor clock to authenticate the receipt of location information is from a valid beacon.
5. A method as in claim 1 wherein said beacon and said sensor each include an accurate clock and includes the step of updating the sensor clock in accordance with the time stamp transmitted by the beacon.
6. Apparatus for providing location certificates comprising
a location certification unit for receiving radio signals from two or more beacons,
said location certificate certification unit including position determination means and secure authorization means,
said secure authorization means including a private key of a private key-public key pair for digitally signing messages sent to a requesting source, a certificate for the public key certifying that the public key is in fact the public key of the secure authorization means, a clock synchronized with clocks in the beacons, means for receiving and processing a time stamp transmitted by a beacon, and means for determining from the time stamp and the clock in the secure authorization means that a received radio signal is from a valid beacon,
said beacons providing radio signals from which said position determination means can compute its position and said secure authorization means can determine that the signals are valid, and
means for sending to said requesting source upon request a digitally signed message including the computed position of said location certificate unit and the certificate for the public key which public key is to be used by the requesting source to verify the signed message.
7. Apparatus as in claim 6 further comprising means for establishing a secure two-way communication link between each beacon and the sensor in the secure authorization means.
8. Apparatus as in claim 6 wherein said location certification unit is a component of a digital signature device.
9. Apparatus as in claim 6 wherein said location certification unit is a component of a satellite signal box.
10. A location certification unit comprising a position determination unit, a secure authorization unit coupled to said position determination unit, a memory within said secure authorization unit, a digital signature key stored in the form of digital data in said memory, said key having an associated public key, a certificate for said public key, said certificate being stored in said memory, a sensor for receiving a message from a beacon that includes the clock time at which the message was transmitted and for processing the message to retrieve the clock time, the sensor including a clock, said position determination unit computing from the retrieved clock time and the time of sensing a received message as indicated by the sensor clock the radial distance the location certification unit is from the beacon thereby determining the location of the location certification unit as being within a geographical area centered on the beacon, and means for communicating to a requestor in response to a request the certified location of said location unit, said certified location comprising the location as determined by said position determining unit signed with said digital signature key and the certificate for said public key.
11. A location certification unit as in claim 10 wherein said memory further stores a personal identification number and a password and said location certification unit is a component of a computer log-on card.
12. A location certification unit as in claim 10 wherein the location certification unit is a component of a digital signature device.
13. A location certification unit as in claim 10 wherein the location certification unit is a component of a satellite signal decoder box.
14. A location certification unit as in claim 10 wherein the message from a beacon includes the digital signature of the clock time at which the message was transmitted, and said sensor has stored therein the public key of the beacon for verifying the clock time using the public key of the beacon.
15. A location certification unit comprising;
a position determination unit for determining the position of the location certification unit from received radio signals,
a secure authorization unit coupled to the position determination unit and comprising a memory, a sensor having a clock for providing clock time, and means for communicating to a requestor in response to a request a message containing the certified position of the location certification unit as determined by the position determination unit,
said memory having stored therein a digital signature key and a certificate for a public key associated with the digital signature key,
said clock providing a clock time for validating a received radio signal, the signal containing the time at which it was transmitted, sensed by the sensor as being from a valid source, and
said certified position of the location certification unit comprising (1) the position of the location certification unit as determined by the position determination unit signed using the digital signature key and (2) the certificate.
16. A location certification unit as in claim 15 , said sensor further comprising a processor for processing sensed radio signals to provide the identity of the source of the signal where that information is contained in the signal, and for decrypting a sensed digitally signed radio signal with the public key of the source of the signal to verify the identity of the source and the time at which the signal was transmitted.
17. A location certification unit as in claim 15 wherein time differentials between the time the sensor clock marks a sensed signal and the time at which the signal was sent with respect to a plurality of sources are used to calculate the position of the location certification unit and each time differential is checked with the calculated signal transit time from the calculated position to the known location of the source.
18. A location certification unit as in claim 15 wherein said sensor is capable of receiving and processing signals received from more than one source and said position determining means determines the position of the location certification unit based on the messages from at least two sources.
19. A location certification unit as in claim 18 wherein the sources are beacons, and the location certification unit further comprises a transmitter for sending messages to a beacon that trigger the beacon into transmitting a response message that includes a time stamp, whereby it can be verified that the response message is a current message and not a copied message that is being replayed by comparing the time stamp with the sensor clock time at the time of receipt of the response message.
20. A location certification unit as in claim 18 further comprising a transmitter for sending a message to a beacon that triggers the beacon into transmitting a response message that includes a time stamp, whereby the total time for the sent message to travel to the beacon and the response message from the beacon to be sensed at the sensor, adjusted for by beacon delay and internal location certification unit delay, is divided in half and compared with the difference between the clock time at the time of receipt of the message and the time stamp to verify that the response message is valid.
21. Apparatus for providing location certificates comprising
a location certification unit for receiving radio signals from two or more beacons,
said location certification unit including a position determinator and secure authenticator,
said secure authenticator including a private key of a private key-public key pair for digitally signing messages sent to a requesting source, a certificate for the public key certifying that the public key is in fact the public key of the secure authenticator, a receiver for receiving a time stamp transmitted by a beacon, and a processor for determining from the time stamp that a received radio signal is from a valid beacon,
said beacons providing radio signals from which said position determinator can compute its position and said secure authenticator can determine that the signals are valid, and
a transmitter for sending to said requesting source upon request a digitally signed message including the computed position of said location certificate unit and the certificate for the public key which public key is to be used by the requesting source to verify the signed message.
22. Apparatus as in claim 21 wherein said location certification unit is operable to establish a secure two-way communication link with said two or more beacons.
23. Apparatus as in claim 21 wherein said location certification unit is a component of a digital signature device.
24. Apparatus as in claim 21 wherein said location certification unit is a component of a satellite signal box.
25. A location certification unit comprising a position determination unit, a secure authorization unit coupled to said position determination unit, a memory within said secure authorization unit, a digital signature key stored in the form of digital data in said memory, said key having an associated public key, a certificate for said public key, a sensor for receiving a message from a beacon that includes the clock time at which the message was transmitted and for processing the message to retrieve the clock time, the sensor including a clock, said position determination unit computing from the retrieved clock time and the time of sensing a received message as indicated by the sensor clock the radial distance the location certification unit is from the beacon thereby determining the location of the location certification unit as being within a geographical area centered on the beacon, and a transmitter for communicating to a requestor in response to a request the certified location of said location unit, said certified location comprising the location as determined by said position determining unit signed with said digital signature key and the certificate for said public key.
26. A location certification unit as in claim 25 wherein said memory further stores a personal identification number and a password and said location certification unit is a component of a computer log-on card.
27. A location certification unit as in claim 25 wherein the location certification unit is a component of a digital signature device.
28. A location certification unit as in claim 25 wherein the location certification unit is a component of a satellite signal decoder box.
29. A location certification unit as in claim 25 wherein the message from a beacon includes the digital signature of the clock time at which the message was transmitted, and said sensor has stored therein the public key of the beacon for verifying the clock time using the public key of the beacon.
30. A location certification unit comprising:
a position determination unit for determining the position of the location certification unit from received radio signals,
a secure authorization unit coupled to the position determination unit and comprising a memory, a sensor having a clock for providing clock time, and a transmitter for communicating to a requestor in response to a request a message containing the certified position of the location certification unit as determined by the position determination unit,
said memory having stored therein a digital signature key,
said clock providing a clock time for validating a received radio signal, the signal containing the time at which it was transmitted, sensed by the sensor as being from a valid source, and
said certified position of the location certification unit comprising ( 1 ) the position of the location certification unit as determined by the position determination unit signed using a digital signature key and ( 2 ) a certificate.
31. A location certification unit as in claim 30 , said sensor further comprising a processor for processing sensed radio signals to provide the identity of the source of the signal where that information is contained in the signal, and for decrypting a sensed digitally signed radio signal with a public key of the source of the signal to verify the identity of the source and the time at which the signal was transmitted.
32. A location certification unit as in claim 30 wherein time differentials between the time the sensor clock marks a sensed signal and the time at which the signal was sent with respect to a plurality of sources are used to calculate the position of the location certification unit and each time differential is checked with the calculated signal transit time from the calculated position to the known location of the source.
33. A location certification unit as in claim 30 wherein said sensor is capable of receiving and processing signals received from more than one source and said position determining unit determines the position of the location certification unit based on the messages from at least two sources.
34. A location certification unit as in claim 33 wherein the sources are beacons, and the location certification unit further comprises a transmitter for sending messages to a beacon that trigger the beacon into transmitting a response message that includes a time stamp, whereby it can be verified that the response message is a current message and not a copied message that is being replayed by comparing the time stamp with the sensor clock time at the time or receipt of the response message.
35. A location certification unit as in claim 33 further comprising a transmitter for sending a message to a beacon that triggers the beacon into transmitting a response message that includes a time stamp, whereby the total time for the sent message to travel to the beacon and the response message from the beacon to be sensed at the sensor, adjusted for by beacon delay and internal location certification unit delay, is divided in half and compared with the difference between the clock time at the time of receipt of the message and the time stamp to verify that the response message is valid.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US09/377,724 USRE38899E1 (en) | 1994-09-22 | 1999-08-19 | Method for providing location certificates |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US08/310,022 US5659617A (en) | 1994-09-22 | 1994-09-22 | Method for providing location certificates |
US09/377,724 USRE38899E1 (en) | 1994-09-22 | 1999-08-19 | Method for providing location certificates |
Related Parent Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US08/310,022 Reissue US5659617A (en) | 1994-09-22 | 1994-09-22 | Method for providing location certificates |
Publications (1)
Publication Number | Publication Date |
---|---|
USRE38899E1 true USRE38899E1 (en) | 2005-11-29 |
Family
ID=23200665
Family Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US08/310,022 Ceased US5659617A (en) | 1994-09-22 | 1994-09-22 | Method for providing location certificates |
US09/377,724 Expired - Lifetime USRE38899E1 (en) | 1994-09-22 | 1999-08-19 | Method for providing location certificates |
Family Applications Before (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US08/310,022 Ceased US5659617A (en) | 1994-09-22 | 1994-09-22 | Method for providing location certificates |
Country Status (1)
Country | Link |
---|---|
US (2) | US5659617A (en) |
Cited By (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20020023010A1 (en) * | 2000-03-21 | 2002-02-21 | Rittmaster Ted R. | System and process for distribution of information on a communication network |
US20030145214A1 (en) * | 2002-01-28 | 2003-07-31 | Kabushiki Kaisha Toshiba | Communication device and communication control device with limited copyright protection range |
US20030217267A1 (en) * | 2002-05-16 | 2003-11-20 | Kindberg Timothy P.J.G. | Authenticating a web hyperlink associated with a physical object |
US20040059914A1 (en) * | 2002-09-12 | 2004-03-25 | Broadcom Corporation | Using signal-generated location information to identify and authenticate available devices |
US20050132166A1 (en) * | 2002-03-28 | 2005-06-16 | Saffre Fabrice T.P. | Method and apparatus for network security |
US20050160274A1 (en) * | 2004-01-16 | 2005-07-21 | Takanori Yukimatsu | Content transmission apparatus and content reception apparatus |
US20110109508A1 (en) * | 2009-11-06 | 2011-05-12 | Microsoft Corporation | Location proofs |
US20130103947A1 (en) * | 2001-06-28 | 2013-04-25 | Koninklijke Philips Electronics N.V. | Temporal proximity to verify physical proximity |
US9426657B2 (en) | 2014-08-15 | 2016-08-23 | Facebook, Inc. | Bluetooth transmission security pattern |
US9603013B2 (en) * | 2014-08-15 | 2017-03-21 | Facebook, Inc. | Bluetooth beacon protocol |
US9667352B2 (en) | 2015-01-09 | 2017-05-30 | Facebook, Inc. | Ultrasonic communications for wireless beacons |
US10094907B2 (en) | 2014-08-15 | 2018-10-09 | Facebook, Inc. | Bluetooth crowd-sourced triangualtion |
US10523685B1 (en) | 2018-08-22 | 2019-12-31 | Estimote Polska Sp z o.o. | System and method for verifying device security |
US10616709B2 (en) | 2015-09-02 | 2020-04-07 | Estimote Polska Sp z o.o. | System and method for lower power data routing |
US20200228541A1 (en) * | 2019-01-14 | 2020-07-16 | Qatar Foundation For Education, Science And Community Development | Methods and systems for verifying the authenticity of a remote service |
US20230318852A1 (en) * | 2022-03-31 | 2023-10-05 | Lenovo (United States) Inc. | Computing device digital certificates that include a geographic extension |
US11823199B2 (en) | 2020-04-29 | 2023-11-21 | Capital One Services, Llc | System, method and computer-accessible medium for fraud detection based on satellite relays |
Families Citing this family (93)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7600129B2 (en) | 1995-10-02 | 2009-10-06 | Corestreet, Ltd. | Controlling access using additional data |
US6487658B1 (en) * | 1995-10-02 | 2002-11-26 | Corestreet Security, Ltd. | Efficient certificate revocation |
US6766450B2 (en) * | 1995-10-24 | 2004-07-20 | Corestreet, Ltd. | Certificate revocation system |
US7716486B2 (en) | 1995-10-02 | 2010-05-11 | Corestreet, Ltd. | Controlling group access to doors |
US7822989B2 (en) | 1995-10-02 | 2010-10-26 | Corestreet, Ltd. | Controlling access to an area |
US8732457B2 (en) * | 1995-10-02 | 2014-05-20 | Assa Abloy Ab | Scalable certificate validation and simplified PKI management |
US7337315B2 (en) | 1995-10-02 | 2008-02-26 | Corestreet, Ltd. | Efficient certificate revocation |
US7353396B2 (en) | 1995-10-02 | 2008-04-01 | Corestreet, Ltd. | Physical access control |
US8015597B2 (en) | 1995-10-02 | 2011-09-06 | Corestreet, Ltd. | Disseminating additional data used for controlling access |
US8261319B2 (en) | 1995-10-24 | 2012-09-04 | Corestreet, Ltd. | Logging access attempts to an area |
JPH09190236A (en) * | 1996-01-10 | 1997-07-22 | Canon Inc | Method, device and system for processing information |
US5923763A (en) | 1996-03-21 | 1999-07-13 | Walker Asset Management Limited Partnership | Method and apparatus for secure document timestamping |
US6959387B2 (en) | 1996-03-21 | 2005-10-25 | Walker Digital, Llc | Method and apparatus for verifying secure document timestamping |
IL117767A0 (en) * | 1996-04-01 | 1996-04-01 | Ondson Ltd | Method and apparatus for measuring acceleration |
US5900828A (en) * | 1997-04-14 | 1999-05-04 | Chrysler Corporation | Modemless transmitter for test vehicle tracking system |
US6269446B1 (en) | 1998-06-26 | 2001-07-31 | Canon Kabushiki Kaisha | Authenticating images from digital cameras |
US6918035B1 (en) * | 1998-07-31 | 2005-07-12 | Lucent Technologies Inc. | Method for two-party authentication and key agreement |
US6091959A (en) * | 1999-06-02 | 2000-07-18 | Motorola, Inc. | Method and apparatus in a two-way wireless communication system for location-based message transmission |
GB0012445D0 (en) * | 2000-05-24 | 2000-07-12 | Hewlett Packard Co | Location-based equipment control |
GB0012641D0 (en) * | 2000-05-25 | 2000-07-12 | Koninkl Philips Electronics Nv | A method of estimating the location of a device |
US7233942B2 (en) * | 2000-10-10 | 2007-06-19 | Truelocal Inc. | Method and apparatus for providing geographically authenticated electronic documents |
US7177426B1 (en) * | 2000-10-11 | 2007-02-13 | Digital Authentication Technologies, Inc. | Electronic file protection using location |
US7231044B2 (en) * | 2000-10-11 | 2007-06-12 | Digital Authentication Technologies, Inc. | Method and apparatus for real-time digital certification of electronic files and transactions using entropy factors |
US6985588B1 (en) | 2000-10-30 | 2006-01-10 | Geocodex Llc | System and method for using location identity to control access to digital information |
US20020051541A1 (en) * | 2000-10-30 | 2002-05-02 | Glick Barry J. | System and method for maintaining state between a client and server |
US7120254B2 (en) * | 2000-10-30 | 2006-10-10 | Geocodex Llc | Cryptographic system and method for geolocking and securing digital information |
US7143289B2 (en) * | 2000-10-30 | 2006-11-28 | Geocodex Llc | System and method for delivering encrypted information in a communication network using location identity and key tables |
US8472627B2 (en) * | 2000-10-30 | 2013-06-25 | Geocodex Llc | System and method for delivering encrypted information in a communication network using location indentity and key tables |
US7685224B2 (en) * | 2001-01-11 | 2010-03-23 | Truelocal Inc. | Method for providing an attribute bounded network of computers |
US7142527B2 (en) * | 2001-02-28 | 2006-11-28 | Nokia Inc. | System and method for transmission scheduling using network membership information and neighborhood information |
US7516325B2 (en) * | 2001-04-06 | 2009-04-07 | Certicom Corp. | Device authentication in a PKI |
US20020154777A1 (en) * | 2001-04-23 | 2002-10-24 | Candelore Brant Lindsey | System and method for authenticating the location of content players |
US20030172297A1 (en) * | 2002-03-05 | 2003-09-11 | Gunter Carl A. | Method and system for maintaining secure access to web server services using public keys |
US20030172296A1 (en) * | 2002-03-05 | 2003-09-11 | Gunter Carl A. | Method and system for maintaining secure access to web server services using permissions delegated via electronic messaging systems |
US20020162019A1 (en) * | 2001-04-25 | 2002-10-31 | Berry Michael C. | Method and system for managing access to services |
US20020162004A1 (en) * | 2001-04-25 | 2002-10-31 | Gunter Carl A. | Method and system for managing access to services |
US20020162001A1 (en) * | 2001-04-25 | 2002-10-31 | Gunter Carl A. | Method and system for managing access to services |
US20030172298A1 (en) * | 2002-03-05 | 2003-09-11 | Gunter Carl A. | Method and system for maintaining secure access to web server services using server-delegated permissions |
US20030236977A1 (en) * | 2001-04-25 | 2003-12-25 | Levas Robert George | Method and system for providing secure access to applications |
US20050210263A1 (en) * | 2001-04-25 | 2005-09-22 | Levas Robert G | Electronic form routing and data capture system and method |
US6885388B2 (en) * | 2001-04-25 | 2005-04-26 | Probaris Technologies Inc. | Method for automatically generating list of meeting participants and delegation permission |
US20030172299A1 (en) * | 2002-03-05 | 2003-09-11 | Gunter Carl A. | Method and system for maintaining secure access to web server services using permissions |
US7149499B1 (en) * | 2001-07-18 | 2006-12-12 | Cisco Technology, Inc. | System for dynamically tracking the location of network devices to enable emergency services |
US7647422B2 (en) | 2001-11-06 | 2010-01-12 | Enterasys Networks, Inc. | VPN failure recovery |
US7606938B2 (en) | 2002-03-01 | 2009-10-20 | Enterasys Networks, Inc. | Verified device locations in a data network |
US7218944B2 (en) | 2002-03-21 | 2007-05-15 | International Business Machines Corporation | Frequency beacon to broadcast allowed frequency |
ATE416552T1 (en) | 2002-07-26 | 2008-12-15 | Koninkl Philips Electronics Nv | SECURING ACCESS TO MULTIMEDIA CONTENT THROUGH AUTHENTICATED DISTANCE MEASUREMENT |
US20040203868A1 (en) * | 2002-08-14 | 2004-10-14 | Eidson John C. | Measurement authentication |
US6938167B2 (en) * | 2002-12-18 | 2005-08-30 | America Online, Inc. | Using trusted communication channel to combat user name/password theft |
US20050149507A1 (en) * | 2003-02-05 | 2005-07-07 | Nye Timothy G. | Systems and methods for identifying an internet resource address |
US7657751B2 (en) | 2003-05-13 | 2010-02-02 | Corestreet, Ltd. | Efficient and secure data currentness systems |
US7613687B2 (en) * | 2003-05-30 | 2009-11-03 | Truelocal Inc. | Systems and methods for enhancing web-based searching |
EP1636682A4 (en) * | 2003-06-24 | 2009-04-29 | Corestreet Ltd | Access control |
US8015399B2 (en) * | 2003-09-30 | 2011-09-06 | Ricoh Company, Ltd. | Communication apparatus, communication system, certificate transmission method and program |
US7290278B2 (en) | 2003-10-02 | 2007-10-30 | Aol Llc, A Delaware Limited Liability Company | Identity based service system |
WO2005050906A1 (en) * | 2003-11-13 | 2005-06-02 | Digital Authentication Technologies, Inc. | System and method for container monitoring, real time authentication, anomaly detection, and alerts |
CN101124765B (en) * | 2003-11-19 | 2013-08-07 | 科尔街有限公司 | Distributed delegated path discovery and validation |
WO2005067672A2 (en) | 2004-01-09 | 2005-07-28 | Corestreet, Ltd. | Batch ocsp and batch distributed ocsp |
US7580403B2 (en) | 2004-02-26 | 2009-08-25 | Enterasys Networks, Inc. | Status transmission system and method |
US20050261917A1 (en) * | 2004-03-12 | 2005-11-24 | Forget Shield Danielle R | Electronic waste management system |
GB0407335D0 (en) * | 2004-03-31 | 2004-05-05 | British Telecomm | Authorisation |
US20070118739A1 (en) * | 2004-06-04 | 2007-05-24 | Mitsubishi Denki Kabushhiki Kaisha | Certificate issuance server and certification system for certifying operating environment |
US7945945B2 (en) * | 2004-08-06 | 2011-05-17 | Enterasys Networks, Inc. | System and method for address block enhanced dynamic network policy management |
US7347628B2 (en) | 2004-11-08 | 2008-03-25 | Enterasys Networks, Inc. | Optical interface identification system |
US7205882B2 (en) * | 2004-11-10 | 2007-04-17 | Corestreet, Ltd. | Actuating a security system using a wireless device |
US8086232B2 (en) | 2005-06-28 | 2011-12-27 | Enterasys Networks, Inc. | Time synchronized wireless method and operations |
FR2888940A1 (en) * | 2005-07-22 | 2007-01-26 | Cryptiris Soc Par Actions Simp | Portable device e.g. badge, locating system for locating e.g. sick person in building, has pool utilizing atmospheric pressure measure realized by badge combined with waves reception levels for determining location of badge |
US20070094494A1 (en) * | 2005-10-26 | 2007-04-26 | Honeywell International Inc. | Defending against sybil attacks in sensor networks |
TWI293690B (en) * | 2005-12-16 | 2008-02-21 | Ind Tech Res Inst | System and method for location determination using time differences |
US8332928B2 (en) * | 2007-02-22 | 2012-12-11 | Hewlett-Packard Development Company, L.P. | Location attestation service |
US20080277314A1 (en) * | 2007-05-08 | 2008-11-13 | Halsey Richard B | Olefin production utilizing whole crude oil/condensate feedstock and hydrotreating |
ITRM20080034A1 (en) | 2008-01-23 | 2009-07-24 | Luca Stefano De | SPACE-TEMPORAL MARKING DEVICE, IN PARTICULAR OF DIGITAL DOCUMENTS. |
FR2943163A1 (en) * | 2009-03-11 | 2010-09-17 | Cryptiris | SPATIAL LOCATION DEVICE, REFERENCE TRANSMITTER AND ASSOCIATED LOCATION SYSTEM |
EP2540029B1 (en) * | 2010-02-26 | 2016-10-05 | Digital Authentication Technologies, Inc. | System and method for location-aware security and access |
US10068084B2 (en) * | 2011-06-27 | 2018-09-04 | General Electric Company | Method and system of location-aware certificate based authentication |
CN104718719B (en) * | 2012-10-16 | 2018-03-27 | 诺基亚技术有限公司 | Method and apparatus for the report of attested sensing data |
CN104782096A (en) * | 2012-11-16 | 2015-07-15 | 瑞典爱立信有限公司 | Vicinity-based multi-factor authentication |
US20140229603A1 (en) * | 2013-02-08 | 2014-08-14 | International Business Machines Corporation | Validation of service management requests of a mobile device in a geographically bounded space |
WO2014130145A1 (en) * | 2013-02-22 | 2014-08-28 | Intel Corporation | Public and private geo-fences |
EP3111245A1 (en) | 2014-02-24 | 2017-01-04 | Skyhook Wireless, Inc. | Certified location for mobile devices |
US9654922B2 (en) | 2014-03-21 | 2017-05-16 | Venafi, Inc. | Geo-fencing cryptographic key material |
US9647998B2 (en) | 2014-03-21 | 2017-05-09 | Venafi, Inc. | Geo-fencing cryptographic key material |
US9577823B2 (en) | 2014-03-21 | 2017-02-21 | Venafi, Inc. | Rule-based validity of cryptographic key material |
US9531533B2 (en) | 2014-03-21 | 2016-12-27 | Venafi, Inc. | Rule-based validity of cryptographic key material |
US9686244B2 (en) | 2014-03-21 | 2017-06-20 | Venafi, Inc. | Rule-based validity of cryptographic key material |
US9680827B2 (en) | 2014-03-21 | 2017-06-13 | Venafi, Inc. | Geo-fencing cryptographic key material |
WO2016027121A1 (en) * | 2014-08-20 | 2016-02-25 | Intel Corporation | Encrypted code execution |
GB2538038A (en) * | 2015-02-03 | 2016-11-09 | Ipagoo Llp | Apparatus, system and method |
EP3185467A1 (en) * | 2015-12-21 | 2017-06-28 | Alcatel Lucent | Certification of location of a communication device |
US20170372085A1 (en) * | 2016-06-28 | 2017-12-28 | HGST Netherlands B.V. | Protecting data in a storage device |
JP2018107514A (en) * | 2016-12-22 | 2018-07-05 | 日本電気株式会社 | Positional information assurance device, positional information assurance method, positional information assurance program, and communication system |
KR102028452B1 (en) * | 2018-03-02 | 2019-10-04 | 한국기술교육대학교 산학협력단 | Apparatus and method for bidirectional beacon communication using time slot |
GB2611294A (en) * | 2021-09-24 | 2023-04-05 | British Telecomm | Computer-implemented validation methods and systems |
Citations (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US3774215A (en) * | 1970-11-23 | 1973-11-20 | Gen Systems Dev Corp | Position locating system |
US4077005A (en) * | 1971-06-18 | 1978-02-28 | The United States Of America As Represented By The Secretary Of The Navy | Secure position identity and time reporting system |
US4707699A (en) * | 1985-02-14 | 1987-11-17 | Halliburton Company | Method and apparatus for positioning a satellite antenna from a remote well logging location |
US4819053A (en) * | 1986-05-09 | 1989-04-04 | Halavais Richard A | Single-point locating system |
US4860352A (en) * | 1985-05-20 | 1989-08-22 | Satellite Financial Systems Corporation | Satellite communication system and method with message authentication suitable for use in financial institutions |
US4972431A (en) * | 1989-09-25 | 1990-11-20 | Magnavox Government And Industrial Electronics Company | P-code-aided global positioning system receiver |
US4993067A (en) * | 1988-12-27 | 1991-02-12 | Motorola, Inc. | Secure satellite over-the-air rekeying method and system |
US5101208A (en) * | 1967-02-24 | 1992-03-31 | Parker Carlyle V | IFF authentication system |
US5155490A (en) * | 1990-10-15 | 1992-10-13 | Gps Technology Corp. | Geodetic surveying system using multiple GPS base stations |
US5221925A (en) * | 1991-07-25 | 1993-06-22 | Cross Anthony D | Position identification system |
US5243652A (en) * | 1992-09-30 | 1993-09-07 | Gte Laboratories Incorporated | Location-sensitive remote database access control |
US5434789A (en) * | 1993-10-06 | 1995-07-18 | Fraker; William F. | GPS golf diagnostic system |
US5459473A (en) * | 1990-03-09 | 1995-10-17 | Sigtec Navigation Pty Ltd. | GPS receiver |
US5499294A (en) * | 1993-11-24 | 1996-03-12 | The United States Of America As Represented By The Administrator Of The National Aeronautics And Space Administration | Digital camera with apparatus for authentication of images produced from an image file |
US5568119A (en) * | 1993-12-21 | 1996-10-22 | Trimble Navigation Limited | Arrestee monitoring with variable site boundaries |
US5577122A (en) * | 1994-12-29 | 1996-11-19 | Trimble Navigation Limited | Secure communication of information |
-
1994
- 1994-09-22 US US08/310,022 patent/US5659617A/en not_active Ceased
-
1999
- 1999-08-19 US US09/377,724 patent/USRE38899E1/en not_active Expired - Lifetime
Patent Citations (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5101208A (en) * | 1967-02-24 | 1992-03-31 | Parker Carlyle V | IFF authentication system |
US3774215A (en) * | 1970-11-23 | 1973-11-20 | Gen Systems Dev Corp | Position locating system |
US4077005A (en) * | 1971-06-18 | 1978-02-28 | The United States Of America As Represented By The Secretary Of The Navy | Secure position identity and time reporting system |
US4707699A (en) * | 1985-02-14 | 1987-11-17 | Halliburton Company | Method and apparatus for positioning a satellite antenna from a remote well logging location |
US4860352A (en) * | 1985-05-20 | 1989-08-22 | Satellite Financial Systems Corporation | Satellite communication system and method with message authentication suitable for use in financial institutions |
US4819053A (en) * | 1986-05-09 | 1989-04-04 | Halavais Richard A | Single-point locating system |
US4993067A (en) * | 1988-12-27 | 1991-02-12 | Motorola, Inc. | Secure satellite over-the-air rekeying method and system |
US4972431A (en) * | 1989-09-25 | 1990-11-20 | Magnavox Government And Industrial Electronics Company | P-code-aided global positioning system receiver |
US5459473A (en) * | 1990-03-09 | 1995-10-17 | Sigtec Navigation Pty Ltd. | GPS receiver |
US5155490A (en) * | 1990-10-15 | 1992-10-13 | Gps Technology Corp. | Geodetic surveying system using multiple GPS base stations |
US5221925A (en) * | 1991-07-25 | 1993-06-22 | Cross Anthony D | Position identification system |
US5243652A (en) * | 1992-09-30 | 1993-09-07 | Gte Laboratories Incorporated | Location-sensitive remote database access control |
US5434789A (en) * | 1993-10-06 | 1995-07-18 | Fraker; William F. | GPS golf diagnostic system |
US5499294A (en) * | 1993-11-24 | 1996-03-12 | The United States Of America As Represented By The Administrator Of The National Aeronautics And Space Administration | Digital camera with apparatus for authentication of images produced from an image file |
US5568119A (en) * | 1993-12-21 | 1996-10-22 | Trimble Navigation Limited | Arrestee monitoring with variable site boundaries |
US5577122A (en) * | 1994-12-29 | 1996-11-19 | Trimble Navigation Limited | Secure communication of information |
Non-Patent Citations (2)
Title |
---|
Simmons, Contemporary Cryptography, IEEE Press, pp. 221-222, 1992. * |
Simmons, Contemporary Cryptology, the Science of information integrity, IEEE Press1992, p. 182, 185-187, 193-194, 197-199. * |
Cited By (28)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9924216B2 (en) * | 2000-03-21 | 2018-03-20 | Ted R. Rittmaster | System and process for distribution of information on a communication network |
US20020023010A1 (en) * | 2000-03-21 | 2002-02-21 | Rittmaster Ted R. | System and process for distribution of information on a communication network |
US20130103947A1 (en) * | 2001-06-28 | 2013-04-25 | Koninklijke Philips Electronics N.V. | Temporal proximity to verify physical proximity |
US8997243B2 (en) * | 2001-06-28 | 2015-03-31 | Koninklijke Philips N.V. | Temporal proximity to verify physical proximity |
US20030145214A1 (en) * | 2002-01-28 | 2003-07-31 | Kabushiki Kaisha Toshiba | Communication device and communication control device with limited copyright protection range |
US20050132166A1 (en) * | 2002-03-28 | 2005-06-16 | Saffre Fabrice T.P. | Method and apparatus for network security |
US7739741B2 (en) * | 2002-03-28 | 2010-06-15 | British Telecommunications Public Limited Company | Method and apparatus for network security |
US20030217267A1 (en) * | 2002-05-16 | 2003-11-20 | Kindberg Timothy P.J.G. | Authenticating a web hyperlink associated with a physical object |
US20040059914A1 (en) * | 2002-09-12 | 2004-03-25 | Broadcom Corporation | Using signal-generated location information to identify and authenticate available devices |
US20050160274A1 (en) * | 2004-01-16 | 2005-07-21 | Takanori Yukimatsu | Content transmission apparatus and content reception apparatus |
US20110109508A1 (en) * | 2009-11-06 | 2011-05-12 | Microsoft Corporation | Location proofs |
US8531334B2 (en) * | 2009-11-06 | 2013-09-10 | Microsoft Corporation | Location proofs |
US9332427B2 (en) | 2009-11-06 | 2016-05-03 | Microsoft Technology Licensing, Llc | Location proofs |
US10094907B2 (en) | 2014-08-15 | 2018-10-09 | Facebook, Inc. | Bluetooth crowd-sourced triangualtion |
US9426657B2 (en) | 2014-08-15 | 2016-08-23 | Facebook, Inc. | Bluetooth transmission security pattern |
US9603013B2 (en) * | 2014-08-15 | 2017-03-21 | Facebook, Inc. | Bluetooth beacon protocol |
US9667352B2 (en) | 2015-01-09 | 2017-05-30 | Facebook, Inc. | Ultrasonic communications for wireless beacons |
US10432321B2 (en) | 2015-01-09 | 2019-10-01 | Facebook, Inc. | Ultrasonic communications for wireless beacons |
US10666365B2 (en) | 2015-01-09 | 2020-05-26 | Facebook, Inc. | Ultrasonic communications for wireless beacons |
US10616709B2 (en) | 2015-09-02 | 2020-04-07 | Estimote Polska Sp z o.o. | System and method for lower power data routing |
US10771917B2 (en) | 2015-09-02 | 2020-09-08 | Estimote Polska Sp z o.o. | System and method for low power data routing |
US11006237B2 (en) | 2015-09-02 | 2021-05-11 | Estimote Polska Sp z o.o. | System and method for low power data routing |
US10523685B1 (en) | 2018-08-22 | 2019-12-31 | Estimote Polska Sp z o.o. | System and method for verifying device security |
US11218492B2 (en) | 2018-08-22 | 2022-01-04 | Estimote Polska Sp. Z .O.O. | System and method for verifying device security |
US20200228541A1 (en) * | 2019-01-14 | 2020-07-16 | Qatar Foundation For Education, Science And Community Development | Methods and systems for verifying the authenticity of a remote service |
US11641363B2 (en) * | 2019-01-14 | 2023-05-02 | Qatar Foundation For Education, Science And Community Development | Methods and systems for verifying the authenticity of a remote service |
US11823199B2 (en) | 2020-04-29 | 2023-11-21 | Capital One Services, Llc | System, method and computer-accessible medium for fraud detection based on satellite relays |
US20230318852A1 (en) * | 2022-03-31 | 2023-10-05 | Lenovo (United States) Inc. | Computing device digital certificates that include a geographic extension |
Also Published As
Publication number | Publication date |
---|---|
US5659617A (en) | 1997-08-19 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
USRE38899E1 (en) | Method for providing location certificates | |
JP5788976B2 (en) | How to provide certifiable time and location indicators | |
US7921283B2 (en) | Method for real-time data authentication | |
US5828751A (en) | Method and apparatus for secure measurement certification | |
US8549310B2 (en) | Method and apparatus for secure measurement certification | |
US5754657A (en) | Authentication of a message source | |
EP1329049B1 (en) | Method and apparatus for real-time digital certification of electronic files and transactions using entropy factors | |
US20120133552A1 (en) | System and method for gnss in-band authenticated position determination | |
US20100031025A1 (en) | Method and system to authorize and assign digital certificates without loss of privacy, and/or to enhance privacy key selection | |
CN101023651A (en) | Proximity check server | |
US9473510B2 (en) | System and method for location verification | |
Altay et al. | Gps-sec | |
US20220104026A1 (en) | Position information providing system and position information providing method | |
US8800027B1 (en) | Authentication using privacy protected personally identifiable information | |
WO2000079348A2 (en) | System and method for providing a trusted third party clock and trusted local clock | |
US20140161257A1 (en) | Location-specific security and access system based on radio frequency signal attenuation | |
Mundt | Two methods of authenticated positioning | |
EP2083531A2 (en) | Location- and time-stamping device, particularly for digital documents | |
González-Tablas et al. | Survey on location authentication protocols and spatial-temporal attestation services | |
Santos et al. | Operation STOP: secure itinerary verification for smart vehicle inspections |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
FPAY | Fee payment |
Year of fee payment: 12 |