Patent Grant
8320570
This application claims priority to and the benefit of Korean Patent Application Nos. 10-2008-0123313 and 10-2009-0022305 filed in the Korean Intellectual Property Office on Dec. 5, 2008 and Mar. 16, 2009, the entire contents of which are incorporated herein by reference.
(a) Field of the Invention
The present invention relates to an apparatus and a method for generating a secret key.
(b) Description of the Related Art
A mobile RFID terminal reads a unique item identifier (UII) of an RFID tag by incorporating and mounting an RFID reader in a portable terminal so as to provide various mobile RFID application services to a user. The portable terminal in which the RFID reader is incorporated or mounted is referred to as a mobile RFID terminal. The most general example of the mobile RFID environment includes the mobile RFID terminal and in an environment where the RFID tag is attached to a movie poster, when a user touches the mobile RFID terminal onto the RFID tag, the user can receive information on the corresponding movie through the mobile RFID terminal.
Another example of the mobile RFID environment may include an environment in which the RFID tag is attached to medicines prescribed by a doctor. In this case, the user who has the medicine prescribed by the doctor can receive information on the medicine and a dosage method by reading the RFID tag by using the mobile RFID terminal. However, when the user purchases an RFID-attached personal article such as the medicine, not an opened public article, a malicious attacker may arbitrarily read the UII of the article through an RFID tag of the article which the user purchases. At this time, since the read UII has a unique value according to a predetermined rule, the attacker can substantially determine an article type of the article purchased by the user and determine the position of the reader reading the RFID tag, thereby causing invasion of privacy in that a movement path of the user can be tracked.
As a result, protection of the personal privacy of the user who uses the mobile RFID terminal is necessarily required. For this, identification of the RFID tag attached to a personally owned article and acquisition of information need to be protected by using a secret key which only an article owner can utilizes. However, when a process of creating the secret key is complicated and user's intervention is required, utilization of a service using the mobile RFID terminal will be deteriorated.
The above information disclosed in this Background section is only for enhancement of understanding of the background of the invention and therefore it may contain information that does not form the prior art that is already known in this country to a person of ordinary skill in the art.
The present invention has been made in an effort to provide an apparatus and a method for generating a secret key capable of generating the secret key by minimizing user's intervention.
An exemplary embodiment of the present invention provides an apparatus for generating a secret key of a mobile radio frequency identification (RFID) terminal. The secret key generating apparatus includes an encryption unit, a communication unit, and a decryption unit. The encryption unit generates the secret key by using information of the mobile RFID terminal, the communication unit transmits the generated secret key to an RFID tag attached on an article, and receives a unique item identifier of the article encrypted by using the secret key from the RFID tag. In addition, the decryption unit provides information of the article to a user by decrypting the encrypted unique item identifier of the article by using the generated secret key.
Another embodiment of the present invention provides a method for generating a secret key in a mobile radio frequency identification (RFID) terminal. The secret key generating method includes: generating a secret key by using the information of the mobile RFID terminal; transmitting the generated secret key to an RFID tag attached on an article; receiving the encrypted unique item identifier of the article from the RFID tag by using the secret key; and providing the information of the article to a user by decrypting the encrypted unique item identifier by using the generated secret key.
According to an embodiment of the present invention, since a user does not need to memorize or manage a secret key for each RFID tag, it is possible to minimize user's intervention and support protection of personal privacy.
In the following detailed description, only certain exemplary embodiments of the present invention have been shown and described, simply by way of illustration. As those skilled in the art would realize, the described embodiments may be modified in various different ways, all without departing from the spirit or scope of the present invention. Accordingly, the drawings and description are to be regarded as illustrative in nature and not restrictive. Like reference numerals designate like elements throughout the specification.
In the specification and the appended claims, unless explicitly described to the contrary, the word “comprise” and variations such as “comprises” or “comprising”, will be understood to imply the inclusion of stated elements but not the exclusion of any other elements. In addition, the terms “-er”, “-or”, “module”, and “block” described in the specification mean units for processing at least one function and operation, and can be implemented by hardware components or software components and combinations thereof.
Hereinafter, an apparatus and a method for generating a secret key according to an embodiment of the present invention will be described in detail with reference to the accompanying drawings.
Referring to
Referring to
When the user puts the mobile RFID terminal 10 to the RFID tag, the encryption unit 110 generates the secret key by hashing the concatenated number after concatenating a phone number and an electronic serial number (ESN) of the mobile terminal RFID terminal 10. That is, if the phone number of the RFID terminal 10 is 010-0001-0001 and the electronic serial number of the mobile RFID terminal 10 is 80000000, a secret key of 32 bits is generated by hashing the concatenated number of 01000010001 and 80000000.
The communication unit 120 transmits the generated secret key to the RFID tag 200 and requests setting of the secret key to the RFID tag.
In this case, the RFID tag 200 receives the secret key transmitted through the communication unit 120 and encrypts the UII of the article 20 by using the received secret key and transmits the encrypted UII to the communication unit 120.
Further, the communication unit 120 transmits the UII encrypted by the RFID tag 200 to the decryption unit 130.
The decryption unit 130 decrypts the encrypted UII by using the generated secret key.
As such, when the secret key is generated by using the phone number and the electronic serial number of the mobile RFID terminal 10, the user does not need to especially memorize or manage the secret key.
Referring to
The group index receiving unit 140 requests group index information to the user and receives the group index information from the user.
In this case, the encryption unit 110 generates the secret key by hashing the concatenated number after concatenating the phone number and the electronic serial number of the mobile RFID terminal 10 and the received group index information. At this time, the group index information as information such as a number, a text, etc. which the user can directly select may be used as a password at the time of decrypting the UII of the article 20.
That is, when the RFID tag encrypts the UII by using the secret key generated by using the group index information, the decryption unit 130 requests and receives the group index information through the group index receiving unit 140 before decrypting the UII received from the RFID tag 200, compares the group index information used to generate the secret key with the received group index information, and when they coincide with each other, decrypts the unique item identification by using the corresponding secret key.
Referring to
Thereafter, the secret key generating apparatus 100 transmits the generated secret key to an RFID tag 200 (S430).
Referring to
The RFID tag 200 responds with a random number of 16 bits (RN16) in respects to the event request (S520).
When the response (RN16) in respects to the event request is received from the RFID tag 200, the mobile RFID terminal 10 transmits the resultant response (ACK) to the RFID tag 200 (S530). At this time, the random number of 16 bits is utilized as a temporary ID of the RFID tag 200. That is, a plurality of RFID tags 200 may exist in the vicinity of the mobile RFID terminal 10. However, there is no method which can discriminate the corresponding RFID tag 200 before the UII is known. Therefore, the mobile RFID terminal 10 receives the random number of 16 bits (RN16) from the RFID tag 200 and sets the random number of 16 bits (RN16) as the temporary ID of the corresponding RFID tag 200. In addition, the mobile RFID terminal 10 always includes the random number of 16 bits (RN16) in all commands transmitted thereafter and transmits them. As a result, only the RFID tag 200 which responds with the corresponding number of 16 bits (RN16) receives the corresponding command.
Subsequently, the RFID tag 200 responds a protocol control (PC) and an extended protocol control (XPC) (S540). At this time, the PC and the XPC indicate information on an ability which the RFID tag 200 itself can support. For example, the PC and the XPC may include the size of the UII and information on the existence or nonexistence of a memory area.
Thereafter, the mobile RFID terminal 10 requests the UII to the RFID tag 200 (S550).
The RFID tag 200 encrypts the UII by using the received secret key (S560) and responds to the UII request by transmitting the encrypted UII to the secret key generating apparatus 100 (S570).
As described above, the secret key generating apparatus 100 of the mobile RFID terminal 10 according to the embodiment of the present invention provides information on the corresponding article to the user by decrypting the encrypted UII by using the generated secret key.
The above-mentioned exemplary embodiments of the present invention are not embodied only by an apparatus and/or method. Alternatively, the above-mentioned exemplary embodiments may be embodied by a program performing functions that correspond to the configuration of the exemplary embodiments of the present invention, or a recording medium on which the program is recorded. These embodiments can be easily devised from the description of the above-mentioned exemplary embodiments by those skilled in the art to which the present invention pertains.
While this invention has been described in connection with what is presently considered to be practical exemplary embodiments, it is to be understood that the invention is not limited to the disclosed embodiments, but, on the contrary, is intended to cover various modifications and equivalent arrangements included within the spirit and scope of the appended claims.
| Number | Date | Country | Kind |
|---|---|---|---|
| 10-2008-0123313 | Dec 2008 | KR | national |
| 10-2009-0022305 | Mar 2009 | KR | national |
| Number | Name | Date | Kind |
|---|---|---|---|
| 6839434 | Mizikovsky | Jan 2005 | B1 |
| 8072314 | Kuzma et al. | Dec 2011 | B1 |
| 20040054900 | He | Mar 2004 | A1 |
| 20040181681 | Salisbury | Sep 2004 | A1 |
| 20060186200 | Nochta | Aug 2006 | A1 |
| 20070069851 | Sung et al. | Mar 2007 | A1 |
| 20070069852 | Mo et al. | Mar 2007 | A1 |
| 20070120651 | Kobayashi et al. | May 2007 | A1 |
| 20080094183 | Fukushima et al. | Apr 2008 | A1 |
| 20080208753 | Lee et al. | Aug 2008 | A1 |
| 20090169019 | Bauchot et al. | Jul 2009 | A1 |
| 20090214038 | Wong et al. | Aug 2009 | A1 |
| 20090262926 | Kabra et al. | Oct 2009 | A1 |
| 20090323928 | Kerschbaum et al. | Dec 2009 | A1 |
| 20100277287 | Choi et al. | Nov 2010 | A1 |
| 20110271105 | Shamir | Nov 2011 | A1 |
| Number | Date | Country |
|---|---|---|
| 2008-186049 | Aug 2008 | JP |
| 1020040092669 | Nov 2004 | KR |
| 1020070034425 | Mar 2007 | KR |
| 1020070059946 | Jun 2007 | KR |
| 1020090012386 | Feb 2009 | KR |
| WO 2007049072 | Mar 2007 | WO |
| Number | Date | Country | |
|---|---|---|---|
| 20100142708 A1 | Jun 2010 | US |
