WO2003054814A2 - Secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use - Google Patents

Secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use Download PDF

Info

Publication number
WO2003054814A2
WO2003054814A2 PCT/US2002/037076 US0237076W WO03054814A2 WO 2003054814 A2 WO2003054814 A2 WO 2003054814A2 US 0237076 W US0237076 W US 0237076W WO 03054814 A2 WO03054814 A2 WO 03054814A2
Authority
WO
WIPO (PCT)
Prior art keywords
data channel
wristwatch
contacting electrical
versatile device
recited
Prior art date
Application number
PCT/US2002/037076
Other languages
French (fr)
Other versions
WO2003054814A3 (en
Inventor
Geoff M. Lyon
Original Assignee
Hewlett-Packard Company
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hewlett-Packard Company filed Critical Hewlett-Packard Company
Priority to JP2003555455A priority Critical patent/JP4426844B2/en
Priority to DE60226265T priority patent/DE60226265T2/en
Priority to EP02782321A priority patent/EP1450640B1/en
Priority to AU2002348296A priority patent/AU2002348296A1/en
Publication of WO2003054814A2 publication Critical patent/WO2003054814A2/en
Publication of WO2003054814A3 publication Critical patent/WO2003054814A3/en

Links

Classifications

    • GPHYSICS
    • G04HOROLOGY
    • G04GELECTRONIC TIME-PIECES
    • G04G21/00Input or output devices integrated in time-pieces
    • G04G21/04Input or output devices integrated in time-pieces using radio waves
    • GPHYSICS
    • G04HOROLOGY
    • G04GELECTRONIC TIME-PIECES
    • G04G17/00Structural details; Housings
    • G04G17/08Housings
    • G04G17/083Watches distributed over several housings
    • GPHYSICS
    • G04HOROLOGY
    • G04GELECTRONIC TIME-PIECES
    • G04G21/00Input or output devices integrated in time-pieces
    • G04G21/02Detectors of external physical values, e.g. temperature
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/30Individual registration on entry or exit not involving the use of a pass
    • G07C9/32Individual registration on entry or exit not involving the use of a pass in combination with an identity check
    • G07C9/37Individual registration on entry or exit not involving the use of a pass in combination with an identity check using biometric data, e.g. fingerprints, iris scans or voice recognition
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/068Authentication using credential vaults, e.g. password manager applications or one time password [OTP] applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • H04W12/082Access security using revocation of authorisation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/30Security of mobile devices; Security of mobile applications
    • H04W12/33Security of mobile devices; Security of mobile applications using wearable devices, e.g. using a smartwatch or smart-glasses

Definitions

  • the present invention generally relates to devices facilitating wireless transactions. More particularly, the present invention relates to secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use.
  • the wireless transaction can be of any type (e.g., credit card type, debit card type, access control type, etc.).
  • Some of these devices can be comfortably worn by the authenticated user because the device is implemented as a wristwatch.
  • This wristwatch typically executes an authentication mechanism for identifying the user and utilizes a mechanism for data transfer over short-range wireless radio or transponder data links.
  • Such wristwatches are primarily used in access control applications such as a ski lift pass. Although these wristwatches provide a good authentication mechanism for identifying the user and subsequent access to a variety of services, possession of the wristwatch is the only form of authorization required. Consequently, unauthorized use of a pre-registered (i.e., where a user has been authenticated) wristwatch is often difficult to prevent.
  • a large number of payment devices e.g. credit cards
  • More intelligent smart card style payment devices offer increased levels of security in terms of their stored data and transaction interaction, but still only offer security based on user association or ownership of the intelligent smart card style payment devices and offer no increased protection in terms of use-based context security. In the majority of cases, a lost or stolen card is vulnerable to misuse by others.
  • the versatile device is implemented as a wristwatch.
  • the wristwatch is configured to facilitate a wireless transaction for an authenticated user and is configured to be worn by the authenticated user such that to encircle a part of the authenticated user.
  • the wireless transaction can be of any type (e.g., credit card type, debit card type, access control type, etc.).
  • the wristwatch includes a validation mechanism for controlling use of the wristwatch based on whether the authenticated user continues to wear the wristwatch after initiating use of the wristwatch.
  • the wristwatch executes a context security validation scheme, where authenticated use is determined not only by possession of the wristwatch, but also by its operational context.
  • the operational context will allow the wristwatch to accept or deny any external service interaction via a wireless link, based on whether the wristwatch is in an active/secure status state or in an inactive state.
  • the integration of a data channel within the straps of the wristwatch itself enables validation of whether the wristwatch is being worn by the authenticated user that initiated use of the wristwatch. Removal of the wristwatch will invalidate its context security and place the watch in an inactive state, disabling all external interaction via a wireless link.
  • the context security validation executed by the wristwatch enables valid user authentication and access to services or transactions via a wireless link, which may otherwise be obtained by non-authenticated individuals who obtained the wristwatch by devious means or by accident.
  • the concept of a secure device state provides additional security and theft redundancy as the wristwatch acts as a host for applications and secure data and no longer solely depends on possession to maintain security.
  • the security is obtained by a combination of the authenticated user wearing the wristwatch and initializing its operation. Therefore, removing the wristwatch will also disable its operational capabilities, thus reducing its value to others.
  • Figure 1 illustrates a wristwatch in accordance with an embodiment of the present invention.
  • Figure 2 illustrates a block diagram of electronic components of the wristwatch of Figure 1.
  • Figure 3 illustrates a flow chart showing a method of securely operating the wristwatch of Figure 1 in accordance with an embodiment of the present invention.
  • Figure 4 illustrates a wristwatch in accordance with another embodiment of the present invention, showing an optical data channel.
  • FIG. 5 illustrates operation of the optical data channel of the wristwatch of Figure 4.
  • Figure 6 illustrates operation of the optical data channel of the wristwatch of Figure 4 in greater detail.
  • Figure 7 illustrates a wristwatch in accordance with another embodiment of the present invention, showing a contacting electrical data channel.
  • Figure 8 illustrates a wristwatch in accordance with another embodiment of the present invention, showing a non-contacting electrical data channel.
  • Figure 9 illustrates a wristwatch in accordance with another embodiment of the present invention, showing a non-contacting electrical data channel formed by capacitive coupling.
  • Figure 10 illustrates a wristwatch in accordance with another embodiment of the present invention, showing a non-contacting electrical data channel formed by inductive coupling.
  • FIG 1 illustrates a wristwatch 100 in accordance with an embodiment of the present invention.
  • the versatile device 100 of the present invention is configured to be worn by an authenticated user such that to encircle a part of the authenticated user's body.
  • the versatile device 100 is implemented as a wristwatch 100 as shown in Figure 1.
  • the versatile device 100 may be implemented as any finger, hand, arm, foot, leg, waist, wrist, or other body worn item, such as a bracelet or armband. It should be understood that the wristwatch 100 may have other configurations.
  • the wristwatch 100 includes electronic circuitry 50 to host one or more applications, secure authentication/identification data, and transaction data, and to also provide authentication to validate use and possession of the wristwatch 100 by a legitimate user by executing a use- based context security validation scheme.
  • the wristwatch 100 is configured to facilitate a wireless transaction for an authenticated user and is configured to be worn by the authenticated user such that to encircle a part of the authenticated user, such as the authenticated user's wrist.
  • the wireless transaction can be of any type (e.g., credit card type, debit card type, access control type, etc.).
  • the wristwatch 100 includes a validation mechanism for controlling use of the wristwatch 100 based on whether the authenticated user continues to wear the wristwatch 100 after initiating use of the wristwatch 100.
  • the validation mechanism includes a transmitting element 40, a receiving element 30, a data channel 80, and a monitoring component (integrated in the electronic circuitry 50) for monitoring the status of the data channel 80.
  • the wristwatch 100 executes a context security validation scheme, where authenticated use is determined not only by possession of the wristwatch 100, but also by its operational context.
  • the operational context will allow the wristwatch 100 to accept or deny any external service interaction via a wireless link, based on whether the wristwatch 100 is in an active/secure status state or in an inactive state.
  • the wristwatch 100 includes a data channel 80 integrated within the first and second straps 10 and 20 of the wristwatch 100 itself enabling validation of whether the wristwatch 100 is being worn by the authenticated user that initiated use of the wristwatch 100. Removal of the wristwatch 100 will invalidate its context security and place the wristwatch in an inactive state, disabling all external interaction via a wireless link.
  • the context security validation executed by the wristwatch 100 enables valid user authentication and access to services or transactions via a wireless link, which may otherwise be obtained by non-authenticated individuals who obtained the wristwatch by devious means or by accident.
  • the concept of a secure device state provides additional security and theft redundancy as the wristwatch 100 acts as a host for applications and secure data and no longer solely depends on possession to maintain security.
  • the security is obtained by a combination of the authenticated user wearing the wristwatch 100 and initializing its operation. Therefore, removing the wristwatch 100 will also disable its operational capabilities, thus reducing its value to others.
  • the wristwatch body 90 acts as the main functional section.
  • the wristwatch body 90 provides time and date functions via the watchface 60.
  • the wristwatch body 90 provides secure data storage capability, wireless transaction capability, and an encryption engine for the validation mechanism.
  • the wristwatch 100 includes a data channel 80 integrated within the first and second straps 10 and 20 of the wristwatch 100 itself enabling validation of whether the wristwatch 100 is being worn by the authenticated user that initiated use of the wristwatch 100.
  • the wristwatch body 90 includes an embedded electronics subsystem 50, a transmitting element 40 for transmitting data through the data channel 80, a receiving element 30 for receiving the data transmitted through the data channel 80, and optional biosensors 70 for sensing whether the authenticated user is wearing the wristwatch 100.
  • a successful transmission of the data between the transmitting element 40 and the receiving element 30 indicates that the wristwatch 100 is being worn by the authenticated user.
  • the data channel 80 is configured to be rendered inoperable if the authenticated user discontinues wearing the wristwatch 100.
  • the data transmitted by the transmitting element 40 is transmitted periodically and is time-varying to avoid unauthorized interference with the monitoring of the integrity and status of the data channel 80.
  • the encryption engine facilitates secure transmission of the data through the data channel 80.
  • the wristwatch 100 includes a clasp or strap connection mechanism 85.
  • Figure 2 illustrates a block diagram of electronic components of the wristwatch 100 of Figure 1.
  • the wristwatch 100 includes a microprocessor 84 for monitoring the status of the data channel 80 and executing the context security validation scheme, a read only memory 81 , a random access memory 82, a radio frequency (RF) interface 83, an interface 61 to the watch display 60, an internal power source 75, the transmitting element 40, the receiving element 30, a data bus 76, and circuits 71 to process the biosensor 70 output signals.
  • a microprocessor 84 for monitoring the status of the data channel 80 and executing the context security validation scheme
  • a read only memory 81 for a read only memory 81 , a random access memory 82, a radio frequency (RF) interface 83, an interface 61 to the watch display 60, an internal power source 75, the transmitting element 40, the receiving element 30, a data bus 76, and circuits 71 to process the biosensor 70 output signals.
  • RF radio frequency
  • the wristwatch 100 is capable of providing a low cost and robust authentication solution by ensuring the integrity of the data channel 80 integrated into the first and second straps 10 and 20.
  • Security can be enhanced by using the optional biosensor subsystem 70 and 71 , providing the capability to detect the presence or absence of the authenticated user's body using biometric measurement techniques (e.g., skin temperature, light reflection, humidity), in addition to the integrity of the data channel 80 itself.
  • biometric measurement techniques e.g., skin temperature, light reflection, humidity
  • FIG 3 illustrates a flow chart showing a method 300 of securely operating the wristwatch 100 of Figure 1 in accordance with an embodiment of the present invention.
  • a user wears the wristwatch 100.
  • the user goes through a security initialization procedure to authenticate the user prior to allowing the user general operational use of the wristwatch's 100 application hosting functionality to facilitate a variety of wireless transactions for the authenticated user.
  • the initialization procedure may be a simple wristwatch-based operation (e.g. entering a PIN number on the wristwatch itself) or a more complex security procedure involving an external security system at Block 325 (e.g.
  • an external device with retina scanning hardware could be used to provide unique user verification, which is conveyed to the wristwatch 100 via the encrypted RF data communications link 302).
  • its task is to activate authenticated use of the wristwatch 100 by validating both the user and the data channel 80 integrated into the straps of the wristwatch 100. If the optional bio-sensing sub system 70 is used, the initialization process will also validate the presence of the user's body.
  • the wristwatch 100 enters an active/secure status state (at Block 330) and starts execution (at Block 370) of one or more applications, which are configured to facilitate wireless transactions and services.
  • the wireless transaction and services can be of any type (e.cj., credit card type, debit card type, access control type, etc.).
  • the particular application checks at Block 380 whether the wristwatch 100 is operating in the active/secure status state. If the wristwatch 100 is not operating in the active/secure status state, the particular application denies the user access to the particular application at Block 390.
  • the particular application checks at Block 385, the validity of the interrogation (e.g., has the user subscribed to the particular service, has the user paid the bill for the particular service). If the interrogation is not valid, the particular application denies the user access to the services offered by the particular application at Block 390. Otherwise, at Block 395, the particular application performs the desired service or transaction supported by the particular application.
  • the interrogation e.g., has the user subscribed to the particular service, has the user paid the bill for the particular service. If the interrogation is not valid, the particular application denies the user access to the services offered by the particular application at Block 390. Otherwise, at Block 395, the particular application performs the desired service or transaction supported by the particular application.
  • the wristwatch 100 integrated into the straps is monitored. In particular, at periodic intervals, data is transmitted through the data channel 80 to validate the active/secure status state of the wristwatch 100. By transmitting and receiving a time varying encrypted data packet, the data channel 80 becomes more secure to attack or eaves dropping.
  • the validation process uses its own data for transmission through the data channel 80, independent from the hosted applications or secure data stored in the wristwatch 100. If a change in the active/secure status state is detected at Block 350 because the data channel has become inoperable indicating the authenticated user has removed the wristwatch 100, the wristwatch 100 erases (at Block 360) its active/secure status state and application data and then switches (at Block 365) to an inactive state or off. Once switched off, others cannot use the wristwatch 100 to execute services or transactions.
  • the wristwatch 100 can only be re-activated by the user after wearing the wristwatch 100 and re-performing the initialization procedure described above.
  • the optional bio-sensing subsystem (at Block 340) provides an extra level of security by determining the user's presence as a supplement to the monitoring of the status and integrity of the data channel 80. Abnormal changes detected by the biosensors will result in the performance of the operations in Blocks 360 and 365 as described above.
  • FIG. 4 illustrates a wristwatch 400 in accordance with another embodiment of the present invention, showing an optical data channel 480A and 480B.
  • the wristwatch 400 includes a first and a second plastic straps 450 and 451 and a buckle fastener 485.
  • the buckle fastener 485 is typical of those used on most low cost watches.
  • Each strap 454 and 450 is manufactured so that it has an integrated optical light path 480A and 480B.
  • the optical light paths 480A and 480B form the optical data channel of the wristwatch 400. This may be achieved by embedding an optical fiber in each strap. Alternatively, this may be achieved by manufacturing each strap from materials that possess appropriate optical properties.
  • FIGs 5 and 6 illustrate operation of the optical data channel 480A and 480B of the wristwatch of Figure 4 in greater detail.
  • the location of the user's wrist 77 is also shownA light -transmitting element 1 transmits light into the fixed length strap 451 at its hinge 2 with the watch body 460.
  • the curvature of the watch body 460 and the strap hinge mechanism 2 provide a lens 492 to focus the light into the optical light path 480A of the strap 451.
  • the light is refracted and guided to leave the strap 451 at an angle above the buckle connection 4, directing the light into the other variable length strap 450.
  • variable length strap 450 the light then enters the variable length strap 450 at one of a number of fixed points, determined by the positioning of the variable length strap 450, i.e. which hole is used to clasp the buckle 485.
  • the geometry of the variable length strap 450 includes a 'sawtooth' pattern 5 that coincides with the buckle hole locations 471. This feature minimizes the air gap and light path between the two straps 451 and 450, thus ensuring that the light enters the variable length strap 450 close to perpendicular, maximizing the transmitted light energy entering the variable length strap 450.
  • the light within the variable length strap 450 is then directed to the second hinge mechanism 6, which again provides a lens 493 to focus the remaining light energy to a light receiving/detection element 7.
  • the watch body 460, hinge mechanism 2 and 6 and the straps 450 and 451 could be manufactured as a single plastic section, thus making the watch body and straps part of the same optical path, minimizing the number of light interfaces to three, i.e., the transmit and receive elements 1 and 2 and the buckle connection 4.
  • each strap 450 and 451 could be windowed, possibly polarized, to ensure that light can only enter or leave the straps at the desired locations. This would assist in both reducing the optical power loss and hence the overall system power requirement and to reduce the possibility of external interference.
  • any attempted external eaves dropping of the optical data channel will not influence the secure functionality of the wristwatch 400.
  • FIG. 7 illustrates a wristwatch 700 in accordance with another embodiment of the present invention, showing a contacting electrical data channel.
  • the wristwatch 700 includes two metal straps 720 and 730, whereas the contacting electrical data channel is integrated into the metal straps 720 and 730.
  • One possible realization when using a metal strap is to use the clasp mechanism 750 as a switch, only allowing connection for the contacting electrical data channel when the clasp mechanism 750 is in the closed position. Although simple to realize, this type of design would be easy to eaves drop, vulnerable to an electrical by-pass and subject to switch contact or mechanical failure.
  • FIG. 8 illustrates a wristwatch 800 in accordance with another embodiment of the present invention, showing a non-contacting electrical data channel.
  • An advantage offered by this wristwatch 800 is that the non- contacting electrical data channel integrated into the straps 810 and 820 used for data transmission can simultaneously provide information about the integrity of the straps 810 and 820 and their connection such as whether the authenticated user has loosen or tightened the straps 810 and 820.
  • one or more electrical properties associated with the non-contacting electrical data channel can be monitored to determine a status of the non- contacting electrical data channel.
  • the non-contacting electrical data channel is more reliable and secure.
  • the two straps 810 and 820 become the electrical transmit and receive elements and are electrically connected to the watch body 830 and its internal circuitry.
  • the non-contacting electrical sensor elements 840 are required to detect and validate that the straps 810 and 820 are fastened and facilitate the encrypted data transmission through the non-contacting electrical data channel.
  • the manufacture of the wristwatch 800 could incorporate seamless rigid (watch electronics) and flexible
  • FIG. 9 illustrates a wristwatch 900 in accordance with another embodiment of the present invention, showing a non-contacting electrical data channel formed by capacitive coupling.
  • capacitive plates 930 and 940 are embedded into each end of the two straps 910 and 920 to form a parallel plate capacitor with a deterministic capacitance based on the clasp position when worn. This will create a capacitive loop (or a non-contacting electrical data channel formed by capacitive coupling) through which the encrypted data can be transmitted, thus creating the non-contacting electrical data channel for secure data transmission and providing a means to monitor the status of the straps 910 and 920 and the non-contacting electrical data channel formed by capacitive coupling.
  • FIG 10 illustrates a wristwatch 1000 in accordance with another embodiment of the present invention, showing a non-contacting electrical data channel formed by inductive coupling.
  • each of the straps 1010 and 1020 includes an inductive circuit element 1030 and 1040.
  • the mutual inductance coupling between these two inductive elements 1030 and 1040 creates a non-contacting electrical data channel for secure data transmission and provides a means to monitor the status of the straps 1010 and 1020 and the non-contacting electrical data channel formed by inductive coupling, as described above.
  • periodic measurement of mutual inductance will validate the integrity of the non-contacting electrical data channel itself. Abnormal changes to this measurement will result in the wristwatch erasing its active/secure status state.
  • Appropriate geometric shielding of the inductive circuit element 1030 and 1040 to minimize stray losses and external interference may be required.

Abstract

A method and versatile device for use-based context security is described. In an embodiment, the versatile device is implemented as a wristwatch. The wristwatch is configured to facilitate a wireless transaction for an authenticated user and is configured to be worn by the authenticated user such that to encircle a part of the authenticated user. Moreover, the wristwatch includes a validation mechanism for controlling use of the wristwatch based on whether the authenticated user continues to wear the wristwatch after initiating use of the wristwatch.

Description

SECURE OPERATION OF A VERSATILE DEVICE BASED ON WHETHER AN AUTHENTICATED USER CONTINUES TO WEAR THE VERSATILE DEVICE
AFTER INITIATING ITS USE
BACKGROUND OF THE INVENTION FIELD OF THE INVENTION
The present invention generally relates to devices facilitating wireless transactions. More particularly, the present invention relates to secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use.
RELATED ART
Currently, there are a number of devices configured to facilitate a wireless transaction for an authenticated user. The wireless transaction can be of any type (e.g., credit card type, debit card type, access control type, etc.). Some of these devices can be comfortably worn by the authenticated user because the device is implemented as a wristwatch. This wristwatch typically executes an authentication mechanism for identifying the user and utilizes a mechanism for data transfer over short-range wireless radio or transponder data links. Such wristwatches are primarily used in access control applications such as a ski lift pass. Although these wristwatches provide a good authentication mechanism for identifying the user and subsequent access to a variety of services, possession of the wristwatch is the only form of authorization required. Consequently, unauthorized use of a pre-registered (i.e., where a user has been authenticated) wristwatch is often difficult to prevent.
In addition to wristwatches, a large number of payment devices (e.g. credit cards) rely on simple security methods, where possession is the principle form of user authentication. More intelligent smart card style payment devices offer increased levels of security in terms of their stored data and transaction interaction, but still only offer security based on user association or ownership of the intelligent smart card style payment devices and offer no increased protection in terms of use-based context security. In the majority of cases, a lost or stolen card is vulnerable to misuse by others.
What is needed is a versatile device that implements a use-based context security scheme.
SUMMARY OF THE INVENTION
A method and versatile device for use-based context security is described and provided. In an embodiment, the versatile device is implemented as a wristwatch. The wristwatch is configured to facilitate a wireless transaction for an authenticated user and is configured to be worn by the authenticated user such that to encircle a part of the authenticated user. The wireless transaction can be of any type (e.g., credit card type, debit card type, access control type, etc.). Moreover, the wristwatch includes a validation mechanism for controlling use of the wristwatch based on whether the authenticated user continues to wear the wristwatch after initiating use of the wristwatch.
In particular, the wristwatch executes a context security validation scheme, where authenticated use is determined not only by possession of the wristwatch, but also by its operational context. The operational context will allow the wristwatch to accept or deny any external service interaction via a wireless link, based on whether the wristwatch is in an active/secure status state or in an inactive state. Moreover, the integration of a data channel within the straps of the wristwatch itself enables validation of whether the wristwatch is being worn by the authenticated user that initiated use of the wristwatch. Removal of the wristwatch will invalidate its context security and place the watch in an inactive state, disabling all external interaction via a wireless link. The context security validation executed by the wristwatch enables valid user authentication and access to services or transactions via a wireless link, which may otherwise be obtained by non-authenticated individuals who obtained the wristwatch by devious means or by accident.
The concept of a secure device state provides additional security and theft redundancy as the wristwatch acts as a host for applications and secure data and no longer solely depends on possession to maintain security. The security is obtained by a combination of the authenticated user wearing the wristwatch and initializing its operation. Therefore, removing the wristwatch will also disable its operational capabilities, thus reducing its value to others.
These and other advantages of the present invention will no doubt become apparent to those of ordinary skill in the art after having read the following detailed description of the preferred embodiments, which are illustrated in the drawing figures.
BRIEF DESCRIPTION OF THE DRAWINGS
The accompanying drawings, which are incorporated in and form a part of this specification, illustrate embodiments of the invention and, together with the description, serve to explain the principles of the present invention.
Figure 1 illustrates a wristwatch in accordance with an embodiment of the present invention.
Figure 2 illustrates a block diagram of electronic components of the wristwatch of Figure 1.
Figure 3 illustrates a flow chart showing a method of securely operating the wristwatch of Figure 1 in accordance with an embodiment of the present invention.
Figure 4 illustrates a wristwatch in accordance with another embodiment of the present invention, showing an optical data channel.
Figure 5 illustrates operation of the optical data channel of the wristwatch of Figure 4.
Figure 6 illustrates operation of the optical data channel of the wristwatch of Figure 4 in greater detail. Figure 7 illustrates a wristwatch in accordance with another embodiment of the present invention, showing a contacting electrical data channel.
Figure 8 illustrates a wristwatch in accordance with another embodiment of the present invention, showing a non-contacting electrical data channel.
Figure 9 illustrates a wristwatch in accordance with another embodiment of the present invention, showing a non-contacting electrical data channel formed by capacitive coupling.
Figure 10 illustrates a wristwatch in accordance with another embodiment of the present invention, showing a non-contacting electrical data channel formed by inductive coupling.
The drawings referred to in this description should not be understood as being drawn to scale except if specifically noted. DETAILED DESCRIPTION OF THE INVENTION
Reference will now be made in detail to the preferred embodiments of the present invention, examples of which are illustrated in the accompanying drawings. While the invention will be described in conjunction with the preferred embodiments, it will be understood that they are not intended to limit the invention to these embodiments. On the contrary, the invention is intended to cover alternatives, modifications and equivalents, which may be included within the spirit and scope of the invention as defined by the appended claims. Furthermore, in the following detailed description of the present invention, numerous specific details are set forth in order to provide a thorough understanding of the present invention. However, it will be recognized by one of ordinary skill in the art that the present invention may be practiced without these specific details. In other instances, well known methods, procedures, components, and circuits have not been described in detail as not to unnecessarily obscure aspects of the present invention.
Figure 1 illustrates a wristwatch 100 in accordance with an embodiment of the present invention. The versatile device 100 of the present invention is configured to be worn by an authenticated user such that to encircle a part of the authenticated user's body. In an embodiment, the versatile device 100 is implemented as a wristwatch 100 as shown in Figure 1. Alternatively, the versatile device 100 may be implemented as any finger, hand, arm, foot, leg, waist, wrist, or other body worn item, such as a bracelet or armband. It should be understood that the wristwatch 100 may have other configurations.
In particular, the wristwatch 100 includes electronic circuitry 50 to host one or more applications, secure authentication/identification data, and transaction data, and to also provide authentication to validate use and possession of the wristwatch 100 by a legitimate user by executing a use- based context security validation scheme. The wristwatch 100 is configured to facilitate a wireless transaction for an authenticated user and is configured to be worn by the authenticated user such that to encircle a part of the authenticated user, such as the authenticated user's wrist. The wireless transaction can be of any type (e.g., credit card type, debit card type, access control type, etc.). Moreover, the wristwatch 100 includes a validation mechanism for controlling use of the wristwatch 100 based on whether the authenticated user continues to wear the wristwatch 100 after initiating use of the wristwatch 100. The validation mechanism includes a transmitting element 40, a receiving element 30, a data channel 80, and a monitoring component (integrated in the electronic circuitry 50) for monitoring the status of the data channel 80.
Moreover, the wristwatch 100 executes a context security validation scheme, where authenticated use is determined not only by possession of the wristwatch 100, but also by its operational context. The operational context will allow the wristwatch 100 to accept or deny any external service interaction via a wireless link, based on whether the wristwatch 100 is in an active/secure status state or in an inactive state. In particular, the wristwatch 100 includes a data channel 80 integrated within the first and second straps 10 and 20 of the wristwatch 100 itself enabling validation of whether the wristwatch 100 is being worn by the authenticated user that initiated use of the wristwatch 100. Removal of the wristwatch 100 will invalidate its context security and place the wristwatch in an inactive state, disabling all external interaction via a wireless link.
The context security validation executed by the wristwatch 100 enables valid user authentication and access to services or transactions via a wireless link, which may otherwise be obtained by non-authenticated individuals who obtained the wristwatch by devious means or by accident.
The concept of a secure device state provides additional security and theft redundancy as the wristwatch 100 acts as a host for applications and secure data and no longer solely depends on possession to maintain security. The security is obtained by a combination of the authenticated user wearing the wristwatch 100 and initializing its operation. Therefore, removing the wristwatch 100 will also disable its operational capabilities, thus reducing its value to others. As illustrated in Figure 1 , the wristwatch body 90 acts as the main functional section. The wristwatch body 90 provides time and date functions via the watchface 60. Moreover, the wristwatch body 90 provides secure data storage capability, wireless transaction capability, and an encryption engine for the validation mechanism. Moreover, the wristwatch 100 includes a data channel 80 integrated within the first and second straps 10 and 20 of the wristwatch 100 itself enabling validation of whether the wristwatch 100 is being worn by the authenticated user that initiated use of the wristwatch 100. The wristwatch body 90 includes an embedded electronics subsystem 50, a transmitting element 40 for transmitting data through the data channel 80, a receiving element 30 for receiving the data transmitted through the data channel 80, and optional biosensors 70 for sensing whether the authenticated user is wearing the wristwatch 100. A successful transmission of the data between the transmitting element 40 and the receiving element 30 indicates that the wristwatch 100 is being worn by the authenticated user. Moreover, the data channel 80 is configured to be rendered inoperable if the authenticated user discontinues wearing the wristwatch 100. Specifically, the data transmitted by the transmitting element 40 is transmitted periodically and is time-varying to avoid unauthorized interference with the monitoring of the integrity and status of the data channel 80. In particular, the encryption engine facilitates secure transmission of the data through the data channel 80. In addition, the wristwatch 100 includes a clasp or strap connection mechanism 85. Figure 2 illustrates a block diagram of electronic components of the wristwatch 100 of Figure 1. The wristwatch 100 includes a microprocessor 84 for monitoring the status of the data channel 80 and executing the context security validation scheme, a read only memory 81 , a random access memory 82, a radio frequency (RF) interface 83, an interface 61 to the watch display 60, an internal power source 75, the transmitting element 40, the receiving element 30, a data bus 76, and circuits 71 to process the biosensor 70 output signals.
The wristwatch 100 is capable of providing a low cost and robust authentication solution by ensuring the integrity of the data channel 80 integrated into the first and second straps 10 and 20. Security can be enhanced by using the optional biosensor subsystem 70 and 71 , providing the capability to detect the presence or absence of the authenticated user's body using biometric measurement techniques (e.g., skin temperature, light reflection, humidity), in addition to the integrity of the data channel 80 itself.
Figure 3 illustrates a flow chart showing a method 300 of securely operating the wristwatch 100 of Figure 1 in accordance with an embodiment of the present invention. Reference is made to Figures 1 and 2. At Block 310, a user wears the wristwatch 100. Moreover, at Block 320, the user goes through a security initialization procedure to authenticate the user prior to allowing the user general operational use of the wristwatch's 100 application hosting functionality to facilitate a variety of wireless transactions for the authenticated user. The initialization procedure may be a simple wristwatch-based operation (e.g. entering a PIN number on the wristwatch itself) or a more complex security procedure involving an external security system at Block 325 (e.g. an external device with retina scanning hardware could be used to provide unique user verification, which is conveyed to the wristwatch 100 via the encrypted RF data communications link 302). Whatever the chosen initialization method, its task is to activate authenticated use of the wristwatch 100 by validating both the user and the data channel 80 integrated into the straps of the wristwatch 100. If the optional bio-sensing sub system 70 is used, the initialization process will also validate the presence of the user's body.
Once the user is authenticated, the wristwatch 100 enters an active/secure status state (at Block 330) and starts execution (at Block 370) of one or more applications, which are configured to facilitate wireless transactions and services. The wireless transaction and services can be of any type (e.cj., credit card type, debit card type, access control type, etc.). When the wristwatch 100 is interrogated by an external device at Block 375 to request information or to initiate a wireless transaction supported by a particular application hosted by the wristwatch 100, the particular application checks at Block 380 whether the wristwatch 100 is operating in the active/secure status state. If the wristwatch 100 is not operating in the active/secure status state, the particular application denies the user access to the particular application at Block 390. Otherwise, the particular application then checks at Block 385, the validity of the interrogation (e.g., has the user subscribed to the particular service, has the user paid the bill for the particular service). If the interrogation is not valid, the particular application denies the user access to the services offered by the particular application at Block 390. Otherwise, at Block 395, the particular application performs the desired service or transaction supported by the particular application.
At Blocks 335, 340, 345, 350, and 355, the integrity of the data channel
80 integrated into the straps is monitored. In particular, at periodic intervals, data is transmitted through the data channel 80 to validate the active/secure status state of the wristwatch 100. By transmitting and receiving a time varying encrypted data packet, the data channel 80 becomes more secure to attack or eaves dropping. The validation process uses its own data for transmission through the data channel 80, independent from the hosted applications or secure data stored in the wristwatch 100. If a change in the active/secure status state is detected at Block 350 because the data channel has become inoperable indicating the authenticated user has removed the wristwatch 100, the wristwatch 100 erases (at Block 360) its active/secure status state and application data and then switches (at Block 365) to an inactive state or off. Once switched off, others cannot use the wristwatch 100 to execute services or transactions. Once switched off, the wristwatch 100 can only be re-activated by the user after wearing the wristwatch 100 and re-performing the initialization procedure described above. The optional bio-sensing subsystem (at Block 340) provides an extra level of security by determining the user's presence as a supplement to the monitoring of the status and integrity of the data channel 80. Abnormal changes detected by the biosensors will result in the performance of the operations in Blocks 360 and 365 as described above.
Figure 4 illustrates a wristwatch 400 in accordance with another embodiment of the present invention, showing an optical data channel 480A and 480B. The wristwatch 400 includes a first and a second plastic straps 450 and 451 and a buckle fastener 485. In an embodiment, the buckle fastener 485 is typical of those used on most low cost watches. Each strap 454 and 450 is manufactured so that it has an integrated optical light path 480A and 480B. The optical light paths 480A and 480B form the optical data channel of the wristwatch 400. This may be achieved by embedding an optical fiber in each strap. Alternatively, this may be achieved by manufacturing each strap from materials that possess appropriate optical properties.
Figures 5 and 6 illustrate operation of the optical data channel 480A and 480B of the wristwatch of Figure 4 in greater detail. The location of the user's wrist 77 is also shownA light -transmitting element 1 transmits light into the fixed length strap 451 at its hinge 2 with the watch body 460. The curvature of the watch body 460 and the strap hinge mechanism 2 provide a lens 492 to focus the light into the optical light path 480A of the strap 451. Once in the strap 451 , the light is refracted and guided to leave the strap 451 at an angle above the buckle connection 4, directing the light into the other variable length strap 450.
Continuing with Figures 4, 5, and 6, the light then enters the variable length strap 450 at one of a number of fixed points, determined by the positioning of the variable length strap 450, i.e. which hole is used to clasp the buckle 485. The geometry of the variable length strap 450 includes a 'sawtooth' pattern 5 that coincides with the buckle hole locations 471. This feature minimizes the air gap and light path between the two straps 451 and 450, thus ensuring that the light enters the variable length strap 450 close to perpendicular, maximizing the transmitted light energy entering the variable length strap 450. The light within the variable length strap 450 is then directed to the second hinge mechanism 6, which again provides a lens 493 to focus the remaining light energy to a light receiving/detection element 7.
To ensure efficient light transfer into each strap 450 and 451 and to provide a sealed and guided link between the watch body 460 and the strap optics, the watch body 460, hinge mechanism 2 and 6 and the straps 450 and 451 could be manufactured as a single plastic section, thus making the watch body and straps part of the same optical path, minimizing the number of light interfaces to three, i.e., the transmit and receive elements 1 and 2 and the buckle connection 4.
To avoid unwanted external light interference, each strap 450 and 451 could be windowed, possibly polarized, to ensure that light can only enter or leave the straps at the desired locations. This Would assist in both reducing the optical power loss and hence the overall system power requirement and to reduce the possibility of external interference. By periodically transmitting a time varying encrypted data packet through the optical data channel integrated into the straps that has no correlation with the wristwatch's identification or application data, any attempted external eaves dropping of the optical data channel will not influence the secure functionality of the wristwatch 400.
Figure 7 illustrates a wristwatch 700 in accordance with another embodiment of the present invention, showing a contacting electrical data channel. The wristwatch 700 includes two metal straps 720 and 730, whereas the contacting electrical data channel is integrated into the metal straps 720 and 730. One possible realization when using a metal strap is to use the clasp mechanism 750 as a switch, only allowing connection for the contacting electrical data channel when the clasp mechanism 750 is in the closed position. Although simple to realize, this type of design would be easy to eaves drop, vulnerable to an electrical by-pass and subject to switch contact or mechanical failure.
Figure 8 illustrates a wristwatch 800 in accordance with another embodiment of the present invention, showing a non-contacting electrical data channel. An advantage offered by this wristwatch 800 is that the non- contacting electrical data channel integrated into the straps 810 and 820 used for data transmission can simultaneously provide information about the integrity of the straps 810 and 820 and their connection such as whether the authenticated user has loosen or tightened the straps 810 and 820. In particular, one or more electrical properties associated with the non-contacting electrical data channel can be monitored to determine a status of the non- contacting electrical data channel. Moreover, the non-contacting electrical data channel is more reliable and secure.
In this approach the two straps 810 and 820 become the electrical transmit and receive elements and are electrically connected to the watch body 830 and its internal circuitry. In particular, the non-contacting electrical sensor elements 840 are required to detect and validate that the straps 810 and 820 are fastened and facilitate the encrypted data transmission through the non-contacting electrical data channel. The manufacture of the wristwatch 800 could incorporate seamless rigid (watch electronics) and flexible
(watchstrap) printed circuit board techniques, encased by the plastic watch body or other flexible non-conducting protective material.
Figure 9 illustrates a wristwatch 900 in accordance with another embodiment of the present invention, showing a non-contacting electrical data channel formed by capacitive coupling. As illustrated in Figure 9, over the anticipated area of overlap, capacitive plates 930 and 940 are embedded into each end of the two straps 910 and 920 to form a parallel plate capacitor with a deterministic capacitance based on the clasp position when worn. This will create a capacitive loop (or a non-contacting electrical data channel formed by capacitive coupling) through which the encrypted data can be transmitted, thus creating the non-contacting electrical data channel for secure data transmission and providing a means to monitor the status of the straps 910 and 920 and the non-contacting electrical data channel formed by capacitive coupling. In addition, periodic measurement of this capacitance will validate the integrity of the non-contacting electrical data channel itself. Abnormal changes to this measurement will result in the wristwatch erasing its active/secure status state. Appropriate geometric shielding of the plates to minimize stray losses and external interference may be required.
Figure 10 illustrates a wristwatch 1000 in accordance with another embodiment of the present invention, showing a non-contacting electrical data channel formed by inductive coupling. As illustrated in Figure 10, each of the straps 1010 and 1020 includes an inductive circuit element 1030 and 1040. When the two straps 1010 and 1020 are brought into close proximity with each other, the mutual inductance coupling between these two inductive elements 1030 and 1040 creates a non-contacting electrical data channel for secure data transmission and provides a means to monitor the status of the straps 1010 and 1020 and the non-contacting electrical data channel formed by inductive coupling, as described above. In addition, periodic measurement of mutual inductance will validate the integrity of the non-contacting electrical data channel itself. Abnormal changes to this measurement will result in the wristwatch erasing its active/secure status state. Appropriate geometric shielding of the inductive circuit element 1030 and 1040 to minimize stray losses and external interference may be required.
The foregoing descriptions of specific embodiments of the present invention have been presented for purposes of illustration and description. They are not intended to be exhaustive or to limit the invention to the precise forms disclosed, and obviously many modifications and variations are possible in light of the above teaching. The embodiments were chosen and described in order to best explain the principles of the invention and its practical application, to thereby enable others skilled in the art to best utilize the invention and various embodiments with various modifications as are suited to the particular use contemplated. It is intended that the scope of the invention be defined by the Claims appended hereto and their equivalents.

Claims

CLAIMS What is Claimed is:
1. An apparatus comprising: a versatile device configured to facilitate a wireless transaction for an authenticated user and configured to be worn by said authenticated user such that to encircle a part of said authenticated user; and a validation mechanism for controlling use of said versatile device based on whether said authenticated user continues to wear said versatile device after initiating use of said versatile device.
2. An apparatus as recited in Claim 1 wherein said validation mechanism includes a transmitting element for transmitting data, a receiving element for receiving said data, and a data channel spanning said transmitting element and said receiving element such that successful transmission of said data between said transmitting element and said receiving element indicates that said versatile device is being worn by said authenticated user, wherein said data channel at least partially encircles a portion of said authenticated user, and wherein said data channel is configured to be rendered inoperable if said authenticated user discontinues wearing said versatile device.
3. An apparatus as recited in Claim 2 wherein said data channel is an optical data channel.
4. An apparatus as recited in Claim 2 wherein said data channel is a contacting electrical data channel.
5. An apparatus as recited in Claim 2 wherein said data channel is a non-contacting electrical data channel, wherein one or more electrical properties associated with said non-contacting electrical data channel can be monitored to determine a status of said non-contacting electrical data channel.
6. An apparatus as recited in Claim 2 wherein said data channel is a non-contacting electrical data channel formed by capacitive coupling, wherein a capacitance value associated with said non-contacting electrical data channel can be monitored to determine a status of said non-contacting electrical data channel.
7. An apparatus as recited in Claim 2 wherein said data channel is a non-contacting electrical data channel formed by inductive coupling, wherein a mutual inductance value associated with said non-contacting electrical data channel can be monitored to determine a status of said non-contacting electrical data channel.
8. A versatile device comprising: a wristwatch configured to facilitate a wireless transaction for an authenticated user and configured to be worn by said authenticated user such that to encircle a part of said authenticated user, said wristwatch including a validation mechanism for controlling use of said wristwatch based on whether said authenticated user continues to wear said wristwatch after initiating use of said wristwatch.
9. A versatile device as recited in Claim 8 wherein said wristwatch includes a first strap and a second strap, wherein said validation mechanism includes a transmitting element for transmitting data, a receiving element for receiving said data, and a data channel integrated into said first and second straps to span said transmitting element and said receiving element such that successful transmission of said data between said transmitting element and said receiving element indicates that said wristwatch is being worn by said authenticated user, and wherein said data channel is configured to be rendered inoperable if said authenticated user discontinues wearing said wristwatch.
10. A versatile device as recited in Claim 9 wherein said data channel is an optical data channel.
11. A versatile device as recited in Claim 9 wherein said data channel is a contacting electrical data channel.
12. A versatile device as recited in Claim 9 wherein said data channel is a non-contacting electrical data channel, wherein one or more electrical properties associated with said non-contacting electrical data channel can be monitored to determine a status of said non-contacting electrical data channel.
13. A versatile device as recited in Claim 9 wherein said data channel is a non-contacting electrical data channel formed by capacitive coupling, wherein a capacitance value associated with said non-contacting electrical data channel can be monitored to determine a status of said non- contacting electrical data channel.
14. A versatile device as recited in Claim 9 wherein said data channel is a non-contacting electrical data channel formed by inductive coupling, wherein a mutual inductance value associated with said non- contacting electrical data channel can be monitored to determine a status of said non-contacting electrical data channel.
15. A method of securely operating a versatile device configured to facilitate a wireless transaction for a user and configured to be worn by said user such that to encircle a part of said user, comprising: a) wearing said versatile device; b) initiating an authentication process for said user; c) if said authentication process is successful, placing said versatile device in a secure status state and enabling said versatile device to facilitate said wireless transaction for said user; d) monitoring whether said user continues to wear said versatile device after initiating use of said versatile device; and e) if said user discontinues wearing said versatile device, placing said versatile device in an inactive state and disabling said versatile device from facilitating said wireless transaction for said user.
16. A method as recited in Claim 15 wherein said step of monitoring includes: transmitting data through a data channel of said versatile device, wherein said data channel at least partially encircles a portion of said user.
17. A method as recited in Claim 16 wherein said data channel is an optical data channel.
18. A method as recited in Claim 16 wherein said data channel is a contacting electrical data channel.
19. A method as recited in Claim 16 wherein said data channel is a non-contacting electrical data channel, wherein one or more electrical properties associated with said non-contacting electrical data channel can be monitored to determine a status of said non-contacting electrical data channel.
20. A method as recited in Claim 16 wherein said data channel is a non-contacting electrical data channel formed by capacitive coupling, wherein a capacitance value associated with said non-contacting electrical data channel can be monitored to determine a status of said non-contacting electrical data channel.
21. A method as recited in Claim 16 wherein said data channel is a non-contacting electrical data channel formed by inductive coupling, wherein a mutual inductance value associated with said non-contacting electrical data channel can be monitored to determine a status of said non-contacting electrical data channel.
22. A method as recited in Claim 15 wherein said versatile device comprises a wristwatch.
PCT/US2002/037076 2001-12-05 2002-11-20 Secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use WO2003054814A2 (en)

Priority Applications (4)

Application Number Priority Date Filing Date Title
JP2003555455A JP4426844B2 (en) 2001-12-05 2002-11-20 Secure operation of universal device based on whether authenticated user continues to wear universal device after starting use
DE60226265T DE60226265T2 (en) 2001-12-05 2002-11-20 SAFE OPERATION OF A MULTI-PURPOSE EQUIPMENT BASED ON WHETHER THE AUTHENTICATED USER CONTINUES TO OWN THE MULTIPURPOSE UNIT AFTER COMMISSIONING
EP02782321A EP1450640B1 (en) 2001-12-05 2002-11-20 Secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use
AU2002348296A AU2002348296A1 (en) 2001-12-05 2002-11-20 Secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/011,925 US7474592B2 (en) 2001-12-05 2001-12-05 Secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use
US10/011,925 2001-12-05

Publications (2)

Publication Number Publication Date
WO2003054814A2 true WO2003054814A2 (en) 2003-07-03
WO2003054814A3 WO2003054814A3 (en) 2004-03-11

Family

ID=21752551

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2002/037076 WO2003054814A2 (en) 2001-12-05 2002-11-20 Secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use

Country Status (6)

Country Link
US (1) US7474592B2 (en)
EP (1) EP1450640B1 (en)
JP (1) JP4426844B2 (en)
AU (1) AU2002348296A1 (en)
DE (1) DE60226265T2 (en)
WO (1) WO2003054814A2 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9566717B2 (en) 2013-01-22 2017-02-14 3M Innovative Properties Company Apparatus for cutting electronic monitoring bracelet straps
US10042996B2 (en) 2013-06-18 2018-08-07 Arm Ip Limited Trusted device

Families Citing this family (41)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE10001929A1 (en) * 2000-01-19 2001-08-09 Skidata Ag Authorization control facility
USH2120H1 (en) * 2002-10-10 2005-07-05 The United States Of America As Represented By The Secretary Of The Air Force Biometric personal identification credential system (PICS)
US20040151071A1 (en) * 2003-02-04 2004-08-05 Kocher Robert William Wrist-mounted electronic computer component (WECC)
CA2596474C (en) * 2006-04-18 2015-12-22 Cfph, L.L.C. Systems and methods for providing access to wireless gaming devices
DE102007025920B4 (en) * 2007-06-02 2009-10-29 Imst Gmbh Decorative jewelry with built-in electronic circuit, which has an integrated electronic data storage
GB2457335A (en) * 2008-01-21 2009-08-19 H W Comm Ltd A wearable device indicating if a current wearer is the habitual wearer of the device.
US8976007B2 (en) * 2008-08-09 2015-03-10 Brian M. Dugan Systems and methods for providing biofeedback information to a cellular telephone and for using such information
US20100052916A1 (en) * 2008-09-04 2010-03-04 Disney Enterprises, Inc Identification band with secured association to wearer
US8253542B2 (en) * 2008-09-04 2012-08-28 Disney Enterprises, Inc. Method and system for performing affinity transactions
KR101595384B1 (en) * 2009-07-20 2016-02-18 엘지전자 주식회사 Watch type mobile terminal
US9305120B2 (en) 2011-04-29 2016-04-05 Bryan Marc Failing Sports board configuration
US20140089672A1 (en) * 2012-09-25 2014-03-27 Aliphcom Wearable device and method to generate biometric identifier for authentication using near-field communications
JP2013191135A (en) * 2012-03-15 2013-09-26 Fujitsu Ltd Authentication system, processing device, and program
US9305153B1 (en) * 2012-06-29 2016-04-05 Emc Corporation User authentication
EP2733654A1 (en) * 2012-11-20 2014-05-21 Nagravision S.A. Electronic payment method, system and device for securely exchanging payment information
US9091715B2 (en) 2013-02-25 2015-07-28 Google Technology Holdings LLC Wearable device with capacitive sensor and method of operation therefor
US9423418B2 (en) 2013-02-25 2016-08-23 Google Technology Holdings LLC Capacitive sensor
US9832206B2 (en) 2013-03-21 2017-11-28 The Trustees Of Dartmouth College System, method and authorization device for biometric access control to digital devices
GB2517417B (en) 2013-08-19 2017-10-11 Arm Ip Ltd Wrist-worn device clasp
AT514861A3 (en) * 2013-09-20 2015-05-15 Asmag Holding Gmbh Authentication system for a mobile data terminal
GB2521614B (en) * 2013-12-23 2021-01-13 Arm Ip Ltd Controlling authorisation within computer systems
KR102302350B1 (en) 2014-06-02 2021-09-15 삼성전자 주식회사 Method and apparatus for providing the security function
WO2016032990A1 (en) 2014-08-26 2016-03-03 Toyota Motor Sales, U.S.A., Inc. Integrated wearable article for interactive vehicle control system
US9743279B2 (en) * 2014-09-16 2017-08-22 Samsung Electronics Co., Ltd. Systems and methods for device based authentication
US9720376B2 (en) * 2014-11-18 2017-08-01 Sony Corporation Band type electronic device and substrate arrangement method
KR102371943B1 (en) * 2015-02-24 2022-03-08 삼성전자 주식회사 Handheld electronic device capable of magnetic field communication and payment method using the same
EP3118762B1 (en) * 2015-07-15 2020-03-11 Biowatch SA Method, device and computer program for authenticating a user
US9461386B1 (en) * 2015-10-09 2016-10-04 Pebble Technology, Corp. Spring pin electrical connector
US20170237267A1 (en) * 2016-02-12 2017-08-17 Qualcomm Incorporated Wireless power receiving element with capacitive coupling
WO2017145730A1 (en) * 2016-02-24 2017-08-31 セイコーエプソン株式会社 Wearable device
JP2017151943A (en) * 2016-02-24 2017-08-31 セイコーエプソン株式会社 Mounting instrument, settlement system, and settlement method
US20190053739A1 (en) * 2016-02-24 2019-02-21 Seiko Epson Corporation Wearable apparatus, settlement system, and settlement method
US10175653B1 (en) * 2016-09-21 2019-01-08 Apple Inc. Watch glow light band
US9961547B1 (en) 2016-09-30 2018-05-01 EMC IP Holding Company LLC Continuous seamless mobile device authentication using a separate electronic wearable apparatus
US20190033787A1 (en) * 2017-07-25 2019-01-31 Evan Swanagin Device and method for emitting light away from a user
US11165141B2 (en) 2018-05-01 2021-11-02 Apple Inc. Antenna assemblies for watch bands
US11315404B1 (en) * 2018-12-27 2022-04-26 Brian A. Greer Wearable proximity alert system
CN109375497B (en) * 2018-12-29 2020-11-06 北京工业大学 Wireless rechargeable smart watch capable of detecting emotion change based on convolutional neural network
US11194299B1 (en) 2019-02-12 2021-12-07 Apple Inc. Variable frictional feedback device for a digital crown of an electronic watch
US11550268B2 (en) 2020-06-02 2023-01-10 Apple Inc. Switch module for electronic crown assembly
US11512926B2 (en) * 2021-02-18 2022-11-29 Locking Control Ltd. Wrist band device for releasing holster lock

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4736196A (en) * 1986-11-18 1988-04-05 Cost-Effective Monitoring Systems, Co. Electronic monitoring system
EP0295985B1 (en) * 1987-05-26 1992-08-26 Compagnie Generale Des Matieres Nucleaires (Cogema) Identification system for individuals
EP0774737A2 (en) * 1995-11-16 1997-05-21 Ncr International Inc. An authorization device
WO1998012670A1 (en) * 1996-09-18 1998-03-26 Dew Engineering And Development Limited Biometric identification system for providing secure access
WO2000005686A1 (en) * 1998-07-21 2000-02-03 Skidata Ag Contactless data carrier
EP1014231A1 (en) * 1998-12-22 2000-06-28 Eta SA Fabriques d'Ebauches Wrist watch with capacitive coupling
WO2001018332A1 (en) * 1999-09-06 2001-03-15 Siemens Aktiengesellschaft Activation of secured objects
US6255951B1 (en) * 1996-12-20 2001-07-03 Carlos De La Huerga Electronic identification bracelet

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1993004425A1 (en) * 1991-08-13 1993-03-04 Universal Photonix, Inc. System for remotely validating the identity of indivuals and determining their locations
US5883576A (en) * 1998-01-14 1999-03-16 De La Huerga; Carlos Identification bracelet with electronics information
US5936530A (en) * 1998-04-02 1999-08-10 Meinhold; Robert C. Child protection device
US6158884A (en) * 1998-06-26 2000-12-12 Motorola, Inc. Integrated communicative watch
JP2000148860A (en) * 1998-11-17 2000-05-30 Seiko Instruments Inc Authentication terminal for credit transaction system and watch type id device
CA2292194C (en) * 1998-12-22 2010-02-16 Eta Sa Fabriques D'ebauches Wristwatch with capacitive coupling
JP4126385B2 (en) * 1998-12-31 2008-07-30 カシオ計算機株式会社 Body wearing device and authentication system
US6396403B1 (en) * 1999-04-15 2002-05-28 Lenora A. Haner Child monitoring system
JP2001179121A (en) * 1999-12-27 2001-07-03 Nippon Riiingu Kk Pulverizing machine
DE10055602A1 (en) * 1999-12-30 2001-07-12 Ibm Exit control system for supermarket or department store, produces receipt based on contactlessly received information and updates payment status
JP3431134B2 (en) * 2000-03-17 2003-07-28 ケイエステクノ株式会社 Security system
JP4438217B2 (en) * 2000-11-10 2010-03-24 ソニー株式会社 Program additional data creation device, video program editing device, and program additional data creation screen display method

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4736196A (en) * 1986-11-18 1988-04-05 Cost-Effective Monitoring Systems, Co. Electronic monitoring system
EP0295985B1 (en) * 1987-05-26 1992-08-26 Compagnie Generale Des Matieres Nucleaires (Cogema) Identification system for individuals
EP0774737A2 (en) * 1995-11-16 1997-05-21 Ncr International Inc. An authorization device
WO1998012670A1 (en) * 1996-09-18 1998-03-26 Dew Engineering And Development Limited Biometric identification system for providing secure access
US6255951B1 (en) * 1996-12-20 2001-07-03 Carlos De La Huerga Electronic identification bracelet
WO2000005686A1 (en) * 1998-07-21 2000-02-03 Skidata Ag Contactless data carrier
EP1014231A1 (en) * 1998-12-22 2000-06-28 Eta SA Fabriques d'Ebauches Wrist watch with capacitive coupling
WO2001018332A1 (en) * 1999-09-06 2001-03-15 Siemens Aktiengesellschaft Activation of secured objects

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
GOLEM: "Junghans bringt Smart-Card-Uhr für Zugangskontrollen" IT-NEWS FÜR PROFIS, [Online] - 6 September 2000 (2000-09-06) XP002257740 Retrieved from the Internet: <URL:http://www.golem.de/0009/9625.html> [retrieved on 2003-10-14] *

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9566717B2 (en) 2013-01-22 2017-02-14 3M Innovative Properties Company Apparatus for cutting electronic monitoring bracelet straps
US9796100B2 (en) 2013-01-22 2017-10-24 3M Innovative Properties Company Apparatus for cutting electronic monitoring bracelet straps
US10042996B2 (en) 2013-06-18 2018-08-07 Arm Ip Limited Trusted device
US10452831B2 (en) 2013-06-18 2019-10-22 Arm Ip Limited Trusted device
US11106774B2 (en) 2013-06-18 2021-08-31 Arm Ip Limited Trusted device

Also Published As

Publication number Publication date
AU2002348296A8 (en) 2003-07-09
US7474592B2 (en) 2009-01-06
EP1450640B1 (en) 2008-04-23
WO2003054814A3 (en) 2004-03-11
JP2005538430A (en) 2005-12-15
DE60226265D1 (en) 2008-06-05
EP1450640A2 (en) 2004-09-01
JP4426844B2 (en) 2010-03-03
DE60226265T2 (en) 2008-12-18
US20030103414A1 (en) 2003-06-05
AU2002348296A1 (en) 2003-07-09

Similar Documents

Publication Publication Date Title
EP1450640B1 (en) Secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use
US8899487B2 (en) Biometric identity verification system and method
JP6876651B2 (en) Multiple application chip card with biometrics
US7742995B2 (en) Pre-authenticated identification token
AU2008248013B2 (en) Dynamically programmable RFID transponder
US20030046228A1 (en) User-wearable functional jewelry with biometrics and smartcard to remotely sign and/or authenticate to e-services
US10922598B2 (en) Fingerprint authorisable device
EP3631663B1 (en) Smartcard and method for controlling a smartcard
US20180101718A1 (en) Fingerprint authorisable device
US20150286922A1 (en) Biometric identity verification system and method
US20160057627A1 (en) Method and Apparatus for Preventing Concealed, Unauthorized Wireless Data Access
JP2003132031A (en) Data communication device
US20230334131A1 (en) Biometrically protected device
JP6432359B2 (en) Information processing apparatus and program
WO2018087336A1 (en) Fingerprint authorisable demonstrator device

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SC SD SE SG SI SK SL TJ TM TN TR TT TZ UA UG UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR IE IT LU MC NL PT SE SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 2002782321

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2003555455

Country of ref document: JP

WWP Wipo information: published in national office

Ref document number: 2002782321

Country of ref document: EP