`USOO6763399B2
`
`(12) United States Patent
`US 6,763,399 B2
`(10) Patent N0.:
`
`Margalit et al.
`(45) Date of Patent:
`Jul. 13, 2004
`
`(54) USB KEY APPARATUS FOR INTERACTING
`WITH A USB HOST VIAA USB PORT
`
`6,168,077 B1 *
`6,216,230 B1 *
`
`1/2001 Gray et a1.
`4/2001 Rallis et a1.
`
`
`................. 235/375
`...... 713/185
`
`(75)
`
`Inventors: Yanki Margalit, Ramat Gan (IL); Dany
`Margalit, Ramal Gal} (1L); Rami
`Kastershtien, Tcl AV1V (IL)
`
`EP
`EP
`W0
`
`FOREIGN PATENT DOCUMENTS
`0554164 A1
`8/1993
`............ G06K/7/00
`0848315 A2
`6/1998
`............. GO6F/1/00
`Vv’O 94/10773
`5/1994
`............ H04K/1/OO
`
`(73) Assignee: Aladdin Knowledge Systems, Ltd., Tel
`AViV (IL)
`
`( * ) Notice:
`
`Subject to any disclaimer, the term of this
`patent is extended or adjusted under 35
`U,S.C, 154(b) by 21 days.
`
`(21) App]. No.: 10/126,520
`
`(22)
`7
`(65)
`
`Filed:
`
`Apr. 22, 2002
`.
`_
`.
`Pr10r Publicatlon Data
`US 2004/0073726 A1 Apr. 15, 2004
`
`Related U.S. Application Data
`.
`.
`.
`.
`,
`(63) Continuation 0f aPPLIilcaugn N°~ 09/189960, filed on N°V~
`10’ 1998’ now aban one '
`(51)
`Int. Cl.7 ........................... G06F 1/00; G06E 13/00;
`HO4L 9/10
`............................... 710 13 7108‘ 71063
`/
`;
`/
`;
`/
`;
`710/103; 713/200; 713/202; 713/185
`(53) Field Of Search ............................... 710/8, 13; 63,
`710/103; 713/200, 202, 185
`
`’52 U.S. Cl.
`(
`)
`
`(56)
`i
`
`References Cited
`
`OTHER PUBLICATIONS
`
`P. Guelle, “Un Dongle A PuceoDe Telecarte” Electronique
`Radio Plans, NOV‘ 1991’ NO‘ 5‘8’ PP 75778‘
`W'ibu—Key, Users guide version 2.50, Jul. 1998, WIBU—Sys-
`tems AG pp. 12716; 25728; 1537154 & 1637164.
`,1
`.
`V
`.
`Cited by exammer
`
`
`
`
`
`Primary Examiner—Jeffrey Ga in
`Assistant Examiner—Tammara Payton
`(74) Attorney, Agent, or Firm—Mark M. Friedman
`
`ABSTRACT
`(57)
`A smart card—host system that operates Without the inter-
`mediation of a smart card reader. The smart card—host
`system comprises a host, which has a USB interface, and a
`portable device, which provides smart card function(s). The
`portable device has a smart card chip for performing the
`smart car
`unctron s ; a
`inter ace or connecting t e
`d f
`'
`USB '
`f
`f
`'
`h
`portable device with the host via USB protocol; and a
`microprocessor for controlling the transfer of data between
`the USB interface and the smart card chip, for converting
`data from a USB format to the format of the smart card chip
`and for convertng data from the format of the smart card
`chi
`to a USB format.
`
`U.S. PATENT DOCUMENTS
`6,151,647 A * 11/2000 Sarat
`.......................... 710/301
`
`p
`
`27 Claims, 2 Drawing Sheets
`
`125
`
`USE Host
`
`120
`
`USB Protocol
`
`USB interface
`
`FIRMWARE OI?-
`MEMORY
`
`(ICC)
`
`ISO 7816—3
`Protocol
`
`ISO 7816—3
`Smart Card Chip
`
`PayPal Inc. v. IOENGINE, LLC
`|PR2019-00884 (US 8,539,047)
`Exhibit 2077
`
`Page 1 of 6
`
`PayPal Inc. v. IOENGINE, LLC
`IPR2019-00884 (US 8,539,047)
`Exhibit 2077
`Page 1 of 6
`
`

`

`US. Patent
`
`Jul. 13, 2004
`
`Sheet 1 0f 2
`
`US 6,763,399 B2
`
`FIG.
`
`1
`
`25\
`
`!!
`
`USB Protocol
`
`FIRMWARE
`
`MEMORY "’
`
`CPU
`
`PayPal Inc. v. IOENGINE, LLC
`|PR2019-00884 (US 8,539,047)
`Exhibit 2077
`
`Page 2 of 6
`
`"n"‘
`
`MEMORY
`
`I USER S DATA.
`
`PayPal Inc. v. IOENGINE, LLC
`IPR2019-00884 (US 8,539,047)
`Exhibit 2077
`Page 2 of 6
`
`

`

`US. Patent
`
`Jul. 13, 2004
`
`Sheet 2 of 2
`
`US 6,763,399 B2
`
`FIG. 2
`
`125
`
`\
`
`120
`
`USB Protocol
`
`USB interface
`chip
`
`(ICC)
`
`ISO 7816—3
`Protocol
`
`ISO 7816-3
`Smart Card Chip
`
`PayPal Inc. v. IOENGINE, LLC
`|PR2019-00884 (US 8,539,047)
`Exhibit 2077
`
`Page 3 of 6
`
`PayPal Inc. v. IOENGINE, LLC
`IPR2019-00884 (US 8,539,047)
`Exhibit 2077
`Page 3 of 6
`
`

`

`US 6,763,399 B2
`
`1
`USB KEY APPARATUS FOR INTERACTING
`WITH A USB HOST VIAA USB PORT
`
`The present application is a Continuation application
`based on the parent patent application 09/189/960 filed Nov.
`10, 1998 now abandoned.
`
`FIELD OF THE INVENTION
`
`The present invention relates to USB (Universal serial
`bus) apparatus and methods for using USB hosts.
`BACKGROUND OF THE INVENTION
`
`The USB interface is described in specifications available
`over the ltiteriiet at www.usb.org.
`Conventional devices for providing computerized servic-
`ing to a mobile or stationary population of users typically
`include a smart card reader. The members of the mobile
`population bear smart cards which are used to interact with
`the computerized servicing device Via the smart card reader.
`A particular disadvantage of stnart cards is that
`they
`require a smart card reader which is a relatively costly
`device. Computer hosts which are equipped with a smart
`card reader are a small subset of the universe of computer
`hosts because addition of a smart card reader makes the
`computer considerably more expensive.
`German Patent document DE 19631050 describes an
`interface converter for a universal serial bus having a
`module with processor that changes format and protocol into
`that of a different bus system.
`The disclosures of all publications mentioned in the
`specification and of the publications cited therein are hereby
`incorporated by reference.
`
`SUMMARY OF TIIE INVENTION
`
`10
`
`15
`
`,
`
`30
`
`35
`
`2
`standard as described iii USB specifications available over
`the Internet at www.usb.org.
`The term “USB key” or “USB token” refers to a hardware
`device whose circuitry interfaces with a USB port to per-
`form various functions.
`
`The term “smart card” refers to a typically plastic card in
`which is embedded a chip which interacts with a reader,
`thereby allowing a mobile bearer of the smart card to interact
`with a machine in which is installed a smart card reader,
`typically With any Of a network 0f machines Of this tYPE-
`BRIEF DESCRIPTION OF THE DRAWINGS
`
`The present iPVCHliOI} Wfll bf; understood and appreciated
`from the followmg detailed description, taken in COHJIIHCIIOH
`with the drawings in which:
`FIG. 1 is a simplified block diagram of a USB key device
`including a CPU and a non—[$07816 memory,
`the USB
`device being constructed and operative in accordance with a
`preferred embodiment of the present invention; and
`FIG. 2 is a simplified block diagram of a USB key device
`including a CPU and a ISO7816 memory, the USB device
`constructed and operative in accordance with a preferred
`embodiment of the present invention.
`DETAILED DESCRIPTION OF PREFERRED
`EMBODIMENTS
`
`Reference is now made to FIG. 1 which is a simplified
`block diagram of a USB key device including a CPU and a
`non—1807816 memory, the USB device being constructed
`and operative in accordance with a preferred embodiment of
`the present invention.
`A particular feature of the USB key device of FIG. I is
`that it has data storage capabilities and is thus analogous to
`a memory card.
`
`. The USB key device 10 comprises a PCB 25 WhiCh
`The present invention seeks to provide improved USB
`includes a microprocessor or CPU 30 such as a Motorola
`apparatus and improved methods for using the same.
`6805’ Cypress Chlp or Intel 8051; a USB interface deyice 40;
`There is thus provided in accordance with a preferred
`embodiment of the presentiinvention USB key apparatus for 40 firmware memory 50 servmg the firmware of the micropro-
`interacting with a USB host Via a USB port, the USB key
`cessor 3?; 51AM memory 60 (if size stiflihCient to enable
`a
`aratus including a portable device configured to fit the
`contemp ate computations on tie part oft e microproces-
`ITSJB port
`the portable device including a USB interface
`sor 30; and user data memory 70 which stores a user’s data,
`.
`’
`.
`.
`Some or all of the USB interface device 40, firmware
`conveying USB communications to and from a USB host, a 45 memory 50 and RAM memory 60 may be within the CPU
`protocol translator operative to translate the USB commu-
`30.
`nications from USB protocol, into smart card protocol such
`The USB interface device 40 and/or the firmware memory
`as an 1507816 protocol, and from smart card protocol into
`50 may be integrated inside the microprocessor 30.
`USB protocol and a smart card chip operative to perform at
`The firmware memory may be any suitable type of
`least one smart card function such as authentication,
`50 memory such as but not
`limited to ROM, EPROM,
`encryption, access control and secure memory.
`EEPROM or FLASH
`.
`.
`Also provided,
`iii accordance with another preferred
`The 11501” data memory 70 typically (1065 not
`include
`embodiment of the present invention, is USB key apparatus
`[507816-32 memory and may, for ezampleacomprise any 0f
`with data storage capabilities,
`the USB key apparatus
`including aportable device such as a PCB, configured to fit 55 the fOUOWng types 0f 1116111013" 17C, XI C, 2/3 Wlfe [7115,
`FLASH .
`the USB port, the portable device including a USB interface
`conveying USB communications to and from a USB host
`and a data storage unit storing information derived from the
`USB communications.
`
`Preferably the apparatus also includes a microprocessor
`operative to receive said USB communications from the
`USB interface, to perform computations thereupon and to
`provide results of the computations to the data storage unit
`for storage and/or for encryption and/or for authentication
`and/or for access control.
`The term “USB port” refers to a port for connecting
`peripherals to a computer which is built according to a USB
`
`60
`
`am
`
`As shown, the USB key device 10 is configured to interact
`with any USB host 20 such as but not limited to a personal
`computer or Macintosh having a USB port. Key-host inter-
`action is governed by a USB protocol such as the USB
`protocol described in the USB specifications available over
`the Internet at www.usb.org. USB packets pass between the
`USB host 20 and the USB interface chip 40. Each packet
`typically includes the following components:
`a. USB header;
`b. Data to be stored/read on the user’s data memory 70,
`plus additional information required by protocols of the
`
`PayPal Inc. v. IOENGINE, LLC
`|PR2019-00884 (US 8,539,047)
`Exhibit 2077
`
`Page 4 of 6
`
`PayPal Inc. v. IOENGINE, LLC
`IPR2019-00884 (US 8,539,047)
`Exhibit 2077
`Page 4 of 6
`
`

`

`US 6,763,399 B2
`
`4
`
`5
`
`’
`
`45
`
`'Jim
`
`60
`
`3
`What is claimed is:
`memory chip 70, such as but not liriiited to the address
`1. A smart eardihost system, wherein a portable device
`to store/read the data, the length of data to store/read,
`and CRC checksum information.
`communicates directly with a USB interface of a host, said
`c. USR footer.
`smart card—host system comprising:
`a host, having thereon a USB interface;
`The flow of data typically comprises the following flow:
`a portable device, for providing smart card fnnction(s),
`The USB interface chip 40 receives USB packets frorii the
`said portable device having thereon a smart cart chip,
`USB host 20, parses the data, and feeds the parsed data to the
`for performing said smart card function(s), a USB
`microprocessor 30. The microprocessor 30 writes the data
`interface, for connecting said portable device with said
`to, or reads the data from, the firmware memory 50, the
`host via USB protocol; and a microprocessor,
`for
`RAM 60 or the user’s data memory 70, 115ng each memo— 10
`enabling at least one function selected frorii the group
`ry’s protocol.
`consisting of controlling the transfer of data between
`In read operation, the microprocessor 30 P315565 the data
`said USB interface and said sriiart card chip, for con-
`to the USB interface chip .40 which wraps the data in USB
`verting data from a USB format to the format of said
`packet format and passes 1‘ to the hOSI 20
`_
`smart card chip and for converting data from the format
`FIG 2 15 a Slmphfied bIOCk diagram Of a USB key deVice, 15
`constructed and operative in accordance with a preferred
`of said smart card chip to a USB format.
`embodiment of the present invention, which is a one-piece
`2. A system according to claim 1, wherein said portable
`smart card reader and smart card chip preferably providing
`device consists of at least one substrate having thereon said
`both secured storage and cryptographic capabilities. The
`smart chip, said USB interface, and said microprocessor.
`USB key device of FIG. 2 includes both a CPU and a smart
`3. A system according to claim 1, wherein said portable
`card chip (ICC) memory 170, typically a [$07816 (T=0/1)
`device is a USB key operative as a component into which
`protocol-based chip communicating with the CPU 130 using
`said smart card chip, said USB interface, and said micro-
`an ISO7816—3 protocol. The apparatus of FIG. 2 is similar to
`processor are placed.
`the apparatus of FIG. 1 except that no separate user’s data
`4. A system according to claim 1, wherein said portable
`memory 70 is provided. The size of the RAM 160 is
`device further comprises data storage means for at least one
`typically at least 262 bytes in order to support the ISO
`function selected from the group consisting of storing data
`781673 T=0 or T=1 protocols.
`required for the operation of said microprocessor and storing
`Each packet typically includes the following components:
`data required for the operation of said smart card chip.
`a. USB header;
`5. A system according to claim 1, wherein said portable
`b. ISO7816-3 T=0/l protocol packet;
`30 device further comprises secured memory.
`c. USB footer.
`6. Asystem according to claim 1, wherein said system is
`The [low of data in the apparatus of FIG. 2 typically
`operative to perform at least one function selected from the
`comprises the following flow:
`group .consisting of cryptography, authentication,
`The USB interface chip 140 gets USB packets from the
`encryption, public key infrastructure, digital signature, RSA
`USB host 120' The USB interface chip 140 parses the data
`and passes it to the microprocessor 130. The data, which 35 and access control.
`_
`.
`.
`.
`typically comprises a ISO7816-3 T=0/1 formatted packet, is
`‘7‘ A system according to claim 1’ wherein 531d supports
`passed by the microprocessorto the smart—card 170 in a
`1507816 standard.
`.
`.
`ISO7816-3 protocol. The microprocessor 130 gets the
`8‘ A portable smart card apparatus for providingsmart
`response from the smart card 160 and passes the data to the
`card functionts) to a host system, by communicating directly
`USB interface chip 140. The USB interface chip 140 wraps 40 Wlth a USB interface 0f the hOSt system, said smart card
`apparatus comprising:
`the data in USB packet format and passes it to the host 120.
`a smart card chip, for performing said smart card function
`Aparticular advantage of the embodiment of FIG. 2 is that
`(S);
`smart card functionality is provided but there is no need for
`a USB interface, for connecting the portable device appa-
`a dedicated reader because the key 110 is connected directly
`to a USB socket in the host 120.
`ratus with the host system, via USB protocol; and
`The invention shown and described herein is particularly
`a microprocessor,
`for enabling at
`least one function
`useful for computerized systems serving organizations
`selected from the group consisting of controlling the
`which process sensitive information such as banks, insur—
`transfer of data between said USB interface and said
`ance companies, accountants and other commercial
`smart card chip, converting data from a USB format to
`organizations, and professional organizations such as medi— 50
`the format of said a smart card chip and converting data
`cal or legal organizations.
`from the format of said smart card chip to a USB
`format.
`It is appreciated that the software components of the
`present invention may, if desired, be implemented in ROM
`9. An apparatus according to claim 8, wherein saic
`portable device consists of at
`least one substrate having
`(read—only memory) form. The software components may,
`generally, be implemented in hardware, if desired, using
`thereon said smart chip, said USB interface, and said micro-
`processor.
`conventional techniques.
`It is appreciated that various features of the invention
`10. A11 apparatus according to claim 3, wherein saic
`which are, for clarity, described in the contexts of separate
`portable device is a USB key operative as a component into
`embodiments may also be provided in combination in a
`which said smart card chip, said USB interface, and saic
`single embodiment. Conversely, various features of the
`microprocessor are placed.
`invention which are, for brevity, described in the context of
`11. An apparatus according to claim 8, wherein saic
`a single embodiment may also be provided separately or in
`portable device further comprises data storage means, for
`any suitable subcombination.
`storing data required for the operation of at least one elemen
`It will be appreciated by persons skilled in the art that the
`selected from the group consisting of said microprocessor
`present invention is not limited to what has been particularly
`and said smart card chip.
`shown and described hereinabove. Rather, the scope of the
`12. An apparatus according to claim 8, wherein saic
`present invention is defined only by the claims that follow.
`portable device further comprises secured memory.
`
`
`
`PayPal Inc. v. IOENGINE, LLC
`|PR2019-00884 (US 8,539,047)
`Exhibit 2077
`
`Page 5 of 6
`
`PayPal Inc. v. IOENGINE, LLC
`IPR2019-00884 (US 8,539,047)
`Exhibit 2077
`Page 5 of 6
`
`

`

`US 6,763,399 B2
`
`6
`said smart card chip, said USB interface, and said micro-
`processor are placed.
`18. Amethod according to claim 15, wherein said portable
`device further comprises data storage means, for storing data
`required for operating at least one component selected from
`the group consisting of microprocessors and smart card
`chips.
`19. Amethod according to claim 15, wherein said portable
`device further comprises secured memory.
`20. A method according to claim 15, wherein said method
`is operative to perform at least one function selected from
`the group consisting of cryptography, authentication,
`encryption, public key infrastructure, digital signature, RSA
`and access control.
`21. Amethod according to claim 15, wherein said portable
`device supports 1807816 standard.
`22. A system according to claim 1, wherein said smar
`Clip is operationally connec e direct y to said micropro-
`cessor.
`
`23. A system according to claim 22, wherein said smar
`Clip is operationally connec ec direct y to said micropro-
`cessor on a common substrate.
`24. An apparatus according to claim 8, wherein said smar
`clip is operationally connec ee direct y to said micropro-
`cessor.
`
`
`
`
`
`
`
`25. A system according to claim 24, wherein said smar
`Clip is operationally connec ec direct y to said micropro—
`cessor on a common substrate.
`26. A method according to c
`Clip is operationally connec ec
`cessor.
`
`5
`13. An apparatus according to claim 8, wherein said
`apparatus is operative to perform at
`least one function
`selected from the group consisting of cryptography,
`authentication, encryption, public key infrastructure, digital
`signature, RSA and access control.
`14. An apparatus according to claim 8,wherein said appa-
`ratus supports 1807816 standard.
`15. Amethod for interacting directly between a smart card
`chip and a host via a USB interface of the host, comprising
`the steps of:
`coupling the host with a USB interface, for interacting
`with an external device via USB protocol;
`providing a portable external device, for being used as a
`platform for said smart card chip, said portable device
`having thereon a USB interface, for interacting with the
`host via USB protocol; aild a microprocessor,
`for
`executing at least one function selected from the group
`consisting of controlling the transfer of data between
`said USB interface and said smart card chip, converting
`data from a USB format to the format of said smart care
`chip and converting data from the format of said smar
`card chip to a USB format;
`upon receiving data in the USB interface of said portable
`device, converting said data from a USB format of saic
`smart card by said microprocessor, and conveying the
`converted data to said smart card chip; and
`upon sending data from said smart card chip to the host,
`converting said data from the format of said smart care
`chip to said USB format by said microprocessor, con-
`veying the converted data to said USB interface of saic
`portable device, and there from to the host, via the
`host’s USB interface.
`16. Amethod according to claim 15, wherein said portable
`device consists of at least one substrate having thereon saic
`smart chip, said USB interface, aild said microprocessor.
`17. A method according to claim 15, wherein said portable
`device is a USB key operative as a component into which
`
`
`
`10
`
`30
`
`LALn
`
`direct y to said micropro-
`
`
`27. A system according to claim 26, wherein said smar
`Clip is operationally connec ee direct y to said micropro-
`cessor on a common substrate.
`
`aim 15, wherein said smar
`
`PayPal Inc. v. IOENGINE, LLC
`|PR2019-00884 (US 8,539,047)
`Exhibit 2077
`
`Page 6 of 6
`
`PayPal Inc. v. IOENGINE, LLC
`IPR2019-00884 (US 8,539,047)
`Exhibit 2077
`Page 6 of 6
`
`