Patents by Inventor Malcolm Ronald Smith

Malcolm Ronald Smith has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 10263793
    Abstract: A device may include a physically unclonable function (PUF) source that has at least one fuse embedded in the device. The PUF source may be responsive to an input for transmitting a signal through the fuse and providing a PUF value based on a measurement of such signal. The device also has circuitry that is configured to modify the fuse by transmitting a signal of sufficiently high current or voltage through the fuse to change its resistance, thereby changing a response of the PUF source to the input.
    Type: Grant
    Filed: March 30, 2018
    Date of Patent: April 16, 2019
    Assignee: Square, Inc.
    Inventors: Afshin Rezayee, Yue Yang, Malcolm Ronald Smith
  • Patent number: 10255603
    Abstract: A transaction device includes a bootloader that a processing unit executes during device startup. The bootloader causes the processing unit to access values from a persistent memory that are relevant to whether a glitch has occurred on a power supply for the processing unit. Based on the values that are acquired from the persistent memory, the processing unit may implement countermeasures, such as disabling certain device operations or delaying the device booting process.
    Type: Grant
    Filed: August 31, 2017
    Date of Patent: April 9, 2019
    Assignee: Sqaure, Inc.
    Inventors: Afshin Rezayee, Malcolm Ronald Smith, Yue Yang
  • Publication number: 20190028284
    Abstract: A device may include a physically unclonable function (PUF) source that has at least one fuse embedded in the device. The PUF source may be responsive to an input for transmitting a signal through the fuse and providing a PUF value based on a measurement of such signal. The device also has circuitry that is configured to modify the fuse by transmitting a signal of sufficiently high current or voltage through the fuse to change its resistance, thereby changing a response of the PUF source to the input.
    Type: Application
    Filed: March 30, 2018
    Publication date: January 24, 2019
    Applicant: Square, Inc.
    Inventors: Afshin Rezayee, Yue Yang, Malcolm Ronald Smith
  • Publication number: 20190026724
    Abstract: An electronic device may include a printed circuit board having a physically unclonable function (PUF) source. The electronic device may also include an integrated circuit (IC) chip positioned on the printed circuit board, and the first PUF source may be embedded in or formed on the printed circuit board external to the IC chip. The IC chip has processing circuitry that is configured to determine PUF data based on the PUF source. The processing circuitry is further configured to determine a cryptographic key or authentication token based on the PUF data and to perform at least one secure operation using the cryptographic key or authentication token.
    Type: Application
    Filed: March 30, 2018
    Publication date: January 24, 2019
    Applicant: Square, Inc.
    Inventors: Jeremy Wade, William Hardy, Malcolm Ronald Smith, Afshin Rezayee, Yue Yang
  • Publication number: 20180247084
    Abstract: Processor system with a general purpose processor and a cryptographic processor dedicated to performing cryptographic operations and enforcing the security of critical security parameters. The cryptographic processor prevents exposure of critical security parameters outside the cryptographic processor itself, and instead implements a limited scripting engine, which can be used by the general purpose processor to execute operations that require the critical security parameters.
    Type: Application
    Filed: December 29, 2017
    Publication date: August 30, 2018
    Applicant: Square, Inc.
    Inventors: Malcolm Ronald Smith, Kshitiz Vadera, Mark Phillip Zagrodney, Kevin Ka Wai Ng, Afshin Rezayee
  • Patent number: 9886596
    Abstract: Processor system with a general purpose processor and a cryptographic processor dedicated to performing cryptographic operations and enforcing the security of critical security parameters. The cryptographic processor prevents exposure of critical security parameters outside the cryptographic processor itself, and instead implements a limited scripting engine, which can be used by the general purpose processor to execute operations that require the critical security parameters.
    Type: Grant
    Filed: June 25, 2015
    Date of Patent: February 6, 2018
    Assignee: Square, Inc.
    Inventors: Malcolm Ronald Smith, Kshitiz Vadera, Mark Philip Zagrodney, Kevin Ka Wai Ng, Afshin Rezayee
  • Patent number: 9300665
    Abstract: Methods and systems are provided for performing and verifying transactions involving authentication with a secure credential, such as a smart card, in an untrusted or semi-trusted environment. An application module, operating in an untrusted or semi-trusted environment can be denied access to sensitive data. The application module can determine a preliminary command to be sent to the credential and transmit the preliminary command to a broker module. The broker module, operating in a trusted environment, can supply sensitive data and transmit the command to the credential. Subsequently, the broker module can extract sensitive data from a response before it is transmitted to the application module. A verification server can audit the transaction to verify that it was carried out properly.
    Type: Grant
    Filed: May 29, 2012
    Date of Patent: March 29, 2016
    Assignee: SecureKey Technologies Inc.
    Inventors: Troy Jacob Ronda, Andre Boysen, Afshin Rezayee, Malcolm Ronald Smith, Mikhael Khaymov, Kshitiz Vadera, Murat Cat
  • Publication number: 20160026990
    Abstract: A point of sale system has a display for receiving touch inputs, a controller to receive the touch inputs from the display, and a secure controller to receive touch input data from the controller. The system also has a card interface module and a contactless interface module to provide encrypted data to the secure controller. The secure controller can operate in either a secure mode or a non-secure mode. When a non-secure mode is engaged, the secure controller provides the touch input data to a processor. When a secure mode is engaged, the secure controller blocks at least a portion of the touch input data from the processor.
    Type: Application
    Filed: June 26, 2015
    Publication date: January 28, 2016
    Applicant: Square, Inc.
    Inventors: Afshin Rezayee, Malcolm Ronald Smith, Kshitiz Vadera, Kevin Ka Wai Ng, Haipeng Yan
  • Patent number: 9135472
    Abstract: Processor system with a general purpose processor and a cryptographic processor dedicated to performing cryptographic operations and enforcing the security of critical security parameters. The cryptographic processor prevents exposure of critical security parameters outside the cryptographic processor itself, and instead implements a limited scripting engine, which can be used by the general purpose processor to execute operations that require the critical security parameters.
    Type: Grant
    Filed: October 31, 2013
    Date of Patent: September 15, 2015
    Assignee: Square, Inc.
    Inventors: Malcolm Ronald Smith, Kshitiz Vadera, Mark Philip Zagrodney, Kevin Ka Wai Ng, Afshin Rezayee
  • Publication number: 20150121086
    Abstract: Processor system with a general purpose processor and a cryptographic processor dedicated to performing cryptographic operations and enforcing the security of critical security parameters. The cryptographic processor prevents exposure of critical security parameters outside the cryptographic processor itself, and instead implements a limited scripting engine, which can be used by the general purpose processor to execute operations that require the critical security parameters.
    Type: Application
    Filed: October 31, 2013
    Publication date: April 30, 2015
    Applicant: Kili Technology Corporation
    Inventors: Malcolm Ronald Smith, Kshitiz Vadera, Mark Philip Zagrodney, Kevin Ka Wai Ng, Afshin Rezayee
  • Publication number: 20140101734
    Abstract: Methods and systems are provided for performing and verifying transactions involving authentication with a secure credential, such as a smart card, in an untrusted or semi-trusted environment. An application module, operating in an untrusted or semi-trusted environment can be denied access to sensitive data. The application module can determine a preliminary command to be sent to the credential and transmit the preliminary command to a broker module. The broker module, operating in a trusted environment, can supply sensitive data and transmit the command to the credential. Subsequently, the broker module can extract sensitive data from a response before it is transmitted to the application module. A verification server can audit the transaction to verify that it was carried out properly.
    Type: Application
    Filed: May 29, 2012
    Publication date: April 10, 2014
    Applicant: Securekey Technologies Inc.
    Inventors: Troy Jacob Ronda, Andre Boysen, Afshin Rezayee, Malcolm Ronald Smith, Mikhael Khaymov, Kshitiz Vadera, Murat Cat