Patents by Inventor Ullrich Martini
Ullrich Martini has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11364875Abstract: The present invention is directed to a method for preventing a relay attack between a mobile phone and a starting device of an automobile, which allows to prevent stealing a vehicle. According to the invention, very specific movement profiles of an authorized driver or user are recognized and thereby it is prevented that an unauthorized user starts the vehicle and then steals it, in various application scenarios. This is based, among other things, on the underlying hardware components' sensor technology used. Further, the invention relates to an analogously arranged system arrangement and to a computer program product with control commands which implement the method or operate the system arrangement.Type: GrantFiled: June 17, 2019Date of Patent: June 21, 2022Assignee: GIESECKE+DEVRIENT MOBILE SECURITY GMBHInventor: Ullrich Martini
-
Patent number: 11315126Abstract: A method for checking the validity of a ticket involves transferring information from a control entity to a mobile device. A code is computed on the basis of this information, of a derived key and of a property individual for the mobile device, the code being subsequently checked by the control entity.Type: GrantFiled: November 10, 2015Date of Patent: April 26, 2022Assignee: GIESECKE+DEVRIENT MOBILE SECURITY GMBHInventors: Bernhard Inderst, Ullrich Martini, Dietmar Maierhöfer
-
Publication number: 20210362677Abstract: The present invention is directed to a method for preventing a relay attack between a mobile phone and a starting device of an automobile, which allows to prevent stealing a vehicle. According to the invention, very specific movement profiles of an authorized driver or user are recognized and thereby it is prevented that an unauthorized user starts the vehicle and then steals it, in various application scenarios. This is based, among other things, on the underlying hardware components' sensor technology used. Further, the invention relates to an analogously arranged system arrangement and to a computer program product with control commands which implement the method or operate the system arrangement.Type: ApplicationFiled: June 17, 2019Publication date: November 25, 2021Inventor: Ullrich MARTINI
-
Patent number: 10237731Abstract: A PKI key pair comprising a private key and a public key is arranged for the end device. The public key is stored at the communication partner. The communication partner is arranged to provide a session key, encrypt data using the session key, encrypt the session key using the public key and convey the encrypted data to the end device. The communication system is further characterized in that it comprises a server system, remote from the mobile end device, in which the private key is stored in a secure environment. For this, the communication partner is furthermore arranged to transmit the encrypted session key to the server system. Moreover, the server system is arranged to decrypt the session key for the end device with the private key and to transmit it in decrypted form to the end device for decrypting the data.Type: GrantFiled: July 28, 2015Date of Patent: March 19, 2019Assignee: GIESECKE+DEVRIENT MOBILE SECURITY GMBHInventors: Frank Schäfer, Ullrich Martini
-
Patent number: 9875366Abstract: Microprocessor system that is implemented or can be implemented in a mobile terminal and comprises: a normal operating system designed to generate and maintain a non-secure runtime environment and a security operating system designed to generate and maintain a secured runtime environment, and an operating system interface between the normal operating system and the security operating system, said operating interface being designed to control communication between the non-secure runtime environment and the secured runtime environment on the operating system level, and at least one filter interface that is designed to securely control communication between the non-secure runtime environment and a secured runtime environment on a level different from the operating system level.Type: GrantFiled: October 4, 2012Date of Patent: January 23, 2018Assignee: TRUSTONIC LIMITEDInventors: Stephen Spitz, Markus Kohler, Ullrich Martini
-
Publication number: 20170316423Abstract: A method for checking the validity of a ticket involves transferring information from a control entity to a mobile device. A code is computed on the basis of this information, of a derived key and of a property individual for the mobile device, the code being subsequently checked by the control entity.Type: ApplicationFiled: November 10, 2015Publication date: November 2, 2017Inventors: Bernhard INDERST, Ullrich MARTINI, Dietmar MAIERHÖFER
-
Patent number: 9792445Abstract: The invention provides a method for securely inputting an access code to an input interface of a mobile end device. During an input time period covering the process of inputting the access code, at least one or some sensors of the end device that are uninvolved in the input of the access code, said sensors being respectively arranged for capturing sensor variables by sensor, are hindered from capturing and/or passing on the respective sensor variable. Possible sensors are acceleration sensors or a digital camera. The method prevents the access code from being spied out by means of the deactivated sensors.Type: GrantFiled: February 25, 2014Date of Patent: October 17, 2017Assignee: GIESECKE+DEVRIENT MOBILE SECURITY GMBHInventor: Ullrich Martini
-
Publication number: 20170223529Abstract: A PKI key pair comprising a private key and a public key is arranged for the end device. The public key is stored at the communication partner. The communication partner is arranged to provide a session key, encrypt data using the session key, encrypt the session key using the public key and convey the encrypted data to the end device. The communication system is further characterized in that it comprises a server system, remote from the mobile end device, in which the private key is stored in a secure environment. For this, the communication partner is furthermore arranged to transmit the encrypted session key to the server system. Moreover, the server system is arranged to decrypt the session key for the end device with the private key and to transmit it in decrypted form to the end device for decrypting the data.Type: ApplicationFiled: July 28, 2015Publication date: August 3, 2017Inventors: Frank SCHÄFER, Ullrich MARTINI
-
Patent number: 9400901Abstract: A method for operating a communication system comprises a transponder having at least one antenna, in particular in the form of a portable data carrier, and a reading device having at least one antenna. The reading device is configured to exchange data with the transponder. An exchange of data between the transponder and the reading device is possible within a predetermined range. A measurement and evaluation is effected of the time of a command transmitted from the reading device to the transponder and the receipt of a corresponding response of the transponder by the reading device. In so doing, a processing is effected of a card-individual length of time T_icc, wherein the card-individual length of time T_icc specifies how long the transponder takes for the receipt and the processing of a command received from the reading device and the sending of a corresponding response.Type: GrantFiled: November 19, 2013Date of Patent: July 26, 2016Assignee: Giesecke & Devrient GmbHInventors: Dirk Wacker, Ullrich Martini
-
Publication number: 20150371050Abstract: The invention provides a method for securely inputting an access code to an input interface of a mobile end device. During an input time period covering the process of inputting the access code, at least one or some sensors of the end device that are uninvolved in the input of the access code, said sensors being respectively arranged for capturing sensor variables by sensor, are hindered from capturing and/or passing on the respective sensor variable. Possible sensors are acceleration sensors or a digital camera. The method prevents the access code from being spied out by means of the deactivated sensors.Type: ApplicationFiled: February 25, 2014Publication date: December 24, 2015Inventor: Ullrich MARTINI
-
Publication number: 20150302230Abstract: A method for operating a communication system comprises a transponder having at least one antenna, in particular in the form of a portable data carrier, and a reading device having at least one antenna. The reading device is configured to exchange data with the transponder. An exchange of data between the transponder and the reading device is possible within a predetermined range. A measurement and evaluation is effected of the time of a command transmitted from the reading device to the transponder and the receipt of a corresponding response of the transponder by the reading device. In so doing, a processing is effected of a card-individual length of time T_icc, wherein the card-individual length of time T_icc specifies how long the transponder takes for the receipt and the processing of a command received from the reading device and the sending of a corresponding response.Type: ApplicationFiled: November 19, 2013Publication date: October 22, 2015Applicant: Giesecke & Devrient GmbHInventors: Dirk WACKER, Ullrich MARTINI
-
Patent number: 9104895Abstract: The invention describes a method for accessing a portable storage data carrier (10) having a controller (12) for managing a standardized storage element (14) and having an additional module (16), wherein a data block is transferred to the storage data carrier (10) in a first transmission protocol. The data block comprises routing information and application data, whereby the routing information contains an identifier which can be detected by the controller (12). Furthermore, it is determined whether a data block received on the storage data carrier (10) contains routing information. The data block is relayed to a storage area (18) of the storage element (14), said storage area being hidden to a terminal (50), when the data block comprises routing information and the routing information comprises, besides the identifier contained therein, at least one further, predetermined parameter indicating the access to the hidden storage area (18).Type: GrantFiled: May 5, 2010Date of Patent: August 11, 2015Assignee: GIESECKE & DEVRIENT GMBHInventor: Ullrich Martini
-
Publication number: 20140237621Abstract: Microprocessor system that is implemented or can be implemented in a mobile terminal and comprises: a normal operating system designed to generate and maintain a non-secure runtime environment and a security operating system designed to generate and maintain a secured runtime environment, and an operating system interface between the normal operating system and the security operating system, said operating interface being designed to control communication between the non-secure runtime environment and the secured runtime environment on the operating system level, and at least one filter interface that is designed to securely control communication between the non-secure runtime environment and a secured runtime environment on a level different from the operating system level.Type: ApplicationFiled: October 4, 2012Publication date: August 21, 2014Applicant: TRUSTONIC LIMITEDInventors: Stephen Spitz, Markus Kohler, Ullrich Martini
-
Publication number: 20120110292Abstract: The invention describes a method for accessing a portable storage data carrier (10) having a controller (12) for managing a standardized storage element (14) and having an additional module (16), wherein a data block is transferred to the storage data carrier (10) in a first transmission protocol. The data block comprises routing information and application data, whereby the routing information contains an identifier which can be detected by the controller (12). Furthermore, it is determined whether a data block received on the storage data carrier (10) contains routing information. The data block is relayed to a storage area (18) of the storage element (14), said storage area being hidden to a terminal (50), when the data block comprises routing information and the routing information comprises, besides the identifier contained therein, at least one further, predetermined parameter indicating the access to the hidden storage area (18).Type: ApplicationFiled: May 5, 2010Publication date: May 3, 2012Inventor: Ullrich Martini
-
Patent number: 7526653Abstract: A method is described for identifying and initializing digitized biometric features to provide encryption or coding of secret data.Type: GrantFiled: August 4, 2000Date of Patent: April 28, 2009Assignee: Giesecke & Devrient GmbHInventors: Kolja Vogel, Stephan Beinlich, Ullrich Martini