Kozlay
Alan Kozlay, Belcamp, MD US
Patent application number | Description | Published |
---|---|---|
20100227549 | Apparatus and Method for Pairing Bluetooth Devices by Acoustic Pin Transfer - A simplified apparatus and method for securely pairing Bluetooth™ and similar radio audio devices by transmitting a PIN value encoded as a tone from ear bud or speaker of one device and the microphone of the other. This apparatus and method do not require an implementation of the “Simple Secure Pairing” feature on both devices nor do they require the display and operator acceptance of verification values, tones, or computed numeric values. | 09-09-2010 |
Alan Kozlay, Timonium, MD US
Patent application number | Description | Published |
---|---|---|
20110217950 | Apparatus & method to improve pairing security in Bluetooth.TM. headsets & earbuds - The invention disclosed provides an improved Bluetooth™ system with increased security and privacy for “device association” (“pairing”) of two Bluetooth™ devices where one device has no display. Heretofore, only Secure Simple Pairing (SSP) Association Model “Just Works” is used if one device is display-less. Unfortunately, Just Works is vulnerable to exploits known as “Man-In-The-Middle” (MITM) attacks. By contrast, my invention implements uses Numeric Comparison (heretofore, unusable when one of the pairing devices are display-less). Numeric Comparison is more secure than Just Works, because both agree to a randomly-generated 6-digit number. My innovation allows display-less Bluetooth™ devices (headsets or ear buds) to pair with display-bearing devices, because the matching 6-digit number on the displaying device is “spoken” or sounded (voice recordings, beeps, tones) into a displayless device user's ear. This allows displayless device users to hear sounds (spoken or beeped) equivalent to displayed 6-digit numbers to facilitate comparison, matching, and secure Bluetooth pairing. This reduces or eliminates risk of MITM exploits. | 09-08-2011 |
Alan D. Kozlay, Belcamp, MD US
Patent application number | Description | Published |
---|---|---|
20130179944 | Personal area network (PAN) ID-authenticating systems, apparatus, method - This invention comprises a system, apparatus, and method ensuring device adherence to security requirements for Personal Area Networks (PANs). Provided security services protect data communicated between PAN-hub-attached devices and their resident data. The invention provides cryptographic keys and certificates, to protect communications between PAN-hub-attached devices, and optional external devices. The invention provides cryptographic software complying with established security requirements for PAN networks. Users submit credentials using: (1) ID smartcards inserted into the PAN hub security apparatus, (2) a cellphone/SIM card, and/or (3) a PIN or password. Based on privileges, users securely access the PAN hub and authorized devices. The PAN hub apparatus ensures that communications between PAN network devices, external devices, and data-at-rest are cryptographically protected, complying with network security requirements. Optionally, the invention permits users and/or PAN network device(s) to obtain connectivity to external “non-PAN” devices. The method specifies cryptographically-secured communications between PAN network devices and external devices. This invention comprises a system, apparatus, and method ensuring device adherence to security requirements for Personal Area Networks (PANs). Provided security services protect data communicated between PAN-hub-attached devices and their resident data. The invention provides cryptographic keys and certificates, to protect communications between PAN-hub-attached devices, and optional external devices. The invention provides cryptographic software complying with established security requirements for PAN networks. Users submit credentials using: (1) ID smartcards inserted into the PAN hub security apparatus, (2) a cellphone/SIM card, and/or (3) a PIN or password. Based on privileges, users securely access the PAN hub and authorized devices. The PAN hub apparatus ensures that communications between PAN network devices, external devices, and data-at-rest are cryptographically protected, complying with network security requirements. Optionally, the invention permits users and/or PAN network device(s) to obtain connectivity to external “non-PAN” devices. The method specifies cryptographically-secured communications between PAN network devices and external devices. | 07-11-2013 |
Douglas Kozlay, Timonium, MD US
Patent application number | Description | Published |
---|---|---|
20110221566 | Authenticating device with wireless directional radiation - A directional, wireless, user-authenticating electronic token is disclosed. The token is embedded as an integrated system (generally, within a protective electronic enclosure). Typically the present invention includes a fingerprint sensor, a processor, a power source, a token transceiver and antenna, and orientation indicia. The antenna propagates highly directional signals. This allows users to orient (i.e., “aim”) token signals toward intended transceivers (POS machines, doors, computers, etc.), while reducing risks of transacting with “unintended” transceivers outside the aimed beam. The present invention offers an improved design for electronic wireless hardware tokens: providing versatile, secure, directional, wireless, user-authenticating devices (e.g., advanced ID cards, smartcards, hybrid cards, dongles, etc.). Such devices reduce risk of unintended emissions (i.e., signals radiating in the direction of unintended transceivers). As an optional aid to pointing the device in the direction of an intended transceiver, a narrow guiding light beam can be included as a target designator. | 09-15-2011 |
Douglas Everett Kozlay, Timonium, MD US
Patent application number | Description | Published |
---|---|---|
20110046845 | Apparatus, method & system for enforcing vehicle operator policy compliance - Apparatus, method, and system enforce compliance with Transportation Safety Policies (TSP) governing vehicle fleets, subways, trains, busses, airplanes, etc. | 02-24-2011 |
20130024334 | Personal biometric authentication system for secure timekeeping - A privacy-oriented, personally-controlled biometric timekeeping apparatus, method, and system are disclosed. A conventional biometric time clock enrolls users at a centralized device. In my invention, biometric data never leaves the user's personal device that is carried by each employee. Upon hiring, workers are assigned hand-held, portable, mobile biometric devices to carry on their person. In daily use, the user performs biometric self-authentication, after which the personally-carried handheld apparatus sends a “successful biometric authentication” signal to the timekeeping device which is usually a centrally-located timekeeping system. The device is mobile, so workers can biometrically “punch-in” or “punch-out” via personal laptop to the timekeeping system; individually access timekeeping systems installed at worksites; or communicate from vehicles to the timekeeping system. | 01-24-2013 |
20130179944 | Personal area network (PAN) ID-authenticating systems, apparatus, method - This invention comprises a system, apparatus, and method ensuring device adherence to security requirements for Personal Area Networks (PANs). Provided security services protect data communicated between PAN-hub-attached devices and their resident data. The invention provides cryptographic keys and certificates, to protect communications between PAN-hub-attached devices, and optional external devices. The invention provides cryptographic software complying with established security requirements for PAN networks. Users submit credentials using: (1) ID smartcards inserted into the PAN hub security apparatus, (2) a cellphone/SIM card, and/or (3) a PIN or password. Based on privileges, users securely access the PAN hub and authorized devices. The PAN hub apparatus ensures that communications between PAN network devices, external devices, and data-at-rest are cryptographically protected, complying with network security requirements. Optionally, the invention permits users and/or PAN network device(s) to obtain connectivity to external “non-PAN” devices. The method specifies cryptographically-secured communications between PAN network devices and external devices. This invention comprises a system, apparatus, and method ensuring device adherence to security requirements for Personal Area Networks (PANs). Provided security services protect data communicated between PAN-hub-attached devices and their resident data. The invention provides cryptographic keys and certificates, to protect communications between PAN-hub-attached devices, and optional external devices. The invention provides cryptographic software complying with established security requirements for PAN networks. Users submit credentials using: (1) ID smartcards inserted into the PAN hub security apparatus, (2) a cellphone/SIM card, and/or (3) a PIN or password. Based on privileges, users securely access the PAN hub and authorized devices. The PAN hub apparatus ensures that communications between PAN network devices, external devices, and data-at-rest are cryptographically protected, complying with network security requirements. Optionally, the invention permits users and/or PAN network device(s) to obtain connectivity to external “non-PAN” devices. The method specifies cryptographically-secured communications between PAN network devices and external devices. | 07-11-2013 |