CN104077537A - Offering identification communication with replaceable printer part - Google Patents

Offering identification communication with replaceable printer part Download PDF

Info

Publication number
CN104077537A
CN104077537A CN 201410293730 CN201410293730A CN104077537A CN 104077537 A CN104077537 A CN 104077537A CN 201410293730 CN201410293730 CN 201410293730 CN 201410293730 A CN201410293730 A CN 201410293730A CN 104077537 A CN104077537 A CN 104077537A
Authority
CN
Grant status
Application
Patent type
Prior art keywords
printing system
replaceable
printer
session key
system
Prior art date
Application number
CN 201410293730
Other languages
Chinese (zh)
Other versions
CN104077537B (en )
Inventor
J.G.雷弗斯特鲁普
Original Assignee
惠普开发有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date

Links

Classifications

    • BPERFORMING OPERATIONS; TRANSPORTING
    • B41PRINTING; LINING MACHINES; TYPEWRITERS; STAMPS
    • B41JTYPEWRITERS; SELECTIVE PRINTING MECHANISMS, e.g. INK-JET PRINTERS, THERMAL PRINTERS, i.e. MECHANISMS PRINTING OTHERWISE THAN FROM A FORME; CORRECTION OF TYPOGRAPHICAL ERRORS
    • B41J29/00Details of, or accessories for, typewriters or selective printing mechanisms not otherwise provided for
    • B41J29/38Drives, motors, controls or automatic cut-off devices for the entire printing mechanism
    • B41J29/393Devices for controlling or analysing the entire machine ; Controlling or analysing mechanical parameters involving printing of test patterns
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/606Protecting data by securing the transmission between two devices or processes
    • G06F21/608Secure printing
    • BPERFORMING OPERATIONS; TRANSPORTING
    • B41PRINTING; LINING MACHINES; TYPEWRITERS; STAMPS
    • B41JTYPEWRITERS; SELECTIVE PRINTING MECHANISMS, e.g. INK-JET PRINTERS, THERMAL PRINTERS, i.e. MECHANISMS PRINTING OTHERWISE THAN FROM A FORME; CORRECTION OF TYPOGRAPHICAL ERRORS
    • B41J29/00Details of, or accessories for, typewriters or selective printing mechanisms not otherwise provided for
    • B41J29/38Drives, motors, controls or automatic cut-off devices for the entire printing mechanism
    • B41J29/393Devices for controlling or analysing the entire machine ; Controlling or analysing mechanical parameters involving printing of test patterns
    • B41J2029/3937Wireless communication between the printer and the cartridge, carriage or printhead

Abstract

The invention discloses a replaceable printer part, and the replaceable printer part comprises a first storage and a communication link. The first storage stores a first secret. The communication link is configured for connecting the first storage to the printer controller in a communication mode while arranged in the printing system in the replaceable printer part. The printing system comprises a second storage storing a second secret. The second storage is connected to the printer controller in a communication mode. The first storage is configured for having identification for the communication between the first storage and the printer controller based on the first secret and the second secret.

Description

提供与可更换打印机部件的认证通信 Providing authentication in communication with the replaceable printer component

[0001] 相关申请的交叉引用 CROSS [0001] REFERENCE TO RELATED APPLICATIONS

本专利申请涉及与本申请同日提交的题为“AUTHENTICATING A REPLACEABLE PRINTERCOMPONENT”的序列号##/##,###、代理人案号N0.200800134-1的PCT专利申请,该PCT专利申请通过引用合并于此。 The present patent application relates to the present application, entitled, filed on the same day "AUTHENTICATING A REPLACEABLE PRINTERCOMPONENT" Serial No. ## / ##, ###, Attorney Docket No. PCT Patent Application N0.200800134-1 of the PCT patent applications incorporated herein by reference.

背景技术 Background technique

[0002]当前的打印系统典型地包括一个或多个可更换打印机部件,诸如喷墨盒、喷墨打印头组件、墨粉盒、供墨器等。 [0002] Current printing systems typically include one or more replaceable printer components, such as inkjet cartridges, inkjet printhead assemblies, toner cartridges, ink and the like. 一些现有系统为这些可更换打印机部件提供了板上存储器以向打印机传递关于可更换部件的信息,诸如墨填充水平、市场信息等。 Some existing systems provide these replaceable printer component of on-board memory to communicate information to the replaceable printer component, such as ink fill level, marketing information and the like.

[0003] 典型地依赖于可更换打印机部件的板上存储器中存储的数据以适当地操作和跟踪可更换打印机部件以及其中安装可更换打印机部件的打印系统。 [0003] typically rely on replaceable printer component data stored in the memory board to operate appropriately and tracking the replaceable printer component is mounted and wherein the replaceable printing component system printer. 因此,存储在板上存储器中的数据不应遭受未授权的使用或者未授权的修改。 Thus, the data stored in a memory board should not be subject to unauthorized use or unauthorized modification of.

[0004] 出于这些和其他原因,存在对本发明的需要。 [0004] For these and other reasons, a need exists for the present invention.

附图说明 BRIEF DESCRIPTION

[0005] 所包括的附图用于提供对实施例的进一步的理解并且并入本说明书且构成本说明书的一部分。 [0005] The accompanying drawings are included to provide a further understanding of embodiments and are incorporated in and constitute a part of this specification. 附图图示了实施例并且连同说明一起用于解释实施例的原理。 The drawings illustrate embodiments and together with the description serve to explain principles of embodiments. 将容易地认识到其他实施例和实施例的许多预期优点,因为它们通过参照下面的详细描述而变得更好理解。 We will readily recognize many intended advantages of embodiments and other embodiments, as they become better understood by reference to the following detailed description. 附图中的元件不一定相对于彼此按比例绘制。 Elements of the drawings are not necessarily to scale relative to each other drawn. 相同的附图标记表示对应的相似部分。 The same reference numerals designate corresponding similar parts.

[0006] 图1是图示打印装置的一个实施例的框图。 [0006] FIG. 1 is a block diagram illustrating the printing apparatus of the embodiment.

[0007] 图2是图示用于对可更换打印机部件和打印系统之间的通信进行认证的方法的一个实施例的流程图。 [0007] FIG 2 is a flowchart illustrating a method of communication between the replaceable printer component and the printing system authenticating embodiment.

[0008] 图3是图示用于对打印系统发出的对于可更换打印机部件的读或写请求进行认证的方法的一个实施例的流程图。 [0008] FIG. 3 is a flowchart of a printing system sends an embodiment of a method for a replaceable printer component for a read or write request for illustrating authentication.

具体实施方式 detailed description

[0009] 在下面的详细描述中,参照构成其一部分的附图,并且其中作为图示而示出了其中可以实施本发明的特定实施例。 [0009] In the following detailed description, with reference to the accompanying drawings constitute a part of, and in which is shown by way of illustration embodiments in which the invention may be a particular embodiment. 在这一点上,参照所描述的图的取向使用诸如“顶”、“底”、“前”、“后”、“引导”、“尾随”等方向术语。 In this regard, with reference to the orientation of FIG described, such as "top", "bottom", "front", "rear", "guide", "trailing", etc. directional terms. 由于实施例的部件可以被定位在许多不同的取向上,因此方向术语用于说明的目的而绝非作为限制。 Because components of embodiments of the object may be positioned in a number of different orientations, the directional terminology is used for illustration and in no way as limiting. 将理解,在不偏离本发明的范围的情况下,可以利用其他实施例并且可以进行结构或逻辑上的改变。 It will be understood, without departing from the scope of the present invention, other embodiments may be utilized and structural changes may be made or logical. 因此,下面的详细描述不应被视为限制性的,并且本发明的范围由所附权利要求限定。 Therefore, the following detailed description should not be considered limiting, and the scope of the present invention is defined by the appended claims.

[0010] 将理解,除非另外特别说明,否则这里描述的各种示例性实施例的特征可以彼此组合。 [0010] It will be understood, unless specifically stated otherwise, features of the various exemplary embodiments described herein may be combined with each other.

[0011] 图1是图示打印装置100的一个实施例的框图。 [0011] FIG. 1 is a block diagram illustrating the printing apparatus 100 according to an embodiment. 打印装置100包括主机102和打印系统104。 The printing apparatus 100 includes a host 102 and a printing system 104. 打印系统104便于将图形和/或文本图像打印在诸如纸张、卡片材料、透明胶片、麦拉片(Mylar)、布料等的打印介质118上。 Printing system 104 facilitates graphical and / or text image is printed on such as paper, card stock, transparencies, Mylar film (a Mylar), and the like fabric printing medium 118. 打印系统104包括例如喷墨打印机、激光打印机或者其他适当的打印机。 Printing system 104 includes, for example, an inkjet printer, a laser printer or other suitable printer. 主机102与打印系统104通信并且向打印系统104提供数据和/或控制信号。 Host 102 and 104 communicate with the printing system provides data and / or control signals to printing system 104. 主机102可以是诸如计算机、电器或者其他适当设备的多种信息源,或者可以包括在其中,所述其他适当设备诸如个人数字助理(PDA)、数字相机、蜂窝电话等。 Host 102 may be a variety of information sources such as a computer, or other suitable electrical device, or may be included therein, the other suitable device such as a personal digital assistant (PDA), a digital camera, a cellular phone.

[0012] 在一个实施例中,打印系统104包括打印机控制器116、存储器设备122和可更换打印机部件108。 [0012] In one embodiment, printing system 104 includes a printer controller 116, a memory device 122 and replaceable printer component 108. 可更换打印机部件108包括存储器设备109。 Replaceable printer component 108 includes a memory device 109. 在一个实施例中,打印机控制器116基于存储在存储器设备109中和存储器设备122中的秘密密钥对存储器设备109和打印机控制器116之间的通信进行认证。 In one embodiment, the printer controller 116 to authenticate communications between printer controller 109 and memory device 116 based on a secret key stored in the memory device 109 and memory device 122. 因此,防止了存储在可更换打印机部件108的存储器设备109中的数据的未授权的读和/或写。 This prevents unauthorized reading of the replaceable printer component 108 in memory device 109 stores data and / or write.

[0013] 打印机控制器116控制打印系统104的操作,并且因此从主机102接收数据和/或控制信号。 [0013] The printer controller 116 controls the operation of the printing system 104, and thus receives data from host 102 and / or control signals. 打印机控制器116经由通信链路106与主机102通信。 The printer controller 116 is in communication with the host 106 via a communication link 102. 通信链路106包括例如打印机控制器116和主机102之间的电气、光学、红外或者其他适当的信息传输路径。 Communication link 106 includes electrical, optical, infrared, or other suitable information transfer path between printer controller 116 and the host 102, for example. 打印机控制器116经由通信链路120与存储器设备122通信。 The printer controller 116 via communication links 122 communicate with the memory device 120. 通信链路120包括例如打印机控制器116和存储器设备122之间的电气、光学、红外或者其他适当的信息传输路径。 Communication link 120 comprises, for example, between printer controller 116 and memory device 122 of electrical, optical, infrared, or other suitable information transfer path.

[0014] 存储器设备122包括非易失性存储器(NVM) 123和逻辑124。 [0014] The memory device 122 includes non-volatile memory (NVM) 123 and logic 124. 在一个实施例中,存储器设备122是防篡改的或抗篡改的。 In one embodiment, the memory device 122 is tamper-proof or tamper-resistant. 在一个实施例中,逻辑124是逻辑电路或者在处理器上运行的嵌入式软件。 In one embodiment, logic 124 is a logic circuit or embedded software running on a processor. 例如,在一个实施例中,存储器设备122包括具有嵌入式非易失性存储器123的片上系统(SoC)或者中央处理单元(CPU)。 For example, in one embodiment, the memory device 122 comprises a system having a chip (SoC) chip embedded nonvolatile memory 123 or a central processing unit (CPU). 在另一实施例中,存储器设备122包括具有外部非易失性存储器123的SoC或者CPU。 In another embodiment, the memory device 122 includes an external non-volatile memory of the CPU 123 or SoC. 在另一实施例中,存储器设备122包括具有内部或外部非易失性存储器123的专用逻辑。 In another embodiment, the memory device 122 comprises an internal or external nonvolatile memory 123 of the dedicated logic. 在另一实施例中,存储器设备122被嵌入在具有内部或外部非易失性存储器123的打印机控制器116中。 In another embodiment, the memory device 122 is embedded in the printer controller 116 with internal or external nonvolatile memory 123.

[0015] 在一个实施例中,非易失性存储器123是EEPROM (电可擦除可编程只读存储器)、FLASH (闪速存储器)或者另一适当的存储器。 [0015] In one embodiment, the nonvolatile memory 123 is an EEPROM (Electrically Erasable Programmable Read Only Memory), FLASH (flash memory), or another suitable memory. 非易失性存储器123存储用于对打印机控制器116和可更换打印机部件108的存储器设备109之间的通信进行认证的一个或多个秘密密钥。 The nonvolatile memory 123 stores one or more secret keys for a communication between printer controller 116 and replaceable printer component 109 of memory device 108 for authentication. 打印机控制器116和存储器设备109之间的通信是使用会话密钥进行认证的。 Communication between the printer controller 116 and memory device 109 using the session key is authenticated. 为了生成会话密钥,打印机控制器116向存储器设备122传送会话密钥标识符和对会话密钥的请求。 To generate a session key, printer controller 116 requests a session-key identifier and the session key is transmitted to the memory device 122. 响应于该会话密钥标识符和对会话密钥的请求,逻辑电路124基于会话密钥标识符和存储在非易失性存储器123中的秘密密钥来生成会话密钥。 In response to the session-key identifier and the request for the session key, logic circuit 124 generates a session key based on the secret key and the session-key identifier stored in the nonvolatile memory 123. 逻辑电路124随后将生成的会话密钥提供给打印机控制器116。 The logic circuit 124 then generates a session key to the printer controller 116.

[0016] 可更换打印机部件108包括可插入打印系统104并且可从打印系统104拆除的打印系统104的部件。 [0016] The replaceable printer component 108 includes a printing system 104 may be inserted into and detachable member 104 from the printing system 104 of the printing system. 在一个实施例中,可更换打印机部件108包括在其使用寿命结束时被移除并被更换的可消耗部件。 In one embodiment, replaceable printer component 108 includes a removable and replaceable at the end of its useful life of the consumable member. 这种可消耗部件的示例包括墨容器或者墨粉盒,其包含一些用于打印系统104的标记材料。 Such examples may consumable component includes an ink container or toner cartridge, which contains a number of marking material for printing system 104. 标记材料由打印系统104淀积在打印介质118上并且在墨容器或者墨粉盒的使用寿命期间耗尽。 Marking material is deposited by the printing system 104 and depleted during the life of the ink container or toner cartridge 118 on the printing medium. 因此,墨容器或者墨粉盒在其使用寿命结束时被移除并被更换或被重新制造和重新使用。 Accordingly, the ink container or toner cartridge is removed and replaced or remanufactured and reused at the end of its useful life.

[0017] 在另一实施例中,可更换打印机部件108包括在打印系统104中各易更换的打印部件。 [0017] embodiment, replaceable printer component 108 in the printing system comprises a printing part 104 of each embodiment In another easily replaceable. 这种打印部件的示例包括打印头,其响应于来自打印机控制器116的控制信号有选择地使墨淀积在打印介质118上;或者打印机盒,其包括打印头和供墨器。 This example of a printing member includes a printhead in response to a control signal from the printer controller 116 selectively depositing ink on print medium 118; or a printer cartridge that includes a printhead and an ink supply device. 因此,如果例如打印系统104包括喷墨打印机,则可更换打印机部件108可以包括墨容器、打印头或者打印机盒。 Thus, if for example, printing system 104 includes an inkjet printer, replaceable printer component 108 may include an ink container, a printhead, or a printer cartridge. 此外,如果例如打印系统104包括激光打印机,则可更换打印机部件108可以包括墨粉盒或者显影鼓。 Further, if, for example, printing system 104 includes a laser printer, replaceable printer component 108 may include a toner cartridge or a developer drum. 此外,可更换打印机部件108可以包括打印系统104的外围设备,诸如以太网卡、双面打印器(duplexer)、纸张整理器(例如,装订器、冲孔器等)或者另一适当的设备。 Further, replaceable printer component 108 may include a peripheral device of printing system 104, such as an Ethernet card, a duplexer (duplexers), the sheet finisher (e.g., stapler, hole punch, etc.) or another suitable device.

[0018] 打印机控制器116和可更换打印机部件108经由通信链路114彼此通信。 [0018] The printer controller 116 and replaceable printer component 108 communicate with each other via a communication link 114. 当可更换打印机部件108安装在打印系统104中时,通信链路114便于打印机控制器116和可更换打印机部件108之间的信息传输。 When replaceable printer component 108 installed in printing system 104, the communication link 114 facilitates information transfer between printer controller 108 and replaceable printer component 116. 通信链路114包括例如可更换打印机部件108和打印机控制器116之间的电气、光学、红外、或者其他适当的信息传输路径。 Communication link 114 includes, for example, between the replaceable printer component 108 and printer controller 116 of electrical, optical, infrared, or other suitable information transfer path.

[0019] 可更换打印机部件108包括存储器设备109,其存储用于可更换打印机部件108和/或打印系统104的信息。 [0019] The replaceable printer component 108 includes a memory device 109 that stores information for replaceable 108 and / or 104 of the printing system printer component. 存储器设备109包括非易失性存储器(NVM)IlO和逻辑111。 The memory device 109 includes non-volatile memory (NVM) IlO and logic 111. 在一个实施例中,存储器设备109是防篡改的或抗篡改的。 In one embodiment, the memory device 109 is tamper-proof or tamper-resistant. 在一个实施例中,逻辑111是逻辑电路或者在处理器上运行的嵌入式软件。 In one embodiment, logic 111 is a logic circuit or embedded software running on a processor. 例如,在一个实施例中,存储器设备109包括具有嵌入式非易失性存储器110的SoC或CPU。 For example, in one embodiment, the memory device 109 includes a CPU or SoC with embedded non-volatile memory 110. 在另一实施例中,存储器设备109包括具有外部非易失性存储器110的SoC或CPU。 In another embodiment, the memory device 109 includes a CPU or SoC with external nonvolatile memory 110. 在另一实施例中,存储器设备109包括具有内部或外部非易失性存储器110的专用逻辑。 In another embodiment, the memory device 109 comprises an internal or external nonvolatile memory 110 dedicated logic.

[0020] 在一个实施例中,非易失性存储器110是256字节或另一适当尺寸的非易失性存储器,诸如EEPROM、FLASH或者另一适当的存储器。 [0020] In one embodiment, the nonvolatile memory 110 is a 256-byte or another suitably sized non-volatile memory, such as EEPROM, FLASH, or another suitable memory. 在一个实施例中,存储器设备109的非易失性存储器110存储例如对于可更换打印机部件108特定的信息和/或可应用于打印系统104的信息。 In one embodiment, the nonvolatile memory device 109. The memory 110 stores, for example, specific information 108 and / or system 104 may be applied to printing information for replaceable printer component. 此外,非易失性存储器110可以使打印系统104待使用的信息存储在其中或者可以记录用于打印系统104的信息。 Further, nonvolatile memory 110 can store information of the print system 104 to be used therein or can record information for printing system 104. 在一个实施例中,可以存储在非易失性存储器110中的信息包括用于可更换打印机部件108和/或打印系统104的操作和/或非操作参数。 In one embodiment, the information may be stored in the nonvolatile memory 110 comprises a replaceable printer component 108 and / or operation of the printing system 104 and / or operating parameters.

[0021] 非易失性存储器110还存储用于对存储器设备109和打印机控制器116之间的通信进行认证的一个或多个秘密密钥。 [0021] The nonvolatile memory 110 also stores for authenticating the one or more secret keys for communications between the memory device 109 and printer controller 116. 在一个实施例中,从存储在存储器设备122的非易失性存储器123中的一个或多个秘密密钥导出存储在存储器设备109的非易失性存储器110中的该一个或多个秘密密钥。 In one embodiment, from a memory storage device in a nonvolatile memory 123 or 122 of deriving a plurality of secret keys stored in a memory device of the nonvolatile memory 110 or more 109 a secret key. 在其他实施例中,从一个或多个公共的秘密密钥导出存储在存储器设备109的非易失性存储器110中的该一个或多个秘密密钥和存储在存储器设备122的非易失性存储器123中的该一个或多个秘密密钥。 In other embodiments, from one or more common secret key derivation device 122 stored in the memory of the non-volatile and one or more secret keys stored in memory device 109 is nonvolatile memory 110 in memory 123 of the one or more secret keys. 因此,存储在非易失性存储器110中的该一个或多个秘密密钥与存储在非易失性存储器123中的该一个或多个秘密密钥相关。 Thus, the one or more secret keys in the nonvolatile memory 123 related to the one or more secret keys stored in the nonvolatile memory 110 is stored in.

[0022] 在一个实施例中,可更换打印机部件108包括通信链路112,当可更换打印机部件108被安装在打印系统104中时,该通信链路112使存储器设备109与通信链路114电气耦合或通信耦合,并且因此与打印机控制器116电气耦合或通信耦合。 [0022] In one embodiment, replaceable printer component 108 includes a communication link 112, when installed in the printing system 104 replaceable printer component 108, the communication link 112 causes the memory device 109 and an electrical communication link 114 coupling or communication coupling, and thus 116 or communicatively coupled electrically coupled to the printer controller. 因此,当可更换打印机部件108被安装在打印系统104中时,存储器设备109经由通信链路112和114与打印机控制器116通信。 Thus, when replaceable printer component 108 is installed in printing system 104, memory device 109 communicate via communication links 112 and 114 and the printer controller 116. 因此,通信链路112和114包括例如电气耦合或连接,诸如分别与对应的电气节点或插座配对的电气接触部或插头。 Thus, the communication links 112 and 114 include, for example, electrical couplings or connections such as electrical node or respectively the corresponding mating socket contacts or electrical plug.

[0023] 使用会话密钥对存储器设备109和打印机控制器116之间的通信进行认证。 [0023] using the session key to authenticate communications between printer controller 109 and memory device 116. 为了生成会话密钥,打印机控制器116向存储器设备109传递对会话密钥标识符的请求。 To generate a session key, printer controller 116 a request for a session-key identifier is transmitted to the memory device 109. 响应于对会话密钥标识符的请求,存储器设备109的逻辑电路111基于存储在非易失性存储器110中的秘密密钥生成会话密钥标识符和关联的会话密钥。 In response to a request for a session key identifier, logic circuit 111 of memory device 109 generates a session key identifier and an associated session key based on the secret key stored in the nonvolatile memory 110. 在一个实施例中,存储器设备109的逻辑电路111响应于每个对会话密钥标识符的请求,生成不同的会话密钥标识符和关联的会话密钥。 In one embodiment, the memory device 109, the logic circuit 111 in response to each request for a session key identifier, generating a session key and an identifier associated with a different session key. 因此,每个会话密钥标识符和每个关联的会话密钥仅被使用一次。 Therefore, each session-key identifier and each associated session key is used only once. 逻辑电路111将所生成的会话密钥标识符提供给打印机控制器116,其又将会话密钥标识符传递到存储器设备122,如上文描述的那样。 The logic circuit 111 generates a session key identifier to printer controller 116, which in turn session key identifier to memory device 122, as above described.

[0024] 图2是图示用于对可更换打印机部件108和打印系统104之间的通信进行认证的方法150的一个实施例的流程图。 [0024] FIG. 2 is a diagram of a method for communication between the replaceable printer component 108 and a printing system 104 for authenticating a flow diagram 150 of the embodiment. 在152处,可更换打印机部件108被安装在包括打印机控制器116的打印系统104中。 At 152, replaceable printer component 108 is installed in printing system 116 includes a printer controller 104 of. 可更换打印机部件108包括存储器设备109,该存储器设备109已被配置为具有用于对与打印系统104的通信进行认证的一个或多个秘密密钥。 Replaceable printer component 108 includes a memory device 109, the memory device 109 has been configured with one or more secret keys used to communicate with the printing system 104 for authentication. 打印系统104还包括存储器设备122,该存储器设备122已被配置为具有用于对与可更换打印机部件108的通信进行认证的一个或多个秘密密钥。 Printing system 104 further includes a memory device 122, the memory device 122 has been configured with a secret key for authenticating the one or more replaceable printer component 108 communicate with.

[0025] 在154处,打印机控制器116通过通信链路114和112向可更换打印机部件108的存储器设备109请求会话密钥标识符。 [0025] At 154, the printer controller 116 to the replaceable printer component 112 through communication links 114 and 108. The memory device 109 requests the session key identifier. 在156处,响应于接收到对会话密钥标识符的请求,存储器设备109的逻辑电路111基于存储在非易失性存储器110中的第一秘密密钥生成所请求的会话密钥标识符及其关联的会话密钥。 At 156, in response to receiving a request for a session key identifier, a session key identifier of the memory device 109, logic circuit 111 generates a first secret key stored in the nonvolatile memory 110 based on the request and the its associated session key. 在158处,存储器设备109的逻辑电路111向打印机控制器116提供所请求的会话密钥标识符。 In 158, the logic circuit 111 of memory device 109 provides the requested session-key identifier to printer controller 116.

[0026] 在160处,打印机控制器116通过通信链路120将从存储器设备109接收的会话密钥标识符提供给存储器设备122并且请求会话密钥。 [0026] At 160, printer controller 116 via the communication link 122 is provided to the memory device 120 from the session-key identifier and the memory device 109 receives a session key request. 在162处,响应于接收到会话密钥标识符和对会话密钥的请求,存储器设备122的逻辑电路124基于接收到的会话密钥标识符和存储在非易失性存储器123中的第二秘密密钥生成所请求的会话密钥。 At 162, in response to receiving the session-key identifier and the request for the session key, the logic circuit 124 of memory device 122 based on the received session-key identifier and stored in the second non-volatile memory 123 secret key generating the requested session key. 如果存储在存储器设备109的非易失性存储器110中的第一秘密密钥与存储在存储器设备122的非易失性存储器123中的第二秘密密钥相关,则逻辑电路111生成的会话密钥与逻辑电路124生成的会话密钥匹配。 If the first secret key stored in the memory device 109 is nonvolatile memory 110 in the second secret key memory 123 in the nonvolatile memory device 122 is related to the logic circuit 111 generates a session secret key and the session key generated by logic circuit 124 matches. 在164处,存储器设备122的逻辑电路124向打印机控制器116提供所请求的会话密钥。 At 164, logic circuit 124 of memory device 122 provides the requested session key to the printer controller 116. 在166处,打印机控制器116使用接收到的会话密钥对打印机控制器116和可更换打印机部件108的存储器设备109之间的通信进行认证。 In 166, the printer controller 116 using the received session key for communications between the printer controller 116 and replaceable printer component 109 of memory device 108 for authentication.

[0027] 图3是图示用于对打印系统104发出的对可更换打印机部件108的读或写请求进行认证的方法166的一个实施例的流程图。 [0027] FIG. 3 is a diagram of a method for replaceable printer component 108 is a read or write request to the authentication printing system 104 issues 166 a flow diagram of the embodiment. 在170处,在可更换打印机部件108的存储器设备109中建立会话密钥并且在打印系统104中建立会话密钥的情况下,打印机控制器116使用其会话密钥和适当的密码算法来计算用于读或写请求的第一消息认证码(MAC)。 At 170, the case of establishing a session key replaceable printer component 108 in memory device 109 and establishes a session key in the printing system 104, printer controller 116 using its session key and a suitable ciphering algorithm used to calculate a first read or write request message to an authentication code (MAC). 第一MAC是针对读或写请求的命令和命令参数计算的。 The first MAC is a read or write request for a command and command parameters calculated. 在一个实施例中,在第一MAC的计算中使用MAC分散符(diversifier)以防止针对存储器设备109的重放攻击。 In one embodiment, a MAC identifier dispersion (diversifier) ​​in the calculation of the first MAC to prevent replay attacks for the memory device 109.

[0028] 在一个实施例中,利用诸如安全哈希算法I (SHA-1 )、SHA-2或其他适当的安全哈希算法的安全哈希,基于哈希消息认证码(HMAC)计算第一MAC。 [0028] In one embodiment, such as the use of the Secure Hash Algorithm I (SHA-1), secure hash SHA-2, or other suitable secure hash algorithm, a hash-based message authentication code (HMAC) calculating a first MAC. 在另一实施例中,利用诸如数据加密标准(DES)、3DES、高级加密标准(AES)、Rivest密码法2(RC2)的分块密码(cipherblock)算法或者其他适当的分块密码算法,根据基于密码的MAC (CMAC)计算第一MAC。 In another embodiment, such as using a data encryption standard (DES), 3DES, Advanced Encryption Standard (AES), Rivest cryptography 2 (RC2) of the block cipher (cipherblock) algorithm or other suitable block cipher algorithm according to calculating a first password-based MAC MAC (CMAC). 在其他实施例中,使用另一适当的技术计算第一MAC。 In other embodiments, the first MAC is calculated using another suitable technique.

[0029] 在172处,打印机控制器116向可更换打印机部件108的存储器设备109发出包括第一MAC的读或写请求。 [0029] In 172, the printer controller 116 to the replaceable printer component 108, memory device 109 comprises issuing a first read or write request to the MAC. 在174处,响应于该读或写请求,存储器设备109的逻辑电路111使用其会话密钥和密码算法为接收到的读或写请求计算第二MAC。 In 174, in response to the read or write request, logic circuit 111 of memory device 109 using its session key and cryptographic algorithm to receive a read or write request to the calculated second MAC. 在176处,存储器设备109的逻辑电路111将接收到的第一MAC与计算的第二MAC比较。 Comparing the first MAC 176, the logic circuit 111 of memory device 109 with the received second MAC calculation.

[0030] 在178处,如果第一MAC与第二MAC匹配,则存储器设备109的会话密钥与打印系统104的会话密钥匹配。 [0030] In 178, if the first MAC matches the second MAC, then the session key matches the session key with the printing system 104 of memory device 109. 因此,存储器设备109和打印机控制器116之间的通信被认证。 Thus, the communication between memory device 109 and printer controller 116 is authenticated. 在180处,存储器设备109的逻辑电路111执行所请求的读或写操作。 180, logic circuit 109 of memory device 111 performs the requested read or write operation. 使用所建立的会话密钥对每个另外的读或写请求重复方法170,直至通信会话结束。 Using the established session key request method 170 is repeated for each additional read or write, until the end of the communication session. 通信会话可以由打印机控制器116结束或者因打印系统104和/或可更换打印机部件108的掉电而结束。 The communication session can be ended by the printer controller 116 or by printing system 104 and / or replaceable printer component 108 is down ends.

[0031] 在178处,如果第一MAC不与第二MAC匹配,则存储器设备109的会话密钥不与打印系统104的会话密钥匹配。 [0031] In 178, if the first MAC does not match the second MAC, then the memory device 109 is not a session key with the printing system 104 matches the session key. 因此,存储器设备109和打印机控制器116之间的通信未被认证。 Thus, the communication between memory device 109 and printer controller 116 is not authenticated. 在182处,存储器设备109的逻辑电路111放弃或拒绝所请求的读或写操作。 In 182, a memory device 109, the logic circuit 111 to abandon or reject the requested read or write operation. 在184处,存储器设备109的逻辑电路111将其会话密钥标记为无效,使得其不能被再次使用。 In 184, the logic circuit 111 of memory device 109 marks its session key as invalid such that it can not be used again.

[0032] 实施例提供了其中可以安装可更换打印机部件的打印系统。 [0032] Embodiments provide a printing system which may be mounted in a replaceable printer component. 打印系统实施例包括存储一个或多个秘密密钥的存储器设备。 Printing system embodiments include a memory device storing one or more secret keys. 可更换打印机部件实施例包括存储与打印系统实施例的存储器设备中存储的该一个或多个秘密密钥相关的一个或多个秘密密钥的存储器设备。 Replaceable printer component embodiments include a memory device, the memory storage apparatus of the embodiment of the printing system stored in or associated with a plurality of secret keys or a plurality of secret keys. 打印系统实施例中和可更换打印机部件实施例中存储的一个或多个秘密密钥用于对打印系统实施例和可更换打印机部件实施例之间的通信进行认证。 One or more embodiments and secret keys may be stored in replaceable printer component embodiment of the printing system according to embodiment example of the printing system for implementing the replaceable printer component and the communication between the embodiments for authentication.

[0033] 尽管这里图示和描述了具体实施例,但是本领域的普通技术人员将认识到,在不偏离本发明的范围的前提下,多种替选和/或等效实现方案可以替代所示出和描述的具体实施例。 [0033] Although illustrated and described herein specific embodiments, those of ordinary skill in the art will recognize that, without departing from the scope of the present invention, a variety of alternate and / or equivalent implementations may be substituted for the illustrated and described specific embodiments. 本申请旨在涵盖这里讨论的具体实施例的任何适配或变化。 This application is intended to cover any adaptations or variations of the specific embodiments discussed herein encompassed. 因此,本发明意欲仅由权利要求及其等同物限定。 Accordingly, the present invention is intended to be limited only by the claims and their equivalents.

Claims (20)

  1. 1.一种用于容纳可更换打印机部件的打印系统,所述打印系统包括:打印机控制器;第一存储器设备,其存储第一秘密;以及通信链路,其被配置为在所述可更换打印机部件被安装在所述打印系统中时将所述可更换打印机部件通信地链接到所述打印机控制器,其中所述打印系统的打印机控制器被编程以基于第二秘密从所述可更换打印机部件请求部件会话密钥标识符。 1. A method for receiving a replaceable printer component the printing system, the printing system comprising: a printer controller; a first memory device storing a first secret; and a communication link that is configured to be replaceable in the when the replaceable printer component is installed in the printing system printer component communicatively linked to said printer controller, wherein said printing system is programmed to the printer controller based on a second secret from the replaceable printer members request a session key identifier member.
  2. 2.如权利要求1所述的打印系统,其中所述第一秘密从所述第二秘密导出。 2. The printing system according to claim 1, wherein said first secret derived from the second secret.
  3. 3.如权利要求1所述的打印系统,其中,所述打印系统被编程以从所述可更换打印机部件接收所述请求的部件会话密钥标识符。 The printing system according to claim 1, wherein the printing system is programmed to receive the request to the replaceable printer component member from the session-key identifier.
  4. 4.如权利要求3所述的打印系统,其中所述打印系统被编程以基于所述第一秘密和从所述可更换打印机部件接收到的所述会话密钥标识符生成系统会话密钥和系统会话密钥标识符。 4. The printing system according to claim 3, wherein the system is programmed to print based on the first secret and the replaceable printer component from said received session-key identifier and a session key generation system system session key identifier.
  5. 5.如权利要求4所述的打印系统,其中所述打印系统被编程以使用所述系统会话密钥来认证所述打印系统和所述可更换打印机部件之间的通信。 5. The printing system according to claim 4, wherein said printing system is programmed to use the system to authenticate the session key of the printing system and the printer communication between the replaceable member.
  6. 6.根据权利要求1所述的打印系统,其中所述打印机控制器被编程以接收所述请求的部件会话密钥标识符,将所述部件会话密钥标识符提供给所述第一存储器设备,并请求所述第一存储器设备以产生系统会话密钥和系统会话密钥标识符。 6. The printing system according to claim 1, wherein said printer controller is programmed to receive the request identifier to the session key member, the key member session identifier to the first memory device and requesting the first memory device to generate a session key and a system identifier system session key.
  7. 7.如权利要求6所述的打印系统,其中所述系统会话密钥是基于所述第一秘密和从所述可更换打印机部件接收到的所述会话密钥标识符。 7. The printing system according to claim 6, wherein the system is based on the session key and a first secret received from the replaceable printer component to the session-key identifier.
  8. 8.如权利要求7所述的打印系统,其中所述第一存储器设备被编程以提供所述系统会话密钥给所述打印机控制器。 8. The printing system according to claim 7, wherein said first memory device is programmed to provide the session key to the printer system controller.
  9. 9.如权利要求8所述的打印系统,其中所述打印机控制器被编程以使用所述系统会话密钥来认证所述打印系统和所述可更换打印机部件之间的通信。 9. The printing system according to claim 8, wherein the printer controller is programmed to use the system to authenticate the session key of the printing system and the printer communication between the replaceable member.
  10. 10.如权利要求9所述的打印系统,其中所述打印机控制器被编程以使用加密算法和所述系统会话密钥来计算第一消息认证码(MAC),所述第一消息认证码(MAC)用于对所述可更换打印机部件的读或写请求。 10. The printing system of claim 9, said first message authentication code claim, wherein said printer controller is programmed to use an encryption algorithm and the session key system calculates a first message authentication code (the MAC), ( MAC) for the replaceable printer component is a read or write request.
  11. 11.如权利要求10所述的打印系统,其中所述打印机控制器被编程以向所述可更换打印机部件发出所述读或写请求,所述读或写请求包括所述第一MAC。 11. The printing system according to claim 10, wherein said printer controller is programmed to request to the replaceable printer component issuing the read or write request, read or write the first comprising the MAC.
  12. 12.如权利要求11所述的打印系统,其中所述可更换打印机部件被编程以使用所述加密算法和所述部件会话密钥来计算第二MAC,其中,所述可更换打印机部件将只在所述第一和第二的MAC匹配时执行所述读或写请求。 12. The printing system of claim 11, wherein the replaceable printer component is programmed to use the encryption algorithm and the session key to calculate a second member the MAC, wherein the replaceable printer component only performing the read or write request when the first and second MAC matches.
  13. 13.如权利要求12所述的打印系统,其中如果所述第一和第二 MAC不匹配,所述可更换打印机部件将所述部件会话密钥标记为无效。 13. The printing system of claim 12, wherein if the first and second MAC does not match, the replaceable printer component to the session key member is marked invalid.
  14. 14.一种对用于容纳可更换打印机部件的打印系统进行操作的方法,所述打印系统包括存储第一秘密的第一存储器设备,该方法包括:利用所述打印系统的打印机控制器,从所述可更换打印机部件请求对应于基于与所述可更换打印机部件相关联的第二秘密的部件会话密钥的部件会话密钥标识符,其中使用配置为在所述可更换打印机部件被安装在所述打印系统中时将所述可更换打印机部件通信地链接到所述打印机控制器的通信链路执行所述请求。 14. A method for a printing system for receiving replaceable printer component is operated, the printing system comprises a first memory storing a first secret device, the method comprising: using the printing system, the printer controller, from the replaceable printer component based on the request corresponds to a session-key identifier and the printer section member associated with the second replaceable member secret session key, which is configured to use the replaceable printer component is installed in when the printing system, the replaceable printer component is communicatively linked to the communication link to the printer controller execute the request.
  15. 15.权利要求14的方法,其中所述第一秘密从所述第二秘密导出。 15. The method of claim 14, wherein said first secret derived from the second secret.
  16. 16.如权利要求14所述的方法,还包括:利用所述打印系统,从所述可更换打印机部件接收所述请求的部件会话密钥标识符。 16. The method according to claim 14, further comprising: using the printing system, the replaceable printer component from said receiving means requests a session-key identifier.
  17. 17.如权利要求16所述的方法,还包括:利用所述打印系统,基于所述第一秘密和从所述可更换打印机部件接收到的所述会话密钥标识符生成系统会话密钥和系统会话密钥标识符。 17. The method according to claim 16, further comprising: using the printing system, based on the first secret key and said session identifier generating system receives a session key from the replaceable printer component and to system session key identifier.
  18. 18.如权利要求17所述的方法,还包括,利用所述打印系统,使用所述系统会话密钥来认证所述打印系统和所述可更换打印机部件之间的通信。 18. The method according to claim 17, further comprising using the print system, the systems using the session key to authenticate the printing system and the communication between the printer replaceable member.
  19. 19.如权利要求14所述的方法,进一步包括,利用所述打印机控制器:接收所述请求的部件会话密钥标识符,将所述部件会话密钥标识符提供给所述第一存储器设备,并请求所述第一存储器设备产生系统会话密钥和系统会话密钥标识符;其中所述系统会话密钥是基于所述第一秘密和从所述可更换打印机部件接收到的所述会话密钥标识符。 19. The method according to claim 14, further comprising, using the printer controller: receiving a session key member identifier of the request, the session key member identifier to the first memory device and requesting the first memory device and system for generating a session key a session key identifier system; wherein said system is based on the session key and the first secret session from the replaceable printer component received key identifier.
  20. 20.如权利要求19所述的方法,进一步包括:利用所述第一存储器设备,提供所述系统会话密钥给所述打印机控制器;和利用所述打印机控制器,使用所述系统会话密钥来认证所述打印系统和所述可更换打印机部件之间的通信。 20. The method according to claim 19, further comprising: using the first memory device, the system provides the session key to the printer controller; and using the printer controller, the system using the secret session key to authenticate the printing system and the printer communication between the replaceable member.
CN 201410293730 2008-05-29 2008-05-29 Providing authentication in communication with the replaceable printer component CN104077537B (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
CN 201410293730 CN104077537B (en) 2008-05-29 2008-05-29 Providing authentication in communication with the replaceable printer component
CN 200880130572 CN102112977A (en) 2008-05-29 2008-05-29 Providing authenticated communications to replaceable printer component
CN200880130572.42008.05.29 2008-05-29

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 201410293730 CN104077537B (en) 2008-05-29 2008-05-29 Providing authentication in communication with the replaceable printer component

Publications (2)

Publication Number Publication Date
CN104077537A true true CN104077537A (en) 2014-10-01
CN104077537B CN104077537B (en) 2018-04-27

Family

ID=51598787

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 201410293730 CN104077537B (en) 2008-05-29 2008-05-29 Providing authentication in communication with the replaceable printer component

Country Status (1)

Country Link
CN (1) CN104077537B (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1996837A (en) * 2006-01-05 2007-07-11 恩益禧电子股份有限公司 Microcontroller and authentication method between the controllers
US7246098B1 (en) * 1997-07-15 2007-07-17 Silverbrook Research Pty Ltd Consumable authentication protocol and system
US7327846B1 (en) * 2000-09-05 2008-02-05 Chung Nan Chang Secure cryptographic key exchange and verifiable digital signature

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7246098B1 (en) * 1997-07-15 2007-07-17 Silverbrook Research Pty Ltd Consumable authentication protocol and system
US7327846B1 (en) * 2000-09-05 2008-02-05 Chung Nan Chang Secure cryptographic key exchange and verifiable digital signature
CN1996837A (en) * 2006-01-05 2007-07-11 恩益禧电子股份有限公司 Microcontroller and authentication method between the controllers

Also Published As

Publication number Publication date Type
CN104077537B (en) 2018-04-27 grant

Similar Documents

Publication Publication Date Title
US7424398B2 (en) Boot validation system and method
US7382487B2 (en) Printing system and method restricting functions of printers, usable by each user
US20060133604A1 (en) System and method for securing data from a remote input device
US20030204731A1 (en) Method and apparatus to enhance the security of data
US20070160204A1 (en) Microcontroller and authentication method between the controllers
US20090217054A1 (en) Secure software and hardware association technique
US20060087678A1 (en) Printing device
US20050149755A1 (en) Printer and print system
US20090222664A1 (en) Unit using os and image forming apparatus using the same
US20060192993A1 (en) Image forming apparatus, replacement part, method and apparatus for recycling replacement part, and method of controlling image forming apparatus
US20130191897A1 (en) Field Provisioning a Device to a Secure Enclave
CN101782739A (en) Imaging box chip as well as read-write method, imaging box and imaging device thereof
US20140164725A1 (en) System on chip to perform a secure boot, an image forming apparatus using the same, and method thereof
US20080267402A1 (en) Image Forming Apparatus, Image Forming Method, Information Processing Apparatus and Information Processing Method
JP2005202364A (en) Electronic device, image forming apparatus, electronic device control method, program, record medium, image forming apparatus control system and member to record digital certification in
JP2011243017A (en) Information processor, authentication system, authentication method, authentication program and recording medium
US20060029400A1 (en) Electronic apparatus, expendable item recycling apparatus, expendable item, electronic apparatus control method, expendable item recycling method, program, and computer-readable medium
CN102173233A (en) Consumable verification system and method
US20110093702A1 (en) Image forming apparatus
US20140164753A1 (en) System on chip for performing secure boot, image forming apparatus using the same, and method thereof
CN1348130A (en) Secreting and/or discriminating documents remote-controlling printing
US20130155459A1 (en) Crum chip, image forming apparratus, and communication method of crum chip
WO2005091551A1 (en) Authentication between device and portable storage
JP2005251156A (en) Electronic device, image formation device, control method of electronic device, program, recording medium, image formation device management system, member with digital certificate stored, digital certificate acquisition method and digital certificate setting system
US20140025944A1 (en) Secure Storage and Signature

Legal Events

Date Code Title Description
C06 Publication
C10 Entry into substantive examination
GR01