SK4042004A3 - System and device for secure mobile communication - Google Patents

Abstract

The invention concerns a system and a device for secure mobile communication. The principle lies in the fact that it uses mobile communication devices (6, 8), e.g. mobile phones or smartphones, in the environment of a mobile communication network to establish a highly secure voice and data communication link between communicating parties. The system consists of an audio module (1, 11), a security device (4, 9), secure data storage (5, 10), a mobile communication device (6, 8), the operator's network (7), and a server system (14). The principle of this invention is setting up a direct secure communication link between two mobile communication devices (6, 8) or terminals, and key management between them. Another principle is development of a highly modular system that can be to the most universal extent possible adjusted to security and infrastructure requirements and whose relevant modules can be easily upgraded remotely. The solution also concerns development of a highly secure, compact and ergonomic security device (4, 9).

Description

The invention relates to a system and a device for secure communication in the field of mobile telephony and encryption of communication via mobile communication devices. More specifically, it concerns direct channel encryption between two mobile communication devices. Further, the invention includes a special security device that provides security and support functions for such communication.

BACKGROUND OF THE INVENTION

Today, the use of mobile phones is almost inherent and ubiquitous. Essentially unknown in the 1980s, the phenomenon is nowadays the most common way of communicating at greater distances. The most important advantage of this technology is, of course, its ability to be wireless, independent of fixed connections and fully mobile, limited only by signal coverage.

However, this method of communication also has disadvantages, in particular a much simpler possibility of intercepting a call from the received signal from the environment compared to conventional wired connections. While there are generally rules to discourage people other than those legally involved in communications, these attempts are increasingly and relatively easily feasible with improved and cheaper technology. Moreover, the problem is complicated by the fact that such intruders are almost undetected and therefore remain anonymous.

Another problem of security and confidence in mobile communication is the non-encryption of data on the part of the mobile communication service provider, i. mobile carrier. The communication is transmitted through the mobile operator's infrastructure in an open form, that is, it is accessible to persons moving near the infrastructure. These include, in particular, system administrators, technicians, maintenance staff, service providers and similar organizations, together with their technical resources connected to the mobile operator's infrastructure. All of them are able to perform interception of mobile communication under specific conditions.

A serious problem with deploying security tools for mobile communication devices is their diversity. This does not only concern the mobile phone manufacturers they offer

- often incompatible devices with their own interfaces, but also mobile communication systems themselves. The best known communication systems include GSM, CDMA (IS95), AMPS (Advanced Mobile Phone Service), Iridium, Tetra (TErrestrial Trunked RAdio). Each of these wireless devices has different user interfaces, different operating systems, and different communication interfaces. This situation makes it very difficult for potential encryption device manufacturers to develop devices that are only compatible for some mobile devices. In addition, if a customer wants to switch to another type of mobile phone, he is forced to purchase a new encryption device for that phone. In practice, however, there is another problem, since mobile phones have a relatively very fast period of replacing older types with new ones, and the development of an encryption device for a new type of phone also requires a certain amount of time. Of course, the replacement of the older type of telephone calls for its disappearance from the market, which brings quite a high risk factor for the manufacturer and the customer. A related problem is also the certification of such equipment, for example for government institutions or special customers. Each such module requires separate certification, and this process is often costly and time consuming. Certification of several types of equipment is therefore inefficient and financially less profitable.

Several solutions have been developed to address these problems, particularly in the last decade, some of which are publicly available.

Encryption solutions using standard digital or analog communication lines are developed. Such a solution is described in U.S. Pat. 6,266,418. which characterizes a device that implements coding, encryption and a key economy. The device is physically connected to a standard analogue or ISDN telephone set. However, this device is not usable for mobile phones. A similar device is described in U.S. Pat. No. 6,044,158, which is again a separate hardware encryption device for transmitting secure data over standard telephone lines. The device monitors communication and if it detects a security tone, the data is routed to the encryption and decryption module to establish a secure connection.

A solution implementing encryption using a special device connectable to standard telephone lines or to mobile lines is developed, for example, in U.S. Pat. 5,410,559. It is a standalone hardware device that transmits both data and voice. Its versatility is limited, and its connection to a communication system requires special adjustments to be made to connect or integrate this device into a mobile phone for cordless portable phones.

These techniques have led to improved techniques for a plurality of devices that are connectable to a mobile phone via an electrical connector, disclosed in U.S. Pat. 5,787,180. While the theoretical solution allows for the fixed connection of such an encryption device to most types of mobile phones, it requires hardware modification of the mobile phone itself and manual interference with its integrity for each type of phone, potentially causing damage to the mobile phone. Intervention requires qualified service. A similar solution is described in U.S. Patent Application Ser. 2004/0029562, where such a device is connected to a mobile phone and acts as a proxy server. Marginally, U.S. Pat. 5,568,553 which implements scrambling for mobile devices. The device works on the principles above, just using scrambling instead of encryption.

Certain technologies use mobile phones primarily as a transmitter and receiver of a radio signal, most of the activities being carried out by a connected external device such as that described in US patent no. 6,782,102. The special device is equipped with a separate display with its own keyboard, completely realizes audio processing and voice encryption. Again, the disadvantage of this solution is the need for a fixed connection of such a device to a mobile phone, where it is necessary to create a separate hardware interface module for each mobile phone line together with communication software. A similar solution is also described in the patent EP 0818937. In this case again, it is a separate encryption device connectable by fixed connection to a supported mobile phone, which serves for this device as a communication means towards another such device.

Certain technologies also utilize special networked server equipment for secure communication that provides system operation and other support functions. Such a system is described in U.S. Pat. 6,275,573. The system can be operated indirectly via a server in addition to direct interconnection of the encryption channel between two telephone stations. This makes it possible, in addition to the possible monitoring of the network by the superior authority, to make it more difficult for a third party to identify the calling partner pairs. The structure and features of the mobile phone itself, respectively. the authors do not deal with the additional encryption device.

The solution described in U.S. Pat. No. 6,137,885 discloses a method of interconnecting two mobile terminals that would encrypted to communicate by radio directly without an intermediary or for a maximum of 1 hop within a base station. In this way, it would be possible to use encryption so that the data is not unprotected in the operator's network. The solution uses existing algorithms to standardize Transmission Encryption with all its shortcomings, while real deployment would require major changes in the mobile and, in addition, the operator would have to make changes at its network endpoints. The key economy solution is left to the standard system.

Techniques similar or related to the above techniques are e.g. disclosed in WO003063409. It is a system for ensuring the transfer of secure data in the mobile network. It is mainly concerned with establishing a confidential connection in a specific way. Another solution is described in patent WO03061188, which describes a system based on an IPSEC-based Virtual Private Network, which is also capable of operating in a mobile environment. The solution is oriented in particular to creating a safe channel in a heterogeneous environment. By the specific device described in US patent application no. 2004/0180694 is a mobile phone with an encryption and decryption module capable of encrypting and decrypting documents stored in extended memory. It does not address voice encryption or online data transfer.

The technological support background of the solutions outlined above provides a key economy. For such systems, a specific key economy must be used that implements the requirements specific to mobile communications such as portability, tamper resistance and the like. The task of this key economy is to deliver encryption keys for specific algorithms, and their recovery is at a fixed frequency. If the same device is used for several persons or purposes, these keys are authorized and used only by an authorized person.

One of the solutions is eg. described in EP 1376924. The system is aimed at direct channel encryption between two mobile phones and a key economy between them using removable smart cards. The solution provides the possibility of replacing this card while using it in other systems. Its drawback is that it does not describe the practical interconnection of this security element to the communication system, nor does it describe a possible upgrade of the key economy. It does not deal with the exchange of encrypted information itself.

A separate problem in secure communication is the storage of sensitive private information, especially secret encryption keys, private data, certificates, and the like. Storage in a special device has the potential to provide a higher level of security for storing sensitive information, as well as providing authorized access to it compared to storing data on a mobile phone. Today's mobile phone storage solutions, depending on the user interface supplied by the phone manufacturer, offered very limited options for creating such a system. Essentially, the only standardized element suitable for such storage is a subscriber identity module (SIM) card. The real possibility of creating a truly secure storage of sensitive data is the connection or insertion of a dedicated device or module. Such repositories are realized either as separate storage devices or as combined devices with encryption devices. Some devices also use a smart card as a secure storage device, allowing such systems to be more flexible towards user requirements

-5a compatible systems, if any.

In this group of methods of realizing a secure repository, for example, the solution is described in US patent application no. 2004/0059921. In the framework of the said security method, there is also described a network means that performs the function of the key store as well as the possibilities of realization of general as well as security functions. These procedures are designed for LAN and WAN IP environments with unspecified infrastructure using Voice over IP ”. This solution may also include a security card. The patent application does not solve the connection of such a device to mobile phones, it can only use them in specific cases through gateways as part of the IP transmission path to the second communication device on the LAN or WAN type IP network.

These techniques have led to improved techniques for a group of devices that can connect wirelessly to a mobile phone. A group of leading manufacturers of information and telecommunications technologies has agreed to establish and extend the appropriate standard for wireless connection of laptops, wireless headphones and microphones and similar devices to mobile phones. This technology is designed to connect devices over short distances and is called Bluetooth. Bluetooth can establish a wireless connection between your mobile phone and your device for a few meters. It is possible in this way to create a simple network of devices such as a computer, printer, handheld, mobile phone, keyboard and mouse and the like. Bluetooth communication itself has a relatively high level of security, both authentication and encryption of the communication channel.

In this group of methods of realizing a secure repository, for example, the solution is described in US patent application no. 2002/0114467. Characterized security device uses Bluetooth wireless interface to communicate with mobile phone. The device performs data encryption and decryption and implements electronic signature as general standardized methods. It also has a store of encryption keys. It also describes the possibility of connecting a smart card, where external connection in the form of online banking terminals or cash register terminals is preferred. The advantage of this solution is that it does not require modification of the mobile devices to perform encryption and electronic signature functions, and the connection of the device to the mobile phone is relatively simple. However, the solution does not address the fundamental problem of its possible implementation, such as the necessary modifications in mobile phones, so that the functions realized by the device can actually be used. Moreover, the solution does not affect voice communication via mobile phones, but is focused only on data transmission with the character of text messages. Its use is directed to the field of online banking, banking services, cash registers and vending machines.

Techniques similar or related to those mentioned above and aimed at authentication

-6napr. described in U.S. Pat. 2003/0095044 describing a device which serves to authenticate and possibly block the mobile electronic system. The solution prefers Bluetooth for communication. A comparable solution is described in U.S. Pat. 6,766,160, which discloses a system where an authenticator for mobile terminals is described, where their connection is via Bluetooth. The authenticator may be the mobile phone itself. Another solution described in US Patent 6,745,326 implements authentication by a service provider over a secure channel over a telecommunications network.

Solutions that marginally interfere in the field of secure communication are solved eg. in U.S. Pat. 6,711,262 - control of applications stored in the SIM module, in US patent application no. 2004/0030906 - SMS authentication using an IMEI mobile phone as a encryption key, U.S. Pat. 6,728,553 - integration of a SIM card with a security smart card and in U.S. Patent Application Ser. 2004/0205248 - encrypting and decrypting messages on mobile devices using temporary key storage. Transaction and payment systems utilizing security mechanisms in mobile communications are described in US Patent No. 5,201,549. No. 6,237,093, U.S. Pat. No. 6,169,890, U.S. Pat. 2003/0008637 and in WO 2004/079676.

Although the concepts of voice and data encryption for mobile phones are generally known, many shortcomings and problems remain unresolved at present. The most important unresolved problem is that the concept of such an encryption system is not known to be truly simple and with minimal extra energy spent on specific modifications applicable to a wide range of mobile devices, without requiring interference with the integrity of the mobile phone, maintains a high degree of security of communication and storage of sensitive data while ensuring satisfactory connection quality.

SUMMARY OF THE INVENTION

The system built on the basis of the present invention overcomes and eliminates the problems, weaknesses, drawbacks and drawbacks of the state of the art, in particular a substantial part of those described above.

SUMMARY OF THE INVENTION The present invention provides a secure mobile communication system utilizing mobile communication devices in a mobile communications network environment to provide highly secure voice and data communication between communicating parties, consisting of audio modules primarily for converting an analog signal from a microphone to a digital

A signal, for further processing of the thus obtained signal, its compression and packetization for other modules, for packet decompression, for converting the thus decompressed digital signal into an analog signal for a loudspeaker;

a security device, in particular for encrypting and decrypting data, for security and support functions, and for generating encryption keys, including an authentication part;

a secure data storage primarily used for storing user or system data; a mobile communication device, in particular for communication between two communicating parties via the operator's network, for managing communication between the other modules of the system;

an operator network primarily used to transmit data between two mobile communication devices or a mobile communication device and a server system;

a server system serving in particular for end-user registration services and guaranteeing the authenticity and validity of certificates, together with long-term authentication or other encryption keys, as an intermediary in the communication of two or more mobile communication devices.

According to further features of the invention, the audio module comprises:

- a separate device connectable to a mobile communication device or security device.

- a sub-module within a mobile communication device as its sub-module.

- from the sub-module within the safety device.

According to further embodiments of the invention, the secure data storage module consists of a separate device, a smart card, a bank card or a SIM card connectable to a security device or a mobile communication device, respectively. from a sub-module within a security device or from a sub-module within a mobile communication device.

According to a further embodiment of the invention, the server system module consists of a single device or a combination of devices respectively. from a sub-module within a mobile communication device.

The security device includes a memory in which the security and control program loaded into the memory is located.

This program is modified and its local and remote upgrade is performed.

According to another embodiment, the mobile communication device comprises a memory in which the security and control program loaded into the memory is located.

The solution also relates to a security device implemented in a system, which consists of an interface with a user providing, in particular, voice input, data and authentication data from the user, output of voice and data to the user, and information about the status of the device;

consisting of a voice processing module, a user interface module, and a user authentication module;

a security core of a device providing, in particular, services for encrypting and decrypting data and voice obtained from an interface with a user or a communication part, services for verifying authentication data from an interface with a user, implementing an electronic signature; consisting of a security module, a control module and a local secure data storage;

a communication part providing in particular services for transmitting voice, data, authentication data from the security core of the device to a mobile communication device or a device connectable to a computer network; consisting of a wired transmission module or a wireless transmission module;

a power supply unit providing, in particular, power source security services for the safety device; consisting of a power control module and a battery.

The security device comprises a wireless interface for the connection between the security device and the mobile communication device, in particular of the Bluetooth, WiFi or IrDA type, alternatively in specific cases also a wired wired connection, in particular USB, mini USB and IEEE 1394.

It is an object of the present invention to utilize mobile communication devices, such as cell phones or smartphones, in a mobile communications network environment to establish highly secure voice and data communication between communicating parties.

It is a further object of the present invention to provide a highly modular system in order to adapt the system to safety and infrastructure requirements as widely as possible. The system can work with a wide range of supported mobile communication devices from different manufacturers without the need to spend additional relevant energy dedicated to adapting to different types of mobile communication devices.

Another object of the present invention is to provide a simple possibility to remotely upgrade relevant system modules. This is an essential feature with regard to the requirement of system versatility as well as the newly introduced types of mobile communication devices.

Another object of the present invention is to provide roaming between those mobile communications network operators that support the transmission of data usable for encrypted transmission

-9 voice communication. The use of standard connection procedures alone is essential for data transmission alone, since specific procedures only possible between specific mobile communication devices or within a particular mobile communications network do not guarantee functionality and roaming with other operators or with other mobile communication devices. For specific cases such functionality can be realized, but parallel compatibility with the above-described roaming preservation solution is essential.

Another object of the present invention is to provide a small, ergonomic, highly safe yet affordable security device. This device connects to a mobile communication device using a standardized wireless, alternatively wired connection. The device is capable of performing security and support functions for the mobile communication device, key management functions and secure data storage, respectively keys.

Another object of the present invention is to use a memory card, a SIM card or a smart card as a secure data storage and, depending on the properties of the card, also as a cipher, authenticator or implementer of support functions. The card is replaceable and is located in the security device or in the mobile communication device, if the device allows it.

Another object of the present invention is to create trust among end users of mobile communication devices. The server system provides end users mainly registration services and guarantee of authenticity and validity of certificates together with long-term authentication or other encryption keys. In the case of a system where the server system is not applied, full guaranteed trust between end users is also ensured by a direct alternative channel, which may be, for example, visual (display), audio, via data channel and the like.

Another object of the present invention is to use a server system as an intermediary in the communication of two or more mobile communication devices. Such a connection may be established because of the impossibility of directly connecting the two mobile communication devices, for the secure conference connection of several mobile communication devices, for the safety and supervision of the communication or for ensuring the anonymity of the connection of the two communicating mobile communication devices. To maintain high security, the server system ensures only the interconnection of mobile communication devices at the data transfer level, the creation of a direct secure channel is performed by the mobile communication devices directly to each other.

Another object of the present invention is to provide high-quality real-time encryption, regardless of which system module performs it. Communication delays or interruptions must be negligible given the overall delay in the system.

Another object of the present invention is to provide a direct secure channel between two

- 10 mobile communication devices or terminals and the key economy between them. If there are other elements of the communication network on the communication path between two mobile communication devices, such as routers, firewalls, gateways between different types of networks, interconnecting elements and the like, the integrity of the direct communication channel is not impaired.

Another object of the present invention is to provide a secure data connection between two mobile communication devices. Upon successful synchronization of the two mobile communication devices or their modem modules, an encryption communication key is obtained by means of algorithms for establishing or negotiating a common communication key to secure the communication data channel. Algorithms for creating or negotiating a common key are, for example, of a hierarchical type or using Diffie-Hellman, RSA, Station-To-Station algorithms. These communication keys are re-generated for each call, if allowed by the system and are automatically destroyed when the call ends, unless it is necessary to keep these keys for a specific reason.

Another object of the present invention is to provide a relatively high quality audio codec for voice compression and processing as compared to conventional systems, such as GSM. The transmission capacity of the output compressed stream is sufficiently low due to the network capability. Voice processing also includes features that ensure high quality and eliminate unwanted side effects such as echo and feedback suppression, unwanted noise removal, communication channel shutdowns, and the like.

The solutions described in this patent utilize an operator network to transmit a communication signal between two mobile communication devices. For example, the operator's network may be GSM, CDMA (IS95), AMPS (Advanced Mobile Phone Service), Iridium, Tetra (TErrestrial Trunked RAdio), or WiFi. In extreme or specific cases, devices may also use other means of communication, such as a direct channel via Bluetooth, USB, or 1P network.

The essence of the invention lies mainly in the versatility of its modules. The most important and critical in this respect are the modules of the mobile communication device and the security device. In terms of versatility and broad compatibility, the architecture and software features of both modules are essential. In the case of a mobile communication device, it is essential in this module to create software that is capable of operating on various mobile communication devices within the operating system, for example Symbian OS, Palm OS, Windows Mobile Pocket PC, Windows Mobile Smartphone or Linux. The software fully reduces the differences in access to mobile communication device resources as well as fully unifies the user interface.

- 11 In the case of a security device, the internal structure of the device is largely autonomous; the universality of the device in the system is based on the use of a wireless interface on a mobile communication device, e.g. Bluetooth, WiFi or IrDA. Other fixed wired connections, e.g. to recharge the battery, USB, mini USB, or IEEE 1394 for other purposes or as alternative connection methods. The communication interface of the safety device meets the defined standards for the respective interface and thus its connection to other devices is transparent as opposed to fixed connectors, which are numerous on the mobile communication market and change over time. These features ensure that the security device can also be used as a secure data store, key management manager, or implementer of support functions for other devices. Its function and use is not limited to those mentioned above, but the security device is usable as a security, transaction or authentication module not only for a mobile communication device, but also for a parking terminal, cashier terminal, bank terminal, static computer, portable computer, handheld computer, vending machine, input control device and the like.

Some mobile communication devices are unable to provide all the functions necessary to operate a system built on the basis of the present invention. The computing capacity and access to mobile communication device resources is usually set by the manufacturer and limited by the applicable operating system. These include real-time encryption and decryption, real-time voice compression and decompression, audio module I / O, full duplex communication, user authentication, and the like. For mobile communication devices, the security device then provides full support for such functions. At the same time, the software of the mobile communication device, which cannot fully provide these functions, enables at least a limited function of secure voice transmission, for example using less demanding methods of secure voice transmission, both in terms of computing requirements and real-time communication. In this case, the methods of communication in the form of half duplex communication, simplex communication, voice messages and the like are applicable.

BRIEF DESCRIPTION OF THE DRAWINGS

The invention will be explained in more detail in the following description with reference to the accompanying drawings, in which:

In FIG. 1 shows a system built on the basis of the present invention.

In FIG. 2 is a block diagram of a mobile communication device.

FIG. 3 is a schematic diagram of the system modules where the individual modules are implemented as a stand-alone device.

In FIG. 4 is a schematic diagram of system modules where the audio module and the mobile communication device constitute one integral device and the security device is a separate device.

In FIG. 5 shows a wiring diagram of the system modules, wherein the mobile communication device and the security device constitute one integral device, the audio module being a separate device.

In FIG. 6 is a schematic diagram of system modules where the mobile communication device, the security device, and the audio module are one integral device.

In FIG. 7 shows a wiring diagram of the system modules, wherein the audio module and the security device constitute one integral device, the mobile communication device being a separate device.

In FIG. 8 shows a wiring diagram of system modules where the communicating parties do not communicate with each other directly through the operator network, but through the server system.

In FIG. 9 is a schematic diagram of system modules where user registration to the system is accomplished using a server system.

In FIG. 10 shows a wiring diagram of system modules where user registration to the system is performed in the security device itself.

In FIG. 11 shows the establishment of a connection between the mobile communication device A and the mobile communication device B.

DETAILED DESCRIPTION OF THE INVENTION

Example 1

Fig. 1 shows a system built on the basis of the present invention, which comprises the following modules: audio module 1, 11, security device 4, 9, secure data storage 5, 10, mobile communication device 6, 8, operator network 7 and server system 14. The individual modules of the system communicate with each other either wirelessly or wired. Examples of wireless transmission are generally known wireless interfaces such as 802.11b, 802.11g, Bluetooth, or through an operator's network. Examples of wired transmission are commonly known serial interfaces such as USB, RS232,12C, SPI, or commonly known parallel interfaces such as Centronics, ISA, PCI, PCMCIA.

The audio module 1.11 is used to convert the analog signal from the microphone 2.12 to the digital signal, to further process the signal thus obtained, to compress it and packet it for other modules,

13, but in particular for the security device 4, 9 and the mobile communication device 6, 8. The audio module i, H further serves to decompress packets obtained in particular from the security device 4, 9 and the mobile communication device 6, 8 and to convert the digital signal thus decompressed. to an analog signal for the speaker 3, 13.

The security device 4, 9 serves for encrypting and decrypting data by some of the well-known algorithms obtained, in particular, from the audio module 1, H. and the mobile communication device 6, 8. It further serves to generate encryption keys by generally known algorithms. The security device 4, 9 may further comprise an authentication portion comprising any or all of the following components: a smart card reader, a wireless smart card reader, a fingerprint reader, a keyboard, or another device verifying the identity of the user of the security device 4, 9.

The secure data storage 5, 10 serves for storing user data, wherein the data is encrypted by some of the generally known algorithms, in particular by the security device 4.9, before being written to the secure data storage 5, 10.

The mobile communication device 6, 8 serves for communication between two communicating parties via the operator's network 7. It also serves to control the communication between the other modules of the system, in particular the security device 4, 9 and the audio module 7, 11. The mobile communication device 6, 8 can be such as a mobile phone or smartphone.

The operator network 7 is used to transmit data between two mobile communication devices 6, 8, or a mobile communication device 6, 8, and a server system 14. For example, the operator network 7 may be GSM, CDMA, AMPS, Iridium, Tetra or WiFi.

In particular, the server system 14 serves end-user registration services and guarantees the authenticity and validity of certificates along with long-term authentication or other encryption keys. Further, the server system M may serve as an intermediary in the communication of two or more mobile communication devices 6, 8. The server system H communicates with the mobile communication devices via the operator's network 7.

Example 2

Device 25 (FIG. 2) is used to encrypt and decrypt voice and data obtained from the user interface 34, encrypt and decrypt the voice and data of a mobile device or device connectable to a computer network 28, further authenticate user 29 and access the mobile device or a device connectable to a computer network 28. The device 25 comprises the following parts: an interface with a user 31, a security core 32 of the device, a communication portion 33, and a power portion 34.

User Interface 31 is used to input voice, data, and authentication data from User 29,

- 14 Voice and data output for user 29 and its status information 25. Interface 3.1. The user interface is comprised of a voice processing module 18, a user interface module 19, and a user authentication module 20.

The voice processing module 18 is used to convert the analog signal from the microphone 30 to a digital signal, further process the signal thus obtained, compress it and packet it for other parts of the device, in particular the control module 17 and the security module 15. decompressing the packets obtained, in particular, from the control module 17 and the security module 15, and converting the thus decompressed digital signal into an analog signal for the loudspeaker 30.

The user interface module 19 comprises an interface for inputting information from a user 29, either a button or a keyboard, or both a button and a keyboard, and an interface for information from a device 25 to a user 29, namely information lights or a display or information lights and a display.

The user authentication module 20 includes some or all of the following components, depending on the configuration and requirements of the device 25: a smart card reader, a wireless smart card reader, a fingerprint reader, a keyboard, or another device authenticating the user 29 of the device 25.

The device security core 32 serves to encrypt and decrypt the data and voice obtained from the interface with the user 31 or the communication portion 33; authenticating authentication data from the user interface 3L The security core of the device 32 is comprised of a secure data storage 16, a security module 15, and a control module 17.

The secure data storage 16 serves to store the data of the user 29, wherein the data is encrypted by some of the commonly known algorithms, in particular the security module 15 or the control module 17, before being written to the secure data storage 16.

In particular, the security module najmä5 contains the following modules:

- an encryption module for encrypting and decrypting data by some of the well-known algorithms, in particular from the control module 17, the voice processing module 18 and for secure data storage 16

a module for generating encryption keys by generally known algorithms

- Encryption key storage module

- a module required to authenticate the user 29 using the user authentication module 20.

In particular, the control module 17 provides data exchange and processing between the following modules: voice processing module 18, user interface module 19, user authentication module 20, secure data storage 16, security module 15, wired transmission module 22, and wireless transmission module 21; further ensures module management; and

In particular, a voice processing module 18, a user interface module 19, a user authentication module 20, a secure data storage y, a security module 15, a wired transmission module 22, and a wireless transmission module 21.

The communication portion 33 is used to transmit voice, data, authentication data from the device security core 32 to a mobile device, or a device connectable to a computer network 28 using a wired transmission module 22, or a wireless transmission module 21.

The wired transmission module 22 serves as a communication interface with the physical connection of the device 25 to external mobile devices and devices connectable to a computer network 28. An example of a wired transmission module 22 is generally known serial interfaces such as USB, RS232,12C, SPI, or commonly known parallel interfaces such as Centronics, ISA, PCI, PCMCIA.

The wireless module 21 serves as a wireless communication interface of the device 25 with external mobile devices and devices connectable to a computer network 28. An example of a wireless module 21 is generally known wireless interfaces such as 802.11b, 802.11g, Bluetooth.

The power portion 34 provides a power source for the device 25. In the case of connecting an external DC power supply 26 or a power supply from a bus 27 signal, it is possible for the battery 24 to be recharged. The power section 34 comprises a power control module 23 and a battery 24.

The power control module 23 serves to control and control the power supply of the device 25 and charge the battery 24. The power supply for the device may be an external DC power supply 26, a bus power supply 27, or a battery 24.

The battery 24 serves as a backup power source for the device 25.

Example 3

One embodiment of the present invention is shown in FIG. 3. The reference numerals below refer to Fig. 1. It is a system in which the audio module 1, H, the security device 4, 9 and the mobile communication device 6, 8 are implemented as three separate devices. The voice communication between the communicating parties is transferred from the analog signal to the digital signal and vice versa in the audio module I, Π. Furthermore, the audio module i, 11 compresses and compresses the digital signal and its subsequent packetization. The audio module 1, 11 is connected to the security device 4, V either wirelessly or wired. The security device 4, 9 serves to encrypt and decrypt the digital signal, and further to generate encryption keys. The security device 4, 9 also comprises a secure data storage 5, 10, where the user and system data are stored. The security device 4, 9 is connected to the mobile

- 16 communication equipment 6, 8, either wireless or wired. The mobile communication device 6, 8 serves to establish a connection through the operator's network 7 to the other communicating party and to send and receive an encrypted digital signal.

Example 4

Another embodiment of the invention may be such that the audio module 1, 11a and the mobile communication device 6, 8 form one integral device, the security device 4, 9 being a separate device which is connected to the audio module 7, 11 and the mobile communication device 6, 8. either wireless or wired (Fig. 4). In the audio module 1, 11, the analog signal is converted into a digital signal and vice versa, the compression and decompression of the digital signal and its subsequent packetization is performed. The digital signal from the audio module 1, 11 is sent, respectively. received from the security device 4, 9. The security device 4, 9 serves to encrypt and decrypt the digital signal, and further to generate encryption keys. The security device 4, 9 also comprises a secure data storage 5, 10 where the user and system data are stored. The security device 4, 9 either receives or sends the encrypted digital signal to the mobile communication device 6, 8. The mobile communication device 6, 8 serves to establish a connection through the operator's network to the other communicating party and to send and receive the encrypted digital signal.

Example 5

According to a further preferred embodiment of the invention, the mobile communication device 6, 8 and the security device 4, 9 are one inseparable device, the audio module L11 is a separate device which is connected to the mobile communication device 6, 8 and the security device 4, 9 either wireless or wired method (Fig. 5). In the audio module 1, H., the analog signal is converted to a digital signal and vice versa, the digital signal is compressed and decompressed and subsequently packetized. Digital signal from audio module 1 received from the security device 4, 9. The security device 4, 9 serves to encrypt and decrypt the digital signal, and further to generate encryption keys. The security device 4, 9 also comprises a secure data storage 5, 10, where the user and system data are stored. The security device 4, 9 either receives or sends the encrypted digital signal to the mobile communication device 6, 8. The mobile communication device 6, 8 serves to establish a connection through the operator's network 7 to the other communicating party and to send and receive the encrypted digital signal.

Example 6

Another preferred embodiment of the invention is shown in FIG. 6. The mobile communication device 6, 8, the security device 4, 9 and the audio module 1, is one integral device.

- The 17V audio module i, H converts the analog signal into a digital signal and vice versa, compresses and decompresses the digital signal and then packets it. The digital signal from the audio module 1, 1_1 is sent or received. received from the security device 4, 9. The security device 4, 9 serves to encrypt and decrypt the digital signal, and further to generate encryption keys. The security device 4, 9 also comprises a secure data storage 5, 10 where the user and system data are stored. The security device 4, 9 either receives or sends the encrypted digital signal to the mobile communication device 6, 8. The mobile communication device 6, 8 serves to establish a connection through the operator's network 7 to the other communicating party and to send and receive the encrypted digital signal.

Example 7

According to a further preferred embodiment of the invention, the audio module 1, JRI and the security device 4, 9 are one integral device, the mobile communication device 6, 8 is a separate device which is connected to the audio module 1, Jri and the security device 4, 9 either wireless or wired method (Fig. 7). In the audio module i, Π. the analog signal is converted to a digital signal and vice versa, compression and decompression of the digital signal and its subsequent packetization is performed. Digital signal from audio module i, i! is being sent or sent. received from the security device 4, 9. The security device 4, 9 serves to encrypt and decrypt the digital signal, and further to generate encryption keys. The security device 4, 9 also comprises a secure data storage 5, 10 where the user and system data are stored. The security device 4, 9 either receives or sends the encrypted digital signal to the mobile communication device 6, 8. The mobile communication device 6, 8 serves to establish a connection through the operator's network 7 to the other communicating party and to send and receive the encrypted digital signal.

Example 8

Another preferred embodiment of the invention is shown in FIG. In this embodiment, the communicating parties do not communicate with each other directly through the operator's network 7, as in Example 3 to 7, but through a server system 14. The server system 14 serves as an intermediary in the communication of two or more mobile communication devices 6, 8. the system 14 communicates with the mobile communication devices 6, 8 via the operator's network 7. In this way, the server system 7 may provide interconnection of two or more mutually incompatible networks and guarantee partial anonymity of the communicating parties. Such communication using the server system 7 can be applied in all examples 3 to 7.

Example 9

Another preferred embodiment of the invention is shown in FIG. 9. In this embodiment

-18 the user registration to the system is accomplished by the server system 7. The server system 7 serves for end-user registration services and guarantees the authenticity and validity of the certificates along with long-term authentication or other encryption keys. In the security device 4, 9, a key pair is generated from which the public key with user data is sent to the mobile communication device 6, 8. The mobile communication device 6, 8 sends this data to the server system 14, where a certificate signed by the server is generated. The certificate is then sent to the mobile communication device 6, 8 and stored in a secure storage 5, 10). Such registration to the system using the server system 14 can be used in all examples 3 to 8.

Example 10

According to a further preferred embodiment of the invention, the registration of the user in the system is performed in the security device 4, 9 itself (Fig. 10). In the security device 4, 9, a key pair is generated, from which a user certificate is generated from the public key and the user data. This certificate is then stored in a secure repository 5, 10. Such registration to the system can be used in all examples 3 to 8.

Example 11

Another embodiment of the invention is a separate physically separate secure data storage 5, 10 realized by a smart card, a memory card, or other storage medium wired via a connector, or wirelessly e.g. RFID interface. User and system data or certificates and contacts of other users of the system are stored on a secure data storage 5, K). Such a secure data storage configuration 5, 10 can be used in all examples 1 to 10

10th

Example 12

Another preferred embodiment of the invention is shown in FIG. 11. The establishment of a connection between the mobile communication device A 6 and the mobile communication device B 8 is subject to the exchange of keys which takes place between the security device A 4 and the security device B 9. The key exchange is based on some of the well known algorithms such as e.g. Diffie-Hellman, Station-to-Station protocol, Shamir three-way protocol, Comset, EKE etc. One implementation is the Station-to-Station protocol, where, after generating a random number x using a noise generator in security device A 4, the public Diffie-Hellman key is calculated k = g ^x mod pa and then sent to security device B 9. The security device B 9 generates a random number y using a noise generator and creates a common key k = g ^xy mod p. Next, the public keys will be signed, the B 9 security device certificate, the Diffie-Hellman system parameters (p, g) and

- 19 encryption using a generated key, encrypting the above-mentioned signature and certificate with the user's B 8 mobile communication equipment data, in particular the telephone number to be verified later - Ek (Certe, S _B (Cert _B , (p, g), g ^y) , g ^x )). The public key of module B k = g ^y mod p is sent together with Ek (Certe, S _B (Cert _B , (p, g), g ^y , g ^x )) to security device A 4, where a common key k = g ^xy mod p. After decrypting and verifying the signature, the parameters of the certificate, e.g. the mobile communication device telephone number B8. Thus, the user of the mobile communication device A6 compares the displayed parameters with the parameters of the user with whom he initially established communication, e.g. verifies the phone number of the user called with the displayed phone number. Subsequently, the security device A 4 ensures signing of public keys, module A certificate, Diffie-Hellman system parameters (p, g) and subsequent encryption using the created key, encrypting the above-mentioned signature and the certificate with data of the user of the mobile communication device A 6 - Ek ( hell, SA (CERT, (p, g), g \ g ^y)). Communication module A sends Ek (CertA, SA (CertA, (p, g), g ^x , g ^y )) and the mobile communication device B 8 decrypts, verifies the signature, displays the parameters from the security device A 4 certificate. A and user B have the option to verify the displayed hash, which is calculated by the respective security device 4, 9. By reading each other, they can verify it, making the key change resistant to man in the middle attack. After this, respectively. by another commonly known key exchange algorithm, performed by the key exchange, it is possible to establish a secure encrypted communication channel between the mobile communication devices 6, 8 by one of the generally known symmetric encryption algorithms, such as e.g. AES with a key length of 256 bits. Such coupling can be used in all Examples 1 to 9.

Claims (25)

PATENT CLAIMS System for secure mobile communication using mobile communication devices in a mobile communication network environment for creating highly secure voice and data communication between communicating parties, characterized in that it consists of audio modules (1, 11) serving mainly to convert analog signal from microphone (2, 12) to a digital signal, to further process the thus obtained signal, to compress it and to packet it for other modules, to decompress the packets, to convert the thus decompressed digital signal into an analog signal for the loudspeaker (3, 13); a security device (4, 9), in particular for encrypting and decrypting data, for security and support functions, and for generating encryption keys, including an authentication part; a secure data storage device (5, 10), in particular for storing user or system data; a mobile communication device (6, 8), in particular for communication between two communicating parties via the operator's network (7), for controlling communication between the other modules of the system; an operator's network (7), in particular for transmitting data between two mobile communication devices (6, 8) or a mobile communication device (6, 8) and a server system (14); a server system (14) serving in particular for end-user registration services and guaranteeing the authenticity and validity of certificates together with long-term authentication or other encryption keys, as an intermediary in the communication of two or more mobile communication devices (6, 8). System according to claim 1, characterized in that the audio module (1, 11) consists of a separate device connectable to a mobile communication device (6, 8) or a security device (4,9). System according to claim 1, characterized in that the audio module (1, 11) consists of a sub-module within the mobile communication device (6, 8). System according to claim 1, characterized in that the audio module (1, 11) consists of a sub-module within the safety device (4, 9). System according to claim 1, characterized in that the secure data storage module (5, 10) consists of a stand-alone device, a smart card, a bank card or a SIM card connectable to a security device (4, 9) or a mobile communication device. -21 (6.8). System according to claim 1, characterized in that the secure data storage module (5, 10) consists of a sub-module within the security device (4, 9). System according to claim 1, characterized in that the secure data storage module (5, 10) consists of a sub-module within the mobile communication device (6, 8). System according to claim 1, characterized in that the module of the security device (4, 9) consists of a separate device connectable to the mobile communication device (6, 8). System according to claim 1, characterized in that the security device module (4,9) consists of a sub-module within the mobile communication device (6, 8). System according to claim 1, characterized in that the server system module (14) consists of a single device or a combination of devices. System according to claim 1, characterized in that the server system module (14) consists of a sub-module within the mobile communication device (6, 8). System according to any one of claims 2 to 11, characterized in that the security device (4, 9) comprises a memory in which the security and control program loaded into the memory is located. 13. The system of claim 12, wherein the program is modified and performed locally and remotely. System according to any one of claims 2 to 11, characterized in that the mobile communication device (6, 8) comprises a memory in which the security and control program loaded into the memory is located. System according to claim 14, characterized in that the program is modified and its local and remote upgrade is performed. A system as claimed in any one of claims 2 to 11, in which voice encryption provides real-time encryption regardless of which device the security module is implemented in. System according to any one of claims 2 to 11, characterized in that it comprises a virtual direct secure channel. System according to claim 17, characterized in that it comprises an encryption communication key obtained through a data channel between the communicating parties, in particular by creating it, creating it from a certificate, by exchanging it by an agreed protocol. System according to claim 17, characterized in that it comprises an encryption communication key obtained through another channel between the communicating parties, namely -22 in particular by courier, direct exchange when connecting equipment over short distances, mediating trust by a third party and the server system (14). 20. The system of claim 17 including an alternative channel. System according to claim 20, characterized in that as an alternative channel, in particular, a visual channel (display), an audio and a voice channel, a replacement data channel are used. System according to claims 10 or 11, characterized in that the server system (14) comprises the registration of authorized users to which it issues and confirms the authorizations or certificates necessary to accept these users with the system. System according to claim 10 or 11, characterized in that it comprises a server system (14) which is used as an intermediary in the communication of two or more mobile communication devices. Security device (4,9) implemented in the system according to claim 8, characterized in that it consists of an interface with a user providing, in particular, services for inputting voice, data and authentication data from the user, output of voice and data for the user and information thereof. the condition of the equipment; consisting of a voice processing module, a user interface module, and a user authentication module; a security core of a device providing, in particular, services for encrypting and decrypting data and voice obtained from an interface with a user or a communication part, services for verifying authentication data from an interface with a user, implementing an electronic signature; consisting of a security module, a control module, and a local secure data storage; a communication part providing, in particular, services for the transmission of voice, data, authentication data from the security core of the device to a mobile communication device (6, 8) or a device connectable to a computer network; consisting of a wired transmission module or a wireless transmission module; a power supply part providing, in particular, power supply services for the safety device (4, 9); consisting of a power control module and a battery. Security device (4,9) implemented in the system according to claim 8, characterized in that it comprises a wireless interface for connection between the security device (4, 9) and the mobile communication device (6, 8), in particular of Bluetooth, WiFi or IrDA, alternatively in specific cases also fixed wired connection, especially USB, mini USB and IEEE 1394.