Obviousness

Obviousness Analysis of US Patent 11973864 under 35 U.S.C. § 103

This analysis of US Patent 11973864 (hereinafter "the '864 patent") considers whether the claimed invention would have been obvious to a person having ordinary skill in the art (PHOSITA) as of the priority date, September 10, 2013, based on the prior art implicitly acknowledged within the patent's own description and the "Prior art keywords" provided. Given that specific prior art documents are not explicitly listed in the provided "Prior art section" of the Google Patents page, this analysis relies on the problems and needs outlined in the '864 patent's background and detailed description, which implicitly define the state of the art at the time of invention.

The '864 patent addresses several known challenges in Machine-to-Machine (M2M) communications, particularly concerning low-power modules, secure data exchange, and interoperability between diverse cryptographic and network protocol requirements. The core inventive concept across independent claims 1, 9, and 17 revolves around an intermediary server that facilitates secure communication between M2M modules and application servers, acting as a translator for cryptographic algorithms and communication protocols, and supporting dynamic key management.

A PHOSITA in the field of M2M communications and network security as of September 2013 would possess knowledge of:

• Public Key Infrastructure (PKI) for secure communications, including the use of public/private key pairs and certificates (e.g., X.509, RSA, ECC). [cite: H04L9/006, H04L9/08, H04L9/30, H04L9/3263]
• M2M/Internet of Things (IoT) applications, characterized by numerous connected devices sending small, periodic messages. [cite: H04W4/70]
• The importance of power efficiency and battery life for wireless, often remote, M2M modules, leading to the use of sleep modes. [cite: H04W52/02, H04W52/0209]
• Different network protocols like User Datagram Protocol (UDP) for efficiency and Transmission Control Protocol (TCP) for reliability, and their respective trade-offs and suitable applications. [cite: H04L67/01, H04L67/04]
• Network firewalls and Network Address Translation (NAT) that manage network connections and can impose timeouts, leading to connection drops for inactive sessions. [cite: H04L63/02]
• The general concept of network gateways, proxies, or intermediary servers used to bridge disparate network segments or protocols for interoperability. [cite: H04L12/2854]
• Principles of secure key management, including key generation, distribution, and the benefits of periodic key updates. [cite: H04L9/08]

The '864 patent's claims would likely be considered obvious due to the combination of these known elements to solve clearly identified problems, which the patent itself describes as "needs" in the prior art.

Obviousness of Independent Claims 1, 9, and 17

The independent claims describe a system, method, and server for secure M2M communications involving a module, a server, and an application server using PKI, with the server acting as an intermediary to handle protocol and cryptographic algorithm translation and key management.

Combinations of Prior Art Elements and Motivation:

1. Intermediate Server for Protocol Translation (e.g., UDP from Module to TCP to Application Server):

   • Prior Art Elements: The prior art included M2M applications with low-power modules that frequently enter sleep states and send small, periodic messages [cite: H04W4/70, H04W52/02]. It was also known that UDP is more energy-efficient for low-power devices than TCP, while application servers (e.g., web servers) typically prefer TCP for its reliability [cite: H04L67/01, H04L67/04]. Furthermore, the problem of firewalls tearing down network or transport layer connections during long sleep periods, necessitating costly re-negotiation of secure tunnels, was a recognized challenge [cite: H04L63/02]. Network gateways or proxies capable of translating between different protocols were a known architectural pattern in network design.
   • Motivation for Combination: A PHOSITA would be strongly motivated to combine these elements to address the conflicting requirements of low-power M2M modules and robust application servers. The explicit need was to avoid the energy and latency overhead of re-establishing secure connections after module sleep due to firewall timeouts, while ensuring reliable data delivery to the application. An intermediary server, acting as a protocol gateway, would be an obvious solution. It could terminate the lightweight UDP connections from the modules, maintain more persistent TCP connections with the application servers, and handle the necessary protocol translation. The patent itself identifies this problem: "the application on a web server may prefer to use a transport layer security (TLS) protocol with transmission control protocol (TCP) datagrams, while for energy efficiency and to conserve battery life, an M2M module may prefer to use user datagram protocol (UDP)." This highlights the known need for such a solution.

2. Intermediary Server for Cryptographic Algorithm Translation (e.g., ECC from Module to RSA to Application Server) with PKI:

   • Prior Art Elements: PKI was a well-established standard for securing network communications, utilizing asymmetric cryptographic algorithms like RSA and ECC [cite: H04L9/006, H04L9/30, H04L9/3066, H04L9/3263]. RSA was widely deployed, while ECC was recognized for its efficiency on resource-constrained devices, offering comparable security with smaller key sizes and less computational demand [cite: H04L9/3066]. The general problem of interoperability between systems using different cryptographic standards was known.
   • Motivation for Combination: A PHOSITA would be motivated to combine PKI principles with an intermediary server to bridge the gap between different cryptographic algorithm preferences. The objective was to enable secure communication between M2M modules (which might use ECC for efficiency) and application servers (which might use RSA for broader compatibility or legacy reasons), without requiring all entities to support all algorithms. The server's role in decrypting data from one algorithm and re-encrypting it with another would ensure secure segment-by-segment communication. The '864 patent explicitly states, "it would be desirable for a module to support elliptic key cryptography (ECC), while the application may support RSA-based cryptography, and therefore a need exists in the art for a server to securely translate between the two cryptographic methods, thereby allowing the M2M module to communicate with the application." This identifies the exact problem and the motivation for the claimed solution.

3. Dynamic Key Management and Parameter Exchange for Enhanced Security:

   • Prior Art Elements: Cryptographic key generation, distribution, and management were known security practices. The need for updating keys periodically to enhance long-term security and adapt to new standards was a fundamental principle of cryptography [cite: H04L9/08, H04L63/06]. The concept of defining cryptographic parameters, such as elliptic curve equations in ECC, was also known.
   • Motivation for Combination: A PHOSITA would be motivated to incorporate dynamic key management into M2M systems to address the recognized need for flexibility and enhanced security over the potentially long operational lifetime of modules. Static keys are a known vulnerability. Therefore, enabling modules to derive new key pairs post-deployment and allowing the server to securely provision parameters for unique or non-standard elliptic curves would be a logical, though advanced, step to further harden the communication, especially in large-scale M2M deployments. The patent notes: "A need exists in the art for the utilization of new public and private keys to support the wide variety of algorithms, even after a module has been installed." and "security can be further increased with the server and module using an elliptic curve that can be unique, non-standard, or defined between them and security therefore increased." This indicates a known desire in the field to improve key agility and customization.

Conclusion on Obviousness:
The '864 patent's independent claims present a system, method, and server that combine well-known networking and cryptographic principles to solve a collection of recognized problems in M2M communication. The patent itself articulates these problems and the "needs" in the art, providing explicit motivation for a PHOSITA to combine existing techniques. The use of an intermediary server to perform cryptographic and protocol translation, coupled with PKI-based security and dynamic key management, represents a predictable aggregation of known elements to achieve expected results in the context of M2M's unique challenges (low power, intermittent connectivity, diverse endpoints). Therefore, a PHOSITA would have been motivated to combine these known elements to arrive at the claimed invention, rendering it obvious under 35 U.S.C. § 103.