Secure tunnels for the internet of things
First Claim
Patent Images
1. A method for the maintenance and creation of security tunnels between IoT devices and IoT cloud servers, comprising the steps of:
- a. receiving one or more packets from one or more IoT devices;
b. decrypting the one or more packets with a first protocol;
c. re-encrypting the one or more packets with a second protocol;
d. sending the one or more packets by a cloud secure tunnel to one or more IoT cloud servers; and
e. receiving configuration information,wherein secure tunnels are formed between the one or more IoT devices and a smart router using a unique password for each IoT device, andwherein the router uses a look-up table to find the password for an IoT device based on its MAC address, and to attribute the communication to the IoT device.
2 Assignments
0 Petitions
Accused Products
Abstract
A system for the maintenance and creation of security tunnels between IoT devices and IoT cloud servers, comprising the steps of receiving one or more packets from one or more IoT devices in a smart router, routing the one or more packets to an agent within the router, the agent performing one or more services on the one or more packets, routing the one or more packets to a WAN port of the router, and sending the one or more packets by a cloud secure tunnel to one or more IoT cloud servers. The system may have secure tunnels that are formed between the IoT devices using a unique password for each IoT device. The additional step of selectively stopping communication between the IoT devices and the router, wherein when the communication of one IoT device to the router is compromised, the remaining tunnels with unique passwords are integral.
19 Citations
9 Claims
-
1. A method for the maintenance and creation of security tunnels between IoT devices and IoT cloud servers, comprising the steps of:
-
a. receiving one or more packets from one or more IoT devices; b. decrypting the one or more packets with a first protocol; c. re-encrypting the one or more packets with a second protocol; d. sending the one or more packets by a cloud secure tunnel to one or more IoT cloud servers; and e. receiving configuration information, wherein secure tunnels are formed between the one or more IoT devices and a smart router using a unique password for each IoT device, and wherein the router uses a look-up table to find the password for an IoT device based on its MAC address, and to attribute the communication to the IoT device. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A device for the maintenance and creation of security tunnels between IoT devices and IoT cloud servers, comprising:
-
a. a router comprising; i. an IoT port adapted to wirelessly connect to one or more IoT devices; ii. a WAN port adapted to connect to one or more IoT cloud servers; iii. a filter separating packets passing through the router from IoT cloud packets that have a destination address of at least one IoT cloud server; iv. an agent means for providing one or more services to be administered to a packet entering the agent; v. a direct line to the WAN port for the packets passing through; vi. a first active service path connected between the IoT filter and the agent; vii. a second active service path connected between the agent and the WAN filter, the paths adapted for transmission of the IoT cloud packets; viii. a WAN port connected to the WAN filter, adapted to forward the IoT packets; and b. a configuration agent securely connected to the router, adapted to securely provide configuration information from the IoT cloud to the router, wherein the one or more services comprise at least decrypting the packet with a first protocol and re-encrypting the packet with a second protocol. - View Dependent Claims (7)
-
-
8. A smart router having a processor for communication with one or more IoT devices, the processor comprising:
-
a. an IoT port adapted to wirelessly connect to the one or more IoT devices; b. a WAN port adapted to connect to one or more IoT cloud servers; c. an agent providing one or more services to be administered to a packet entering the agent; d. an IoT filter separating packets passing through the router from one of the one or more IoT devices that have a destination address of another of the one or more IoT devices; e. a first active service path connected between the IoT filter and the agent; f. a WAN filter separating packets passing through the router from IoT cloud packets that have a destination address of at least one IoT cloud server; g. a direct line to the WAN port for the packets passing through; and h. a secure connection to a configuration agent to provide configuration information to the agent of the smart router, wherein the one or more services to be administered by the agent comprises at least decrypting the packet and re-encrypting the packet. - View Dependent Claims (9)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeZitovault, Inc.
-
Original AssigneeCyberSight Inc.
-
InventorsMcElwee, Timothy, Ding, Gang, Keidar, Ron
-
Primary Examiner(s)Rahman, Mahfuzur
-
Application NumberUS15/254,368Publication NumberTime in Patent Office768 DaysField of SearchUS Class CurrentCPC Class CodesH04L 12/2854 Wide area networks, e.g. pu...H04L 12/2856 Access arrangements, e.g. I...H04L 12/2898 Subscriber equipments DSL m...H04L 12/4633 Interconnection of networks...H04L 2209/805 Lightweight hardware, e.g. ...H04L 41/046 comprising network manageme...H04L 43/028 by filteringH04L 43/14 using software, i.e. softwa...H04L 63/029 Firewall traversal, e.g. tu...H04L 63/0428 wherein the data content is...H04L 63/0464 using hop-by-hop encryption...H04L 63/0492 by using a location-limited...H04L 67/10 in which an application is ...H04L 67/12 specially adapted for propr...H04L 9/088 Usage controlling of secret...H04L 9/0894 Escrow, recovery or storing...H04L 9/16 the keys or algorithms bein...
