Method for authenticating a networked endpoint using a physical (power) challenge
First Claim
1. A method comprisingdetermining whether to initiate a power challenge for an endpoint device;
- in response to a determination to initiate a power challenge, determining whether the endpoint device is connected to a trusted power interface;
in response to a determination that the endpoint device is connected to the trusted power interface,sending a power challenge to the endpoint device via a power interface, whereinthe endpoint device is connected to the power interface, andthe power challenge requires the endpoint device to modulate power used by endpoint device in a specified pattern, andsending an observation request to one or more of a plurality of sensor devices;
receiving first proof of work information from the power interface, whereinthe power interface determines the first proof of work information by observing a pattern of power that passes through the power interface during a period in which the endpoint device is performing the power challenge;
receiving second proof of work information from one or more of the plurality of sensor devices, whereinthe one or more of the plurality of the sensor devices determines the second proof of work information by observing a pattern emitted by the endpoint device during the period in which the endpoint device is performing the power challenge; and
determining whether the endpoint device adequately performed the power challenge by processing the first proof of work information and the second proof of work information.
1 Assignment
0 Petitions
Accused Products
Abstract
Various systems and methods for using power challenges to authenticate network devices are disclosed herein. For example, one method involves initiating a power challenge to authenticate an endpoint device, which involves, at least in part, requesting the endpoint device to perform a specific power signature; receiving data indicating whether the endpoint device performed the requested power signature within a given time interval, wherein the data can be received from, e.g., a power interface or other device capable of observing the endpoint device; processing the received data to determine if the endpoint device correctly performed the requested power signature; and if the endpoint correctly performed the power signature, authenticating the endpoint.
-
Citations
21 Claims
-
1. A method comprising
determining whether to initiate a power challenge for an endpoint device; -
in response to a determination to initiate a power challenge, determining whether the endpoint device is connected to a trusted power interface; in response to a determination that the endpoint device is connected to the trusted power interface, sending a power challenge to the endpoint device via a power interface, wherein the endpoint device is connected to the power interface, and the power challenge requires the endpoint device to modulate power used by endpoint device in a specified pattern, and sending an observation request to one or more of a plurality of sensor devices; receiving first proof of work information from the power interface, wherein the power interface determines the first proof of work information by observing a pattern of power that passes through the power interface during a period in which the endpoint device is performing the power challenge; receiving second proof of work information from one or more of the plurality of sensor devices, wherein the one or more of the plurality of the sensor devices determines the second proof of work information by observing a pattern emitted by the endpoint device during the period in which the endpoint device is performing the power challenge; and determining whether the endpoint device adequately performed the power challenge by processing the first proof of work information and the second proof of work information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system comprising:
-
a challenge initiating module, wherein the challenge initiating module is configured to determine whether to initiate a power challenge for an endpoint device, in response to a determination to initiate a power challenge, determine whether the endpoint device is connected to a trusted power interface, and in response to a determination that the endpoint device is connected to the trusted power interface, send a power challenge to the endpoint device via a power interface, wherein the endpoint device is connected to the power interface, and the power challenge requires the endpoint device to modulate power used by endpoint device in a specified pattern; a server interface module, wherein the server interface module is configured to send an observation request to one or more of a plurality of sensor devices, wherein the observation request is sent in response to the determination that the endpoint device is not connected to the trusted power interface, and the server interface module is further configured to receive first proof of work information from the power interface, wherein
the power interface determines the first proof of work information by observing a pattern of power that passes through the power interface during a period in which the endpoint device is performing the power challenge, andreceive second proof of work information from one or more of the plurality of sensor devices, wherein
the one or more of the plurality of the sensor devices determines the second proof of work information by observing a pattern emitted by the endpoint device during the period in which the endpoint device is performing the power challenge; anda challenge processing module, wherein the challenge processing module is configured to determine whether the endpoint device adequately performed the power challenge by processing the first proof of work information and the second proof of work information. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. An apparatus comprising:
-
a challenge initiating module, wherein the challenge initiating module is configured to determine whether to initiate a power challenge for an endpoint device, in response to a determination to initiate a power challenge, determine whether the endpoint device is connected to a trusted power interface, and in response to a determination that the endpoint device is connected to the trusted power interface, send a power challenge to the endpoint device via a power interface, wherein the endpoint device is connected to the power interface, and the power challenges requires the endpoint device to modulate power used by endpoint device in a specified pattern; a server interface module, wherein the server interface module is configured to send an observation request to one or more of a plurality of sensor devices, wherein the observation request is sent in response to the determination that the endpoint device is not connected to the trusted power interface, and the server interface module is further configured to receive first proof of work information from the power interface, wherein
the power interface determines the first proof of work information by observing a pattern of power that passes through the power interface during a period in which the endpoint device is performing the power challenge, andreceive second proof of work information from one or more of the plurality of sensor devices, wherein
the one or more of the plurality of the sensor devices determines the second proof of work information by observing a pattern emitted by the endpoint device during the period in which the endpoint device is performing the power challenge; anda challenge processing module, wherein the challenge processing module is configured to determine whether the endpoint device adequately performed the power challenge by processing the first proof of work information and the second proof of work information. - View Dependent Claims (17, 18, 19, 20, 21)
-
Specification