Method and system for encrypting network credentials using password provided by remote server to provisioning device
First Claim
1. A method for provisioning a smart home device with network credentials that enable the smart home device to access a secure wireless network, the method comprising:
- on a client device having one or more processors and memory storing one or more programs for execution by the one or more processors, the client device being located in proximity to the smart home device;
establishing a short range wireless link between the smart home device and the client device;
obtaining, at the client device, the network credentials for accessing the secure wireless network;
forwarding a device identifier of the smart home device from the smart home device to a remote server, wherein the remote server includes a database in which a secret is saved in association with the device identifier of the smart home device, and the secret is not known to the client device, and wherein the remote server is configured to identify the secret in the database and generate a password key based on the secret;
receiving from the remote server the password key;
encrypting at least a portion of the network credentials using the password key provided by the remote server, the remote server being remotely located from the client device and the smart home device; and
sending the encrypted network credentials from the client device to the smart home device over the short range wireless link, thereby allowing the smart home device to decrypt the encrypted network credentials based on the secret, access the secure wireless network using the network credentials and access the remote server via the secure wireless network.
1 Assignment
0 Petitions
Accused Products
Abstract
This application discloses a method of provisioning an electronic device. The electronic device proactively broadcasts an advertising packet that includes a device identifier associated with the electronic device. A server receives the device identifier via a client device, and issues a link approval response when it verifies that the electronic device associated with the device identifier is available for provisioning in association with a user account. In response to the link approval response, the electronic device and the client device establish communication via a short range wireless link. The client device encrypts at least a portion of network credentials of a secure wireless network using a password key generated at the server, and provides the encrypted network credentials to the electronic device. The electronic device decrypts the encrypted network credentials using a key generated at the electronic device, and accesses the secure wireless network using the decrypted network credentials.
-
Citations
20 Claims
-
1. A method for provisioning a smart home device with network credentials that enable the smart home device to access a secure wireless network, the method comprising:
on a client device having one or more processors and memory storing one or more programs for execution by the one or more processors, the client device being located in proximity to the smart home device; establishing a short range wireless link between the smart home device and the client device; obtaining, at the client device, the network credentials for accessing the secure wireless network; forwarding a device identifier of the smart home device from the smart home device to a remote server, wherein the remote server includes a database in which a secret is saved in association with the device identifier of the smart home device, and the secret is not known to the client device, and wherein the remote server is configured to identify the secret in the database and generate a password key based on the secret; receiving from the remote server the password key; encrypting at least a portion of the network credentials using the password key provided by the remote server, the remote server being remotely located from the client device and the smart home device; and sending the encrypted network credentials from the client device to the smart home device over the short range wireless link, thereby allowing the smart home device to decrypt the encrypted network credentials based on the secret, access the secure wireless network using the network credentials and access the remote server via the secure wireless network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
9. A computer system, wherein the computer system includes a client device, the computer system comprising:
-
one or more processors; and memory having instructions stored thereon, which when executed by the one or more processors cause the processors to perform operations, comprising; establishing a short range wireless link between a smart home device and the client device; obtaining, at the client device, the network credentials for accessing the secure wireless network; forwarding a device identifier of the smart home device from the smart home device to a remote server, wherein the remote server includes a database in which a secret is saved in association with the device identifier of the smart home device, and the secret is not known to the client device, and wherein the remote server is configured to identify the secret in the database and generate a password key based on the secret; receiving from the remote server the password key; encrypting at least a portion of the network credentials using the password key provided by the remote server, the remote server being remotely located from the client device and the smart home device; and sending the encrypted network credentials from the client device to the smart home device over the short range wireless link, thereby allowing the smart home device to decrypt the encrypted network credentials based on the secret, access the secure wireless network using the network credentials and access the remote server via the secure wireless network. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. A non-transitory computer-readable medium, having instructions stored thereon, which when executed by one or more processors cause the processors to perform operations comprising:
on a client device; establishing a short range wireless link between a smart home device and the client device; obtaining, at the client device, the network credentials for accessing the secure wireless network; forwarding a device identifier of the smart home device from the smart home device to a remote server, wherein the remote server includes a database in which a secret is saved in association with the device identifier of the smart home device, and the secret is not known to the client device, and wherein the remote server is configured to identify the secret in the database and generate a password key based on the secret; receiving from the remote server the password key; encrypting at least a portion of the network credentials using the password key provided by the remote server, the remote server being remotely located from the client device and the smart home device; and sending the encrypted network credentials from the client device to the smart home device over the short range wireless link, thereby allowing the smart home device to decrypt the encrypted network credentials based on the secret, access the secure wireless network using the network credentials and access the remote server via the secure wireless network. - View Dependent Claims (16, 17, 18, 19, 20)
Specification