System and method for securely connecting network devices
First Claim
1. An internet of things (IoT) hub comprising:
- programming logic to generate an IoT device public/private key pair for an IoT device and to store the IoT device private key on an identification device of the IoT device, the IoT device public/private key pair usable for secure communication with the IoT device;
a secure hardware storage to store the IoT device public key and an IoT hub private key of an IoT hub public/private key pair; and
a network interface to communicatively couple the IoT hub to an IoT service over a wide area network (WAN), the IoT hub securely forwarding the IoT device public key and the IoT hub public key to the IoT service over the network interface;
wherein the IoT hub receives a first network packet from the IoT service, the first network packet comprising an IoT hub packet encrypted with the IoT hub public key;
wherein the IoT hub decrypts the first network packet using the IoT hub private key to generate an IoT device packet, the IoT device packet comprising a command/data encrypted with the IoT device public key; and
wherein the IoT hub forwards the IoT device packet to the IoT device, the IoT device packet to be decrypted by the IoT device using the IoT device private key.
0 Assignments
0 Petitions
Accused Products
Abstract
A platform, apparatus and method for Internet of Things Implementations. For example, one embodiment of a system comprises: an Internet of Things (IoT) hub comprising a network interface to couple the IoT hub to an IoT service over a wide area network (WAN), and programming logic to program an identification device with one or more encryption keys usable to establish encrypted communication with an IoT device; and at least one IoT device interfacing with the identification device following programming of the identification device by the IoT hub; wherein once the identification device is programmed and interfaced with the IoT device, the IoT device uses the one or more keys to establish a secure communication channel with the IoT hub and/or the IoT service.
179 Citations
10 Claims
-
1. An internet of things (IoT) hub comprising:
-
programming logic to generate an IoT device public/private key pair for an IoT device and to store the IoT device private key on an identification device of the IoT device, the IoT device public/private key pair usable for secure communication with the IoT device; a secure hardware storage to store the IoT device public key and an IoT hub private key of an IoT hub public/private key pair; and a network interface to communicatively couple the IoT hub to an IoT service over a wide area network (WAN), the IoT hub securely forwarding the IoT device public key and the IoT hub public key to the IoT service over the network interface; wherein the IoT hub receives a first network packet from the IoT service, the first network packet comprising an IoT hub packet encrypted with the IoT hub public key; wherein the IoT hub decrypts the first network packet using the IoT hub private key to generate an IoT device packet, the IoT device packet comprising a command/data encrypted with the IoT device public key; and wherein the IoT hub forwards the IoT device packet to the IoT device, the IoT device packet to be decrypted by the IoT device using the IoT device private key. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method implemented in an IoT hub, the method comprising:
-
generating an IoT device public/private key pair usable for secure communication with an IoT device; generating an IoT hub public/private key pair usable for secure communication with the IoT hub; storing the IoT device private key on an identification device of the IoT device; storing the IoT device public key and the IoT hub private key in a secure hardware storage; forwarding the IoT device public key and the IoT hub public key to an IoT service over a wide area network (WAN); receiving a first network packet from the IoT service, the first network packet comprising an IoT hub packet encrypted with the IoT hub public key; decrypting the first network packet using the IoT hub private key to generate an IoT device packet, the IoT device packet comprising a command/data encrypted with the IoT device public key; and forwarding the IoT device packet to the IoT device, the IoT device packet to be decrypted by the IoT device using the IoT device private key. - View Dependent Claims (7, 8, 9, 10)
-
Specification