Managing device ownership and commissioning in public-key encrypted wireless networks
First Claim
Patent Images
1. A mobile commissioning device (CD) for commissioning of a wireless lighting network, the CD comprising:
- a sensor configured for acquiring an unencrypted public key (NWN-PUB-KEY), using a first wireless communications channel, from a lighting network node (NWN) to be integrated in the wireless lighting network;
a memory configured for storing the NWN-PUB-KEY, wherein the memory is at least one of an internal memory or external memory of the CD, wherein the memory is also configured for storing an ownership transfer record (OTR) acquired from the NWN, and wherein the OTR is at least one of a certificate, a signed data record, or a nonce;
a communications interface configured for transferring cryptographically a provisional first public key (CD-PUB-KEY) of the CD to the NWN using a second wireless communications channel and the stored NWN-PUB-KEY, wherein the first wireless communications channel does not operate on the wireless lighting network, and wherein the second wireless communications channel operates on the wireless lighting network; and
the communications interface also configured for instructing the NWN on the second wireless communications channel to activate a lighting means, an operating device for the lighting means, or a sensor of the NWN, then transferring the NWN-PUB-KEY and the OTR to a trust center (TC) after instructing the NWN to activate the lighting means, an operating device for the lighting means, or a sensor of the NWN.
1 Assignment
0 Petitions
Accused Products
Abstract
A mobile commissioning device for assisting in the commissioning of wireless public-key encrypted networks, the device being provided with:
- means for reading the public key from a network node to be integrated in the wireless network, the channel for reading the public key being physically different to the wireless network channel for which the node is to be commissioned,
- means for at least temporarily storing the read public key in the device,
- means for transferring a public key of the commissioning device to the network node to be commissioned, the channel for transferring the public key preferably being the wireless channel for which the node is to be commissioned, and
- means for transferring the read public key to a trust center.
-
Citations
18 Claims
-
1. A mobile commissioning device (CD) for commissioning of a wireless lighting network, the CD comprising:
-
a sensor configured for acquiring an unencrypted public key (NWN-PUB-KEY), using a first wireless communications channel, from a lighting network node (NWN) to be integrated in the wireless lighting network; a memory configured for storing the NWN-PUB-KEY, wherein the memory is at least one of an internal memory or external memory of the CD, wherein the memory is also configured for storing an ownership transfer record (OTR) acquired from the NWN, and wherein the OTR is at least one of a certificate, a signed data record, or a nonce; a communications interface configured for transferring cryptographically a provisional first public key (CD-PUB-KEY) of the CD to the NWN using a second wireless communications channel and the stored NWN-PUB-KEY, wherein the first wireless communications channel does not operate on the wireless lighting network, and wherein the second wireless communications channel operates on the wireless lighting network; and the communications interface also configured for instructing the NWN on the second wireless communications channel to activate a lighting means, an operating device for the lighting means, or a sensor of the NWN, then transferring the NWN-PUB-KEY and the OTR to a trust center (TC) after instructing the NWN to activate the lighting means, an operating device for the lighting means, or a sensor of the NWN. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A lighting network node (NWN) for use in a wireless lighting network, the NWN comprising:
-
a communication element for providing an unencrypted public key (NWN-PUB-KEY) of the NWN on a first wireless communications channel, wherein the first wireless communications channel does not operate on the wireless lighting network; a communication interface configured for receiving a provisional first public key (CD-PUB-KEY) from a commissioning device (CD) using the NWN-PUB-KEY for a cryptographic key exchange over a second wireless communications channel, wherein the CD-PUB-KEY is encrypted with the NWN-PUB-KEY before the exchange, and the second wireless communications channel operates on the wireless lighting network; a memory configured for storing the CD-PUB-KEY transferred the NWN from the CD over the second wireless communications channel used for communication on the wireless lighting network for which the NWN is to be commissioned; and the communications interface also configured for receiving instructions to activate a lighting means, an operating device for the lighting means, or a sensor of the NWN, then receiving a permanent public key (TC-PUB-KEY) from a trust center (TC), where the memory is further configured for storing the TC-PUB-KEY after the NWN verifies an ownership transfer record (OTR), wherein the OTR is a certificate, signed data record, or a nonce. - View Dependent Claims (7, 8, 9, 10, 11, 12)
-
-
13. A method for commissioning nodes for a wireless lighting network performed by a commissioning device (CD), the method comprising:
-
acquiring an unencrypted public key (NWN-PUB-KEY) of a network node (NWN) over a first wireless channel, wherein the NWN is at least one of a lighting means, an operating device for the lighting means, an operating device for the lighting means, or a sensor; storing the NWN-PUB-KEY to a memory of the CD; transferring a provisional first public key (CD-PUB-KEY) to the NWN using a second wireless channel, wherein the second wireless channel operates on the wireless lighting network, and the first wireless channel does not operate on the wireless lighting network, wherein the CD encrypts the CD-PUB-KEY using the NWN-PUB-KEY before the transfer;
wherein the first wireless channel and the second wireless channel use different communication technologies; andinstructing the NWN on the second wireless channel to activate the lighting means, an operating device for the lighting means, or a sensor; transferring, after instructing the NWN, the NWN-PUB-KEY and an ownership transfer record (OTR) from the CD to a trust center (TC), wherein the OTR is one of a certificate, signed data record or a nonce. - View Dependent Claims (14, 15, 16, 17)
-
-
18. A trust center network management unit (TC) in a wireless lighting network, the TC comprising:
-
a communication interface, for communicating on the wireless lighting network configured to receive at least one public key (NWN-PUB-KEY) from a commissioning device (CD) of at least one network node (NWN) over a wireless channel of the wireless lighting network; and the communication interface further configured to transfer a permanent second public key (TC-PUB-KEY) to the at least one NWN on the wireless lighting network after a lighting means, an operating device for the lighting means, or a sensor of the NWN has been activated by the CD, wherein the TC-PUB-KEY is securely transferred with an ownership transfer record (OTR), and the OTR is one of a certificate, signed data record, and/or a nonce.
-
Specification