Please download the dossier by clicking on the dossier button x
×

Zero-touch provisioning of IOT devices with multi-factor authentication

  • US 10,447,683 B1
  • Filed: 11/17/2016
  • Issued: 10/15/2019
  • Est. Priority Date: 11/17/2016
  • Status: Active Grant
First Claim
Patent Images

1. A non-transitory computer-readable storage medium storing instructions executable to perform an operation for provisioning identifying credentials to an Internet of Things (loT) device, based on generic credentials provided by the loT device, the operation comprising:

  • receiving, from the loT device of a plurality of loT devices, a request to provision the loT device with identifying credentials for registering the loT device with a first loT service, wherein the first loT service is accessible via generic credentials, wherein the request is received by the first loT service, wherein the request specifies the generic credentials, which include a provisioning certificate stored in memory of each of the plurality of loT devices, wherein the request further specifies additional credentials for the loT device;

    upon validating the request, authenticating the request via multi-factor authentication based at least in part on the generic credentials and the additional credentials specified in the request;

    granting, to the loT device, access to a second loT service that is accessible via the identifying credentials, by generating the identifying credentials for the loT device based at least in part on the generic credentials and the additional credentials and by operation of one or more computer processors when executing the instructions, the identifying credentials comprising device-specific credentials uniquely identifying the loT device in the plurality of loT devices;

    sending the identifying credentials to the loT device, wherein the loT device installs and activates the identifying credentials; and

    associating the identifying credentials with the loT device in a registry of the first loT service, whereafter the loT device accesses the second loT service based on the identifying credentials.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×