Establishing trust between two devices
First Claim
Patent Images
1. A portable device registered to a user by an entity, the device comprising:
- a processing system comprising;
one or more processors; and
memory coupled to the one or more processors, the processing system configured to;
cause the device to join a domain comprising one or more networks, wherein the domain is operated by the entity;
based on the device joining the domain, receive a plurality of certificates from a trusted entity device, an individual certificate in the plurality of certificates indicating;
that another device registered to another user by the entity is trusted by the trusted entity device; and
that the other device is approved for automatic pairing with the device; and
establish, based at least in part on the individual certificate, a connection with the other device via a media access control (MAC) address.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques described herein leverage a trusted entity within a domain to enable devices to establish trust with one another so they can securely discover each other and connect to one another. In various examples discussed herein, a device is configured to provide trust information to, and/or receive trust information from, the trusted entity. The trust information may include, for example, a public key of an encryption key pair, a certificate signed by the trusted entity proving authenticity, and/or a hash function and a hash seed used to compute a series of results that form a hash chain. The device may use the trust information to discover another device and to connect to the other device securely and automatically (e.g., with no user involvement or limited user involvement). Moreover, the device may use the trust information to dynamically change a MAC address being used to communicate with the other device.
39 Citations
14 Claims
-
1. A portable device registered to a user by an entity, the device comprising:
a processing system comprising; one or more processors; and memory coupled to the one or more processors, the processing system configured to; cause the device to join a domain comprising one or more networks, wherein the domain is operated by the entity; based on the device joining the domain, receive a plurality of certificates from a trusted entity device, an individual certificate in the plurality of certificates indicating; that another device registered to another user by the entity is trusted by the trusted entity device; and that the other device is approved for automatic pairing with the device; and establish, based at least in part on the individual certificate, a connection with the other device via a media access control (MAC) address. - View Dependent Claims (2, 3, 4, 5, 6)
-
7. A method implemented by a device registered to a user by an entity, the method comprising:
-
joining a domain comprising one or more networks, wherein the domain is operated by the entity; receiving, based on joining the domain, a plurality of certificates from a trusted entity device, an individual certificate in the plurality of certificates indicating; that another device registered to another user by the entity is trusted by the trusted entity device; and that the other device is approved for automatic pairing with the device; and establishing, based at least in part on the individual certificate, a connection with the other device via a media access control (MAC) address. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A device registered to a user by an enterprise, the device comprising:
a processing system comprising; one or more processors; and memory coupled to the one or more processors, the processing system configured to; cause the device to automatically join a domain comprising one or more enterprise networks, wherein the domain is operated by the enterprise; based on the device joining the domain, receive a plurality of certificates from a trusted entity device, an individual certificate in the plurality of certificates indicating; that another device registered to another user by the entity is trusted by the trusted entity device; and that the other device is approved for automatic pairing with the device; and automatically connect, based at least in part on the individual certificate, the device with the other device via a media access control (MAC) address. - View Dependent Claims (14)
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeMicrosoft Technology Licensing LLC (Microsoft Corporation)
-
Original AssigneeMicrosoft Technology Licensing LLC (Microsoft Corporation)
-
InventorsDawoud Shenouda Dawoud, Peter, Saboori, Anoosh, Soni, Himanshu, Ingalls, Dustin Michael, Porter, Nelly L.
-
Primary Examiner(s)Perungavoor, Venkat
-
Application NumberUS15/629,468Publication NumberTime in Patent Office986 DaysField of SearchNoneUS Class CurrentCPC Class CodesG06F 21/44 Program or device authentic...H04L 63/0442 wherein the sending and rec...H04L 63/062 for key distribution, e.g. ...H04L 63/0823 using certificates cryptogr...H04L 63/0853 using an additional device,...H04L 63/0876 based on the identity of th...H04L 9/0825 using asymmetric-key encryp...H04L 9/3236 using cryptographic hash fu...H04L 9/3265 using certificate chains, t...H04L 9/50 using hash chains, e.g. blo...
