Gateway for securely connecting arbitrary devices and service providers

US 20020116637A1
Filed: 12/21/2000
Published: 08/22/2002
Est. Priority Date: 12/21/2000
Status: Abandoned Application

First Claim

Patent Images

1. A gateway device for securely managing activities between at least one device and at least one service provider, comprising:

an authenticator that authenticates the identity of the at least one service provider and the at least one device;

an access authorizer that permits the at least one service provider to interact with the at least one device; and

an activity manager, responsive to the access authorizer and the authenticator, that manages the activities occurring between the at least one service provider and the at least one device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A gateway for securely connecting arbitrary devices and service providers. A request handler receives activity requests from a device and a service provider. An authenticator and access authorizer permit the device and service provider to interact with each other. An activity manager manages the activities between the device and the service provider. A response component forwards the response to either the service provider or the device. The gateway device is suitable for use in remote monitoring and diagnostics of industrial and commercial equipment as well with the monitoring and maintenance of consumer products.

71 Citations

View as Search Results

101 Claims

1. A gateway device for securely managing activities between at least one device and at least one service provider, comprising:
- an authenticator that authenticates the identity of the at least one service provider and the at least one device;
  
  an access authorizer that permits the at least one service provider to interact with the at least one device; and
  
  an activity manager, responsive to the access authorizer and the authenticator, that manages the activities occurring between the at least one service provider and the at least one device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The gateway device according to claim 1, wherein the authenticator comprises a digital signature that uniquely identifies the gateway device to the at least one service provider and the at least one device.
  - 3. The gateway device according to claim 1, wherein the authenticator comprises a digital signal verifier that verifies signatures associated with the at least one service provider and the at least one device.
  - 4. The gateway device according to claim 1, wherein the authenticator comprises a cryptographic component that encrypts and decrypts activities between the at least one service provider and the at least one device.
  - 5. The gateway device according to claim 1, wherein the access authorizer specifies permitted activities for the at least one service provider and the at least one device.
  - 6. The gateway device according to claim 1, further comprising a request handler that receives activity requests from the at least one service provider and the at least one device.
  - 7. The gateway device according to claim 1, further comprising a response component that receives activity responses from the at least one service provider and the at least one device.
  - 8. The gateway device according to claim 1, further comprising a data format translator that translates the format of data transmitted and received by the at least one service provider and the at least one device.
  - 9. The gateway device according to claim 1, further comprising a network protocol translator that translates a network protocol associated with the at least one service provider with a network protocol associated with the at least one device.

10. A gateway device for securely managing activities between a plurality of devices linked together in a first network and a plurality of service providers linked to the plurality of devices by a second network, comprising:
- an authenticator that authenticates the identity of the plurality of devices and the plurality of service providers;
  
  an access authorizer that permits the plurality of devices to interact with the plurality of service providers; and
  
  an activity manager, responsive to the access authorizer and the authenticator, that manages the activities occurring between the plurality of devices and the plurality of service providers.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 20, 21, 22, 23, 24, 25, 28, 29, 30, 31, 32, 33, 34, 35, 37, 38, 39, 40, 41, 42, 43, 44, 46, 47, 48, 49, 50, 51, 52, 53)
- - 11. The gateway device according to claim 10, wherein the authenticator comprises a digital signature that uniquely identifies the gateway device to the plurality of devices and the plurality of service providers.
  - 12. The gateway device according to claim 10, wherein the authenticator comprises a digital signal verifier that verifies signatures associated with the plurality of devices and the plurality of service providers.
  - 13. The gateway device according to claim 10, wherein the authenticator comprises a cryptographic component that encrypts and decrypts activities between the plurality of devices and the plurality of service providers.
  - 14. The gateway device according to claim 10, wherein the access authorizer specifies permitted activities for the plurality of devices and the plurality of service providers.
  - 15. The gateway device according to claim 10, further comprising a request handler that receives activity requests from the plurality of devices and the plurality of service providers.
  - 16. The gateway device according to claim 10, further comprising a response component that receives activity responses from the plurality of devices and the plurality of service providers.
  - 17. The gateway device according to claim 10, further comprising a data format translator that translates the format of data transmitted and received by the plurality of devices and the plurality of service providers.
  - 18. The gateway device according to claim 10, further comprising a network protocol translator that translates a network protocol associated with the plurality of devices in the first network and a network protocol associated with the plurality of service providers in the second network.
  - 20. The gateway device according to claim 19, wherein the authenticator comprises a digital signature that uniquely identifies the gateway device to the at least one service provider and the at least one device.
  - 21. The gateway device according to claim 19, wherein the authenticator comprises a digital signal verifier that verifies signatures associated with the at least one service provider and the at least one device.
  - 22. The gateway device according to claim 19, wherein the authenticator comprises a cryptographic component that encrypts and decrypts activities between the at least one service provider and the at least one device.
  - 23. The gateway device according to claim 19, wherein the access authorizer specifies permitted activities for the at least one service provider and the at least one device.
  - 24. The gateway device according to claim 20, further comprising a data format translator that translates the format of data transmitted and received by the at least one service provider and the at least one device.
  - 25. The gateway device according to claim 20, further comprising a network protocol translator that translates a network protocol associated with the at least one service provider with a network protocol associated with the at least one device.
  - 28. The gateway device according to claim 27, wherein the authenticating means comprises a digital signature that uniquely identifies the gateway device to the at least one service provider and the at least one device.
  - 29. The gateway device according to claim 27, wherein the authenticating means comprises means for verifying signatures associated with the at least one service provider and the at least one device.
  - 30. The gateway device according to claim 27, wherein the authenticating means comprises means for encrypting and decrypting activities between the at least one service provider and the at least one device.
  - 31. The gateway device according to claim 27, wherein the permitting means specifies permitted activities for the at least one service provider and the at least one device.
  - 32. The gateway device according to claim 27, further comprising means for receiving activity requests from the at least one service provider and the at least one device.
  - 33. The gateway device according to claim 27, further comprising means for receiving activity responses from the at least one service provider and the at least one device.
  - 34. The gateway device according to claim 27, further comprising means for translating the format of data transmitted and received by the at least one service provider and the at least one device.
  - 35. The gateway device according to claim 27, further comprising means for translating a network protocol associated with the at least one service provider with a network protocol associated with the at least one device.
  - 37. The system according to claim 36, wherein the authenticator comprises a digital signature that uniquely identifies the gateway device to the service provider and the at least one appliance.
  - 38. The system according to claim 36, wherein the authenticator comprises a digital signal verifier that verifies signatures associated with the service provider and the at least one appliance.
  - 39. The system according to claim 36, wherein the authenticator comprises a cryptographic component that encrypts and decrypts services provided between the service provider and the at least one appliance.
  - 40. The system according to claim 36, wherein the access authorizer specifies permitted services for the service provider and the at least one appliance.
  - 41. The system according to claim 36, further comprising a request handler that receives service requests from the service provider and the at least one appliance.
  - 42. The system according to claim 36, further comprising a response component that receives service responses from the service provider and the at least one appliance.
  - 43. The system according to claim 36, further comprising a data format translator that translates the format of data transmitted and received by the service provider and the at least one appliance.
  - 44. The system according to claim 36, further comprising a network protocol translator that translates a network protocol associated with the service provider with a network protocol associated with the at least one appliance.
  - 46. The system according to claim 45, wherein the authenticator comprises a digital signature that uniquely identifies the gateway device to the service provider and the at least one device.
  - 47. The system according to claim 45, wherein the authenticator comprises a digital signal verifier that verifies signatures associated with the service provider and the at least one device.
  - 48. The system according to claim 45, wherein the authenticator comprises a cryptographic component that encrypts and decrypts remote monitoring and diagnostic activities provided between the service provider and the at least one device.
  - 49. The system according to claim 45, wherein the access authorizer specifies permitted remote monitoring and diagnostic activities for the service provider and the at least one device.
  - 50. The system according to claim 45, further comprising a request handler that receives remote monitoring and diagnostic requests from the service provider and the at least one device.
  - 51. The system according to claim 45, further comprising a response component that receives remote monitoring and diagnostic responses from the service provider and the at least one device.
  - 52. The system according to claim 45, further comprising a data format translator that translates the format of data transmitted and received by the service provider and the at least one device.
  - 53. The system according to claim 45, further comprising a network protocol translator that translates a network protocol associated with the service provider with a network protocol associated with the at least one device.

19. A gateway device for securely managing activities between at least one device and at least one service provider, comprising:
- a request handler that receives activity requests from the at least one service provider and the at least one device;
  
  an authenticator that authenticates the identity of the at least one service provider and the at least one device;
  
  an access authorizer that permits the at least one service provider to interact with the at least one device;
  
  an activity manager that manages the activity requests occurring between the at least one service provider and the at least one device; and
  
  a response component, responsive to the request handler,the authenticator, the access authorizer, and the activity manager, that receives activity responses from the at least one service provider and the at least one device.

26. A gateway device for securely managing activities between at least one device and at least one service provider, comprising:
- a request handler that receives activity requests from the at least one service provider and the at least one device;
  
  an authenticator that authenticates the identity of the at least one service provider and the at least one device;
  
  an access authorizer that permits the at least one service provider to interact with the at least one device;
  
  an activity manager that manages the activity requests occurring between the at least one service provider and the at least one device;
  
  a data format translator that translates the format of data transmitted and received by the at least one service provider and the at least one device during the activities; and
  
  a response component, responsive to the request handler, the authenticator, the access authorizer, the activity manager, and the data format translator, that receives activity responses from the at least one service provider and the at least one device.

27. A gateway device for securely managing activities between at least one device and at least one service provider, comprising:
- means for authenticating the identity of the at least one service provider and the at least one device;
  
  means for permitting the at least one service provider to interact with the at least one device; and
  
  means, responsive to the permitting means and the authenticating means, for managing the activities occurring between the at least one service provider and the at least one device.

36. A system for securely providing services between a first site and a second site, comprising:
- at least one appliance linked in a first network at the first site;
  
  a service provider linked to the at least one appliance in a second network at the second site; and
  
  a gateway device that securely manages the services provided between the at least one appliance and the service provider, the gateway device comprising an authenticator that authenticates the identity of the service provider and the at least one appliance;
  
  an access authorizer that permits the service provider to interact with the at least one appliance; and
  
  a service manager, responsive to the authenticator and the access authorizer, that manages the services provided between the service provider and the at least one appliance.

45. A system for securely providing remote monitoring and diagnostics, comprising:
- at least one device linked in a first network;
  
  a service provider linked to the at least one device in a second network; and
  
  a gateway device that securely manages remote monitoring and diagnostic activities between the at least one device and the service provider, the gateway device comprising an authenticator that authenticates the identity of the service provider and the at least one device;
  
  an access authorizer that permits the service provider to interact with the at least one device; and
  
  an activity manager, responsive to the authenticator and access authorizer, that manages the remote monitoring and diagnostic activities provided between the service provider and the at least one device.

54. A method for securely managing activities between at least one device and at least one service provider, comprising:
- authenticating the identity of the at least one service provider and the at least one device;
  
  permitting the at least one service provider to interact with the at least one device; and
  
  managing the activities occurring between the at least one service provider and the at least one device.
- View Dependent Claims (55, 56, 57, 58, 59, 60, 61)
- - 55. The method according to claim 54, wherein the authenticating comprises verifying signatures associated with the at least one service provider and the at least one device.
  - 56. The method according to claim 54, wherein the authenticating comprises encrypting and decrypting activities between the at least one service provider and the at least one device.
  - 57. The method according to claim 54, wherein the permitting comprises specifying permitted activities for the at least one service provider and the at least one device.
  - 58. The method according to claim 54, further comprising receiving activity requests from the at least one service provider and the at least one device.
  - 59. The method according to claim 54, further comprising receiving activity responses from the at least one service provider and the at least one device.
  - 60. The method according to claim 54, further comprising translating the format of data transmitted and received by the at least one service provider and the at least one device.
  - 61. The method according to claim 54, further comprising translating a network protocol associated with the at least one service provider with a network protocol associated with the at least one device.

62. A method for securely managing activities between a plurality of devices linked together in a first network and a plurality of service providers linked to the plurality of devices by a second network, comprising:
- authenticating the identity of the plurality of devices and the plurality of service providers;
  
  permitting the plurality of devices to interact with the plurality of service providers; and
  
  managing the activities occurring between the plurality of devices and the plurality of service providers.
- View Dependent Claims (63, 64, 65, 66, 67, 68, 69)
- - 63. The method according to claim 62, wherein the authenticating comprises verifying signatures associated with the plurality of devices and the plurality of service providers.
  - 64. The method according to claim 62, wherein the authenticating comprises encrypting and decrypting activities between the plurality of devices and the plurality of service providers.
  - 65. The method according to claim 62, wherein the permitting comprises specifying permitted activities for the plurality of devices and the plurality of service providers.
  - 66. The method according to claim 62, further comprising receiving activity requests from the plurality of devices and the plurality of service providers.
  - 67. The method according to claim 62, further comprising receiving activity responses from the plurality of devices and the plurality of service providers.
  - 68. The method according to claim 62, further comprising translating the format of data transmitted and received by the plurality of devices and the plurality of service providers.
  - 69. The method according to claim 62, further comprising translating a network protocol associated with the plurality of devices in the first network and a network protocol associated with the plurality of service providers in the second network.

70. A method for securely managing activities between at least one device and at least one service provider, comprising:
- receiving activity requests from the at least one service provider and the at least one device;
  
  authenticating the identity of the at least one service provider and the at least one device;
  
  permitting the at least one service provider to interact with the at least one device;
  
  managing the activity requests occurring between the at least one service provider and the at least one device; and
  
  receiving activity responses from the at least one service provider and the at least one device.
- View Dependent Claims (71, 72, 73, 74, 75)
- - 71. The method according to claim 70, wherein the authenticating comprises verifying signatures associated with the at least one service provider and the at least one device.
  - 72. The method according to claim 70, wherein the authenticating comprises encrypting and decrypting activities between the at least one service provider and the at least one device.
  - 73. The method according to claim 70, wherein the permitting comprises specifying permitted activities for the at least one service provider and the at least one device.
  - 74. The method according to claim 70, further comprising translating the format of data transmitted and received by the at least one service provider and the at least one device.
  - 75. The method according to claim 70, further comprising translating a network protocol associated with the at least one service provider with a network protocol associated with the at least one device.

76. A method for securely providing services between a first site and a second site, comprising:
- providing at least one appliance linked in a first network at the first site;
  
  providing a service provider linked to the at least one appliance in a second network at the second site; and
  
  securely managing the services provided between the at least one appliance and the service provider, comprising authenticating the identity of the service provider and the at least one appliance;
  
  permitting the service provider to interact with the at least one appliance; and
  
  managing the services provided between the service provider and the at least one appliance.
- View Dependent Claims (77, 78, 79, 80, 81, 82, 83)
- - 77. The method according to claim 76, wherein the authenticating comprises verifying signatures associated with the service provider and the at least one appliance.
  - 78. The method according to claim 76, wherein the authenticating comprises encrypting and decrypting services provided between the service provider and the at least one appliance.
  - 79. The method according to claim 76, wherein the permitting comprises specifying permitted services for the service provider and the at least one appliance.
  - 80. The method according to claim 76, further comprising receiving service requests from the service provider and the at least one appliance.
  - 81. The method according to claim 76, further comprising receiving service responses from the service provider and the at least one appliance.
  - 82. The method according to claim 76, further comprising translating the format of data transmitted and received by the service provider and the at least one appliance.
  - 83. The method according to claim 76, further comprising translating a network protocol associated with the service provider with a network protocol associated with the at least one appliance.

84. A method for securely providing remote monitoring and diagnostics, comprising:
- providing at least one device linked in a first network;
  
  providing a service provider linked to the at least one device in a second network; and
  
  securely managing remote monitoring and diagnostic activities between the at least one device and the service provider, comprising authenticating the identity of the service provider and the at least one device;
  
  permitting the service provider to interact with the at least one device; and
  
  managing the remote monitoring and diagnostic activities provided between the service provider and the at least one device.
- View Dependent Claims (85, 86, 87, 88, 89, 90, 91)
- - 85. The method according to claim 84, wherein the authenticating comprises verifying signatures associated with the service provider and the at least one device.
  - 86. The method according to claim 84, wherein the authenticating comprises encrypting and decrypting remote monitoring and diagnostic activities provided between the service provider and the at least one device.
  - 87. The method according to claim 84, wherein the permitting comprises specifying permitted remote monitoring and diagnostic activities for the service provider and the at least one device.
  - 88. The method according to claim 84, further comprising receiving remote monitoring and diagnostic requests from the service provider and the at least one device
  - 89. The method according to claim 84, further comprising receiving remote monitoring and diagnostic responses from the service provider and the at least one device.
  - 90. The method according to claim 84, further comprising translating the format of data transmitted and received by the service provider and the at least one device.
  - 91. The method according to claim 84, further comprising translating a network protocol associated with the service provider with a network protocol associated with the at least one device.

92. A computer-readable medium storing computer instructions for controlling a computer system to securely manage activities between at least one device and at least one service provider, the computer instructions comprising:
- authenticating the identity of the at least one service provider and the at least one device;
  
  permitting the at least one service provider to interact with the at least one device; and
  
  managing the activities occurring between the at least one service provider and the at least one device.
- View Dependent Claims (93, 94, 95, 96, 97, 98, 99)
- - 93. The computer-readable medium according to claim 92, wherein the authenticating instructions comprises verifying signatures associated with the at least one service provider and the at least one device.
  - 94. The computer-readable medium according to claim 92, wherein the authenticating instructions comprises encrypting and decrypting activities between the at least one service provider and the at least one device.
  - 95. The computer-readable medium according to claim 92, wherein the permitting instructions comprises specifying permitted activities for the at least one service provider and the at least one device.
  - 96. The computer-readable medium according to claim 92, further comprising receiving activity requests from the at least one service provider and the at least one device.
  - 97. The computer-readable medium according to claim 92, further comprising receiving activity responses from the at least one service provider and the at least one device.
  - 98. The computer-readable medium according to claim 92, further comprising translating the format of data transmitted and received by the at least one service provider and the at least one device.
  - 99. The computer-readable medium according to claim 92, further comprising translating a network protocol associated with the at least one service provider with a network protocol associated with the at least one device.

100. A computer-readable medium storing computer instructions for controlling a computer system to securely manage activities between a plurality of devices linked together in a first network and a plurality of service providers linked to the plurality of devices by a second network, the computer instructions comprising:
- authenticating the identity of the plurality of devices and the plurality of service providers;
  
  permitting the plurality of devices to interact with the plurality of service providers; and
  
  managing the activities occurring between the plurality of devices and the plurality of service providers.

101. A computer-readable medium storing computer instructions for controlling a computer system to securely manage activities between at least one device and at least one service provider, the computer instructions comprising:
- receiving activity requests from the at least one service provider and the at least one device;
  
  authenticating the identity of the at least one service provider and the at least one device;
  
  permitting the at least one service provider to interact with the at least one device;
  
  managing the activity requests occurring between the at least one service provider and the at least one device; and
  
  receiving activity responses from the at least one service provider and the at least one device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
General Electric Company
Original Assignee
General Electric Company
Inventors
Garbiras, Marc Anthony, Houlihan, Jonathan Michael, Deitsch, Andrew Issac, Morrill, Daniel Lawrence, Gorman, William Phillip

Application Number

US09/741,251
Publication Number

US 20020116637A1
Time in Patent Office

Days
Field of Search
US Class Current

713/201
CPC Class Codes

G06F 21/305   by remotely controlling dev...

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

Gateway for securely connecting arbitrary devices and service providers

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

71 Citations

101 Claims

Specification

Solutions

Use Cases

Quick Links

Gateway for securely connecting arbitrary devices and service providers

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

71 Citations

101 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links