Unique on-line provisioning of user terminals allowing user authentication
First Claim
1. A provisioning system that secures delivery of a client public key, the provisioning system comprising:
- a client to be registered;
a provisioning server for registering the client and assigning it a unique user ID (identification);
a key distribution center for generating a provisioning key associated with the user ID, the provisioning key being forwarded to the provisioning server;
the provisioning server generating configuration parameters for initializing the client, the provisioning key being included in the configuration parameters; and
upon initialization, the client provides its public key, authenticated with the provisioning key for forwarding to the key distribution center.
3 Assignments
0 Petitions
Accused Products
Abstract
A provisioning system that secures delivery of a client'"'"'s public key to a KDC (Key Distribution Center). The provisioning system comprises a client, uniquely identifiable by one or more parameters including a user ID (identification); a provisioning server for registering the client; a key distribution center for generating a provisioning key associated with the user ID, the provisioning key being forwarded to the provisioning server; the provisioning server generating configuration parameters for initializing the client, the provisioning key being included in the configuration parameters; and upon initialization, the client provides its public key, authenticated with the provisioning key for forwarding to the key distribution center.
131 Citations
9 Claims
-
1. A provisioning system that secures delivery of a client public key, the provisioning system comprising:
-
a client to be registered;
a provisioning server for registering the client and assigning it a unique user ID (identification);
a key distribution center for generating a provisioning key associated with the user ID, the provisioning key being forwarded to the provisioning server;
the provisioning server generating configuration parameters for initializing the client, the provisioning key being included in the configuration parameters; and
upon initialization, the client provides its public key, authenticated with the provisioning key for forwarding to the key distribution center. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method for initially establishing trust between a KDC (Key Distribution Center) and a client having a uniquely identifiable user ID (identification) that was assigned by the provisioning server, the method comprising:
-
generating, by the KDC, a provisioning key associated with the user ID, the provisioning key being forwarded to the provisioning server;
forwarding the provisioning key to a provisioning server for registering the client;
generating, by the provisioning server, configuration parameters for initializing the client;
forwarding to the client, the provisioning key and the configuration parameters for initializing the client; and
upon initialization, the client provides its public key, authenticated with the provisioning key for forwarding to the key distribution center. - View Dependent Claims (8, 9)
-
Specification
-
- Resources
-
Current AssigneeGoogle Technology Holdings LLC (Alphabet Inc.), General Instrument Corporation (CommScope Holding Company, Inc.)
-
Original AssigneeGoogle Technology Holdings LLC (Alphabet Inc.)
-
InventorsMedvinsky, Alexander, Peterka, Petr, Moroney, Paul
-
Application NumberUS09/966,552Publication NumberTime in Patent OfficeDaysField of SearchUS Class Current380/277CPC Class CodesG06F 21/10 Protecting distributed prog...G06F 21/602 Providing cryptographic fac...G06F 21/606 by securing the transmissio...H04L 63/0407 wherein the identity of one...H04L 63/0457 wherein the sending and rec...H04L 63/062 for key distribution, e.g. ...H04L 63/0807 using tickets, e.g. Kerbero...H04L 65/65 Network streaming protocols...H04L 65/70 Media network packetisation
