Automatic configuration of devices for secure network communication
First Claim
1. A method for pre-qualifying a node to participate in a system for automatically establishing secure communications through one or more networks, the method comprising the steps of:
- receiving pre-qualification data from a node via a network;
comparing the pre-qualification data a benchmark;
creating an entry for the node in an account database if the pre-qualification data meet the benchmark;
generating a unique identifier for the node;
storing the unique identifier in a master node server database;
associating the unique identifier with a copy of node server operating software; and
delivering the copy of node server operating software to the node.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method are provided for automatically establishing secure communications through one or more networks. Execution of node server operating software is initiated on a first node server. A secure communication connection is authenticated between a first node server and a master control server having an account database. An account status of the first node server is verified by accessing the account database. In the master control server, a unique identification key pair is associated with the first node server. The identification key pair has a public key and a private key. The public key of the key pair is stored in a master node server database on the master control server. The private key of the key pair is stored in the first node server. At least a portion of the master node server database is sent to a second node server, including the public key associated with the first node server. At least a portion of the master node server database is sent to the first node server, including a public key associated with the second node server.
-
Citations
31 Claims
-
1. A method for pre-qualifying a node to participate in a system for automatically establishing secure communications through one or more networks, the method comprising the steps of:
-
receiving pre-qualification data from a node via a network;
comparing the pre-qualification data a benchmark;
creating an entry for the node in an account database if the pre-qualification data meet the benchmark;
generating a unique identifier for the node;
storing the unique identifier in a master node server database;
associating the unique identifier with a copy of node server operating software; and
delivering the copy of node server operating software to the node. - View Dependent Claims (2, 3, 4)
-
-
5. A system for pre-qualifying a node to participate in a system for automatically establishing secure communications through one or more networks, the system comprising:
-
a secure data exchange module configured to receive pre-qualification data from a node via a network;
a control module configured to compare the pre-qualification data to a benchmark, create an entry for the node in an account database if the pre-qualification data meets the benchmark, generate a unique identifier for the node, and store the unique identifier in a master node server database; and
a software manufacture module configured to associate the unique identifier with a copy of node server operating software deliver the copy of node server operating software to the node. - View Dependent Claims (6, 7)
-
-
8. A method for automatically enrolling in a system for establishing secure communications through one or more networks, the method comprising the steps of:
-
initiating execution of node server operating software on first node server;
authenticating a secure communication connection via a network between a first node server and a master control server having an account database;
verifying an account status of the first node server by accessing the account database;
associating, in the master control server, a unique identification key pair with the first node server, the identification key pair having a public key and a private key;
storing the public key of the key pair in a master node server database on the master control server; and
storing the private key of the key pair in the first node server. - View Dependent Claims (9)
-
-
10. A method for automatically enrolling in a system for establishing secure communications through one or more networks, the method comprising the steps of:
-
initiating execution of node server operating software on first node server;
authenticating a secure communication connection via a network between a first node server and a master control server having an account database;
verifying an account status of the first node server by accessing the account database;
associating, in the master control server, a unique identification key pair with the first node server, the identification key pair having a public key and a private key;
storing the public key of the key pair in a master node server database on the master control server;
storing the private key of the key pair in the first node server;
communicating to a second node server at least a portion of the master node server database, including the public key associated with the first node server; and
communicating to the first node server at least a portion of the master node server database, including a public key associated with the second node server. - View Dependent Claims (11)
-
-
12. A system for automatically enrolling to establish secure communications through one or more networks, the system comprising:
-
a first node server configured to initiate execution of node server operating software;
a master control server having an account database;
a secure tunnel adapter configured to authenticate a secure communication connection between the first node server and the master control server via a network;
an automatic enrollment module in the master control server that verifies an account status of the first node server by accessing the account database;
a key-issuing module in the master control server having a unique identification key pair associated with the first node server;
a master node server database in the master control server for storing a public key of the key pair; and
a private key database in the first node server for storing a private key of the key pair.
-
-
13. A method for automatically establishing secure communications through one or more networks, the method comprising the steps of:
-
receiving data at a first node server via a network;
if the data includes credentials of a second node server, determining whether a local node server database of the first node server has an entry for the second node server;
if there is an entry for the second node server in the local node server database of the first node server, checking the credentials of the second node server using the local node server database of the first node server;
if there is not an entry for the second node server in the local node server database of the first node server or the credentials of the second node server do not pass the checking step, requesting an update of the local node server database from a master node server database on a master control server and repeating the checking step; and
determining whether to route the data through a secure tunnel adapter based on a result of the checking step. - View Dependent Claims (14, 15, 16)
-
-
17. A system for automatically establishing secure communications through one or more networks, the system comprising:
-
a master control server having a master node server database storing credentials for participating nodes;
a first node server configured to receive data via a network, the first node server having a local node server database;
an algorithmic processing module for determining, when the data received by the first node server includes credentials of a second node server, whether the local node server database of the first node server has an entry for the second node server and for routing the data through a secure tunnel adapter based on the determination, wherein if there is an entry for the second node server in the local node server database of the first node server, the algorithmic processing module checks the credentials of the second node server using the local node server database of the first node server, and if there is not an entry for the second node server in the local node server database of the first node server or the credentials of the second node server do not pass the checking step, the algorithmic processing module requests an update of the local node server database from the master node server database on a master control server and repeats the checking step. - View Dependent Claims (18, 19, 20)
-
-
21. Computer code for pre-qualifying a node to participate in a system for automatically establishing secure communications through one or more networks, the computer code comprising code for:
-
receiving pre-qualification data from a node via a network;
comparing the pre-qualification data a benchmark;
creating an entry for the node in an account database if the pre-qualification data meet the benchmark;
generating a unique identifier for the node;
storing the unique identifier in a master node server database;
associating the unique identifier with a copy of node server operating software; and
delivering the copy of node server operating software to the node. - View Dependent Claims (22, 23)
-
-
24. Computer code for automatically enrolling in a system for establishing secure communications through one or more networks, the computer code comprising code for:
-
initiating execution of node server operating software on first node server;
authenticating a secure communication connection via a network between a first node server and a master control server having an account database;
verifying an account status of the first node server by accessing the account database;
associating, in the master control server, a unique identification key pair with the first node server, the identification key pair having a public key and a private key;
storing the public key of the key pair in a master node server database on the master control server; and
storing the private key of the key pair in the first node server. - View Dependent Claims (25)
-
-
26. Computer code for automatically establishing secure communications through one or more networks, the computer code comprising code for:
-
initiating execution of node server operating software on first node server;
authenticating a secure communication connection via a network between a first node server and a master control server having an account database;
verifying an account status of the first node server by accessing the account database;
associating, in the master control server, a unique identification key pair with the first node server, the identification key pair having a public key and a private key;
storing the public key of the key pair in a master node server database on the master control server;
storing the private key of the key pair in the first node server;
sending to a second node server at least a portion of the master node server database, including the public key associated with the first node server; and
sending to the first node server at least a portion of the master node server database, including a public key associated with the second node server. - View Dependent Claims (27)
-
-
28. Computer code for automatically establishing secure communications through one or more networks, the computer code comprising code for:
-
receiving data at a first node server via a network;
if the data includes credentials of a second node server, determining whether a local node server database of the first node server has an entry for the second node server;
if there is an entry for the second node server in the local node server database of the first node server, checking the credentials of the second node server using the local node server database of the first node server;
if there is not an entry for the second node server in the local node server database of the first node server or the credentials of the second node server do not pass the checking step, requesting an update of the local node server database from a master node server database on a master control server; and
determining whether to route the data through a secure tunnel adapter based on a result of the checking step. - View Dependent Claims (29, 30, 31)
-
Specification