Method, apparatus, and program product for automatically provisioning secure network elements
First Claim
Patent Images
1. A computer controlled method comprising:
- establishing communication between a provisioning device and a network device over a preferred channel;
exchanging key commitment information over said preferred channel between said provisioning device and said network device to pre-authenticate said network device; and
providing provisioning information to said network device over said preferred channel, whereby said network device can automatically configure itself for communication over a network responsive to said provisioning information.
10 Assignments
0 Petitions
Accused Products
Abstract
We present technology that allows layman computer users to simply create, provision, and maintain secured infrastructure—an instant PKI. This technology can be used in a wide variety of applications including wired and wireless networks, secure sensor networks (such as medical networks), emergency alert networks, as well as simply and automatically provisioning network devices whether secure or not.
-
Citations
55 Claims
-
1. A computer controlled method comprising:
-
establishing communication between a provisioning device and a network device over a preferred channel;
exchanging key commitment information over said preferred channel between said provisioning device and said network device to pre-authenticate said network device; and
providing provisioning information to said network device over said preferred channel, whereby said network device can automatically configure itself for communication over a network responsive to said provisioning information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A computer-readable storage medium storing instructions that when executed by a computer cause the computer to perform a method to provision a network device, the method comprising steps of:
-
establishing communication between a provisioning device and said network device over a preferred channel;
exchanging key commitment information over said preferred channel between said provisioning device and said network device to pre-authenticate said network device; and
providing provisioning information to said network device over said preferred channel, whereby said network device can automatically configure itself for communication over a network responsive to said provisioning information. - View Dependent Claims (14, 15)
-
-
16. An apparatus for provisioning a network device comprising:
-
at least one port configured to establish a preferred channel;
a preferred communication mechanism configured to be able to establish communication with and said network device over said preferred channel;
a pre-authentication mechanism configured to be able to receive key commitment information over said preferred channel from said network device; and
a provisioning mechanism configured to be able to provide provisioning information to said network device over said preferred channel, whereby said network device can automatically configure itself for communication over a network responsive to said provisioning information. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25)
-
-
26. A computer controlled method comprising:
-
establishing communication between a network device and a provisioning device over a preferred channel;
receiving provisioning information from said provisioning device over said preferred channel;
exchanging key commitment information over said preferred channel between said provisioning device and said network device to pre-authenticate said network device; and
automatically configuring said network device for communication over a network responsive to said provisioning information. - View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40)
-
-
41. A computer-readable storage medium storing instructions that when executed by a computer cause the computer to perform a method to automatically provision a network device, the method comprising steps of:
-
establishing communication between said network device and a provisioning device over a preferred channel;
receiving provisioning information from said provisioning device over said preferred channel;
exchanging key commitment information over said preferred channel between said provisioning device and said network device to pre-authenticate said network device; and
automatically configuring said network device for communication over a network responsive to said provisioning information. - View Dependent Claims (42, 43)
-
-
44. An apparatus comprising:
-
at least one port configured to establish a preferred channel;
a preferred channel communication mechanism configured to be able to establish communication with a provisioning device over said preferred channel;
a receiver mechanism configured to be able to receive provisioning information from said provisioning device over said preferred channel;
a pre-authentication mechanism configured to be able to receive key commitment information over said preferred channel from said provisioning device; and
a communication setup mechanism configured to automatically configure the apparatus for communication over a network responsive to said provisioning information received by the receiver mechanism. - View Dependent Claims (45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55)
-
Specification