Method and apparatus for establishing a secure ad hoc command structure
First Claim
Patent Images
1. A computer controlled method to establish a secure information channel that can associate a plurality of member devices with a command-system, the method comprising steps of:
- establishing a secure credential infrastructure by;
exchanging key commitment information over a preferred channel between a credential issuing device and said prospective member device to pre-authenticate said prospective member device;
receiving a public key from said prospective member device;
verifying said public key with said key commitment information; and
automatically provisioning said prospective member device with a credential;
whereby said prospective member device becomes one of said plurality of member devices associated with said command-system; and
communicating command-system information between some of said plurality of member devices within said secure credential infrastructure using said secure information channel.
1 Assignment
0 Petitions
Accused Products
Abstract
We present technology that allows layman computer users to simply create, provision, and maintain secured infrastructure—an instant PKI. This technology can be used to quickly establish a secure credential infrastructure that can be used to secure ad-hoc and/or dynamic command and control operations such are needed for Incident Command Systems or other emergency response systems that require simplicity and rapid deployment among disparate responder teams.
101 Citations
19 Claims
-
1. A computer controlled method to establish a secure information channel that can associate a plurality of member devices with a command-system, the method comprising steps of:
-
establishing a secure credential infrastructure by;
exchanging key commitment information over a preferred channel between a credential issuing device and said prospective member device to pre-authenticate said prospective member device;
receiving a public key from said prospective member device;
verifying said public key with said key commitment information; and
automatically provisioning said prospective member device with a credential;
whereby said prospective member device becomes one of said plurality of member devices associated with said command-system; and
communicating command-system information between some of said plurality of member devices within said secure credential infrastructure using said secure information channel. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. An apparatus capable of performing communications over a secure information channel, the apparatus comprising:
-
at least one port configured to establish a preferred channel;
a secure communications component comprising;
a key commitment receiver mechanism configured to receive key commitment information though said at least one port;
a key receiver mechanism configured to receive a public key;
a pre-authentication mechanism configured to verify said public key with said key commitment information;
a credential receiving mechanism configured to receive a credential responsive to the pre-authentication mechanism; and
a security service mechanism configured to communicate command-system information over said secure information channel; and
a presentation component configured to present said command-system information received from the security service mechanism to a user. - View Dependent Claims (15, 16, 17, 18, 19)
-
Specification